$ rpki-client -vvf rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft File: jeHQtWEwmAuDkA-3j62mcN4uCmU.mft (raw, json) Hash identifier: OLG5dTHVkueaDoxZS3YELnsXW5bbLdo1SbDhuE0cjUQ= Subject key identifier: 2B:F6:1C:15:C5:B8:B2:63:2F:DC:7D:22:2A:B6:D9:82:30:35:0C:9A Authority key identifier: 8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 Certificate issuer: /CN=A91281E0/serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Certificate serial: 0CF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft Manifest number: 0CE6 Signing time: Mon 28 Apr 2025 18:18:35 +0000 Manifest this update: Mon 28 Apr 2025 18:18:34 +0000 Manifest next update: Mon 05 May 2025 18:18:34 +0000 Files and hashes: 1: jeHQtWEwmAuDkA-3j62mcN4uCmU.crl (hash: hVUna872AE59BxggWMBUUA98buTq8nGpG7ETay47Dcw=) 2: 72B84162E2A411E9A300492AC4F9AE02.roa (hash: QrHwkCxaqX0D4CMUIb/gJ2hugEkme/UAAaAoVbq7U4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3312 (0xcf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91281E0, serialNumber=8DE1D0B56130980B83900FB78FADA670DE2E0A65 Validity Not Before: Apr 28 18:18:34 2025 GMT Not After : May 5 18:18:34 2025 GMT Subject: CN=680fc67a-14fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1b:ad:4a:d2:4f:fa:89:b0:6c:66:1c:ab:75: c3:15:9b:03:f2:73:e7:b3:52:21:3d:82:7b:57:e7: e4:89:5e:ff:30:23:0a:c6:b4:c9:f9:2c:be:00:f6: 1c:2c:a1:3e:6d:84:96:1e:5b:2a:39:97:28:24:fa: 3f:a2:6c:1f:ee:39:ba:b7:6b:4a:e0:ed:94:88:fa: 89:12:da:a3:73:5e:76:8e:df:b7:76:60:c5:2c:79: a0:aa:a6:bf:9e:c5:0b:fd:07:dc:29:5e:bd:e1:e8: 32:d0:97:bb:03:d2:77:ec:44:2e:99:61:4a:47:3d: 7a:53:89:35:16:40:77:a4:1f:96:d8:f2:02:98:a8: 78:21:2b:f9:69:fa:4d:2c:24:2c:29:f8:b5:1c:2f: 3e:2d:a3:52:04:91:07:58:36:5b:89:8c:bf:52:9f: 92:9c:d0:99:3c:ec:1e:3b:3f:73:e0:7b:dc:51:a4: ef:d3:fb:dc:56:81:ce:9e:b9:9d:c1:4e:a1:a4:d1: 9e:6b:36:8c:a1:e5:bc:08:47:1c:0c:60:f6:e6:98: a9:a8:31:85:cf:20:9f:5f:17:90:2e:b2:5a:76:33: af:82:f7:7a:06:d4:bc:3f:8a:27:55:80:d5:2f:7c: 94:dc:e8:34:ff:6a:43:f2:aa:ec:3b:20:b9:ef:9d: d1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F6:1C:15:C5:B8:B2:63:2F:DC:7D:22:2A:B6:D9:82:30:35:0C:9A X509v3 Authority Key Identifier: keyid:8D:E1:D0:B5:61:30:98:0B:83:90:0F:B7:8F:AD:A6:70:DE:2E:0A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jeHQtWEwmAuDkA-3j62mcN4uCmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91281E0/761A7EACE2A311E9AE8BB528C4F9AE02/jeHQtWEwmAuDkA-3j62mcN4uCmU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:4e:22:b1:7b:99:03:3f:6a:2a:1e:81:7c:fa:a4:3e:19:fa: 