$ rpki-client -vvf rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft File: Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft (raw, json) Hash identifier: Kg72t2/me0eOlU6JS2fII6mfXxzVtV/NkcztiZFcolY= Subject key identifier: 7C:F0:65:3C:83:D4:83:59:94:1F:F7:FB:8A:71:B0:D9:DC:F2:1A:9A Authority key identifier: 53:0F:CD:29:9E:77:5B:8A:CB:27:52:A0:3A:FA:A7:D1:81:E5:00:EE Certificate issuer: /CN=A913DC32/serialNumber=530FCD299E775B8ACB2752A03AFAA7D181E500EE Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft Manifest number: 1C Signing time: Sun 27 Apr 2025 06:45:26 +0000 Manifest this update: Sun 27 Apr 2025 06:45:25 +0000 Manifest next update: Sun 04 May 2025 06:45:25 +0000 Files and hashes: 1: Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.crl (hash: ZuLJ+b7OOkfrPSZBuPyZIF1bZwbNdyhf3oPt5vs6ZPs=) 2: 455B2534FD0811EF85ADED79C4F9AE02.roa (hash: EqPvfZWybFxDEzuqUOMumy7hGqKdVROQozF26OVvW/M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.crl rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DC32, serialNumber=530FCD299E775B8ACB2752A03AFAA7D181E500EE Validity Not Before: Apr 27 06:45:25 2025 GMT Not After : May 4 06:45:25 2025 GMT Subject: CN=680dd285-37a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:54:85:12:ed:ba:90:7c:a7:d9:0a:c3:fd:0e: 42:01:6d:bc:64:0e:d9:5e:78:42:0a:04:de:74:5a: 7e:9b:dd:0c:b8:82:94:1f:64:e0:da:ae:99:f4:e1: ed:45:37:40:d1:8b:56:45:0b:42:dc:fe:ad:f2:94: cf:56:b9:26:5b:5b:79:4d:52:55:82:59:dc:ed:f2: 65:45:f1:36:46:fa:5b:13:93:7a:e5:75:6a:a5:59: e3:93:3c:bf:f3:78:ca:ae:f7:92:ac:39:b1:6d:a4: 4c:ed:7a:61:8f:19:4d:7f:f6:c7:37:41:9d:22:75: 8a:f4:fd:5d:ac:da:bd:05:f3:a8:b0:38:d5:a3:57: 6b:a1:f5:58:93:7f:bf:d4:4e:1e:cd:5b:80:f9:25: 6a:6e:40:3c:52:a7:04:4c:a3:98:5a:e3:4b:7a:c1: 30:92:99:35:05:c5:e1:60:cd:7b:0e:32:2e:d9:52: 0e:5d:15:8a:31:41:10:86:09:02:52:7f:51:ce:53: 5f:ed:a4:67:26:a6:1d:9e:4c:a1:a2:79:51:48:ef: 0e:43:ab:fc:e0:a9:b2:54:b1:3e:e6:24:b5:84:41: 90:0f:38:8f:ab:92:0a:23:33:1a:b2:10:bb:2e:84: 4a:d1:74:62:c1:ba:23:91:f3:b3:c6:4b:d7:df:11: de:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:F0:65:3C:83:D4:83:59:94:1F:F7:FB:8A:71:B0:D9:DC:F2:1A:9A X509v3 Authority Key Identifier: keyid:53:0F:CD:29:9E:77:5B:8A:CB:27:52:A0:3A:FA:A7:D1:81:E5:00:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DC32/840A16B0FCFD11EFADB86115C4F9AE02/Uw_NKZ53W4rLJ1KgOvqn0YHlAO4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:6d:7f:7c:53:08:f6:f6:da:02:bb:27:4c:f7:60:45:35:be: 