$ rpki-client -vvf rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft File: DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft (raw, json) Hash identifier: djKdJPCd64iQ6c1alHRZYYwmfZ8VTZ7s+8UXmCXrD6I= Subject key identifier: 29:29:93:F3:E6:45:7B:1B:86:BB:2E:01:1F:1C:1A:FF:5E:A6:B3:50 Authority key identifier: 0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 Certificate issuer: /CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Certificate serial: 0D13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft Manifest number: 0D03 Signing time: Mon 28 Apr 2025 18:17:11 +0000 Manifest this update: Mon 28 Apr 2025 18:17:11 +0000 Manifest next update: Mon 05 May 2025 18:17:11 +0000 Files and hashes: 1: DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl (hash: i11ahPvaQ2WtSJCQvYWjDgIWYkK+EX0DfmFw0qSeuB8=) 2: 2328656A840211EEB9348E11C4F9AE02.roa (hash: 4UpFnemB/wBJ3bUtU7ElqTZfTqEcdngT1RKfpjLOFV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3347 (0xd13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135033, serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Validity Not Before: Apr 28 18:17:11 2025 GMT Not After : May 5 18:17:11 2025 GMT Subject: CN=680fc627-7af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:88:db:6b:e3:da:48:19:a4:e5:8d:52:77: c8:5b:e4:7c:f4:75:0d:9e:83:ce:39:1a:7c:89:fb: 0e:98:79:27:13:bc:a6:2c:fa:ae:9d:ea:7f:c1:78: 70:ab:51:0a:64:d1:2e:1e:7a:54:a1:f4:46:09:2c: e5:b6:74:98:ce:97:c1:7e:9b:87:6c:07:a2:23:b5: f3:61:cf:02:68:70:a5:99:c8:16:f4:c4:c7:b1:3a: 66:ec:f5:f4:a9:5a:ea:c3:85:c0:02:f7:e0:4e:bc: 46:c9:ed:c6:b5:41:13:8c:fe:5f:c2:dd:98:74:95: e5:ed:82:c8:65:2c:8b:a7:18:2a:ff:cf:f8:77:2e: fd:f0:f7:96:71:75:68:78:80:fe:47:b2:58:48:28: 1a:a8:74:60:a1:84:b7:81:e1:7c:eb:45:41:78:5f: ca:39:74:01:f6:01:24:9f:93:6f:d5:13:bb:2b:1d: 5a:88:81:51:dd:ad:9b:f7:31:3f:10:99:c3:52:2d: 29:eb:bc:0d:ea:3b:bd:f9:1d:29:c2:1c:f8:bf:88: c5:fa:40:21:f7:07:5f:2b:bf:9d:96:ce:9b:10:7c: b9:c4:48:11:b0:51:20:95:56:81:bf:bd:0d:3c:45: cf:59:b9:a3:d8:cd:3e:e6:b7:72:72:6b:d7:68:8e: 74:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:29:93:F3:E6:45:7B:1B:86:BB:2E:01:1F:1C:1A:FF:5E:A6:B3:50 X509v3 Authority Key Identifier: keyid:0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:c4:67:a0:c0:7f:09:7b:ea:bf:c7:f6:51:88:88:aa:f4:a6: 69:86:5e:00:3b:0b:aa:94:55:84:49:2e:7d:15:28:c4:7c:3b: ca:4c:c5:a1:fb:23:4b:1b:4e:be:44:da:ee:60:14:32:95:c2: 23:f8:f9:33:70:87:39:07:95:10:b9:1f:33:dc:6c:72:7c:db: 74:fa:b4:80:51:1a:8d:b2:ea:4f:16:a8:8e:cd:0f:e5:8d:7f: b3:19:b5:22:de:e8:2b:89:63:e8:ff:62:99:c2:d9:e7:82:ec: ce:59:c3:a4:b3:78:9d:5e:55:9c:59:08:bb:6b:a7:3c:ab:8e: 9e:10:3b:36:50:78:9e:1a:b7:81:13:84:13:a9:bb:6c:3a:5e: 1c:10:e7:82:70:d8:b1:6b:96:fd:e0:5a:2b:60:6b:02:38:dd: 00:a5:89:df:d5:e1:6e:da:4f:db:1a:8b:3b:4d:93:d4:6f:e9: f0:b4:73:70:ce:b5:43:fa:e2:70:a4:3f:cd:9e:26:8b:51:b1: fd:61:68:0a:01:f2:99:5a:73:68:a5:9e:8b:8a:a1:33:1f:fc: 48:c0:b6:54:14:78:69:cd:3f:ea:f2:c5:af:94:98:3f:ef:dd: 58:f9:3f:32:8d:0f:f6:97:58:7e:69:28:51:95:4f:8c:9f:1b: 66:bf:0f:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMzMxMTAvBgNVBAUTKDBERTU5NkNCMkM2MENCNzU3REI4RjQwRUI4NkYyNDc2 NTJDMTNBMzAwHhcNMjUwNDI4MTgxNzExWhcNMjUwNTA1MTgxNzExWjAYMRYwFAYD VQQDEw02ODBmYzYyNy03YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHaI22vj2kgZpOWNUnfIW+R89HUNnoPOORp8ifsOmHknE7ymLPqunep/wXhw q1EKZNEuHnpUofRGCSzltnSYzpfBfpuHbAeiI7XzYc8CaHClmcgW9MTHsTpm7PX0 qVrqw4XAAvfgTrxGye3GtUETjP5fwt2YdJXl7YLIZSyLpxgq/8/4dy798PeWcXVo eID+R7JYSCgaqHRgoYS3geF860VBeF/KOXQB9gEkn5Nv1RO7Kx1aiIFR3a2b9zE/ EJnDUi0p67wN6ju9+R0pwhz4v4jF+kAh9wdfK7+dls6bEHy5xEgRsFEglVaBv70N PEXPWbmj2M0+5rdycmvXaI50FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkpk/Pm RXsbhrsuAR8cGv9eprNQMB8GA1UdIwQYMBaAFA3llsssYMt1fbj0DrhvJHZSwTow MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAzMy81RDAwQUU1MkRE NEMxMUU5QTZENEJCMURDNEY5QUUwMi9EZVdXeXl4Z3kzVjl1UFFPdUc4a2RsTEJP akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlV1d5eXhneTNWOXVQUU91RzhrZGxMQk9qQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAzMy81RDAwQUU1MkRENEMxMUU5QTZENEJCMURDNEY5QUUwMi9EZVdXeXl4Z3kz Vjl1UFFPdUc4a2RsTEJPakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDExGegwH8Je+q/x/ZRiIiq9KZphl4AOwuqlFWESS59FSjEfDvKTMWh +yNLG06+RNruYBQylcIj+PkzcIc5B5UQuR8z3GxyfNt0+rSAURqNsupPFqiOzQ/l jX+zGbUi3ugriWPo/2KZwtnnguzOWcOks3idXlWcWQi7a6c8q46eEDs2UHieGreB E4QTqbtsOl4cEOeCcNixa5b94ForYGsCON0ApYnf1eFu2k/bGos7TZPUb+nwtHNw zrVD+uJwpD/NniaLUbH9YWgKAfKZWnNopZ6LiqEzH/xIwLZUFHhpzT/q8sWvlJg/ 791Y+T8yjQ/2l1h+aShRlU+Mnxtmvw9U -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:28 2025 by rpki-client on console.sobornost.net