$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: X7D/VYnPgQQk7F6UNTifClnMVSxXSIKMKH34Xuh+EPI= Subject key identifier: A1:27:30:7B:C8:71:ED:21:6B:D8:3B:BD:FE:5A:62:A7:75:9F:3E:5B Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0BFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0BF0 Signing time: Mon 28 Apr 2025 19:08:09 +0000 Manifest this update: Mon 28 Apr 2025 19:08:09 +0000 Manifest next update: Mon 05 May 2025 19:08:09 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: HP3I2j2DWP0BHojDcbgC1b6ghDNr6byxzaI00fSJzio=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: J+JzfdPnvnmB6Ay3Ml+qeWmcjb1XIfVxnUqGVNUN7Ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3, serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Apr 28 19:08:09 2025 GMT Not After : May 5 19:08:09 2025 GMT Subject: CN=680fd219-a4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8b:2b:e1:51:0b:2c:cb:34:0a:14:29:e4:b5: 4f:9c:17:b5:9c:d8:b0:47:92:4c:31:81:15:fc:67: 64:37:f6:3d:3a:06:48:b6:dc:17:67:b3:e8:88:04: 8e:15:9e:13:ec:e4:89:d3:56:c1:7b:ee:98:86:0b: fd:12:58:c3:54:ae:3d:4d:27:54:6c:10:27:a9:7f: 1c:ac:8c:56:64:10:19:69:b1:39:59:1b:0b:53:6b: f8:e2:66:a7:f7:58:15:39:f7:a9:a9:e8:dc:84:1b: 39:95:04:71:55:78:96:1b:d2:4c:a4:aa:5e:30:7c: 78:db:54:a5:07:70:61:57:4d:79:d4:71:77:14:b2: 8e:ab:5b:c0:7b:11:7a:89:c7:0e:a5:bf:c5:45:fe: a7:7c:54:c3:41:7a:0d:0d:41:03:e9:e9:55:ff:d3: d6:22:09:52:66:4c:26:06:21:dc:b3:bb:a7:9e:e8: e4:d6:8c:1e:f4:53:48:12:37:48:4c:e3:34:06:ac: 67:54:9b:f6:2d:52:73:a7:7f:4e:57:4f:03:b8:15: 22:23:24:f2:2e:3c:64:dd:27:04:58:8f:17:b9:15: 67:cc:50:30:da:d5:ba:82:41:25:d0:d9:e5:96:9e: 29:5c:bb:f9:04:ba:9a:74:97:32:01:ad:57:05:0f: 70:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:27:30:7B:C8:71:ED:21:6B:D8:3B:BD:FE:5A:62:A7:75:9F:3E:5B X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:7b:d2:f0:06:5a:19:bf:72:29:a5:7b:b4:1c:8a:72:dc:50: d7:cc:67:bc:cc:b2:b3:e2:31:0a:bb:b3:8a:20:b6:a4:df:cb: 05:75:c6:14:18:54:f4:53:87:bf:62:a5:18:9d:ab:86:2a:20: a8:e3:88:35:5d:1e:64:ce:7f:e9:16:45:ef:43:15:ac:0a:ce: 25:c8:eb:61:5c:f5:c1:1e:ca:e8:20:f3:9e:52:0f:08:b4:52: c9:ff:58:03:eb:cf:56:56:1f:29:4c:21:b3:29:7a:51:8a:94: 7f:9f:74:07:7f:38:59:b3:da:a0:ca:98:fc:d4:bb:c5:89:e5: 5b:62:6e:75:fd:f9:58:d2:57:04:d9:47:8b:8d:81:2a:5f:fa: 49:c0:9e:6f:b5:23:44:5f:1d:a2:b5:ab:58:c6:60:62:20:19: 94:08:4b:1f:5e:f1:f1:1e:c0:f4:8d:18:c6:53:f6:6f:99:1e: 71:48:2c:65:f4:45:9e:6a:78:a7:6b:d7:67:92:f7:a6:bb:6e: 81:b7:33:b9:ec:5a:80:26:3e:d9:78:2e:1f:db:48:0b:84:f4: 17:5a:3b:b6:fd:3a:b6:bf:2b:0c:15:b9:78:29:2f:55:87:58: 39:f4:c2:38:73:6d:7b:1b:e3:87:60:4b:0b:30:aa:e7:a4:59: cc:25:86:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwNDI4MTkwODA5WhcNMjUwNTA1MTkwODA5WjAYMRYwFAYD VQQDEw02ODBmZDIxOS1hNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54sr4VELLMs0ChQp5LVPnBe1nNiwR5JMMYEV/GdkN/Y9OgZIttwXZ7PoiASO FZ4T7OSJ01bBe+6Yhgv9EljDVK49TSdUbBAnqX8crIxWZBAZabE5WRsLU2v44man 91gVOfepqejchBs5lQRxVXiWG9JMpKpeMHx421SlB3BhV0151HF3FLKOq1vAexF6 iccOpb/FRf6nfFTDQXoNDUED6elV/9PWIglSZkwmBiHcs7unnujk1owe9FNIEjdI TOM0BqxnVJv2LVJzp39OV08DuBUiIyTyLjxk3ScEWI8XuRVnzFAw2tW6gkEl0Nnl lp4pXLv5BLqadJcyAa1XBQ9wewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEnMHvI ce0ha9g7vf5aYqd1nz5bMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCue9LwBloZv3IppXu0HIpy3FDXzGe8zLKz4jEKu7OKILak38sFdcYU GFT0U4e/YqUYnauGKiCo44g1XR5kzn/pFkXvQxWsCs4lyOthXPXBHsroIPOeUg8I tFLJ/1gD689WVh8pTCGzKXpRipR/n3QHfzhZs9qgypj81LvFieVbYm51/flY0lcE 2UeLjYEqX/pJwJ5vtSNEXx2itatYxmBiIBmUCEsfXvHxHsD0jRjGU/ZvmR5xSCxl 9EWeanina9dnkvemu26BtzO57FqAJj7ZeC4f20gLhPQXWju2/Tq2vysMFbl4KS9V h1g59MI4c217G+OHYEsLMKrnpFnMJYbc -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:03 2025 by rpki-client on console.sobornost.net