$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft File: H5ogKJzpMW5ls9tyToxzYGyPhks.mft (raw, json) Hash identifier: KQGLdh8Rcjeb/qLt+1YyrAEMX7CI5arG+U0JKnJgrr4= Subject key identifier: 85:0B:80:1E:B4:28:5C:D4:A8:9E:4D:F7:45:32:37:F6:F8:57:B2:B7 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft Manifest number: 0C14 Signing time: Mon 28 Apr 2025 18:55:47 +0000 Manifest this update: Mon 28 Apr 2025 18:55:46 +0000 Manifest next update: Mon 05 May 2025 18:55:46 +0000 Files and hashes: 1: H5ogKJzpMW5ls9tyToxzYGyPhks.crl (hash: zLdv0oAXDcAj1qQICbXb+xLaz0CnqhxNgc+q8qH/kMQ=) 2: 172E487A416911ECB6B11742C4F9AE02.roa (hash: tMpcaYfBD1iobeLdQwhWt6/SJfz2AnFABrMU1WC/vqA=) 3: 67827BDC0B8511EA97C80D52C4F9AE02.roa (hash: kiKJ+nah+NBAeLG9hlQHszkTVk53ALCt/csxQaC27/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33, serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: Apr 28 18:55:46 2025 GMT Not After : May 5 18:55:46 2025 GMT Subject: CN=680fcf33-3a7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f0:b9:d4:7d:4d:a5:ce:ea:29:d4:51:a7:7c: 9f:7f:ec:72:63:f6:bb:a9:1f:92:87:c9:51:1e:22: 92:08:3b:ea:96:3a:dc:cf:e3:50:48:27:3f:98:79: e9:b5:7c:54:41:41:34:ce:04:dd:98:aa:18:7c:92: f0:69:8d:7a:a0:dd:df:97:0e:ac:90:5c:c7:e8:7c: 19:b9:4f:7e:78:d7:a8:c5:59:81:c9:90:49:5f:c8: 98:ce:f0:b1:37:52:d5:c2:4c:48:3d:27:99:ff:1d: 97:eb:a5:53:97:77:b0:60:6e:b6:ac:f3:ed:b8:e9: df:d6:25:1b:47:bd:a3:60:41:5a:7c:80:8b:22:2d: 1a:b4:a4:ec:af:b8:28:54:fb:0a:6e:39:18:47:7b: 85:e3:d6:fc:34:e9:06:b9:22:da:58:a4:2f:ba:77: b8:0c:76:91:04:2a:74:62:0c:a9:a0:39:72:bf:57: 69:d7:98:89:a1:13:30:be:20:2d:ad:9c:bf:87:1f: 96:3f:13:69:43:47:26:5b:8f:3c:ae:77:62:82:a5: a2:67:e2:4d:3f:a3:6a:4e:15:06:3e:75:e3:6d:d5: 3e:37:8a:e9:77:09:49:a7:fb:cc:86:85:ff:e5:74: 34:af:7e:35:da:e5:d3:0d:b5:62:e4:6f:f9:6f:22: b1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0B:80:1E:B4:28:5C:D4:A8:9E:4D:F7:45:32:37:F6:F8:57:B2:B7 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:e4:a4:33:5a:6c:6e:98:49:72:2c:b4:d4:ad:aa:e7:d8:a6: 3e:74:54:a3:95:a7:1f:af:a0:7e:bd:99:ea:ed:9e:c9:f9:e2: 2f:1c:95:2c:5b:4c:d7:ac:0f:cc:4d:ac:77:74:cc:9c:d9:47: 91:2a:de:97:d0:36:8a:c7:f3:98:5d:48:1a:6e:9a:0d:88:bc: 8b:d3:a9:db:fc:77:cb:df:5f:fa:68:53:11:c3:e8:64:5a:2f: 78:f9:9a:4c:46:6e:8f:2c:1a:53:ce:02:89:7c:7d:8a:62:09: 7b:b5:b0:0f:d1:80:e3:d8:4c:8f:cb:6f:f3:21:5a:3a:5b:a3: aa:ed:11:2e:d9:ec:97:e6:d9:2b:ca:28:d9:8c:8c:1b:70:c4: be:17:97:4c:d3:b7:94:a1:54:4f:df:05:31:79:00:36:af:a8: ab:91:87:ff:69:38:15:a8:03:dc:6c:b8:89:5d:ea:ce:ed:f2: a4:94:f3:21:45:32:79:57:dd:24:b1:45:50:6e:d2:d9:51:0d: 40:bf:54:f4:4a:86:47:55:89:9e:25:5c:77:68:bd:e2:c3:b3: fd:3d:45:42:c3:1f:b3:3f:7d:1e:60:0e:02:83:2c:d5:cb:9e: f8:2e:2e:30:e6:53:77:db:93:5a:e6:0d:3f:2b:8f:60:db:cd: db:18:ef:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjUwNDI4MTg1NTQ2WhcNMjUwNTA1MTg1NTQ2WjAYMRYwFAYD VQQDEw02ODBmY2YzMy0zYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8fC51H1Npc7qKdRRp3yff+xyY/a7qR+Sh8lRHiKSCDvqljrcz+NQSCc/mHnp tXxUQUE0zgTdmKoYfJLwaY16oN3flw6skFzH6HwZuU9+eNeoxVmByZBJX8iYzvCx N1LVwkxIPSeZ/x2X66VTl3ewYG62rPPtuOnf1iUbR72jYEFafICLIi0atKTsr7go VPsKbjkYR3uF49b8NOkGuSLaWKQvune4DHaRBCp0YgypoDlyv1dp15iJoRMwviAt rZy/hx+WPxNpQ0cmW488rndigqWiZ+JNP6NqThUGPnXjbdU+N4rpdwlJp/vMhoX/ 5XQ0r3412uXTDbVi5G/5byKxSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIULgB60 KFzUqJ5N90UyN/b4V7K3MB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkYzMy80NjA2NjFEQzBCODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1X NWxzOXR5VG94ellHeVBoa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq5KQzWmxumElyLLTUrarn2KY+dFSjlacfr6B+vZnq7Z7J+eIvHJUs W0zXrA/MTax3dMyc2UeRKt6X0DaKx/OYXUgabpoNiLyL06nb/HfL31/6aFMRw+hk Wi94+ZpMRm6PLBpTzgKJfH2KYgl7tbAP0YDj2EyPy2/zIVo6W6Oq7REu2eyX5tkr yijZjIwbcMS+F5dM07eUoVRP3wUxeQA2r6irkYf/aTgVqAPcbLiJXerO7fKklPMh RTJ5V90ksUVQbtLZUQ1Av1T0SoZHVYmeJVx3aL3iw7P9PUVCwx+zP30eYA4CgyzV y574Li4w5lN325Na5g0/K49g283bGO8w -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:08 2025 by rpki-client on console.sobornost.net