$ rpki-client -vvf rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft File: NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft (raw, json) Hash identifier: Vv9J1Do6pTc4I/XblMec/aaJizNvqX15+IyA35kjKn0= Subject key identifier: 2A:62:FB:31:87:2B:4C:D1:E3:A3:F0:C8:DB:83:AC:60:EF:34:97:6A Authority key identifier: 37:25:B2:E9:7D:D4:5D:C0:B7:52:1C:0A:1B:B5:E4:06:09:B0:5D:96 Certificate issuer: /CN=A913CADE/serialNumber=3725B2E97DD45DC0B7521C0A1BB5E40609B05D96 Certificate serial: 16A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft Manifest number: 1697 Signing time: Sat 26 Apr 2025 16:38:15 +0000 Manifest this update: Sat 26 Apr 2025 16:38:15 +0000 Manifest next update: Sat 03 May 2025 16:38:15 +0000 Files and hashes: 1: NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl (hash: cRi8w8EByBNcmYsRpR/mhBQVGiVabn3Q2pqjz9w5KLw=) 2: DDDE13B8FAE811E7A715F157C4F9AE02.roa (hash: ZIFDDGs8pzafe5+UUxAyWx6ARFXkQp6Z5m5nmDElxJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 16:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5792 (0x16a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CADE, serialNumber=3725B2E97DD45DC0B7521C0A1BB5E40609B05D96 Validity Not Before: Apr 26 16:38:15 2025 GMT Not After : May 3 16:38:15 2025 GMT Subject: CN=680d0bf7-4f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:77:5f:25:7b:ff:86:76:67:8b:bf:c2:41:97: 74:d2:a6:20:1f:65:db:bd:f8:0b:b2:88:ef:6f:b9: 4c:1a:94:9f:3d:54:f3:a4:cc:43:86:f8:14:b5:3f: 34:51:0c:27:49:08:a1:b7:fa:cb:85:88:f9:34:e9: 00:12:13:ad:e2:d5:e7:13:bb:ba:c7:a1:8b:81:a7: 31:72:a1:2d:b0:97:47:60:a4:8b:79:69:ee:23:89: 2c:c6:c9:5c:e9:28:b4:62:06:64:11:0a:ab:d2:29: 4b:1d:cb:e9:79:ae:c1:e7:a4:2f:98:53:67:ac:8f: 9f:39:2f:26:da:6c:16:87:71:94:f3:b0:d9:55:22: c8:7f:87:22:29:a3:cb:14:05:47:b5:97:d3:2e:cd: 08:16:26:1d:f6:0c:07:6a:ba:26:76:fc:5f:bf:b9: b0:5d:78:f4:8a:10:cd:ea:90:12:04:0a:8e:76:99: ce:d8:1c:26:a1:86:56:36:53:ab:8e:83:db:53:69: eb:55:c6:aa:a4:de:bc:aa:86:f1:35:6a:81:8b:74: 5c:47:1c:8e:d4:c1:4a:1a:c9:2e:a7:f9:f1:3d:0a: f2:a9:b6:57:bc:9e:67:97:db:19:d7:83:c4:17:37: 0a:51:b3:03:f7:6d:a7:64:f8:24:15:63:62:d0:ba: c5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:62:FB:31:87:2B:4C:D1:E3:A3:F0:C8:DB:83:AC:60:EF:34:97:6A X509v3 Authority Key Identifier: keyid:37:25:B2:E9:7D:D4:5D:C0:B7:52:1C:0A:1B:B5:E4:06:09:B0:5D:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyWy6X3UXcC3UhwKG7XkBgmwXZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CADE/F02AB17CFAE611E7923EA150C4F9AE02/NyWy6X3UXcC3UhwKG7XkBgmwXZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:6f:0e:6e:3f:70:11:22:00:c2:9e:f8:19:58:af:e2:55:72: