$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft File: OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft (raw, json) Hash identifier: H1krciS1l0jaxPzT/4CfAyc4brTf+g7/+Q+3i+6ocFo= Subject key identifier: BF:21:EA:B1:9B:41:73:79:02:EE:2B:EC:4B:51:60:3A:BD:99:FA:8D Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft Manifest number: 1D Signing time: Sun 27 Apr 2025 06:43:50 +0000 Manifest this update: Sun 27 Apr 2025 06:43:49 +0000 Manifest next update: Sun 04 May 2025 06:43:49 +0000 Files and hashes: 1: OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl (hash: i+JYrmQFnVF/B4m4QvXk15/KriIBBJ7Ag+du9HiY1/8=) 2: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (hash: L/7VzM2fbo0IdE808LBeTzf3z0geWQ0SpeUJCZmWPBg=) 3: 53E9C44CFB2E11EFB488A95EC4F9AE02.roa (hash: hzaK0MTBJLVrmr0hWnuGmH3SdcFclIxCzlQUZOQabQ8=) 4: 5460E9C8FB2E11EFB488A95EC4F9AE02.roa (hash: bkhjgOMD/IEHS+ly/VrsRugL9cN6Yu5sgUx5f40TuYM=) 5: 553798E2FB2E11EFB488A95EC4F9AE02.roa (hash: p8161Irka1RhOlKGL72R+iegNNjEoBL5dnyvjeUTVQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Apr 27 06:43:49 2025 GMT Not After : May 4 06:43:49 2025 GMT Subject: CN=680dd225-b954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e0:92:10:63:cc:21:24:09:7c:fb:10:8e:6b: 8d:64:b4:8b:70:cb:ba:a8:8c:d5:f9:da:2a:f0:20: 58:4a:7a:ef:13:26:be:14:b1:40:83:64:46:5a:f6: f7:8b:95:3b:9f:86:2c:ec:a7:a4:2a:70:24:50:a6: f7:b4:7f:ad:26:7d:b6:bc:2f:45:7a:39:ed:a7:97: 5d:5d:17:66:9e:fd:df:ac:2a:bb:5c:ee:e2:13:e7: af:c8:50:10:0d:76:73:79:ab:88:89:e2:d3:d2:04: 64:3f:d4:32:41:5b:15:de:06:26:be:72:b7:15:16: 8f:c2:a5:ae:61:cb:ec:c1:36:b8:7b:da:69:cd:4b: c8:4b:ba:3c:a0:7f:00:75:18:3a:1d:ae:3e:13:1d: cd:4f:54:71:d4:83:ea:f9:ce:5c:6e:9f:c4:e8:a7: b5:1f:e0:63:07:3f:e6:95:27:5d:b2:91:e0:77:9f: 1f:dd:c0:55:b2:fd:fd:1c:92:ec:7e:fe:98:48:07: 75:44:09:c0:a6:0b:ad:a6:18:62:84:66:53:99:7b: 4c:2b:9b:de:0d:cf:3b:b9:36:af:48:bf:fb:e8:47: 08:f6:bf:3d:d7:4b:f8:bf:90:66:29:cc:74:16:04: 02:27:e2:56:0f:c4:ff:86:65:b1:ef:da:20:65:12: 26:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:21:EA:B1:9B:41:73:79:02:EE:2B:EC:4B:51:60:3A:BD:99:FA:8D X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:e6:6e:42:df:5a:32:29:1a:3a:d0:82:83:ef:a0:38:f0:0b: be:e2:93:12:a1:01:3e:cf:69:47:34:d2:ab:0f:8e:83:6f:fb: 6a:99:49:3a:b5:d9:11:91:f2:1a:0b:41:3d:39:51:8a:19:6a: a6:6b:77:bb:b6:7a:47:98:ae:96:85:9c:ee:62:83:72:81:3a: 60:58:4f:e1:93:09:07:c5:43:5b:4e:3d:37:4a:58:72:65:6b: d2:9d:73:d0:8d:77:9c:67:e9:70:1c:62:47:57:f3:1e:8c:77: 2c:b1:60:31:0d:7d:cc:9f:c2:d0:3b:05:ba:6d:48:27:2b:b8: 42:f2:d5:84:b0:25:60:8e:cc:14:09:3a:a8:33:a9:85:99:3e: 76:e2:77:69:9b:cc:f3:41:d3:58:85:7b:ac:d1:21:a0:dd:2f: 44:33:8e:34:6e:a3:72:3a:6c:41:bf:e2:07:4c:79:f2:df:16: 5d:55:b0:d0:d4:d7:f5:b6:bb:c4:d5:14:77:16:95:29:7e:31: 6f:61:43:dd:16:bd:6e:18:01:40:85:1d:68:f5:c2:a8:8e:88: 29:9f:ab:41:6c:b0:70:0d:e0:2b:f3:7f:8c:bf:bc:fb:d1:9c: 10:82:e1:fd:ba:51:52:bd:da:a4:89:88:0b:ac:b5:f9:34:6e: 7e:f1:8a:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTA0MjcwNjQzNDlaFw0yNTA1MDQwNjQzNDlaMBgxFjAUBgNV BAMTDTY4MGRkMjI1LWI5NTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDk4JIQY8whJAl8+xCOa41ktItwy7qojNX52irwIFhKeu8TJr4UsUCDZEZa9veL lTufhizsp6QqcCRQpve0f60mfba8L0V6Oe2nl11dF2ae/d+sKrtc7uIT56/IUBAN dnN5q4iJ4tPSBGQ/1DJBWxXeBia+crcVFo/Cpa5hy+zBNrh72mnNS8hLujygfwB1 GDodrj4THc1PVHHUg+r5zlxun8Top7Uf4GMHP+aVJ12ykeB3nx/dwFWy/f0ckux+ /phIB3VECcCmC62mGGKEZlOZe0wrm94Nzzu5Nq9Iv/voRwj2vz3XS/i/kGYpzHQW BAIn4lYPxP+GZbHv2iBlEiZ3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvyHqsZtB c3kC7ivsS1FgOr2Z+o0wHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NTAyLzg3QzNGRDBBRkIyOTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJr RlI0b3p6dkozbVNWS2FSdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG3mbkLfWjIpGjrQgoPvoDjwC77ikxKhAT7PaUc00qsPjoNv+2qZSTq1 2RGR8hoLQT05UYoZaqZrd7u2ekeYrpaFnO5ig3KBOmBYT+GTCQfFQ1tOPTdKWHJl a9Kdc9CNd5xn6XAcYkdX8x6MdyyxYDENfcyfwtA7BbptSCcruELy1YSwJWCOzBQJ OqgzqYWZPnbid2mbzPNB01iFe6zRIaDdL0QzjjRuo3I6bEG/4gdMefLfFl1VsNDU 1/W2u8TVFHcWlSl+MW9hQ90WvW4YAUCFHWj1wqiOiCmfq0FssHAN4Cvzf4y/vPvR nBCC4f26UVK92qSJiAustfk0bn7xigo= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net