$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft File: XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft (raw, json) Hash identifier: PDhyOXwZZGvVte2V03h2P2eTpf3uyI5E6yYUCtu2CEg= Subject key identifier: CB:07:91:37:0B:59:C6:5D:88:86:EC:F1:E2:59:62:8F:D6:D4:5E:9A Authority key identifier: 5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC Certificate issuer: /CN=A914F870/serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft Manifest number: 33 Signing time: Sun 27 Apr 2025 06:27:27 +0000 Manifest this update: Sun 27 Apr 2025 06:27:27 +0000 Manifest next update: Sun 04 May 2025 06:27:27 +0000 Files and hashes: 1: XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl (hash: MipKYjtyaEeP6URjHDbmY4hvsXouDwkSManRhoMJQoc=) 2: 212A832AD7E311EF86266212C4F9AE02.roa (hash: OADH0Zf3ANJ0fVSGo4++5SGmG3UFA33H5Jy/cHOt0/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Validity Not Before: Apr 27 06:27:27 2025 GMT Not After : May 4 06:27:27 2025 GMT Subject: CN=680dce4f-acf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:70:08:e2:2b:76:91:e0:9b:52:e3:ef:2c:ee: 59:3c:a8:6a:8a:13:bc:a7:d6:d1:92:4c:99:75:c2: e6:ed:8d:47:1d:8b:5c:42:26:b7:21:c8:a9:20:dc: 04:fd:3c:94:f7:d0:8d:12:6a:f7:1d:b3:60:b2:d4: 2a:e5:22:00:9a:cc:c7:e8:e3:c8:58:be:f9:bd:91: ea:0f:da:eb:14:b0:07:e2:eb:2e:78:9c:0f:df:b0: 73:f5:da:be:54:e7:15:ff:39:3f:3e:2f:51:64:a5: 59:60:ff:c5:01:de:0e:78:a5:7e:cd:79:30:20:10: 10:7e:dc:6e:9f:9d:00:0b:8b:73:34:10:7a:81:2a: c3:99:80:e6:e6:bd:fd:63:e1:78:e3:c8:51:2f:5a: e8:7d:90:b4:2c:bb:a8:60:10:5c:07:66:96:94:5c: 0a:37:33:33:33:6f:2e:8b:63:d9:21:45:6a:7a:1d: 78:79:14:b4:40:b9:ac:53:07:dd:fe:27:2e:c1:32: 72:db:30:99:54:a8:01:d4:8c:11:fc:9d:f1:35:14: 8c:e9:41:4b:62:2b:26:15:e1:1d:2b:02:99:18:1f: 2b:8a:39:31:ff:68:22:c4:be:15:4c:08:03:81:ab: fd:61:71:c4:5e:cf:2c:24:48:12:76:ef:12:b0:a0: d1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:07:91:37:0B:59:C6:5D:88:86:EC:F1:E2:59:62:8F:D6:D4:5E:9A X509v3 Authority Key Identifier: keyid:5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:d5:44:e2:e1:c2:51:ce:56:f5:b3:2c:2b:a1:29:b7:a9:21: 5c:c8:a8:ac:c9:df:b4:16:23:75:51:0d:46:c6:ac:34:f5:05: 40:61:17:38:65:91:88:65:55:a6:08:31:77:13:71:fc:d0:46: 42:fd:3a:50:41:d7:bc:83:dc:68:99:c1:8e:e7:f5:99:ad:2b: a4:44:35:e6:23:f3:64:33:62:67:a6:4e:f1:63:87:c8:e1:b8: aa:0d:b3:40:32:71:9b:aa:6b:56:48:6e:df:2f:06:7f:f8:c7: 92:bf:0c:ec:5f:e9:f9:ed:15:dc:8e:e6:54:88:0d:6d:50:e2: 62:0b:bc:2c:d2:ea:21:a4:b5:0c:2a:f9:73:d5:3a:c3:57:f4: 23:50:d6:ce:53:c2:3f:0b:d1:69:fc:56:c0:a6:02:20:94:8e: 05:04:90:36:15:c6:9f:d5:e4:7c:cc:4d:c0:44:12:08:93:0b: 5c:f9:eb:5c:8a:2c:43:cb:3c:6a:e3:3e:33:a5:4a:ba:48:5e: 44:b4:0e:60:e2:9e:44:e1:33:e1:2a:a7:e5:20:28:cd:b6:72: 82:a4:50:dc:9d:d5:30:41:e2:bf:f3:57:5a:63:10:49:4e:d0: a2:df:cf:04:62:93:9e:57:0b:0d:2c:d0:76:ef:43:0c:af:53: 9f:10:ee:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Rjg3MDExMC8GA1UEBRMoNUQ1NUYxNTA5QjZGMDM0MjREMjk0NEY4MTFGODY5OTM4 MDk5QkJCQzAeFw0yNTA0MjcwNjI3MjdaFw0yNTA1MDQwNjI3MjdaMBgxFjAUBgNV BAMTDTY4MGRjZTRmLWFjZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAcAjiK3aR4JtS4+8s7lk8qGqKE7yn1tGSTJl1wubtjUcdi1xCJrchyKkg3AT9 PJT30I0Savcds2Cy1CrlIgCazMfo48hYvvm9keoP2usUsAfi6y54nA/fsHP12r5U 5xX/OT8+L1FkpVlg/8UB3g54pX7NeTAgEBB+3G6fnQALi3M0EHqBKsOZgObmvf1j 4XjjyFEvWuh9kLQsu6hgEFwHZpaUXAo3MzMzby6LY9khRWp6HXh5FLRAuaxTB93+ Jy7BMnLbMJlUqAHUjBH8nfE1FIzpQUtiKyYV4R0rApkYHyuKOTH/aCLEvhVMCAOB q/1hccRezywkSBJ27xKwoNFpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyweRNwtZ xl2Ihuzx4llij9bUXpowHwYDVR0jBBgwFoAUXVXxUJtvA0JNKUT4Efhpk4CZu7ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRGODcwL0M5MjQyNDZBRDdF MjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBKTktVVDRFZmhwazRDWnU3 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFZYeFVKdHZBMEpOS1VUNEVmaHBrNENadTd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRG ODcwL0M5MjQyNDZBRDdFMjExRUZBRjBCM0I3REM0RjlBRTAyL1hWWHhVSnR2QTBK TktVVDRFZmhwazRDWnU3dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALrVROLhwlHOVvWzLCuhKbepIVzIqKzJ37QWI3VRDUbGrDT1BUBhFzhl kYhlVaYIMXcTcfzQRkL9OlBB17yD3GiZwY7n9ZmtK6RENeYj82QzYmemTvFjh8jh uKoNs0AycZuqa1ZIbt8vBn/4x5K/DOxf6fntFdyO5lSIDW1Q4mILvCzS6iGktQwq +XPVOsNX9CNQ1s5Twj8L0Wn8VsCmAiCUjgUEkDYVxp/V5HzMTcBEEgiTC1z561yK LEPLPGrjPjOlSrpIXkS0DmDinkThM+Eqp+UgKM22coKkUNyd1TBB4r/zV1pjEElO 0KLfzwRik55XCw0s0HbvQwyvU58Q7g4= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:46 2025 by rpki-client on console.sobornost.net