$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft File: nmoKpDnP40ewT3RoQKbkNMUJsac.mft (raw, json) Hash identifier: ZtaMGmaFphDM3idJ1CUY1GLUTHL8GD2BfvX+gvvzBd4= Subject key identifier: 03:AE:E6:FC:B3:5A:96:C6:CA:4F:7F:1B:DA:06:A4:2E:4E:5E:1B:E7 Authority key identifier: 9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 Certificate issuer: /CN=A914DC56/serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft Manifest number: 0126 Signing time: Sun 27 Apr 2025 03:36:02 +0000 Manifest this update: Sun 27 Apr 2025 03:36:02 +0000 Manifest next update: Sun 04 May 2025 03:36:02 +0000 Files and hashes: 1: nmoKpDnP40ewT3RoQKbkNMUJsac.crl (hash: H5VR6d0VS82uGAJbj2A2iSK7Zqr3i1e3thL4s6mBwNs=) 2: 11A843B467D811EEA0543B5CC4F9AE02.roa (hash: JGrxdfcTXN7WXmiB33mKDnWSPFdrh+A/TvrelqjBL5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC56, serialNumber=9E6A0AA439CFE347B04F746840A6E434C509B1A7 Validity Not Before: Apr 27 03:36:02 2025 GMT Not After : May 4 03:36:02 2025 GMT Subject: CN=680da622-4f12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c7:8e:97:7d:b3:86:5f:63:d0:16:ac:74:ff: 59:a8:90:85:e1:0f:b9:64:d0:52:cf:40:82:93:ad: 48:f8:d4:c1:7e:be:ba:55:d6:92:4a:58:a9:4e:54: b1:7a:47:99:b3:ae:ec:3a:e1:3f:ff:66:4c:6e:7a: 87:fa:0c:79:23:1f:a2:c4:d1:89:fc:96:e0:2f:c8: c5:41:85:ab:c9:70:2d:5a:56:b3:dc:2e:fa:37:5b: ee:d6:07:56:57:9d:ba:58:67:84:ec:e3:fe:50:32: 79:7b:0b:a4:31:73:07:c0:71:1b:cb:65:cb:31:55: 9a:0f:7b:d1:0a:99:5b:36:3a:23:6e:85:21:59:c2: 36:aa:c4:61:2d:b8:0c:f8:f0:36:96:01:48:37:57: c5:d4:28:6c:5c:c9:96:39:53:1f:c8:b1:0f:35:a5: 98:85:55:a2:5b:f5:23:94:d2:bf:05:1d:ad:42:d9: 55:0c:82:cb:9a:f0:5d:ca:c1:ac:69:6f:00:ac:7e: 9f:42:65:bd:6c:87:b4:a8:35:53:ff:19:59:ec:12: b7:16:fc:45:5f:45:b7:79:91:eb:39:ab:1e:7c:0e: ba:13:d8:fd:74:66:65:f2:05:ef:1f:6c:11:a4:30: 4d:72:18:b7:c7:44:8c:01:01:af:c6:5d:f9:2e:5e: 3b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:AE:E6:FC:B3:5A:96:C6:CA:4F:7F:1B:DA:06:A4:2E:4E:5E:1B:E7 X509v3 Authority Key Identifier: keyid:9E:6A:0A:A4:39:CF:E3:47:B0:4F:74:68:40:A6:E4:34:C5:09:B1:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmoKpDnP40ewT3RoQKbkNMUJsac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC56/CDBCF63A669311EE98CEAA50C4F9AE02/nmoKpDnP40ewT3RoQKbkNMUJsac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3d:6e:00:cc:ab:9a:4f:60:9a:8c:43:4e:b1:97:b9:4e:b9: