$ rpki-client -vvf rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.mft File: r7j_4ehoYpa5lsY6qQLqnBKPSP4.mft (raw, json) Hash identifier: SDQ2BSxWRqOly/8XTdXdkoxk6zQbdHszA90dTb1JQCo= Subject key identifier: 1A:B9:BD:91:B0:B5:34:E0:EF:C6:B6:96:D0:78:70:7B:38:5C:1F:CA Authority key identifier: AF:B8:FF:E1:E8:68:62:96:B9:96:C6:3A:A9:02:EA:9C:12:8F:48:FE Certificate issuer: /CN=A912BA82/serialNumber=AFB8FFE1E8686296B996C63AA902EA9C128F48FE Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.mft Manifest number: E1 Signing time: Sun 27 Apr 2025 04:23:07 +0000 Manifest this update: Sun 27 Apr 2025 04:23:07 +0000 Manifest next update: Sun 04 May 2025 04:23:07 +0000 Files and hashes: 1: r7j_4ehoYpa5lsY6qQLqnBKPSP4.crl (hash: 9sHEu4wsPPcArQmcjNzsfzpkVNUnotmRODKHwwaeWwQ=) 2: 6198218AEB3311EEA75DE77DC4F9AE02.roa (hash: br9VY1Ap5bODWGjIwXH93XykBR4wm+eKQRXiepCLuxo=) 3: 4BFDDACCEB3311EE9D65C57DC4F9AE02.roa (hash: JbXYoZCeV73k0ydVhueXLAHh7xzomEgWbLFpEGgJxiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.crl rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BA82, serialNumber=AFB8FFE1E8686296B996C63AA902EA9C128F48FE Validity Not Before: Apr 27 04:23:07 2025 GMT Not After : May 4 04:23:07 2025 GMT Subject: CN=680db12b-f5cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:78:8d:1b:25:b7:e2:72:d3:08:11:08:64:4f: 85:34:62:40:9e:6f:08:81:8d:e8:da:b2:18:62:c2: c8:36:9e:03:ad:08:b5:a0:4b:d2:1a:06:5f:25:7c: 9f:c5:4d:7e:8a:b2:7c:ff:18:04:91:a9:f9:95:be: 0c:66:2c:af:e3:cf:27:05:51:15:45:a3:22:02:a6: ea:3c:e6:fa:e0:d9:bd:3e:25:6b:d5:93:64:67:52: c6:0a:a4:be:f2:b1:52:ba:2d:ab:93:0e:f1:e8:86: f9:1e:19:17:3e:45:8a:01:83:13:c1:0a:c5:89:f5: bb:ac:08:57:29:7e:30:15:6c:d3:f4:62:fa:73:68: ce:f0:1a:4d:dd:16:60:e3:31:0b:a8:4a:dd:0b:26: 76:a0:23:4e:e0:6d:91:8b:91:8c:94:1a:44:f5:bc: c2:f3:1f:38:5b:ee:db:27:44:e1:0d:2e:58:eb:0e: e3:9b:13:0a:02:ac:3b:14:a2:4c:ed:99:14:66:1a: 7b:49:f6:d7:3d:12:83:cf:5f:5e:7c:f5:36:3f:d2: 9d:47:99:47:d8:b1:74:08:59:1c:2a:a8:7f:5a:3a: ab:5f:d8:75:fc:57:c6:5f:50:59:67:d9:84:db:9c: 55:81:dc:e9:c0:4f:ac:bf:a2:fc:ad:fb:89:22:88: 87:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B9:BD:91:B0:B5:34:E0:EF:C6:B6:96:D0:78:70:7B:38:5C:1F:CA X509v3 Authority Key Identifier: keyid:AF:B8:FF:E1:E8:68:62:96:B9:96:C6:3A:A9:02:EA:9C:12:8F:48:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7j_4ehoYpa5lsY6qQLqnBKPSP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BA82/FBDDAC24CE5A11EE8C3BD03AC4F9AE02/r7j_4ehoYpa5lsY6qQLqnBKPSP4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:c1:ec:84:17:92:14:83:9e:90:3e:f7:c9:81:bd:3d:be:f0: