$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: Gh+tkATsvIqbMHVCmZm01MdlBJy4ArqdeN5FLg42UI8= Subject key identifier: BF:45:0D:E6:ED:4E:0C:E8:D0:6F:12:63:83:8B:1C:73:6F:79:CF:EC Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0E3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0D1A Signing time: Sat 26 Apr 2025 18:56:06 +0000 Manifest this update: Sat 26 Apr 2025 18:56:06 +0000 Manifest next update: Sat 03 May 2025 18:56:06 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: zMsuZp5oinLmGjuQr4QH+ZzdF0xthz4RR4qG9syV0WA=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: A9/JcvDfgKQd6qAiZjQkRSb21sS+NrZxUQkh0433YzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3642 (0xe3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Apr 26 18:56:06 2025 GMT Not After : May 3 18:56:06 2025 GMT Subject: CN=680d2c46-9b01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8a:14:e5:59:bb:f4:5e:b1:2a:75:49:8e:fb: 9d:19:17:ae:cd:eb:30:81:ad:7a:16:fb:0d:6d:6c: 48:aa:b6:8e:f9:65:94:79:b9:c5:0d:98:08:98:3a: c4:bd:d3:c4:fc:be:c3:26:69:4b:e3:16:29:7c:0d: 71:fe:a9:ed:22:27:77:d3:79:5a:18:a1:2d:c5:42: 3a:5f:bf:ea:09:11:bb:e5:d3:04:fc:94:1e:1f:96: 3d:94:8b:23:8a:99:f5:a1:36:f1:4a:48:ab:29:d1: 75:a8:6b:31:d0:12:f8:6f:55:0c:e4:ae:64:26:66: 17:bf:b6:c5:f9:af:65:af:fa:77:c1:41:33:02:79: 92:88:a1:21:cc:8a:ea:ea:11:dd:38:8d:12:ec:ba: 6d:00:ea:e1:4c:b4:d8:e0:a4:87:6d:16:b2:1f:68: 70:5f:4d:e6:ef:aa:77:9d:5d:ab:66:9a:9d:67:49: cf:9f:0f:f8:84:fc:3b:6f:2d:35:11:35:b6:c3:ff: 13:97:a2:84:18:57:6b:51:41:8e:a7:e1:ed:22:f5: d7:6e:c2:20:3c:79:0d:01:97:94:87:6c:92:73:7d: 83:e5:1a:59:0a:1d:3f:a0:7b:04:95:11:e7:80:9d: 6e:56:e9:4e:8c:3f:36:b8:76:03:b0:cd:1e:5d:0c: 59:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:45:0D:E6:ED:4E:0C:E8:D0:6F:12:63:83:8B:1C:73:6F:79:CF:EC X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:63:c8:6a:87:a1:9e:0e:8f:be:2f:eb:4a:bd:e1:b3:ea:45: 17:cb:3c:b8:bb:49:a1:6d:09:96:52:64:1b:34:15:22:3d:f0: 23:b4:cd:20:6e:6b:16:4c:38:d9:58:be:fe:08:c2:40:dd:55: 35:36:78:00:da:ac:b6:b1:c3:73:98:6c:9c:ed:6d:e5:d4:48: f8:9a:82:6e:0c:bf:64:3a:06:a1:d9:c1:52:e3:e8:bc:09:a4: b4:67:89:d2:e2:ac:34:c0:f2:21:31:56:d9:a7:e0:fa:3b:34: f8:e1:3f:e7:15:56:41:db:fb:75:65:ee:1c:ff:8a:5c:2d:17: aa:a3:5c:4a:cc:50:2d:7d:02:19:93:9c:ed:80:3d:d5:5a:2d: 76:dd:41:b9:ea:97:f7:bc:5d:b6:41:20:be:0b:60:a2:d7:42: a0:66:cc:17:b2:af:d7:41:92:ff:4f:21:aa:41:18:9f:44:d1: a4:1a:c5:82:e1:99:00:31:19:04:b8:3f:12:7c:21:fc:40:08: 79:53:ea:76:4c:2a:f3:8e:b1:f9:40:5a:10:ec:82:bc:30:fe: e5:57:37:5d:d7:45:89:a4:01:77:1e:ef:1c:03:e5:3a:d5:c7: f2:7f:80:08:32:4d:d7:c3:ce:fb:74:5e:61:a6:ac:43:79:cb: 23:6f:30:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUwNDI2MTg1NjA2WhcNMjUwNTAzMTg1NjA2WjAYMRYwFAYD VQQDEw02ODBkMmM0Ni05YjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIoU5Vm79F6xKnVJjvudGReuzeswga16FvsNbWxIqraO+WWUebnFDZgImDrE vdPE/L7DJmlL4xYpfA1x/qntIid303laGKEtxUI6X7/qCRG75dME/JQeH5Y9lIsj ipn1oTbxSkirKdF1qGsx0BL4b1UM5K5kJmYXv7bF+a9lr/p3wUEzAnmSiKEhzIrq 6hHdOI0S7LptAOrhTLTY4KSHbRayH2hwX03m76p3nV2rZpqdZ0nPnw/4hPw7by01 ETW2w/8Tl6KEGFdrUUGOp+HtIvXXbsIgPHkNAZeUh2ySc32D5RpZCh0/oHsElRHn gJ1uVulOjD82uHYDsM0eXQxZ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9FDebt Tgzo0G8SY4OLHHNvec/sMB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOY8hqh6GeDo++L+tKveGz6kUXyzy4u0mhbQmWUmQbNBUiPfAjtM0g bmsWTDjZWL7+CMJA3VU1NngA2qy2scNzmGyc7W3l1Ej4moJuDL9kOgah2cFS4+i8 CaS0Z4nS4qw0wPIhMVbZp+D6OzT44T/nFVZB2/t1Ze4c/4pcLReqo1xKzFAtfQIZ k5ztgD3VWi123UG56pf3vF22QSC+C2Ci10KgZswXsq/XQZL/TyGqQRifRNGkGsWC 4ZkAMRkEuD8SfCH8QAh5U+p2TCrzjrH5QFoQ7IK8MP7lVzdd10WJpAF3Hu8cA+U6 1cfyf4AIMk3Xw877dF5hpqxDecsjbzDq -----END CERTIFICATE-----Generated at Sat Apr 26 21:01:54 2025 by rpki-client on console.sobornost.net