$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: BksF4tbB+DepYPsWXM5+0yrz9Z8ViguLOFhfzSMjT44= Subject key identifier: 1F:D0:40:CA:D7:4E:BB:A5:E4:15:8D:50:29:13:15:38:1B:AE:EC:C2 Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 070C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 0705 Signing time: Sat 26 Apr 2025 21:35:17 +0000 Manifest this update: Sat 26 Apr 2025 21:35:17 +0000 Manifest next update: Sat 03 May 2025 21:35:17 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: 3ZDx4VH2vZf4NhRzmMW9Wjw+pr/ckJwy576potA3bH4=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1804 (0x70c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4, serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Apr 26 21:35:17 2025 GMT Not After : May 3 21:35:17 2025 GMT Subject: CN=680d5195-5fc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:11:96:c8:ac:60:5e:56:3a:23:69:a5:f0:ca: af:87:88:b2:8a:f9:64:c8:9b:27:37:bb:6e:7f:1c: e2:09:73:39:8c:09:d4:f1:4d:c3:00:3c:ab:4c:d4: 17:64:23:fa:6d:4b:6e:84:14:d0:f7:c9:44:76:a5: 5f:44:7f:9c:8d:46:ba:0e:7f:2b:e6:f6:9e:b5:c9: 68:dd:52:e0:3a:98:f7:db:4a:38:a2:fb:43:7a:10: 27:7f:62:fa:ec:8c:f3:58:66:fe:00:32:af:4d:4d: 31:69:10:63:6b:66:3d:11:75:70:3e:77:8c:ea:5b: fe:b8:95:0d:57:36:92:07:32:c0:db:1c:e9:01:11: c0:a5:00:f4:a7:0a:de:15:e4:da:e3:f5:64:79:49: 19:2b:51:04:2c:92:7a:bb:c9:56:30:0e:8a:bf:e6: b7:77:a9:54:3a:21:1b:77:3c:f1:27:30:7b:51:83: 89:61:4d:9b:89:44:3d:fe:a5:c3:a6:3f:cc:bc:27: ba:59:e4:73:3e:09:99:a7:47:bd:5d:7a:a0:18:4b: 7f:af:fc:be:ec:66:45:63:a1:d2:19:79:36:b8:06: 1d:33:c2:73:28:71:05:57:6c:b7:16:4e:ce:53:65: bd:6e:c3:6f:3a:80:fc:16:d5:3e:8c:81:5c:05:57: b1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D0:40:CA:D7:4E:BB:A5:E4:15:8D:50:29:13:15:38:1B:AE:EC:C2 X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:5b:7c:3d:48:41:22:b1:14:3c:e3:83:ce:4a:8a:1b:e9:cb: 0b:10:a7:7d:fe:22:49:00:f2:94:d7:1b:a8:d8:44:b5:09:d3: 07:6b:62:3e:65:21:56:01:17:8f:72:17:bb:5a:e7:e6:b4:ba: 01:36:f4:4e:63:f5:d0:1b:ff:6d:d9:c6:83:c3:df:0c:be:0f: 0e:48:07:e7:38:c9:d8:ff:1e:9b:de:a0:ba:ae:b1:bc:e4:65: 00:f7:f5:6a:c3:13:f6:16:f9:c1:4b:b9:ad:16:61:13:fb:e8: c7:27:79:04:5f:46:1c:d1:29:2e:0d:79:08:3e:3d:31:67:28: 8d:6a:eb:c6:96:c6:95:06:a9:0c:9e:40:6f:81:a1:40:b5:0d: 87:eb:fe:9f:25:dc:28:b0:39:81:23:91:1b:6d:bc:c0:b0:c2: 75:40:3f:6d:08:fd:10:ac:42:07:c2:d8:2c:5a:95:60:91:16: 8c:c3:02:77:c0:c1:ff:c3:3e:b4:2f:5a:fb:87:0a:ea:e4:b4: 56:7e:0c:e4:f2:b2:9a:35:14:e3:6d:f0:b6:91:9c:ff:5c:5f: 34:69:4b:b8:bd:f2:36:0f:3b:11:5f:ee:c4:b1:69:a4:fc:23: cf:f7:00:a4:32:d0:df:33:86:2b:72:de:35:a7:a4:bc:6f:4d: 39:07:ce:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjUwNDI2MjEzNTE3WhcNMjUwNTAzMjEzNTE3WjAYMRYwFAYD VQQDEw02ODBkNTE5NS01ZmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BGWyKxgXlY6I2ml8Mqvh4iyivlkyJsnN7tufxziCXM5jAnU8U3DADyrTNQX ZCP6bUtuhBTQ98lEdqVfRH+cjUa6Dn8r5vaetclo3VLgOpj320o4ovtDehAnf2L6 7IzzWGb+ADKvTU0xaRBja2Y9EXVwPneM6lv+uJUNVzaSBzLA2xzpARHApQD0pwre FeTa4/VkeUkZK1EELJJ6u8lWMA6Kv+a3d6lUOiEbdzzxJzB7UYOJYU2biUQ9/qXD pj/MvCe6WeRzPgmZp0e9XXqgGEt/r/y+7GZFY6HSGXk2uAYdM8JzKHEFV2y3Fk7O U2W9bsNvOoD8FtU+jIFcBVexTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/QQMrX Trul5BWNUCkTFTgbruzCMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQW3w9SEEisRQ844POSoob6csLEKd9/iJJAPKU1xuo2ES1CdMHa2I+ ZSFWARePche7WufmtLoBNvROY/XQG/9t2caDw98Mvg8OSAfnOMnY/x6b3qC6rrG8 5GUA9/VqwxP2FvnBS7mtFmET++jHJ3kEX0Yc0SkuDXkIPj0xZyiNauvGlsaVBqkM nkBvgaFAtQ2H6/6fJdwosDmBI5EbbbzAsMJ1QD9tCP0QrEIHwtgsWpVgkRaMwwJ3 wMH/wz60L1r7hwrq5LRWfgzk8rKaNRTjbfC2kZz/XF80aUu4vfI2DzsRX+7EsWmk /CPP9wCkMtDfM4Yrct41p6S8b005B86j -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:58 2025 by rpki-client on console.sobornost.net