$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft (raw, json) Hash identifier: KqFIj/gpVgzl5/SuRAejFc+fXsS7PcsTdIC64CRMCeg= Subject key identifier: 38:00:28:4E:88:BB:BA:0E:DF:53:A0:07:2E:3C:42:DF:0B:FC:F3:5A Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 0718 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft Manifest number: 070E Signing time: Sat 26 Apr 2025 19:26:45 +0000 Manifest this update: Sat 26 Apr 2025 19:26:45 +0000 Manifest next update: Sat 03 May 2025 19:26:45 +0000 Files and hashes: 1: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl (hash: 60hjeIjrF0VaDaaMkZuZ9bswnZtl4QEc20tbYRRYMA4=) 2: 510308503E8211EBA910FF57C4F9AE02.roa (hash: PjHH406K/ka7XNZ7a0h9GqbdKh0e4+H0cJO6YTJYTgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Apr 26 19:26:45 2025 GMT Not After : May 3 19:26:45 2025 GMT Subject: CN=680d3375-edd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ff:bd:37:d4:44:ce:39:4f:f7:0e:86:4d:99: bf:b3:7a:ce:ac:c7:b3:ce:91:1f:0b:7b:58:c8:3c: 2d:f6:23:1d:f3:94:0c:b6:6d:44:90:40:68:f3:fc: f2:fe:81:56:ea:1b:a5:84:9b:bd:79:4c:54:62:00: d6:61:f0:9f:3a:01:19:5a:6c:b8:13:f7:9a:26:e1: fa:ef:7f:06:88:fb:05:55:b3:ae:71:b5:f0:bf:22: 70:64:a0:da:db:56:67:13:d9:00:a4:33:6c:84:c3: 0f:75:a7:bb:32:6b:0f:40:67:39:21:c3:56:f6:bc: 93:03:35:c5:fa:8d:81:2a:f1:fa:be:cc:f9:5d:63: ee:68:26:14:d1:99:0b:51:e3:d5:3b:67:cf:91:a7: b0:77:29:d8:bb:ad:1f:e4:29:93:75:e2:d5:90:d6: 66:6b:fa:4b:d4:29:07:cb:76:f7:f4:d6:e7:77:2d: 4b:24:81:39:7f:c4:b0:8b:43:5f:03:be:21:5e:a4: 0f:58:73:e9:b1:9f:d8:b2:b2:01:10:45:de:53:7f: 25:a3:8f:3b:f9:94:85:b1:e1:22:46:38:cb:c9:0d: 4b:fd:29:41:41:17:b6:0a:16:5f:c9:dd:f2:c4:fd: 3d:29:19:b5:7d:b8:5e:0f:d7:09:8b:bf:29:d6:65: 42:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:00:28:4E:88:BB:BA:0E:DF:53:A0:07:2E:3C:42:DF:0B:FC:F3:5A X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:48:0d:b8:15:b1:b8:cb:76:f1:1f:e9:09:80:34:ab:68:16: 91:00:00:a7:8d:30:38:f1:05:1c:6a:9b:a4:bb:b4:03:f8:92: db:c0:24:f5:82:ac:83:1d:bb:4e:21:6c:78:93:2d:90:48:5f: 79:2b:32:74:07:b8:b1:4b:9e:0c:dc:e6:e2:21:2f:e1:f2:93: 17:9a:3b:a3:66:b7:28:81:4b:35:06:82:e6:20:6e:0e:0b:b1: 7c:d8:eb:69:a3:f9:ab:9e:ea:9b:7a:92:f3:87:33:ba:ad:ed: 1d:81:2c:95:3e:a8:d1:23:2f:0d:bc:ca:5b:7d:07:0b:b2:8e: 5c:63:2d:78:f6:9f:4c:7d:ad:db:bf:1e:c5:01:a4:dd:ea:34: 6c:75:7a:87:8d:9e:71:86:ca:33:6b:11:dc:f7:57:82:1e:9b: 3c:ac:42:e5:20:62:cd:da:0c:ef:94:e6:d0:bf:93:47:05:f9: 95:7a:a2:e6:99:4d:d7:e7:b7:ee:93:7e:94:97:ee:11:8d:7c: 32:44:59:0f:2f:ee:c1:4d:26:46:31:ef:6e:fc:c1:51:4e:51: 46:c1:86:b8:15:23:9c:85:c1:2a:84:06:ed:da:05:2e:3c:86: a4:a8:36:25:23:59:21:2f:e4:ec:c6:c9:91:ec:30:6a:64:79: f3:d1:23:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjUwNDI2MTkyNjQ1WhcNMjUwNTAzMTkyNjQ1WjAYMRYwFAYD VQQDEw02ODBkMzM3NS1lZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6v+9N9REzjlP9w6GTZm/s3rOrMezzpEfC3tYyDwt9iMd85QMtm1EkEBo8/zy /oFW6hulhJu9eUxUYgDWYfCfOgEZWmy4E/eaJuH6738GiPsFVbOucbXwvyJwZKDa 21ZnE9kApDNshMMPdae7MmsPQGc5IcNW9ryTAzXF+o2BKvH6vsz5XWPuaCYU0ZkL UePVO2fPkaewdynYu60f5CmTdeLVkNZma/pL1CkHy3b39Nbndy1LJIE5f8Swi0Nf A74hXqQPWHPpsZ/YsrIBEEXeU38lo487+ZSFseEiRjjLyQ1L/SlBQRe2ChZfyd3y xP09KRm1fbheD9cJi78p1mVCCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgAKE6I u7oO31OgBy48Qt8L/PNaMB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9FRTBBRUVDQTNFODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1o OUV0cTh1OC00UmdWeExVZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMSA24FbG4y3bxH+kJgDSraBaRAACnjTA48QUcapuku7QD+JLbwCT1 gqyDHbtOIWx4ky2QSF95KzJ0B7ixS54M3ObiIS/h8pMXmjujZrcogUs1BoLmIG4O C7F82Otpo/mrnuqbepLzhzO6re0dgSyVPqjRIy8NvMpbfQcLso5cYy149p9Mfa3b vx7FAaTd6jRsdXqHjZ5xhsozaxHc91eCHps8rELlIGLN2gzvlObQv5NHBfmVeqLm mU3X57fuk36Ul+4RjXwyRFkPL+7BTSZGMe9u/MFRTlFGwYa4FSOchcEqhAbt2gUu PIakqDYlI1khL+TsxsmR7DBqZHnz0SOt -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:55 2025 by rpki-client on console.sobornost.net