$ rpki-client -vvf rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft File: hkRKM0kVEhS08nEbLF2gy5nlDxM.mft (raw, json) Hash identifier: kzYfJqSozw42Ibi6mZCiVJBXPzaij8t+3nYTIG4VkTo= Subject key identifier: 1E:B3:C2:92:BE:B9:C8:F2:51:00:AF:52:25:3F:DA:37:34:EB:1D:94 Authority key identifier: 86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 Certificate issuer: /CN=A915C48D/serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft Manifest number: 50 Signing time: Sun 27 Apr 2025 06:10:15 +0000 Manifest this update: Sun 27 Apr 2025 06:10:15 +0000 Manifest next update: Sun 04 May 2025 06:10:15 +0000 Files and hashes: 1: hkRKM0kVEhS08nEbLF2gy5nlDxM.crl (hash: MOxlhN9x1gQYWDmCDfKa/gh+Yje+GZbwM/3Os+NE7y0=) 2: DE1B9460EDF511EF86CB7315C4F9AE02.roa (hash: 1aGxRTXwu6ybjRU4JNrtMNFs2xwtsiTJtnAFcF9bvmg=) 3: 55EFA6C0ECF711EF88590A69C4F9AE02.roa (hash: FC93rdM/vdZQAg1QRdAMhOId3DELs7nG9wTwZW4DnWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C48D, serialNumber=86444A3349151214B4F2711B2C5DA0CB99E50F13 Validity Not Before: Apr 27 06:10:15 2025 GMT Not After : May 4 06:10:15 2025 GMT Subject: CN=680dca47-782c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:40:72:c4:c8:ce:7d:81:d9:43:d6:4a:59:96: ce:f0:2f:26:29:15:83:04:46:0c:80:45:c3:9f:f1: d5:cf:05:2f:28:0b:b7:23:ba:95:3f:42:9a:bf:ce: a0:ba:e5:5f:54:1e:0a:f7:ff:0a:20:11:e4:8e:a2: d4:97:1a:ce:c5:1e:1d:6b:05:b2:79:ff:a5:5c:ef: c4:3a:34:2f:c4:81:5e:0d:db:78:80:41:23:18:cd: e1:b3:41:34:b2:40:af:03:f3:21:5d:a5:a8:59:96: df:6f:25:50:98:bc:df:dc:30:9c:f5:e6:45:c2:f3: 39:cf:e5:5d:a4:92:94:8f:54:0e:00:f2:8f:63:b8: 72:1a:c5:e4:09:7a:77:74:ba:9a:5f:45:38:bf:ce: b9:b2:39:50:c6:96:1e:05:f3:1c:44:ec:27:c4:da: c9:0c:e8:8a:83:ac:40:5f:21:67:f3:f6:ef:be:29: 6e:b3:6b:4f:ff:03:46:11:c7:34:68:7e:16:39:ff: 13:5f:0d:34:cb:1f:ce:ed:9d:f5:9f:aa:53:55:54: 8d:c9:67:e8:95:c3:3b:6a:00:fd:c1:87:82:7a:b9: cf:d3:6d:fa:67:9d:58:2f:72:a6:71:a2:2d:da:fb: 03:12:f5:e9:38:00:40:64:db:39:4b:09:58:cb:b4: 8f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B3:C2:92:BE:B9:C8:F2:51:00:AF:52:25:3F:DA:37:34:EB:1D:94 X509v3 Authority Key Identifier: keyid:86:44:4A:33:49:15:12:14:B4:F2:71:1B:2C:5D:A0:CB:99:E5:0F:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkRKM0kVEhS08nEbLF2gy5nlDxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C48D/0C2158B2B2C911EF903F7883C4F9AE02/hkRKM0kVEhS08nEbLF2gy5nlDxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:70:a0:b2:05:f6:f6:89:5b:06:7b:b3:36:9b:19:5e:25:42: 