$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.mft File: 5DyCH7uc7qZ-unouUFzF3X92YFU.mft (raw, json) Hash identifier: h+/5zKiKp2bl1jl/LTa2aHHkvBRJnGWo8GmwO2aIVJI= Subject key identifier: 48:7A:16:20:63:3E:7F:E1:23:B8:67:ED:81:F8:BD:E0:20:47:CF:40 Authority key identifier: E4:3C:82:1F:BB:9C:EE:A6:7E:BA:7A:2E:50:5C:C5:DD:7F:76:60:55 Certificate issuer: /CN=A9114D2E/serialNumber=E43C821FBB9CEEA67EBA7A2E505CC5DD7F766055 Certificate serial: 0AC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.mft Manifest number: 0AB3 Signing time: Mon 28 Apr 2025 19:52:11 +0000 Manifest this update: Mon 28 Apr 2025 19:52:10 +0000 Manifest next update: Mon 05 May 2025 19:52:10 +0000 Files and hashes: 1: 5DyCH7uc7qZ-unouUFzF3X92YFU.crl (hash: heqMRchEkXR/waQj0fwPbjQlAfY+2nv0+twq8P2kibY=) 2: 8ABED0585F0911ECA629B815C4F9AE02.roa (hash: yJ71VBH0x6Cizy3pLk3TQDQEwieJvCbqnha729ASJmU=) 3: 823433125F0C11EC8C2C2820C4F9AE02.roa (hash: SeaNTqd0MT2Mb0YJWYURazfx/oLk37QwRX3zpyKaSjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.crl rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2755 (0xac3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D2E, serialNumber=E43C821FBB9CEEA67EBA7A2E505CC5DD7F766055 Validity Not Before: Apr 28 19:52:10 2025 GMT Not After : May 5 19:52:10 2025 GMT Subject: CN=680fdc6b-c338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:47:1b:0f:93:7c:2e:07:aa:7e:95:84:f2:82: cd:21:06:0a:20:10:fb:41:9d:e8:86:a3:93:19:c6: 22:f8:a4:cc:c0:02:e6:55:e4:2e:61:a5:76:9e:6d: 77:11:06:2e:2a:c3:bb:c9:1f:99:e4:c2:ae:94:0b: 84:d9:17:a5:2f:6c:e4:36:00:78:32:11:79:37:6d: a6:74:5e:82:de:6d:68:41:6e:2b:70:4d:11:66:ec: c8:4c:43:47:c2:57:3b:21:4d:6a:49:94:94:52:17: 3d:8d:4f:3c:e0:f2:5d:b4:f2:d7:66:7c:a9:d8:83: af:dd:a8:b6:8f:42:e1:32:f6:6e:0c:70:64:d4:8d: a3:fa:dd:df:aa:47:e5:00:94:9b:1a:d0:d0:95:6c: e2:e1:08:2a:16:6c:d2:39:65:ea:1c:af:32:e9:b6: f1:ea:2d:8f:3f:9b:f9:10:f7:54:a6:69:38:b1:75: 12:e7:36:03:8f:71:9f:46:ff:bd:49:d4:72:ab:f2: 81:13:3e:66:c4:b8:e3:a7:f7:19:6f:5e:94:de:2e: b7:e1:0d:a6:50:d8:45:2c:7d:1d:a7:ce:ec:98:64: d0:50:ac:57:06:52:c9:2b:1a:55:57:46:8c:4d:49: 5f:b6:18:b1:6e:ef:36:87:c5:0b:be:12:4f:9f:d6: c2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7A:16:20:63:3E:7F:E1:23:B8:67:ED:81:F8:BD:E0:20:47:CF:40 X509v3 Authority Key Identifier: keyid:E4:3C:82:1F:BB:9C:EE:A6:7E:BA:7A:2E:50:5C:C5:DD:7F:76:60:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:49:a4:8d:f1:ea:0e:bd:3f:d1:1f:4c:b3:47:fb:fe:76:ac: 