$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: hN7s9Y0m8NNkmpWvIsj+NaiLZ28lSeljjjasCHWG2/4= Subject key identifier: A6:05:61:94:8D:33:29:71:16:EE:D1:74:FA:23:38:32:C0:97:FF:65 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 07BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 07A5 Signing time: Sat 26 Apr 2025 21:04:11 +0000 Manifest this update: Sat 26 Apr 2025 21:04:11 +0000 Manifest next update: Sat 03 May 2025 21:04:11 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: lnlYpStf9vW/jE+20j30atLy5+/OER3qFRWx800hN3s=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Apr 26 21:04:11 2025 GMT Not After : May 3 21:04:11 2025 GMT Subject: CN=680d4a4b-242d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:62:05:2b:22:5f:d2:17:ac:07:ef:ba:21:2c: 8e:30:f2:56:cd:14:f7:79:86:6d:d1:f9:b5:4b:50: bb:03:48:9b:7b:82:6e:c6:64:e3:07:fe:12:40:05: 8b:79:4a:4d:11:0c:3f:3a:58:fd:23:c6:f9:2c:17: 88:82:bd:d3:f4:d9:8c:b3:71:99:b2:61:7c:03:98: 27:19:f9:40:9b:2a:9b:82:09:6d:a2:6f:6e:b8:00: ed:7f:7f:22:87:89:2e:10:ab:48:15:93:be:90:9c: f7:80:fc:6f:ba:05:ee:e8:08:3b:38:f5:43:91:5f: ef:a4:d4:dd:6e:5c:dd:c0:ad:ac:72:c0:a9:51:23: 6b:34:9f:06:c7:89:cc:ad:d6:44:74:31:ec:ec:67: 7d:32:a9:1b:15:f4:59:9f:53:ba:eb:b7:c1:e6:eb: ba:ce:28:ee:1f:c5:51:d4:7f:f7:8a:88:88:5b:93: 59:84:b0:29:4c:0d:dc:60:15:da:5a:c5:3a:a9:49: b8:6f:e9:ab:b0:b1:dd:d2:02:1b:12:0a:38:de:4f: 3c:96:1b:d3:cd:d7:44:38:e9:1d:8b:f5:0b:2a:c1: d9:2a:56:77:bc:d7:69:51:b7:68:f8:50:98:80:6b: 3c:65:38:11:2d:4c:79:76:22:a2:13:56:88:af:71: f8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:05:61:94:8D:33:29:71:16:EE:D1:74:FA:23:38:32:C0:97:FF:65 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:3f:da:cf:3a:5c:1f:b3:7e:21:d6:00:c2:a0:50:36:3a:da: ca:dd:cd:39:12:cb:57:f2:14:1b:92:c3:4f:e9:4f:cd:e2:65: cd:4c:13:e8:54:9d:22:5c:eb:9d:6d:5f:e8:aa:d7:61:bd:76: 2e:a7:c3:77:d8:55:8e:e7:8b:a0:01:60:26:2c:e2:6c:48:af: cf:c5:71:84:69:c6:52:fe:8f:0f:1b:50:f8:e9:0d:a6:b1:78: ab:3c:c5:81:89:8d:a9:9d:12:28:0b:43:ec:33:20:2a:e0:b0: 5e:20:10:9f:56:d8:80:e7:8d:49:14:ab:12:67:27:0f:21:75: 86:f0:fa:4f:28:94:5c:b5:93:b0:4e:98:2b:9d:6b:2c:6a:fb: 1b:0e:27:fd:f8:a2:d4:1a:ea:d2:9e:69:77:71:4c:39:46:ca: 29:91:b3:35:63:5a:72:eb:5c:40:30:39:4e:5e:ee:35:8d:9b: a3:16:72:a3:69:5a:e3:c4:22:af:ad:94:fa:77:63:f9:0f:14: 3f:7f:e3:d7:1b:6b:8d:0a:a8:0e:92:ef:a4:45:04:29:0a:c6: 07:49:19:97:da:0f:7a:ce:f3:96:27:28:a9:f7:c2:4d:9f:ff: af:3f:f5:37:06:11:2a:88:b1:fb:83:e9:fc:29:04:f6:97:b1: 88:cd:9b:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUwNDI2MjEwNDExWhcNMjUwNTAzMjEwNDExWjAYMRYwFAYD VQQDEw02ODBkNGE0Yi0yNDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGIFKyJf0hesB++6ISyOMPJWzRT3eYZt0fm1S1C7A0ibe4JuxmTjB/4SQAWL eUpNEQw/Olj9I8b5LBeIgr3T9NmMs3GZsmF8A5gnGflAmyqbggltom9uuADtf38i h4kuEKtIFZO+kJz3gPxvugXu6Ag7OPVDkV/vpNTdblzdwK2scsCpUSNrNJ8Gx4nM rdZEdDHs7Gd9MqkbFfRZn1O667fB5uu6zijuH8VR1H/3ioiIW5NZhLApTA3cYBXa WsU6qUm4b+mrsLHd0gIbEgo43k88lhvTzddEOOkdi/ULKsHZKlZ3vNdpUbdo+FCY gGs8ZTgRLUx5diKiE1aIr3H45wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYFYZSN MylxFu7RdPojODLAl/9lMB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSP9rPOlwfs34h1gDCoFA2OtrK3c05EstX8hQbksNP6U/N4mXNTBPo VJ0iXOudbV/oqtdhvXYup8N32FWO54ugAWAmLOJsSK/PxXGEacZS/o8PG1D46Q2m sXirPMWBiY2pnRIoC0PsMyAq4LBeIBCfVtiA541JFKsSZycPIXWG8PpPKJRctZOw TpgrnWssavsbDif9+KLUGurSnml3cUw5RsopkbM1Y1py61xAMDlOXu41jZujFnKj aVrjxCKvrZT6d2P5DxQ/f+PXG2uNCqgOku+kRQQpCsYHSRmX2g96zvOWJyip98JN n/+vP/U3BhEqiLH7g+n8KQT2l7GIzZsJ -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:59 2025 by rpki-client on console.sobornost.net