$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: E8gB8QzEox/7fZLtb51x1hcAVUSQrsvTY4wcG/dqIiI= Subject key identifier: E8:6B:AE:DE:C7:38:7E:4F:15:BC:21:7C:50:E7:49:54:5B:7A:10:38 Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0A99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0A91 Signing time: Sat 26 Apr 2025 19:25:01 +0000 Manifest this update: Sat 26 Apr 2025 19:25:00 +0000 Manifest next update: Sat 03 May 2025 19:25:00 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: Y5k6jyrbTUhz0v0kyF5LN6BwwXAbu1+SpXhfQlZ6o2Y=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2713 (0xa99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Apr 26 19:25:00 2025 GMT Not After : May 3 19:25:00 2025 GMT Subject: CN=680d330d-7cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:96:ad:ab:e6:22:99:02:50:19:f7:77:7d: 96:db:59:55:98:a5:13:43:46:cf:f8:be:07:b3:c5: dc:eb:fb:df:61:7d:5b:e3:09:bd:4d:93:8d:13:fb: e1:64:4d:ef:ac:21:be:cc:42:6a:dc:dd:af:4c:3e: 5c:e7:7a:f4:86:e8:c8:2e:c3:4e:05:38:41:dd:37: f5:1b:77:cc:82:4c:4b:b2:c2:cb:be:39:21:3f:97: aa:f3:47:66:cb:5d:a8:ea:87:af:47:33:85:11:df: 54:43:e3:ae:5c:66:9b:90:13:ab:bb:d3:6a:06:b9: c2:95:d4:c2:85:5f:3c:d7:dd:4f:79:93:57:33:36: 1b:a8:74:cd:a6:a8:1c:35:c2:74:62:8c:c8:1a:92: 69:79:91:82:31:f4:7c:5a:f9:45:e1:af:fa:d0:b5: c4:5f:9f:74:5d:7f:ca:64:36:7c:63:f9:68:94:a0: 6a:cd:73:73:06:e9:3a:23:da:5e:ea:a4:83:83:b2: 6d:1f:27:49:fe:cd:67:2d:88:b4:00:f0:f4:ae:e0: ec:d0:1f:cf:b1:d0:10:a1:da:ae:13:fc:3f:2d:b3: 8f:78:52:19:21:6e:4f:2b:0a:1c:75:2c:92:5c:c8: 06:3b:f2:17:a5:a6:f0:d9:08:8f:79:ab:71:23:20: 4e:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6B:AE:DE:C7:38:7E:4F:15:BC:21:7C:50:E7:49:54:5B:7A:10:38 X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:2a:a9:d5:16:19:41:05:24:38:ca:87:ad:d7:06:04:ff:a4: b2:c6:82:c9:fb:a9:a9:fc:80:eb:4a:e8:dd:8b:56:9d:37:82: 18:c7:18:64:eb:73:51:b2:31:bb:14:08:f1:51:f2:ba:9a:c9: e2:e8:22:01:03:8e:cf:54:15:56:34:38:56:48:21:48:bb:5c: 6c:d3:5c:d6:54:ee:c3:21:c2:7b:12:70:1f:83:02:0d:c9:3d: 32:a1:6b:dc:5e:5a:20:4e:48:80:a0:97:1f:a8:8a:e9:85:9e: be:5d:a4:1d:b7:82:ec:c5:46:b0:65:06:4e:b2:7d:eb:bf:02: 5a:27:48:0c:a5:f1:29:ce:0c:8f:55:ef:c4:0f:27:f6:5b:d5: 38:cb:54:9d:a3:75:08:5a:db:22:fe:8a:66:ce:97:72:55:d5: 96:27:28:92:d2:df:fd:cc:02:e9:0d:59:0a:12:60:5c:3d:e5: fb:f9:92:ca:52:67:d1:1e:c8:50:7e:ef:09:19:e6:d3:3a:9c: 6c:5d:42:ed:eb:47:71:cc:ee:3a:bb:e6:d2:f4:70:22:57:3c: 8d:d7:cc:ce:07:f4:a4:13:d1:89:01:b9:13:93:0b:30:35:0d: d4:06:90:da:1f:45:7b:96:aa:85:b4:6a:e1:e8:14:16:01:d9: b8:60:ba:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUwNDI2MTkyNTAwWhcNMjUwNTAzMTkyNTAwWjAYMRYwFAYD VQQDEw02ODBkMzMwZC03Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulqWravmIpkCUBn3d32W21lVmKUTQ0bP+L4Hs8Xc6/vfYX1b4wm9TZONE/vh ZE3vrCG+zEJq3N2vTD5c53r0hujILsNOBThB3Tf1G3fMgkxLssLLvjkhP5eq80dm y12o6oevRzOFEd9UQ+OuXGabkBOru9NqBrnCldTChV88191PeZNXMzYbqHTNpqgc NcJ0YozIGpJpeZGCMfR8WvlF4a/60LXEX590XX/KZDZ8Y/lolKBqzXNzBuk6I9pe 6qSDg7JtHydJ/s1nLYi0APD0ruDs0B/PsdAQodquE/w/LbOPeFIZIW5PKwocdSyS XMgGO/IXpabw2QiPeatxIyBOewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhrrt7H OH5PFbwhfFDnSVRbehA4MB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlKqnVFhlBBSQ4yoet1wYE/6SyxoLJ+6mp/IDrSujdi1adN4IYxxhk 63NRsjG7FAjxUfK6msni6CIBA47PVBVWNDhWSCFIu1xs01zWVO7DIcJ7EnAfgwIN yT0yoWvcXlogTkiAoJcfqIrphZ6+XaQdt4LsxUawZQZOsn3rvwJaJ0gMpfEpzgyP Ve/EDyf2W9U4y1Sdo3UIWtsi/opmzpdyVdWWJyiS0t/9zALpDVkKEmBcPeX7+ZLK UmfRHshQfu8JGebTOpxsXULt60dxzO46u+bS9HAiVzyN18zOB/SkE9GJAbkTkwsw NQ3UBpDaH0V7lqqFtGrh6BQWAdm4YLoD -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:06 2025 by rpki-client on console.sobornost.net