$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: kHeyTp79qXoKVUFyU5NScXZIWC5lXivw4VWZv/Ixtsw= Subject key identifier: 5D:18:FB:69:70:C9:08:CE:D1:39:4E:A0:A4:E9:50:C9:A0:D7:2F:FC Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 0127 Signing time: Sun 27 Apr 2025 03:55:35 +0000 Manifest this update: Sun 27 Apr 2025 03:55:34 +0000 Manifest next update: Sun 04 May 2025 03:55:34 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: hk5Ih5vW6D9dg7crBmkdjstaQklM9D7crsjAQlZFzv8=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: wRjDxSYF9ME/+w7UeeO+MKXvgDC5w3qNX+JKTSzXhtw=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: jM6outMgdpJ44HUHhOOUfnOx+r280G0rdmU4B0AEX90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Apr 27 03:55:34 2025 GMT Not After : May 4 03:55:34 2025 GMT Subject: CN=680daab6-3e94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:47:75:dd:96:6e:77:42:79:ca:db:f5:18:ed: d5:e5:c9:4b:04:c8:a1:c8:23:31:be:c1:c5:89:24: af:37:f3:c4:36:9f:c7:4a:48:0f:e2:9e:ec:71:ac: 2a:d6:37:7d:7f:08:ca:ab:11:05:2e:a8:c7:b2:70: 40:19:49:0d:bc:c0:ae:57:72:40:36:38:71:f9:cc: f1:cf:3b:22:64:67:19:6a:eb:b7:e0:57:cd:fe:7e: 7e:b7:e8:2b:cf:5d:8f:18:4f:8e:f0:5c:e6:1b:fc: 43:fa:2d:bc:e7:ba:e0:99:a8:6e:59:8a:f3:14:d1: 2e:28:66:22:d2:a8:b2:c2:6a:fb:13:31:5c:7a:5b: c1:45:80:77:80:3b:ec:f4:44:55:f3:dc:a1:ac:24: 4b:6f:87:44:59:79:e7:88:88:a1:c9:48:a0:2c:0a: 00:62:97:3c:22:8d:58:db:5a:c4:cc:c4:98:99:40: 4b:04:25:c7:28:ca:10:c6:c3:74:eb:78:6e:2f:40: f1:1a:de:02:eb:b5:89:b3:29:57:07:87:ce:b3:55: aa:e8:f1:dd:46:ea:c8:f5:80:dc:cc:01:7a:ff:00: 6e:93:6d:54:a1:ea:66:64:79:fa:ff:ff:21:7b:2d: 91:44:da:9f:85:d4:e8:df:1c:ad:87:e0:38:90:9e: 16:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:18:FB:69:70:C9:08:CE:D1:39:4E:A0:A4:E9:50:C9:A0:D7:2F:FC X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:d9:13:ef:85:5e:5a:63:0f:cb:c0:36:b6:6d:6e:b0:98:af: 32:28:29:20:8c:05:2a:78:6a:af:fd:5b:98:59:7d:3c:7c:f2: 25:88:d3:79:af:12:64:0b:65:b8:85:c9:38:99:c2:53:1f:97: 1d:d6:1b:b5:9c:cb:41:1a:10:13:36:f8:ad:42:3a:11:f5:3d: 0f:3f:54:1e:56:cf:98:35:02:f4:9f:c9:63:18:5b:97:77:b5: 94:fd:54:27:6b:e6:be:51:30:02:fb:10:17:ad:e5:98:95:af: 18:a6:5c:f9:e4:30:97:55:91:50:da:c8:7a:7e:ab:0b:1a:63: 5d:6c:e0:f8:8d:f5:7a:76:51:7a:09:d0:d4:c2:48:71:cc:b4: 9c:b7:06:46:61:62:78:4e:38:3a:1b:75:10:34:50:0f:2b:99: e4:bf:da:46:eb:1f:26:b3:da:15:06:2e:16:15:59:ed:29:e0: a0:7c:8b:93:24:a2:73:05:88:65:ff:bc:a3:59:ce:b4:ec:31: 28:fc:f2:25:b7:d7:aa:bc:21:b5:81:f6:0b:12:28:b5:00:ea: 77:90:99:08:20:ed:29:04:c9:4a:bd:46:d2:fa:a1:64:d2:82: 2b:ba:47:43:38:82:72:65:26:9e:6f:1c:8f:d0:32:e1:c7:bc: 36:ed:e1:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUwNDI3MDM1NTM0WhcNMjUwNTA0MDM1NTM0WjAYMRYwFAYD VQQDEw02ODBkYWFiNi0zZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkd13ZZud0J5ytv1GO3V5clLBMihyCMxvsHFiSSvN/PENp/HSkgP4p7scawq 1jd9fwjKqxEFLqjHsnBAGUkNvMCuV3JANjhx+czxzzsiZGcZauu34FfN/n5+t+gr z12PGE+O8FzmG/xD+i2857rgmahuWYrzFNEuKGYi0qiywmr7EzFcelvBRYB3gDvs 9ERV89yhrCRLb4dEWXnniIihyUigLAoAYpc8Io1Y21rEzMSYmUBLBCXHKMoQxsN0 63huL0DxGt4C67WJsylXB4fOs1Wq6PHdRurI9YDczAF6/wBuk21UoepmZHn6//8h ey2RRNqfhdTo3xyth+A4kJ4WwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0Y+2lw yQjO0TlOoKTpUMmg1y/8MB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn2RPvhV5aYw/LwDa2bW6wmK8yKCkgjAUqeGqv/VuYWX08fPIliNN5 rxJkC2W4hck4mcJTH5cd1hu1nMtBGhATNvitQjoR9T0PP1QeVs+YNQL0n8ljGFuX d7WU/VQna+a+UTAC+xAXreWYla8Yplz55DCXVZFQ2sh6fqsLGmNdbOD4jfV6dlF6 CdDUwkhxzLSctwZGYWJ4Tjg6G3UQNFAPK5nkv9pG6x8ms9oVBi4WFVntKeCgfIuT JKJzBYhl/7yjWc607DEo/PIlt9eqvCG1gfYLEii1AOp3kJkIIO0pBMlKvUbS+qFk 0oIrukdDOIJyZSaebxyP0DLhx7w27eF1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:17 2025 by rpki-client on console.sobornost.net