$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: 0x4qJG9RqArxvxB3qohMZtl4y5/TT/lDj/UfRXCFhRI= Subject key identifier: 1E:57:AA:A2:70:37:DE:C3:3A:5C:65:7D:15:54:DD:A1:1C:09:29:5A Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 010B Signing time: Sun 27 Apr 2025 03:53:14 +0000 Manifest this update: Sun 27 Apr 2025 03:53:13 +0000 Manifest next update: Sun 04 May 2025 03:53:13 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: F7DfRIqPfLU/39PJDwtBTjqHvBsrI+r3Hww0+irbJQw=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: lfBaqProMut7Uby4sm5sXFCXR+BzVB4lKdYH7qIjDTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22, serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Apr 27 03:53:13 2025 GMT Not After : May 4 03:53:13 2025 GMT Subject: CN=680daa29-c5e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e9:8b:5e:bb:f3:58:76:0d:2b:e6:ff:ef:08: 82:5d:0e:f4:1d:81:20:de:63:bd:1d:1f:f9:3d:11: ed:c2:ae:2a:86:6e:bb:c7:dc:23:a3:fb:b3:54:42: 31:7d:af:1e:a9:27:20:ee:8f:1a:24:c8:88:d0:94: 43:e6:6d:09:86:bd:78:88:c5:21:9a:d0:83:65:cd: 2f:76:1c:a3:f2:68:6e:d2:49:8a:89:4a:61:c4:16: 33:5f:8a:a5:d9:b5:e8:b8:b5:96:96:68:1c:6f:cf: 7c:ac:59:01:cc:be:8b:27:f5:b2:d5:32:ed:36:0e: 6e:ae:99:b6:3b:9c:63:30:63:f4:6a:6f:9c:e8:60: 18:d8:e1:14:5d:14:3f:13:98:c1:df:9f:83:dd:ef: 23:c7:ba:9d:83:ee:d1:85:08:1d:6e:ae:51:42:0c: 07:7e:b5:a2:af:e7:c0:91:ec:35:23:d1:ce:42:7a: 85:61:10:56:e6:74:78:69:48:18:0e:ed:60:1e:d0: d2:ab:50:cf:75:5d:1b:e0:72:7d:c4:b4:76:7d:ac: b8:b2:aa:f3:a1:19:51:83:c7:a7:24:f1:0f:df:17: 75:6c:6f:36:e1:98:1d:3e:dc:76:99:3a:d4:35:e6: 97:40:7f:24:ef:de:d2:f0:4a:81:f1:b6:c2:fe:b4: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:57:AA:A2:70:37:DE:C3:3A:5C:65:7D:15:54:DD:A1:1C:09:29:5A X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:d5:bf:32:18:1e:bd:6d:cc:a1:e4:5f:bf:f6:da:28:bf:c6: 14:1f:9d:86:0a:92:a2:47:3a:7b:2d:51:ba:f6:ea:30:69:0e: 31:87:2e:48:17:c6:b3:f9:25:63:59:61:19:bd:9a:dc:3d:85: e3:4f:9e:3a:03:99:59:4a:33:5a:8f:e7:dd:bb:37:30:ef:92: 01:e1:21:6d:bb:20:95:4d:0f:7d:61:65:4f:3e:0a:47:3e:29: 2a:64:87:b5:aa:41:2e:cb:46:44:cb:0f:24:e6:c8:b0:23:c1: 60:96:a6:66:3d:67:0d:a5:f9:13:e9:4b:fd:71:0f:03:1c:7f: 46:95:8f:b5:1f:27:13:c1:f0:4c:75:ea:06:94:b6:c4:5b:e8: dd:fd:f1:d3:a9:0b:dd:19:25:9d:c7:ee:1d:e6:1f:f5:9e:ad: ba:85:6e:fb:09:4e:a0:3b:61:78:99:c6:81:7a:54:bd:07:99: 8a:e4:03:8c:b2:78:3b:d9:5f:1d:0e:29:23:c5:97:95:bd:1f: a5:3f:b1:8c:ef:45:e4:38:3f:4e:f0:8d:40:92:0f:d1:b8:6f: 23:ab:1b:f9:d7:23:e0:0d:36:c3:9f:43:e2:ff:91:7b:28:5a: c6:6d:1e:96:18:90:9f:6f:66:1b:35:65:8e:60:45:49:1a:14: 65:ae:b7:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCMjIxMTAvBgNVBAUTKDA5NTg4NjE0Mzg3MjEwRThCNjlBRDNDMzFBNzM2MTlE NzU1RUQwQzAwHhcNMjUwNDI3MDM1MzEzWhcNMjUwNTA0MDM1MzEzWjAYMRYwFAYD VQQDEw02ODBkYWEyOS1jNWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOmLXrvzWHYNK+b/7wiCXQ70HYEg3mO9HR/5PRHtwq4qhm67x9wjo/uzVEIx fa8eqScg7o8aJMiI0JRD5m0Jhr14iMUhmtCDZc0vdhyj8mhu0kmKiUphxBYzX4ql 2bXouLWWlmgcb898rFkBzL6LJ/Wy1TLtNg5urpm2O5xjMGP0am+c6GAY2OEUXRQ/ E5jB35+D3e8jx7qdg+7RhQgdbq5RQgwHfrWir+fAkew1I9HOQnqFYRBW5nR4aUgY Du1gHtDSq1DPdV0b4HJ9xLR2fay4sqrzoRlRg8enJPEP3xd1bG824ZgdPtx2mTrU NeaXQH8k797S8EqB8bbC/rTzhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5XqqJw N97DOlxlfRVU3aEcCSlaMB8GA1UdIwQYMBaAFAlYhhQ4chDotprTwxpzYZ11XtDA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0IyMi82NjAyRTk3ODhD RDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVPaTJtdFBER25OaG5YVmUw TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi9DVmlHRkRoeUVP aTJtdFBER25OaG5YVmUwTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA91b8yGB69bcyh5F+/9toov8YUH52GCpKiRzp7LVG69uowaQ4xhy5I F8az+SVjWWEZvZrcPYXjT546A5lZSjNaj+fduzcw75IB4SFtuyCVTQ99YWVPPgpH PikqZIe1qkEuy0ZEyw8k5siwI8FglqZmPWcNpfkT6Uv9cQ8DHH9GlY+1HycTwfBM deoGlLbEW+jd/fHTqQvdGSWdx+4d5h/1nq26hW77CU6gO2F4mcaBelS9B5mK5AOM sng72V8dDikjxZeVvR+lP7GM70XkOD9O8I1Akg/RuG8jqxv51yPgDTbDn0Pi/5F7 KFrGbR6WGJCfb2YbNWWOYEVJGhRlrrfv -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:42 2025 by rpki-client on console.sobornost.net