67:93:03:c5:ad:cc:ad:f7:b2:9c:c4:b2:f0:f8:82:12:d6:92: 22:e8:69:81:04:b6:d3:0f:9d:c9:86:94:9b:ee:bd:c1:f0:25: 3b:c1:01:bb:64:3a:2a:41:53:37:f5:bb:ef:b7:e5:4e:b1:84: 0d:c4:50:16:4e:dc:68:11:a9:af:ab:2a:77:52:46:39:28:93: 5a:6f:75:82:58:dd:96:45:21:02:1e:2e:a8:c8:cc:1a:1e:12: 9b:02:00:25:e4:cf:f8:e6:ac:87:ec:f0:f5:6d:6e:14:01:4b: 04:c1:32:15:de:78:a1:ea:3b:39:cd:1b:3f:6e:5d:48:4d:f4: 2f:ec:84:f7:4b:79:db:6b:5e:b1:c8:dc:a3:d4:d5:c5:15:e5: 55:7b:8c:8f:89:da:83:61:93:e7:98:82:00:6a:85:0e:eb:f0: cd:55:40:d2:4b:6e:45:c7:cd:3e:ad:38:ff:1d:c8:77:7a:35: fb:c8:88:f0:ed:e3:7c:cf:ce:39:6a:78:60:20:a0:a2:9a:ca: 84:8d:86:e6:4c:a5:ef:0d:b8:66:35:ad:b1:96:fc:3a:37:bd: ce:f0:44:55:57:6f:73:f7:a5:72:09:be:ea:20:dc:63:6a:75: d6:d2:a7:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz REMzMjExMC8GA1UEBRMoNTMwRkNEMjk5RTc3NUI4QUNCMjc1MkEwM0FGQUE3RDE4 MUU1MDBFRTAeFw0yNTA0MjcwNjQ1MjVaFw0yNTA1MDQwNjQ1MjVaMBgxFjAUBgNV BAMTDTY4MGRkMjg1LTM3YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSVIUS7bqQfKfZCsP9DkIBbbxkDtleeEIKBN50Wn6b3Qy4gpQfZODarpn04e1F N0DRi1ZFC0Lc/q3ylM9WuSZbW3lNUlWCWdzt8mVF8TZG+lsTk3rldWqlWeOTPL/z eMqu95KsObFtpEztemGPGU1/9sc3QZ0idYr0/V2s2r0F86iwONWjV2uh9ViTf7/U Th7NW4D5JWpuQDxSpwRMo5ha40t6wTCSmTUFxeFgzXsOMi7ZUg5dFYoxQRCGCQJS f1HOU1/tpGcmph2eTKGieVFI7w5Dq/zgqbJUsT7mJLWEQZAPOI+rkgojMxqyELsu hErRdGLBuiOR87PGS9ffEd4pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfPBlPIPU g1mUH/f7inGw2dzyGpowHwYDVR0jBBgwFoAUUw/NKZ53W4rLJ1KgOvqn0YHlAO4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEQzMyLzg0MEExNkIwRkNG RDExRUZBREI4NjExNUM0RjlBRTAyL1V3X05LWjUzVzRyTEoxS2dPdnFuMFlIbEFP NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVXdfTktaNTNXNHJMSjFLZ092cW4wWUhsQU80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE QzMyLzg0MEExNkIwRkNGRDExRUZBREI4NjExNUM0RjlBRTAyL1V3X05LWjUzVzRy TEoxS2dPdnFuMFlIbEFPNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABJtf3xTCPb22gK7J0z3YEU1vmeTA8WtzK33spzEsvD4ghLWkiLoaYEE ttMPncmGlJvuvcHwJTvBAbtkOipBUzf1u++35U6xhA3EUBZO3GgRqa+rKndSRjko k1pvdYJY3ZZFIQIeLqjIzBoeEpsCACXkz/jmrIfs8PVtbhQBSwTBMhXeeKHqOznN Gz9uXUhN9C/shPdLedtrXrHI3KPU1cUV5VV7jI+J2oNhk+eYggBqhQ7r8M1VQNJL bkXHzT6tOP8dyHd6NfvIiPDt43zPzjlqeGAgoKKayoSNhuZMpe8NuGY1rbGW/Do3 vc7wRFVXb3P3pXIJvuog3GNqddbSp9I= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net