$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft File: 2fpCBt8OmUfNUB39UlsuRmlv1EI.mft (raw, json) Hash identifier: CIB/MiQmfHy7hQGP2x190oFKsORZTIPzFQrP3akIZhg= Subject key identifier: 50:63:6F:13:ED:D7:8D:8B:25:B3:DF:60:48:E7:73:BB:AC:88:C8:6C Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft Manifest number: 010C Signing time: Sun 27 Apr 2025 03:53:27 +0000 Manifest this update: Sun 27 Apr 2025 03:53:27 +0000 Manifest next update: Sun 04 May 2025 03:53:27 +0000 Files and hashes: 1: 2fpCBt8OmUfNUB39UlsuRmlv1EI.crl (hash: 3TJ4M8cGJzD1tiYo2s8FOUOlC6DEtjsdJ8SfVQrMCQ8=) 2: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (hash: 16O4tOIwTKe9KyjFOBLZvUGIgda/sT358bnVtxfjCnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B, serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: Apr 27 03:53:27 2025 GMT Not After : May 4 03:53:27 2025 GMT Subject: CN=680daa37-5803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:95:f3:b3:d0:73:33:22:7d:10:43:01:87:fe: 1e:08:76:26:e9:53:a3:e8:b6:92:e5:04:1c:f9:7c: 66:23:7a:43:9f:e2:9f:14:16:4d:81:67:0a:19:3b: fa:45:27:69:56:ce:cf:c6:6c:10:db:b4:a3:bf:d4: d3:74:12:90:6b:d4:89:b5:ac:9c:28:63:84:8b:0b: a0:16:e0:37:9c:33:66:a7:79:7a:83:89:ad:e1:2d: 3b:79:fd:c7:81:93:25:64:a4:df:81:33:ea:9b:91: ea:74:a2:16:a0:75:9c:7d:7c:d9:f6:b7:b3:72:58: 04:ae:7d:8b:74:6a:6a:dc:91:7d:17:5a:01:93:69: ac:b0:d6:ef:be:65:cf:9f:cc:a9:ca:42:f7:63:c2: 6c:ce:99:bb:04:19:af:a1:70:27:fc:f3:41:d7:79: 5b:71:09:79:85:48:ec:15:78:0e:e6:f3:7b:51:78: 57:05:e9:bb:70:0c:00:54:78:d1:20:18:0a:e9:00: 3c:ce:93:da:05:f4:bb:38:9d:77:f5:75:51:94:db: 65:e3:09:69:6b:ca:d0:36:d8:09:13:32:5e:70:79: 8c:bc:68:0f:48:d8:cf:64:d9:7a:99:46:e7:bc:f6: 09:c3:af:34:9a:3e:a1:02:40:9e:6d:10:e5:40:15: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:63:6F:13:ED:D7:8D:8B:25:B3:DF:60:48:E7:73:BB:AC:88:C8:6C X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:14:0d:23:55:e6:b3:1c:00:4f:a3:8f:e2:82:45:01:f8:fa: d7:95:77:5e:7d:ed:64:48:6b:d0:69:e4:5d:43:7c:92:a8:5f: 0a:96:48:28:18:a2:fe:3f:89:b6:63:0b:12:9c:81:66:1c:47: 2e:a3:fd:01:90:eb:ff:9c:53:da:fe:aa:78:90:62:41:7e:41: 6d:00:78:8b:45:59:89:67:47:f4:a3:60:55:4c:09:64:2e:e5: 4c:b7:94:f5:de:6b:6e:2c:84:47:7f:86:ee:2f:18:5f:88:df: 2e:b1:90:67:29:8f:33:00:61:8e:c7:c6:92:7b:46:cd:ea:3c: a8:61:39:8c:aa:9e:79:c5:27:2a:62:f5:14:12:65:37:68:25: 0a:1c:b3:77:23:20:c0:82:d0:81:8f:ef:a0:9e:0e:ab:46:92: 7c:24:0a:e3:e3:1a:39:a7:04:d1:54:6f:87:5e:a6:77:8a:3c: 19:6f:6f:c0:b1:f8:f7:da:f8:aa:e7:49:e1:77:ee:21:c3:05: 09:3b:e9:73:65:36:1c:d8:c3:df:07:e8:50:b0:01:50:f7:c2: 99:64:0f:09:83:7e:31:f3:89:28:24:a5:fb:f9:4d:c8:ff:d3: 12:74:5b:a6:a1:f4:e9:ce:c6:f4:9f:75:b4:3d:9f:80:2a:20: 1a:3f:64:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MEIxMTAvBgNVBAUTKEQ5RkE0MjA2REYwRTk5NDdDRDUwMURGRDUyNUIyRTQ2 Njk2RkQ0NDIwHhcNMjUwNDI3MDM1MzI3WhcNMjUwNTA0MDM1MzI3WjAYMRYwFAYD VQQDEw02ODBkYWEzNy01ODAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJXzs9BzMyJ9EEMBh/4eCHYm6VOj6LaS5QQc+XxmI3pDn+KfFBZNgWcKGTv6 RSdpVs7PxmwQ27Sjv9TTdBKQa9SJtaycKGOEiwugFuA3nDNmp3l6g4mt4S07ef3H gZMlZKTfgTPqm5HqdKIWoHWcfXzZ9rezclgErn2LdGpq3JF9F1oBk2mssNbvvmXP n8ypykL3Y8Jszpm7BBmvoXAn/PNB13lbcQl5hUjsFXgO5vN7UXhXBem7cAwAVHjR IBgK6QA8zpPaBfS7OJ139XVRlNtl4wlpa8rQNtgJEzJecHmMvGgPSNjPZNl6mUbn vPYJw680mj6hAkCebRDlQBXkJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBjbxPt 142LJbPfYEjnc7usiMhsMB8GA1UdIwQYMBaAFNn6QgbfDplHzVAd/VJbLkZpb9RC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQwQi80NjI2QkIxQThF MDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21VZk5VQjM5VWxzdVJtbHYx RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi8yZnBDQnQ4T21V Zk5VQjM5VWxzdVJtbHYxRUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJFA0jVeazHABPo4/igkUB+PrXlXdefe1kSGvQaeRdQ3ySqF8Klkgo GKL+P4m2YwsSnIFmHEcuo/0BkOv/nFPa/qp4kGJBfkFtAHiLRVmJZ0f0o2BVTAlk LuVMt5T13mtuLIRHf4buLxhfiN8usZBnKY8zAGGOx8aSe0bN6jyoYTmMqp55xScq YvUUEmU3aCUKHLN3IyDAgtCBj++gng6rRpJ8JArj4xo5pwTRVG+HXqZ3ijwZb2/A sfj32viq50nhd+4hwwUJO+lzZTYc2MPfB+hQsAFQ98KZZA8Jg34x84koJKX7+U3I /9MSdFumofTpzsb0n3W0PZ+AKiAaP2T3 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:17 2025 by rpki-client on console.sobornost.net