ad:fe:4c:7f:a7:41:42:39:7e:a8:78:e7:47:21:d4:e8:dc:50: 5a:4b:38:8e:4d:5e:df:98:f5:ef:f8:5e:fe:82:ab:3d:10:65: ba:b9:9f:eb:a9:3c:ec:3d:c1:22:97:f7:4b:5d:db:9a:49:25: e6:12:d1:f6:fb:2d:24:aa:92:b6:8d:4a:ab:25:f5:75:2c:8f: b0:be:c0:f8:c9:07:aa:32:17:54:e6:90:ac:f9:d3:ee:ee:8a: 3f:62:33:34:d9:63:a0:f7:49:eb:fb:75:75:0a:f8:26:4a:c2: 6b:5c:60:9d:96:99:f0:fa:54:01:f0:da:88:b8:7b:ce:b3:25: 77:4f:c4:14:8a:2e:5b:83:38:04:3b:f0:a5:26:65:2d:5b:07: 6e:68:9a:c7:3c:a6:77:18:45:93:c5:a0:d1:d3:10:64:2e:c1: 8d:2a:34:59:07:23:2f:7b:17:20:a7:3d:3d:80:e3:b8:6c:d7: c4:26:67:46:c2:c1:69:71:70:00:23:7a:e7:3c:b9:54:45:b7: 20:e7:93:6a:45:7e:6b:79:6a:3b:b3:e9:12:46:a5:c0:9f:22: e2:b0:e9:e3:91:ef:ac:f7:e6:ba:ce:60:c8:e8:4b:2f:44:41: 02:0e:93:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNTYxMTAvBgNVBAUTKDlFNkEwQUE0MzlDRkUzNDdCMDRGNzQ2ODQwQTZFNDM0 QzUwOUIxQTcwHhcNMjUwNDI3MDMzNjAyWhcNMjUwNTA0MDMzNjAyWjAYMRYwFAYD VQQDEw02ODBkYTYyMi00ZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtseOl32zhl9j0BasdP9ZqJCF4Q+5ZNBSz0CCk61I+NTBfr66VdaSSlipTlSx ekeZs67sOuE//2ZMbnqH+gx5Ix+ixNGJ/JbgL8jFQYWryXAtWlaz3C76N1vu1gdW V526WGeE7OP+UDJ5ewukMXMHwHEby2XLMVWaD3vRCplbNjojboUhWcI2qsRhLbgM +PA2lgFIN1fF1ChsXMmWOVMfyLEPNaWYhVWiW/UjlNK/BR2tQtlVDILLmvBdysGs aW8ArH6fQmW9bIe0qDVT/xlZ7BK3FvxFX0W3eZHrOasefA66E9j9dGZl8gXvH2wR pDBNchi3x0SMAQGvxl35Ll47mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAOu5vyz WpbGyk9/G9oGpC5OXhvnMB8GA1UdIwQYMBaAFJ5qCqQ5z+NHsE90aECm5DTFCbGn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1Ni9DREJDRjYzQTY2 OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQwZXdUM1JvUUtia05NVUpz YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tb0twRG5QNDBld1QzUm9RS2JrTk1VSnNhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REM1Ni9DREJDRjYzQTY2OTMxMUVFOThDRUFBNTBDNEY5QUUwMi9ubW9LcERuUDQw ZXdUM1JvUUtia05NVUpzYWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWPW4AzKuaT2CajENOsZe5Trmt/kx/p0FCOX6oeOdHIdTo3FBaSziO TV7fmPXv+F7+gqs9EGW6uZ/rqTzsPcEil/dLXduaSSXmEtH2+y0kqpK2jUqrJfV1 LI+wvsD4yQeqMhdU5pCs+dPu7oo/YjM02WOg90nr+3V1CvgmSsJrXGCdlpnw+lQB 8NqIuHvOsyV3T8QUii5bgzgEO/ClJmUtWwduaJrHPKZ3GEWTxaDR0xBkLsGNKjRZ ByMvexcgpz09gOO4bNfEJmdGwsFpcXAAI3rnPLlURbcg55NqRX5reWo7s+kSRqXA nyLisOnjke+s9+a6zmDI6EsvREECDpPd -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:43 2025 by rpki-client on console.sobornost.net