$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: xSunsuhLQxOOjM2DdN85SU/QDTA5tCW3Uv/7nug04yQ= Subject key identifier: AC:86:9E:BA:60:BF:5F:1A:E2:69:0D:C1:E8:4C:06:48:2A:3E:B7:54 Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0B10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0AFF Signing time: Mon 28 Apr 2025 19:38:33 +0000 Manifest this update: Mon 28 Apr 2025 19:38:32 +0000 Manifest next update: Mon 05 May 2025 19:38:32 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: ghLKG/OfrSMrccSvaHlg6XyxYTm44eXKWVUpnHUVmXE=) 2: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (hash: vqIiC5denoz8Yiz6UodWvD7t0BBX+gY3rEG+abpRC2o=) 3: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: lSOlJAUUKdf/oxORuEf9BSblv8TlMMz6ihd34X0wQsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2832 (0xb10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2, serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: Apr 28 19:38:32 2025 GMT Not After : May 5 19:38:32 2025 GMT Subject: CN=680fd938-81f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f2:2f:47:f6:c1:d6:b6:93:ed:60:ef:4e:f5: 24:d6:07:87:52:eb:23:22:41:08:ff:b1:89:6b:23: 20:f8:e1:e0:19:9d:ec:4c:bb:fb:78:56:55:4c:d2: 28:03:41:5d:35:f0:9f:5c:ca:05:df:21:33:25:02: c2:9f:3b:a2:5d:d4:05:d8:3d:12:48:f0:5d:22:ef: 46:2d:b2:40:56:9f:d4:00:19:37:c6:48:87:7c:3c: 37:a8:1e:40:d1:7e:f5:c0:d4:81:e3:ae:2d:93:37: 0f:1c:8d:6d:61:3a:1b:59:84:ee:cf:fe:20:3b:53: 8a:58:c7:0a:f9:2e:1e:dc:bd:a8:f8:f9:19:21:1d: a7:bd:08:99:2f:b6:3a:19:f3:43:2c:50:c3:a6:7c: bc:1f:cf:86:37:76:1a:28:1c:f4:eb:b8:01:2b:35: 62:2d:f2:e9:da:22:31:d8:d8:64:00:cf:ed:4f:df: e0:36:80:fc:48:6a:c2:61:ef:f1:99:90:79:ea:92: a4:3f:ea:43:df:68:e1:7d:bf:4a:0d:de:ef:1c:31: 96:19:b0:c0:8f:f1:bf:82:19:07:1e:f6:ee:f1:76: 0d:6b:63:7a:7e:d3:19:67:ef:ea:4c:32:42:f2:f0: 31:f1:c1:ad:ad:73:d0:d6:c6:70:a8:00:b6:76:54: 27:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:86:9E:BA:60:BF:5F:1A:E2:69:0D:C1:E8:4C:06:48:2A:3E:B7:54 X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:04:04:7d:6f:d1:4f:e1:1d:49:69:6b:70:93:c5:1a:75:7d: 1e:62:62:ca:5c:4d:2f:c2:96:45:0f:5c:6c:73:88:87:73:2c: 13:a0:bc:1d:a5:eb:c4:c9:3b:6d:27:08:c1:6b:a8:8a:c3:23: 6f:8f:b9:d5:cc:ea:44:97:8a:90:16:d8:64:bd:d4:bd:21:4a: d8:92:65:f6:16:42:0e:a0:b1:b0:34:3c:06:41:08:d3:c8:61: c0:fc:14:ad:6a:e2:f3:7c:b0:5b:2d:3c:1f:20:60:12:b7:10: 40:d8:16:7e:21:38:a8:97:b9:59:87:df:e0:52:28:b7:09:6c: e3:b1:6c:cb:74:78:78:26:76:2e:a5:f9:c7:66:9b:b3:3e:93: 8d:77:e1:bb:33:ee:61:3c:62:12:bb:16:e6:3a:39:be:ba:2d: 0d:99:de:11:55:ea:fb:19:6a:d6:05:95:cd:83:a1:38:3c:f1: b7:47:d0:0c:97:e2:d9:6c:7a:59:a8:01:3f:f5:9b:a6:af:3f: 77:18:84:2a:e2:e0:67:a4:62:4c:83:5d:53:46:4a:1a:19:f4: f4:51:0b:09:42:30:48:62:8b:6e:18:1a:d8:e6:6b:5f:8c:ec: db:a2:d4:08:95:d1:bd:a4:a4:be:ef:fd:af:0e:f2:0b:6b:aa: 53:32:f2:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjUwNDI4MTkzODMyWhcNMjUwNTA1MTkzODMyWjAYMRYwFAYD VQQDEw02ODBmZDkzOC04MWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvIvR/bB1raT7WDvTvUk1geHUusjIkEI/7GJayMg+OHgGZ3sTLv7eFZVTNIo A0FdNfCfXMoF3yEzJQLCnzuiXdQF2D0SSPBdIu9GLbJAVp/UABk3xkiHfDw3qB5A 0X71wNSB464tkzcPHI1tYTobWYTuz/4gO1OKWMcK+S4e3L2o+PkZIR2nvQiZL7Y6 GfNDLFDDpny8H8+GN3YaKBz067gBKzViLfLp2iIx2NhkAM/tT9/gNoD8SGrCYe/x mZB56pKkP+pD32jhfb9KDd7vHDGWGbDAj/G/ghkHHvbu8XYNa2N6ftMZZ+/qTDJC 8vAx8cGtrXPQ1sZwqAC2dlQnbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyGnrpg v18a4mkNwehMBkgqPrdUMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASBAR9b9FP4R1JaWtwk8UadX0eYmLKXE0vwpZFD1xsc4iHcywToLwd pevEyTttJwjBa6iKwyNvj7nVzOpEl4qQFthkvdS9IUrYkmX2FkIOoLGwNDwGQQjT yGHA/BStauLzfLBbLTwfIGAStxBA2BZ+ITiol7lZh9/gUii3CWzjsWzLdHh4JnYu pfnHZpuzPpONd+G7M+5hPGISuxbmOjm+ui0Nmd4RVer7GWrWBZXNg6E4PPG3R9AM l+LZbHpZqAE/9Zumrz93GIQq4uBnpGJMg11TRkoaGfT0UQsJQjBIYotuGBrY5mtf jOzbotQIldG9pKS+7/2vDvILa6pTMvKt -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:03 2025 by rpki-client on console.sobornost.net