55:f3:a2:17:75:94:74:13:69:28:12:85:d9:1c:aa:cc:80:a6: 66:15:6a:29:84:23:a9:8b:1a:36:28:43:b4:74:e6:c9:67:68: f3:aa:f2:bb:ae:3b:02:51:22:cb:7d:7e:5e:5e:fb:41:d7:98: a9:a3:9b:47:f4:0a:3a:16:1b:bb:8f:bd:a8:48:04:58:91:fa: b0:00:5e:4f:f7:11:c6:19:01:91:47:0c:40:9e:fc:25:c6:74: 86:ce:08:07:e5:de:8d:0b:b2:fc:ef:e3:e4:ed:db:70:a1:81: f4:98:27:05:b3:ff:7b:67:80:63:31:52:69:be:b9:5f:22:32: 13:63:ee:2d:c1:dd:32:19:4f:f2:91:d6:af:05:85:51:d5:63: d9:ed:eb:d9:ff:67:1c:39:1d:6f:ae:be:84:f1:c8:00:19:37: 62:4a:ac:9b:e5:82:fd:25:1c:ea:62:c6:07:93:13:43:bb:c1: 1d:8f:67:a5:5c:50:00:d3:20:c1:f3:03:a2:05:1b:5b:8a:6a: 21:fe:3c:f4:d4:26:f0:e3:e2:e8:49:8e:b8:04:0e:4e:cb:86: f3:28:ec:df:8d:3e:32:03:1b:6f:0a:ec:2c:d6:46:9b:f3:2b: df:26:c9:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgxRTAxMTAvBgNVBAUTKDhERTFEMEI1NjEzMDk4MEI4MzkwMEZCNzhGQURBNjcw REUyRTBBNjUwHhcNMjUwNDI4MTgxODM0WhcNMjUwNTA1MTgxODM0WjAYMRYwFAYD VQQDEw02ODBmYzY3YS0xNGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphutStJP+omwbGYcq3XDFZsD8nPns1IhPYJ7V+fkiV7/MCMKxrTJ+Sy+APYc LKE+bYSWHlsqOZcoJPo/omwf7jm6t2tK4O2UiPqJEtqjc152jt+3dmDFLHmgqqa/ nsUL/QfcKV694egy0Je7A9J37EQumWFKRz16U4k1FkB3pB+W2PICmKh4ISv5afpN LCQsKfi1HC8+LaNSBJEHWDZbiYy/Up+SnNCZPOweOz9z4HvcUaTv0/vcVoHOnrmd wU6hpNGeazaMoeW8CEccDGD25pipqDGFzyCfXxeQLrJadjOvgvd6BtS8P4onVYDV L3yU3Og0/2pD8qrsOyC5753RRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCv2HBXF uLJjL9x9Iiq22YIwNQyaMB8GA1UdIwQYMBaAFI3h0LVhMJgLg5APt4+tpnDeLgpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODFFMC83NjFBN0VBQ0Uy QTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21BdURrQS0zajYybWNONHVD bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plSFF0V0V3bUF1RGtBLTNqNjJtY040dUNtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODFFMC83NjFBN0VBQ0UyQTMxMUU5QUU4QkI1MjhDNEY5QUUwMi9qZUhRdFdFd21B dURrQS0zajYybWNONHVDbVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDITiKxe5kDP2oqHoF8+qQ+GfpV86IXdZR0E2koEoXZHKrMgKZmFWop hCOpixo2KEO0dObJZ2jzqvK7rjsCUSLLfX5eXvtB15ipo5tH9Ao6Fhu7j72oSARY kfqwAF5P9xHGGQGRRwxAnvwlxnSGzggH5d6NC7L87+Pk7dtwoYH0mCcFs/97Z4Bj MVJpvrlfIjITY+4twd0yGU/ykdavBYVR1WPZ7evZ/2ccOR1vrr6E8cgAGTdiSqyb 5YL9JRzqYsYHkxNDu8Edj2elXFAA0yDB8wOiBRtbimoh/jz01Cbw4+LoSY64BA5O y4bzKOzfjT4yAxtvCuws1kab8yvfJsk9 -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:25 2025 by rpki-client on console.sobornost.net