a5:4e:75:6e:a9:d8:1c:4b:12:2f:65:b4:ec:a8:63:17:31:d9: 60:d9:eb:86:ee:30:db:9d:93:01:ae:bf:dc:00:a1:bc:00:fb: 7b:1e:89:20:f4:f9:d3:5e:41:ea:5f:07:e5:76:25:14:55:1c: 42:a8:29:3c:3c:04:0f:e5:fc:d5:2b:00:f6:06:7b:b0:36:50: 58:fb:6a:14:21:ea:38:f0:73:b9:09:ed:9d:2c:1c:94:c1:50: 74:dd:1a:d8:2a:e0:1c:39:2d:4b:97:d5:ed:1b:1c:66:61:f8: cc:b3:7c:41:4e:bf:1f:5c:66:34:bf:f1:80:0d:5e:80:48:bc: fd:b7:ad:22:3a:02:3e:80:85:53:b6:9d:1f:8a:69:91:4a:1b: 5c:b4:8c:c7:2a:c0:03:1f:d1:aa:dd:35:07:0c:06:69:24:56: b0:f7:9b:da:b4:97:42:4a:c6:97:77:cf:dd:09:fb:58:e2:2f: 4e:75:33:d6:c0:3f:61:05:ee:55:59:c7:19:e7:c4:00:40:8c: e1:7c:2e:c9:fc:80:12:d2:f4:01:0c:85:0f:d6:4c:9f:aa:69: dc:41:54:e7:2c:04:f2:a6:19:2e:72:63:1e:77:42:a0:4d:d8: f3:a6:b6:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBODIxMTAvBgNVBAUTKEFGQjhGRkUxRTg2ODYyOTZCOTk2QzYzQUE5MDJFQTlD MTI4RjQ4RkUwHhcNMjUwNDI3MDQyMzA3WhcNMjUwNTA0MDQyMzA3WjAYMRYwFAYD VQQDEw02ODBkYjEyYi1mNWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXiNGyW34nLTCBEIZE+FNGJAnm8IgY3o2rIYYsLINp4DrQi1oEvSGgZfJXyf xU1+irJ8/xgEkan5lb4MZiyv488nBVEVRaMiAqbqPOb64Nm9PiVr1ZNkZ1LGCqS+ 8rFSui2rkw7x6Ib5HhkXPkWKAYMTwQrFifW7rAhXKX4wFWzT9GL6c2jO8BpN3RZg 4zELqErdCyZ2oCNO4G2Ri5GMlBpE9bzC8x84W+7bJ0ThDS5Y6w7jmxMKAqw7FKJM 7ZkUZhp7SfbXPRKDz19efPU2P9KdR5lH2LF0CFkcKqh/WjqrX9h1/FfGX1BZZ9mE 25xVgdzpwE+sv6L8rfuJIoiHMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq5vZGw tTTg78a2ltB4cHs4XB/KMB8GA1UdIwQYMBaAFK+4/+HoaGKWuZbGOqkC6pwSj0j+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkE4Mi9GQkREQUMyNENF NUExMUVFOEMzQkQwM0FDNEY5QUUwMi9yN2pfNGVob1lwYTVsc1k2cVFMcW5CS1BT UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I3al80ZWhvWXBhNWxzWTZxUUxxbkJLUFNQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkE4Mi9GQkREQUMyNENFNUExMUVFOEMzQkQwM0FDNEY5QUUwMi9yN2pfNGVob1lw YTVsc1k2cVFMcW5CS1BTUDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsweyEF5IUg56QPvfJgb09vvClTnVuqdgcSxIvZbTsqGMXMdlg2euG 7jDbnZMBrr/cAKG8APt7Hokg9PnTXkHqXwfldiUUVRxCqCk8PAQP5fzVKwD2Bnuw NlBY+2oUIeo48HO5Ce2dLByUwVB03RrYKuAcOS1Ll9XtGxxmYfjMs3xBTr8fXGY0 v/GADV6ASLz9t60iOgI+gIVTtp0fimmRShtctIzHKsADH9Gq3TUHDAZpJFaw95va tJdCSsaXd8/dCftY4i9OdTPWwD9hBe5VWccZ58QAQIzhfC7J/IAS0vQBDIUP1kyf qmncQVTnLATyphkucmMed0KgTdjzpram -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net