15:86:8c:ae:30:bb:48:80:c3:1a:c5:0f:8a:75:b7:4b:cc:4e: 80:eb:78:a5:e8:07:d5:19:64:b1:61:fa:e0:90:24:93:08:4d: 12:61:8a:c6:e3:96:b1:31:31:68:ff:d1:e5:4f:d6:67:c4:be: 8d:f6:aa:af:79:d3:18:b5:0c:26:57:34:27:1c:01:d7:5a:5e: 12:b9:c2:78:d5:f6:0e:54:5a:9e:f6:65:62:9c:00:9d:4c:d4: 62:88:62:c9:13:99:b9:c3:0f:6f:ac:94:ac:8b:53:d2:bf:49: 06:56:f6:21:65:c4:33:e2:2c:e7:2d:ca:b9:4e:00:55:fe:ec: 75:58:7c:26:93:1f:48:49:1b:09:81:e8:5b:ff:fd:7c:ba:0e: 8b:90:f7:25:20:6b:3d:7f:95:a6:fe:fd:f3:37:55:22:b7:40: 4c:80:44:28:29:ce:ba:ad:20:d6:c1:30:5b:ef:96:ca:c2:ea: 94:54:d1:d4:de:a2:43:82:49:17:e9:5c:de:d3:a9:b0:eb:6f: f0:71:e1:8e:73:72:5c:12:7a:c8:4a:c8:c8:e3:9c:4a:02:54: c1:67:17:4c:3e:e1:e7:af:24:ee:94:72:8d:72:61:40:72:b9: d3:a2:1d:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QzQ4RDExMC8GA1UEBRMoODY0NDRBMzM0OTE1MTIxNEI0RjI3MTFCMkM1REEwQ0I5 OUU1MEYxMzAeFw0yNTA0MjcwNjEwMTVaFw0yNTA1MDQwNjEwMTVaMBgxFjAUBgNV BAMTDTY4MGRjYTQ3LTc4MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvQHLEyM59gdlD1kpZls7wLyYpFYMERgyARcOf8dXPBS8oC7cjupU/Qpq/zqC6 5V9UHgr3/wogEeSOotSXGs7FHh1rBbJ5/6Vc78Q6NC/EgV4N23iAQSMYzeGzQTSy QK8D8yFdpahZlt9vJVCYvN/cMJz15kXC8znP5V2kkpSPVA4A8o9juHIaxeQJend0 uppfRTi/zrmyOVDGlh4F8xxE7CfE2skM6IqDrEBfIWfz9u++KW6za0//A0YRxzRo fhY5/xNfDTTLH87tnfWfqlNVVI3JZ+iVwztqAP3Bh4J6uc/TbfpnnVgvcqZxoi3a +wMS9ek4AEBk2zlLCVjLtI/rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHrPCkr65 yPJRAK9SJT/aNzTrHZQwHwYDVR0jBBgwFoAUhkRKM0kVEhS08nEbLF2gy5nlDxMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVDNDhELzBDMjE1OEIyQjJD OTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhTMDhuRWJMRjJneTVubER4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGtSS00wa1ZFaFMwOG5FYkxGMmd5NW5sRHhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVD NDhELzBDMjE1OEIyQjJDOTExRUY5MDNGNzg4M0M0RjlBRTAyL2hrUktNMGtWRWhT MDhuRWJMRjJneTVubER4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJJwoLIF9vaJWwZ7szabGV4lQhWGjK4wu0iAwxrFD4p1t0vMToDreKXo B9UZZLFh+uCQJJMITRJhisbjlrExMWj/0eVP1mfEvo32qq950xi1DCZXNCccAdda XhK5wnjV9g5UWp72ZWKcAJ1M1GKIYskTmbnDD2+slKyLU9K/SQZW9iFlxDPiLOct yrlOAFX+7HVYfCaTH0hJGwmB6Fv//Xy6DouQ9yUgaz1/lab+/fM3VSK3QEyARCgp zrqtINbBMFvvlsrC6pRU0dTeokOCSRfpXN7TqbDrb/Bx4Y5zclwSeshKyMjjnEoC VMFnF0w+4eevJO6Uco1yYUByudOiHT0= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:47 2025 by rpki-client on console.sobornost.net