$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: HsKSrkEPEm/qsSmmBYsX3BquWvj+90DgqFY06ag/X10= Subject key identifier: DB:61:34:2E:DA:B3:E2:40:C2:5F:AD:9C:B1:1F:25:44:6C:F7:41:D7 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 0157 Signing time: Sun 27 Apr 2025 03:04:21 +0000 Manifest this update: Sun 27 Apr 2025 03:04:21 +0000 Manifest next update: Sun 04 May 2025 03:04:21 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: BuE05D9QSdL+aN6awDJi+MbCIy9vlKxFeEYm0HbD8l0=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: gXQtBkkUAb9x4NlHq240u/Z9LPp8ccDpu+5MVL1TOAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E, serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Apr 27 03:04:21 2025 GMT Not After : May 4 03:04:21 2025 GMT Subject: CN=680d9eb5-6791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4c:fc:9d:52:56:74:7c:de:a9:a1:a6:71:94: d1:93:6b:2b:6f:ff:7c:9c:cd:ec:71:bd:d2:eb:3c: 1b:24:ef:10:27:b4:55:fe:3d:ec:87:66:9a:8a:f7: ef:56:9a:57:7a:30:4b:14:05:c5:8b:ba:b8:51:91: 72:be:25:c5:61:d9:7c:34:b3:93:3e:9a:42:79:57: e0:14:6d:27:a2:1c:b3:10:a4:a7:f1:13:7c:2d:5d: 4f:e4:8c:b9:f8:73:4a:a2:bb:75:be:5d:6f:76:d6: 44:d7:97:86:6b:27:5c:9c:63:fc:86:1f:91:60:aa: f5:fe:7c:28:d9:b6:3e:dc:f7:ac:52:ee:ca:07:c3: 91:89:c0:67:64:f0:8f:42:09:ae:5f:65:3d:8e:1f: 8e:92:ab:65:f5:28:a4:78:b0:07:7a:44:41:c6:d0: fa:82:de:73:a8:9e:36:8c:b4:45:9d:55:16:c9:35: ae:97:14:60:3b:0d:ab:88:d9:92:ba:c3:4e:40:57: 74:d3:ff:17:97:5c:32:1d:48:dc:04:f1:38:2e:7a: 52:4f:ac:2d:4f:5f:b3:50:0a:40:bd:20:f3:5d:d8: f0:19:a5:14:30:29:eb:3d:ca:83:66:65:31:3a:fd: 80:dc:9d:e5:a5:64:e2:07:82:f9:d6:39:4e:45:c7: 58:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:61:34:2E:DA:B3:E2:40:C2:5F:AD:9C:B1:1F:25:44:6C:F7:41:D7 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c8:18:a5:ce:dc:2c:6f:be:a0:f7:e1:48:50:de:3a:fe:79: bf:25:75:4c:6b:1d:95:a1:f7:c9:3b:a0:5c:d8:5a:10:0c:a5: 67:93:a7:db:e9:94:e4:87:c2:a4:63:a3:1d:36:14:07:95:c5: 5a:e3:59:3d:78:e7:ca:4e:bb:52:42:f0:d6:8d:6e:ce:7b:84: 90:14:1f:bb:e1:3e:37:59:9e:13:2d:c3:4e:e3:19:e9:dc:d5: a1:9a:67:c1:99:ec:66:7d:fe:8e:62:8b:f9:ee:db:37:86:f0: 5e:5e:04:a9:40:84:46:ce:9e:f9:62:f8:5c:8b:a7:7a:c9:6b: 6b:1b:ab:e6:c4:fa:8c:7e:66:3f:eb:60:2f:79:a1:c5:3d:16: 63:02:0f:3e:4e:99:fc:3a:39:ce:da:a0:1e:4d:af:aa:cc:7a: f4:2a:4a:48:29:08:ad:51:3d:2f:ec:ac:7b:f4:01:36:d2:2e: e4:7f:ff:aa:77:e1:14:c6:4c:5b:1e:51:df:1c:64:d5:38:13: 75:f2:5b:58:e1:2c:19:ab:ef:8c:dd:2d:69:aa:3c:97:14:c0: 4f:22:1e:0b:be:a0:e7:3f:cb:e9:bc:0c:10:49:ba:7b:02:55: 72:39:c2:3a:4a:c3:30:30:d9:58:5d:7a:1b:9b:36:b4:49:31: 27:6c:99:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjUwNDI3MDMwNDIxWhcNMjUwNTA0MDMwNDIxWjAYMRYwFAYD VQQDEw02ODBkOWViNS02NzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEz8nVJWdHzeqaGmcZTRk2srb/98nM3scb3S6zwbJO8QJ7RV/j3sh2aaivfv VppXejBLFAXFi7q4UZFyviXFYdl8NLOTPppCeVfgFG0nohyzEKSn8RN8LV1P5Iy5 +HNKort1vl1vdtZE15eGaydcnGP8hh+RYKr1/nwo2bY+3PesUu7KB8ORicBnZPCP QgmuX2U9jh+Okqtl9SikeLAHekRBxtD6gt5zqJ42jLRFnVUWyTWulxRgOw2riNmS usNOQFd00/8Xl1wyHUjcBPE4LnpST6wtT1+zUApAvSDzXdjwGaUUMCnrPcqDZmUx Ov2A3J3lpWTiB4L51jlORcdY+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNthNC7a s+JAwl+tnLEfJURs90HXMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBayBilztwsb76g9+FIUN46/nm/JXVMax2VoffJO6Bc2FoQDKVnk6fb 6ZTkh8KkY6MdNhQHlcVa41k9eOfKTrtSQvDWjW7Oe4SQFB+74T43WZ4TLcNO4xnp 3NWhmmfBmexmff6OYov57ts3hvBeXgSpQIRGzp75Yvhci6d6yWtrG6vmxPqMfmY/ 62AveaHFPRZjAg8+Tpn8OjnO2qAeTa+qzHr0KkpIKQitUT0v7Kx79AE20i7kf/+q d+EUxkxbHlHfHGTVOBN18ltY4SwZq++M3S1pqjyXFMBPIh4LvqDnP8vpvAwQSbp7 AlVyOcI6SsMwMNlYXXobmza0STEnbJkc -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:09 2025 by rpki-client on console.sobornost.net