$ rpki-client -vvf rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft File: SOkLc7Sfo6317JGlzNI9rTXTxI4.mft (raw, json) Hash identifier: 0S1eT8Rvs0VLXedyWUcfkiAeehXNW/ncyxtSRF98y38= Subject key identifier: BB:06:BC:50:84:8F:23:9F:1B:AE:FA:A8:58:58:60:DC:39:73:32:7B Authority key identifier: 48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E Certificate issuer: /CN=A917D228/serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft Manifest number: 06CD Signing time: Sat 26 Apr 2025 21:43:09 +0000 Manifest this update: Sat 26 Apr 2025 21:43:08 +0000 Manifest next update: Sat 03 May 2025 21:43:08 +0000 Files and hashes: 1: SOkLc7Sfo6317JGlzNI9rTXTxI4.crl (hash: MnxOTjd5GrHg16L5wOC1ZlpIDWjftLamn1YIi62eoZE=) 2: 8CFEF8EE50AE11EBB71FB743C4F9AE02.roa (hash: xRXc4Qynp20VBH0uvYkKK7b4+52BnXGj7roDL8ZzWEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D228, serialNumber=48E90B73B49FA3ADF5EC91A5CCD23DAD35D3C48E Validity Not Before: Apr 26 21:43:08 2025 GMT Not After : May 3 21:43:08 2025 GMT Subject: CN=680d536c-3abb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e2:03:b7:55:65:00:27:21:54:66:09:72:bd: 57:22:13:5b:b6:df:90:32:e5:21:dd:a1:7f:8b:22: ce:9c:52:34:7b:38:a9:a4:32:cc:80:47:bd:e0:03: 78:86:4f:33:a4:66:61:f5:96:3c:95:61:b2:b3:77: 34:3b:14:72:6c:7c:14:98:75:76:75:6d:cb:fe:34: 70:e5:74:bb:10:23:c2:d9:18:19:03:cd:99:a6:96: 94:7f:82:5a:c4:e0:98:57:d0:15:3c:40:69:0d:f3: b1:a6:13:45:19:ce:52:c5:58:b7:ff:55:3e:90:96: 6d:2b:66:96:86:4b:51:42:44:16:c8:33:d8:39:3d: 0c:71:6c:25:f0:1a:56:2b:98:15:fa:f0:63:72:c6: 55:b9:c9:3d:a7:72:ec:07:d5:76:6b:d1:1b:66:47: 68:3a:9b:79:bb:4f:0d:bd:02:61:48:b9:e8:e9:32: c7:03:ff:d3:82:b8:f7:0b:a8:2e:d3:15:49:1e:27: 6e:14:ba:83:86:44:d9:d2:3d:97:2d:60:f1:15:81: 74:e7:f1:fb:94:80:7f:f8:9d:d8:55:39:28:1f:07: 0e:d2:2e:66:d5:4c:f2:61:64:20:91:f8:68:dc:ee: 94:3a:0f:fe:c5:bb:40:5c:b8:8c:05:f9:1e:05:9e: 34:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:06:BC:50:84:8F:23:9F:1B:AE:FA:A8:58:58:60:DC:39:73:32:7B X509v3 Authority Key Identifier: keyid:48:E9:0B:73:B4:9F:A3:AD:F5:EC:91:A5:CC:D2:3D:AD:35:D3:C4:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOkLc7Sfo6317JGlzNI9rTXTxI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D228/6B4D2DA850AC11EBAF178E3EC4F9AE02/SOkLc7Sfo6317JGlzNI9rTXTxI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:d5:d1:ca:a6:62:f6:b1:82:05:e2:26:9c:5b:d0:0e:da:2f: 