7b:76:91:99:a6:32:81:e2:1f:69:8a:f4:8b:44:3c:cf:f8:f0: 53:a9:ba:10:1c:c0:0b:ab:4d:9e:be:30:78:69:b2:94:26:fe: 1a:65:94:33:1a:2e:d5:21:1f:7f:eb:73:82:29:d3:d8:70:31: 6e:96:4d:92:b1:8c:7f:19:48:18:63:df:ae:29:54:fe:cd:14: ea:03:aa:3f:79:f6:47:af:6e:66:a9:ae:a0:43:46:11:c2:cf: ff:7f:80:5c:45:38:d5:24:af:c6:dc:e3:2b:f4:85:4f:87:f7: bb:c7:42:3a:13:1b:d9:8c:62:d9:ea:50:6e:9c:59:03:4b:21: e5:0b:31:62:5e:87:fa:a8:63:11:82:33:fd:58:d4:5f:9e:d0: 03:2d:06:5e:2a:7f:1e:c8:a2:79:f6:9f:9b:38:aa:28:ba:d1: 52:7d:d8:e1:88:04:86:39:45:66:e0:df:ce:d5:2c:54:cf:e6: ed:3c:7b:02:3c:d3:70:27:7b:33:90:02:09:a1:d3:98:55:17: 6e:34:69:f4:04:e8:d4:3b:ed:52:88:0e:fa:c7:38:4b:6b:4b: ac:56:3b:bf:36:6a:24:03:96:bc:41:28:1d:77:19:12:a7:88: d1:8f:75:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTREMkUxMTAvBgNVBAUTKEU0M0M4MjFGQkI5Q0VFQTY3RUJBN0EyRTUwNUNDNURE N0Y3NjYwNTUwHhcNMjUwNDI4MTk1MjEwWhcNMjUwNTA1MTk1MjEwWjAYMRYwFAYD VQQDEw02ODBmZGM2Yi1jMzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUcbD5N8LgeqfpWE8oLNIQYKIBD7QZ3ohqOTGcYi+KTMwALmVeQuYaV2nm13 EQYuKsO7yR+Z5MKulAuE2RelL2zkNgB4MhF5N22mdF6C3m1oQW4rcE0RZuzITENH wlc7IU1qSZSUUhc9jU884PJdtPLXZnyp2IOv3ai2j0LhMvZuDHBk1I2j+t3fqkfl AJSbGtDQlWzi4QgqFmzSOWXqHK8y6bbx6i2PP5v5EPdUpmk4sXUS5zYDj3GfRv+9 SdRyq/KBEz5mxLjjp/cZb16U3i634Q2mUNhFLH0dp87smGTQUKxXBlLJKxpVV0aM TUlfthixbu82h8ULvhJPn9bCYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEh6FiBj Pn/hI7hn7YH4veAgR89AMB8GA1UdIwQYMBaAFOQ8gh+7nO6mfrp6LlBcxd1/dmBV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQyRS8wRkUxOUM2QzUx MUUxMUVBQjgxODI1ODBDNEY5QUUwMi81RHlDSDd1YzdxWi11bm91VUZ6RjNYOTJZ RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVEeUNIN3VjN3FaLXVub3VVRnpGM1g5MllGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEQyRS8wRkUxOUM2QzUxMUUxMUVBQjgxODI1ODBDNEY5QUUwMi81RHlDSDd1Yzdx Wi11bm91VUZ6RjNYOTJZRlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbSaSN8eoOvT/RH0yzR/v+dqx7dpGZpjKB4h9pivSLRDzP+PBTqboQ HMALq02evjB4abKUJv4aZZQzGi7VIR9/63OCKdPYcDFulk2SsYx/GUgYY9+uKVT+ zRTqA6o/efZHr25mqa6gQ0YRws//f4BcRTjVJK/G3OMr9IVPh/e7x0I6ExvZjGLZ 6lBunFkDSyHlCzFiXof6qGMRgjP9WNRfntADLQZeKn8eyKJ59p+bOKooutFSfdjh iASGOUVm4N/O1SxUz+btPHsCPNNwJ3szkAIJodOYVRduNGn0BOjUO+1SiA76xzhL a0usVju/NmokA5a8QSgddxkSp4jRj3Xp -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:48 2025 by rpki-client on console.sobornost.net