$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft File: h9O9fQreBlCeuFrGullInZVAH38.mft (raw, json) Hash identifier: EDGsgqWtASlbLjE4lDISUUd3ghSt1SOuF6Xy1gsw4Ew= Subject key identifier: EE:86:C8:5B:76:32:CC:80:BA:D7:4B:0F:4C:FB:D6:13:C4:59:18:17 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft Manifest number: 04D6 Signing time: Sat 26 Apr 2025 23:32:15 +0000 Manifest this update: Sat 26 Apr 2025 23:32:15 +0000 Manifest next update: Sat 03 May 2025 23:32:15 +0000 Files and hashes: 1: h9O9fQreBlCeuFrGullInZVAH38.crl (hash: iO0NJRTin3BnOWB0vmFoBYNPWH80TeIuOSc7k299ON4=) 2: D758E96CF8FF11ED98C6D45FC4F9AE02.roa (hash: ZQeH9s5GaYIk1ZxktX3ZDI1XyJXOlpVX7ljtVr42XF4=) 3: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (hash: o2ReRLcJlulFpKfpdWmE6u0f7G1G3KpQA2ac4wDJgWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13, serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Apr 26 23:32:15 2025 GMT Not After : May 3 23:32:15 2025 GMT Subject: CN=680d6cff-85bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:92:e6:96:bc:2c:52:a9:d0:10:eb:fd:02:d2: 26:16:61:be:6c:ce:b4:84:47:95:5f:b1:fe:2f:28: 6f:f7:25:36:14:3d:d1:aa:9c:08:64:87:f9:6b:e1: cd:4e:ef:f3:d8:f6:06:ac:10:00:77:91:d5:e9:33: 4c:d5:77:f8:f9:21:f1:3a:3c:e9:14:71:cc:d1:ce: 1f:db:a8:0d:65:fa:27:74:42:c7:8b:f8:64:47:04: 01:1c:eb:41:4c:83:02:33:94:de:eb:23:1b:92:07: ec:86:20:f9:22:43:8c:25:40:87:a4:41:4c:ec:aa: 22:9b:80:4c:3a:ef:12:1e:1b:aa:76:68:4b:6b:0e: 2d:4f:68:fc:0d:b9:4b:7a:2e:98:33:5a:32:ad:96: de:8b:45:79:3e:5c:ff:3f:ec:f3:2b:c3:8f:56:ea: 61:94:19:20:43:18:42:05:39:54:b2:eb:68:54:89: 46:e3:6e:5f:6b:c1:5a:6c:2e:95:38:19:e5:89:bf: ad:8b:89:df:9f:ef:ce:29:21:69:82:c4:1b:25:00: e5:d1:c0:76:a1:63:f0:66:fc:28:0e:35:fe:e3:44: 17:46:46:3f:3d:b5:7f:22:27:9c:a1:8f:d5:02:00: 18:de:31:de:ec:c3:f7:72:be:d0:32:8d:8d:14:c8: df:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:86:C8:5B:76:32:CC:80:BA:D7:4B:0F:4C:FB:D6:13:C4:59:18:17 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:90:d1:96:77:f5:0d:5a:c7:64:46:ae:d1:f7:37:92:4c:2a: fa:17:b8:8e:34:b3:70:e3:43:c5:9e:61:c9:fd:9f:11:38:76: 54:4e:db:c9:c8:ab:7c:d0:fe:0f:89:29:8e:d6:55:e7:a0:d5: c1:36:e3:a3:15:2c:e2:18:fd:2b:5c:1e:41:32:15:81:5f:83: 59:7c:2d:cd:8e:70:2a:d2:82:d3:33:5f:fe:6b:db:77:80:eb: c7:95:b1:ed:22:72:af:f8:76:d7:86:86:aa:f7:9c:ec:52:7f: e7:f9:35:59:5b:65:5b:2e:9b:73:17:88:21:a0:e7:7a:06:e7: c2:58:88:75:46:0c:ff:ff:2a:a9:6e:47:8e:3b:27:2c:2a:6b: 8e:ce:dc:99:46:ab:38:79:a4:29:cf:c1:2e:9d:5c:3b:1a:43: 3a:72:ab:bc:98:e5:26:ba:5d:75:84:d3:78:68:b3:a5:28:a1: a1:50:52:d4:de:2a:fa:a4:98:e4:d5:6e:42:c8:33:0b:29:06: 33:05:32:e1:d6:20:1f:d5:a1:3d:4c:56:f2:18:fa:2f:87:0a: 25:02:8a:aa:cf:f4:22:59:59:e3:f7:0f:af:0c:06:27:8f:d6: e4:54:ea:70:73:39:41:be:1f:c4:43:eb:77:26:43:eb:72:60: 0a:92:11:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjUwNDI2MjMzMjE1WhcNMjUwNTAzMjMzMjE1WjAYMRYwFAYD VQQDEw02ODBkNmNmZi04NWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmpLmlrwsUqnQEOv9AtImFmG+bM60hEeVX7H+Lyhv9yU2FD3RqpwIZIf5a+HN Tu/z2PYGrBAAd5HV6TNM1Xf4+SHxOjzpFHHM0c4f26gNZfondELHi/hkRwQBHOtB TIMCM5Te6yMbkgfshiD5IkOMJUCHpEFM7Koim4BMOu8SHhuqdmhLaw4tT2j8DblL ei6YM1oyrZbei0V5Plz/P+zzK8OPVuphlBkgQxhCBTlUsutoVIlG425fa8FabC6V OBnlib+ti4nfn+/OKSFpgsQbJQDl0cB2oWPwZvwoDjX+40QXRkY/PbV/IiecoY/V AgAY3jHe7MP3cr7QMo2NFMjfZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6GyFt2 MsyAutdLD0z71hPEWRgXMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUxMy84OTM2MzU3ODI2RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJs Q2V1RnJHdWxsSW5aVkFIMzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOkNGWd/UNWsdkRq7R9zeSTCr6F7iONLNw40PFnmHJ/Z8ROHZUTtvJ yKt80P4PiSmO1lXnoNXBNuOjFSziGP0rXB5BMhWBX4NZfC3NjnAq0oLTM1/+a9t3 gOvHlbHtInKv+HbXhoaq95zsUn/n+TVZW2VbLptzF4ghoOd6BufCWIh1Rgz//yqp bkeOOycsKmuOztyZRqs4eaQpz8EunVw7GkM6cqu8mOUmul11hNN4aLOlKKGhUFLU 3ir6pJjk1W5CyDMLKQYzBTLh1iAf1aE9TFbyGPovhwolAoqqz/QiWVnj9w+vDAYn j9bkVOpwczlBvh/EQ+t3JkPrcmAKkhFY -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:32 2025 by rpki-client on console.sobornost.net