c8:af:a1:b0:9d:e0:66:3e:99:44:27:61:a5:dc:b7:a8:75:34: 10:5b:2d:8f:3a:69:39:fe:01:46:f4:c9:e5:47:e5:dd:e3:e1: a9:70:d6:6d:50:91:0f:c5:a1:5b:1f:13:9e:2a:ed:a2:df:03: dc:5c:51:e5:50:04:30:95:5e:c2:37:eb:fa:27:60:c6:e4:c3: f2:d7:0c:2f:5e:28:c6:5d:e1:6d:78:2f:c4:e6:13:7a:82:19: c7:a4:9d:48:59:30:45:e6:20:a7:08:00:bf:f2:17:39:01:f5: f1:67:33:49:4b:49:5e:12:a5:92:2c:c5:2f:fb:d7:f0:8d:04: 8f:40:45:2b:75:1e:2c:31:ef:1a:c6:a0:31:f0:f9:94:7a:bd: 23:0e:5d:d1:47:cd:66:27:a4:9b:70:a7:d5:cd:c7:79:02:87: c6:47:8e:26:df:98:38:e3:54:3f:f9:1e:ac:cf:14:c9:3f:2e: 6c:6b:29:91:12:23:98:c0:27:36:f9:9b:22:94:e0:4d:67:b6: 72:26:b6:cb:83:f7:e6:a7:ae:dc:1c:63:c6:f6:bd:d3:00:d3: 2c:cc:3f:3f:bc:d9:29:c3:da:5e:08:bf:d0:1f:70:ec:97:ea: 49:1d:02:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBREUxMTAvBgNVBAUTKDM3MjVCMkU5N0RENDVEQzBCNzUyMUMwQTFCQjVFNDA2 MDlCMDVEOTYwHhcNMjUwNDI2MTYzODE1WhcNMjUwNTAzMTYzODE1WjAYMRYwFAYD VQQDEw02ODBkMGJmNy00ZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3dfJXv/hnZni7/CQZd00qYgH2XbvfgLsojvb7lMGpSfPVTzpMxDhvgUtT80 UQwnSQiht/rLhYj5NOkAEhOt4tXnE7u6x6GLgacxcqEtsJdHYKSLeWnuI4ksxslc 6Si0YgZkEQqr0ilLHcvpea7B56QvmFNnrI+fOS8m2mwWh3GU87DZVSLIf4ciKaPL FAVHtZfTLs0IFiYd9gwHaromdvxfv7mwXXj0ihDN6pASBAqOdpnO2BwmoYZWNlOr joPbU2nrVcaqpN68qobxNWqBi3RcRxyO1MFKGskup/nxPQryqbZXvJ5nl9sZ14PE FzcKUbMD922nZPgkFWNi0LrFjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpi+zGH K0zR46PwyNuDrGDvNJdqMB8GA1UdIwQYMBaAFDclsul91F3At1IcChu15AYJsF2W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FERS9GMDJBQjE3Q0ZB RTYxMUU3OTIzRUExNTBDNEY5QUUwMi9OeVd5NlgzVVhjQzNVaHdLRzdYa0JnbXdY WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055V3k2WDNVWGNDM1Vod0tHN1hrQmdtd1haWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0FERS9GMDJBQjE3Q0ZBRTYxMUU3OTIzRUExNTBDNEY5QUUwMi9OeVd5NlgzVVhj QzNVaHdLRzdYa0JnbXdYWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMbw5uP3ARIgDCnvgZWK/iVXLIr6GwneBmPplEJ2Gl3LeodTQQWy2P Omk5/gFG9MnlR+Xd4+GpcNZtUJEPxaFbHxOeKu2i3wPcXFHlUAQwlV7CN+v6J2DG 5MPy1wwvXijGXeFteC/E5hN6ghnHpJ1IWTBF5iCnCAC/8hc5AfXxZzNJS0leEqWS LMUv+9fwjQSPQEUrdR4sMe8axqAx8PmUer0jDl3RR81mJ6SbcKfVzcd5AofGR44m 35g441Q/+R6szxTJPy5saymREiOYwCc2+ZsilOBNZ7ZyJrbLg/fmp67cHGPG9r3T ANMszD8/vNkpw9peCL/QH3Dsl+pJHQJ4 -----END CERTIFICATE-----Generated at Sat Apr 26 21:01:50 2025 by rpki-client on console.sobornost.net