$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: cnEjEJJsBmul39nbwfWGYsre+sWn58Ohee8DlBuuZVg= Subject key identifier: E0:4D:06:60:B2:0B:51:37:78:F5:4D:71:97:F7:C1:B6:9C:9D:E3:39 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 0391 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 0385 Signing time: Sun 27 Apr 2025 00:28:50 +0000 Manifest this update: Sun 27 Apr 2025 00:28:49 +0000 Manifest next update: Sun 04 May 2025 00:28:49 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: 43xG9t/ruyPXZM6cg18GISLvsfswFIiUqB6+nat4Vk4=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 913 (0x391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Apr 27 00:28:49 2025 GMT Not After : May 4 00:28:49 2025 GMT Subject: CN=680d7a42-225c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:45:95:0d:a2:52:71:3f:f3:f4:50:12:06: de:ee:3a:cf:bc:07:b1:2e:03:ac:b9:f8:1f:05:ed: a1:fc:d1:9b:b4:55:f5:2e:ba:7a:d4:37:76:27:d0: 6c:ff:16:34:32:23:2e:34:ab:3b:c2:f5:41:a1:70: f9:f2:3d:1b:99:cf:62:6d:66:61:c7:f0:0d:cb:de: 1c:88:84:63:92:dd:77:6c:6e:4f:1c:87:a6:ef:e1: 2c:3b:e1:2e:45:77:05:b1:1d:64:cd:e9:27:22:31: 47:64:fa:14:b7:45:71:11:a8:26:95:05:08:bb:c9: 9a:f1:80:df:4f:9f:90:22:77:89:db:e9:a9:f4:c9: eb:05:56:f3:46:c5:2b:f9:25:91:b7:7a:02:33:dc: 0e:f7:8b:e1:63:70:8f:76:16:f2:c7:e3:3e:2a:ee: a5:28:ae:23:2c:8d:a7:10:0b:32:28:64:96:cc:ea: 53:e8:da:1d:4b:68:73:90:c4:f1:77:1a:4a:b5:34: d1:82:56:1e:7f:b3:e3:f7:4d:17:eb:c5:c9:ef:0f: 43:34:db:0a:c4:80:dc:99:1a:08:90:d4:ed:d9:c9: c7:68:11:b2:90:29:3d:75:ee:e9:22:f3:eb:74:c4: 09:67:d0:c9:47:1b:58:af:60:fa:00:e7:86:f8:9d: c2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4D:06:60:B2:0B:51:37:78:F5:4D:71:97:F7:C1:B6:9C:9D:E3:39 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ae:ab:38:20:86:80:29:5e:15:e3:3c:db:cf:52:69:4c:dd: 20:9b:ea:b6:0a:4e:44:d2:ef:de:f8:0c:12:fe:48:04:98:41: 42:3e:bc:60:ad:ce:20:cd:4f:2b:38:0d:40:18:1d:ea:b1:81: e9:27:92:71:2e:4a:fa:25:a2:56:7e:0f:cc:84:16:5a:96:af: 6c:4a:62:d8:01:69:31:df:be:0d:7d:58:6e:e3:82:e8:76:4e: 82:09:21:ad:b2:34:43:02:e8:1d:67:23:b3:4d:3f:98:c3:96: 24:41:41:8d:61:ef:89:12:3f:47:d4:c5:cb:21:34:4f:2d:05: b8:3f:38:f2:77:99:47:f8:db:e0:3a:3b:5e:57:48:d6:7d:6f: 1c:d9:c7:c3:cb:96:c2:aa:0e:2d:c7:77:4c:4d:6f:c2:7f:25: 6b:d8:dc:5b:d7:e7:63:ba:86:ef:2d:06:20:b8:cc:af:1b:76: 01:dc:77:b5:8c:aa:b6:8a:de:cc:8a:5f:15:0b:a1:2a:aa:24: 5a:86:13:cc:b4:bb:4d:3f:4a:8e:56:0e:10:f1:7a:4d:67:0b: c6:f1:79:3a:0d:47:d8:ec:ff:b1:78:a9:60:38:55:3d:14:08: 8b:83:7a:dc:05:31:69:be:f8:6a:a3:8e:d1:5f:34:e5:fa:a8: 15:6d:9d:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwNDI3MDAyODQ5WhcNMjUwNTA0MDAyODQ5WjAYMRYwFAYD VQQDEw02ODBkN2E0Mi0yMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBhFlQ2iUnE/8/RQEgbe7jrPvAexLgOsufgfBe2h/NGbtFX1Lrp61Dd2J9Bs /xY0MiMuNKs7wvVBoXD58j0bmc9ibWZhx/ANy94ciIRjkt13bG5PHIem7+EsO+Eu RXcFsR1kzeknIjFHZPoUt0VxEagmlQUIu8ma8YDfT5+QIneJ2+mp9MnrBVbzRsUr +SWRt3oCM9wO94vhY3CPdhbyx+M+Ku6lKK4jLI2nEAsyKGSWzOpT6NodS2hzkMTx dxpKtTTRglYef7Pj900X68XJ7w9DNNsKxIDcmRoIkNTt2cnHaBGykCk9de7pIvPr dMQJZ9DJRxtYr2D6AOeG+J3COwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBNBmCy C1E3ePVNcZf3wbacneM5MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQrqs4IIaAKV4V4zzbz1JpTN0gm+q2Ck5E0u/e+AwS/kgEmEFCPrxg rc4gzU8rOA1AGB3qsYHpJ5JxLkr6JaJWfg/MhBZalq9sSmLYAWkx374NfVhu44Lo dk6CCSGtsjRDAugdZyOzTT+Yw5YkQUGNYe+JEj9H1MXLITRPLQW4Pzjyd5lH+Nvg OjteV0jWfW8c2cfDy5bCqg4tx3dMTW/CfyVr2Nxb1+djuobvLQYguMyvG3YB3He1 jKq2it7Mil8VC6EqqiRahhPMtLtNP0qOVg4Q8XpNZwvG8Xk6DUfY7P+xeKlgOFU9 FAiLg3rcBTFpvvhqo47RXzTl+qgVbZ3Z -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:48 2025 by rpki-client on console.sobornost.net