27:5e:3e:5a:9e:0b:0e:ed:3d:b9:41:53:d4:c0:93:38:c2:0a: 40:2e:4a:15:fb:1c:9d:a7:15:dc:0a:39:06:25:e0:e9:d5:d5: 60:0a:91:18:24:df:ee:9f:5b:3c:cf:34:6a:d9:78:93:93:e3: 88:6d:15:09:a2:4d:6a:48:c7:f9:be:34:35:eb:b5:44:db:72: bd:1a:9a:f7:ae:9e:d4:ee:2a:11:67:a0:c2:ba:55:14:b7:ed: e0:e2:ff:2c:60:77:0e:75:37:cf:a2:5a:c2:0f:70:02:b1:a3: b9:47:14:f3:de:37:1f:73:c9:c9:48:de:0b:17:76:40:da:22: 4b:33:26:6a:3a:ae:91:3b:ff:03:8c:5e:5c:ee:64:d4:69:91: a3:3f:de:88:78:62:ed:6f:9b:c2:2b:41:82:f4:38:6f:00:a3: b1:10:56:ed:4f:1f:b7:79:00:14:05:36:00:76:92:08:68:90: 05:58:e5:58:9c:1f:df:b6:c6:7e:3b:44:5e:94:8f:75:2c:3c: 04:ab:1d:ff:fb:aa:f9:d4:0d:af:d7:a2:62:76:0b:18:ce:ba: 40:9b:b3:fa:e6:40:f6:b3:fc:9b:46:b4:21:64:c2:6a:d2:33: f2:28:94:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QyMjgxMTAvBgNVBAUTKDQ4RTkwQjczQjQ5RkEzQURGNUVDOTFBNUNDRDIzREFE MzVEM0M0OEUwHhcNMjUwNDI2MjE0MzA4WhcNMjUwNTAzMjE0MzA4WjAYMRYwFAYD VQQDEw02ODBkNTM2Yy0zYWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOIDt1VlACchVGYJcr1XIhNbtt+QMuUh3aF/iyLOnFI0ezippDLMgEe94AN4 hk8zpGZh9ZY8lWGys3c0OxRybHwUmHV2dW3L/jRw5XS7ECPC2RgZA82ZppaUf4Ja xOCYV9AVPEBpDfOxphNFGc5SxVi3/1U+kJZtK2aWhktRQkQWyDPYOT0McWwl8BpW K5gV+vBjcsZVuck9p3LsB9V2a9EbZkdoOpt5u08NvQJhSLno6TLHA//Tgrj3C6gu 0xVJHiduFLqDhkTZ0j2XLWDxFYF05/H7lIB/+J3YVTkoHwcO0i5m1UzyYWQgkfho 3O6UOg/+xbtAXLiMBfkeBZ40KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsGvFCE jyOfG676qFhYYNw5czJ7MB8GA1UdIwQYMBaAFEjpC3O0n6Ot9eyRpczSPa0108SO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDIyOC82QjREMkRBODUw QUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82MzE3Skdsek5JOXJUWFR4 STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPa0xjN1NmbzYzMTdKR2x6Tkk5clRYVHhJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDIyOC82QjREMkRBODUwQUMxMUVCQUYxNzhFM0VDNEY5QUUwMi9TT2tMYzdTZm82 MzE3Skdsek5JOXJUWFR4STQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF1dHKpmL2sYIF4iacW9AO2i8nXj5angsO7T25QVPUwJM4wgpALkoV +xydpxXcCjkGJeDp1dVgCpEYJN/un1s8zzRq2XiTk+OIbRUJok1qSMf5vjQ167VE 23K9Gpr3rp7U7ioRZ6DCulUUt+3g4v8sYHcOdTfPolrCD3ACsaO5RxTz3jcfc8nJ SN4LF3ZA2iJLMyZqOq6RO/8DjF5c7mTUaZGjP96IeGLtb5vCK0GC9DhvAKOxEFbt Tx+3eQAUBTYAdpIIaJAFWOVYnB/ftsZ+O0RelI91LDwEqx3/+6r51A2v16JidgsY zrpAm7P65kD2s/ybRrQhZMJq0jPyKJT3 -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:01 2025 by rpki-client on console.sobornost.net