$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/F9952A5C430611EA85BCF56AC4F9AE02/PN7xaSpIuxWWVnS8ACoxM1j1L-8.mft File: PN7xaSpIuxWWVnS8ACoxM1j1L-8.mft (raw, json) Hash identifier: 5XTM4CGUTWFfrAOMEANF4MQ1FOWk8JuSOF8X3Niu6mk= Subject key identifier: E8:B3:B8:B1:6B:35:87:98:CD:3B:53:DC:26:5C:E7:DA:EA:A5:BC:6C Authority key identifier: 3C:DE:F1:69:2A:48:BB:15:96:56:74:BC:00:2A:31:33:58:F5:2F:EF Certificate issuer: /CN=A918CABF/serialNumber=3CDEF1692A48BB15965674BC002A313358F52FEF Certificate serial: 0B01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN7xaSpIuxWWVnS8ACoxM1j1L-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/F9952A5C430611EA85BCF56AC4F9AE02/PN7xaSpIuxWWVnS8ACoxM1j1L-8.mft Manifest number: 0AF9 Signing time: Mon 28 Apr 2025 19:43:36 +0000 Manifest this update: Mon 28 Apr 2025 19:43:36 +0000 Manifest next update: Mon 05 May 2025 19:43:36 +0000 Files and hashes: 1: PN7xaSpIuxWWVnS8ACoxM1j1L-8.crl (hash: eYyyOS3dUbWh7MhTPB1+v5E8GZJPDAVwB7j6t3mq4TY=) 2: 783FBEE4430711EAB1201F6BC4F9AE02.roa (hash: Q+t5vtr4zi9qbMz+XlbKgiQudk9xrXCU2lb+B14yXgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/F9952A5C430611EA85BCF56AC4F9AE02/PN7xaSpIuxWWVnS8ACoxM1j1L-8.crl rsync://rpki.apnic.net/member_repository/A918CABF/F9952A5C430611EA85BCF56AC4F9AE02/PN7xaSpIuxWWVnS8ACoxM1j1L-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN7xaSpIuxWWVnS8ACoxM1j1L-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2817 (0xb01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=3CDEF1692A48BB15965674BC002A313358F52FEF Validity Not Before: Apr 28 19:43:36 2025 GMT Not After : May 5 19:43:36 2025 GMT Subject: CN=680fda68-5419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7e:ee:35:4f:33:93:c3:3c:78:02:c9:88:de: 25:6f:9d:b1:87:f7:2c:8b:5c:65:4c:98:d9:2f:65: fe:b0:a5:d8:d3:b4:27:75:68:fb:dd:4e:6d:ff:7c: 35:1b:73:29:82:05:4e:82:18:b2:de:01:57:ca:f8: e2:7e:67:fd:4b:19:b9:e1:f5:84:fb:cc:20:65:2f: 30:0e:20:25:6c:29:88:ba:cf:de:76:da:fa:3b:58: 11:36:1a:2a:9d:d8:a2:ac:2d:bb:d0:b4:86:86:1c: 57:45:6f:6d:a5:14:fc:34:1a:4a:70:c9:a3:5a:e1: 6f:1a:95:5d:ea:cc:e9:e0:a8:98:38:23:06:d4:76: 3e:10:d1:d2:36:b5:8b:ff:83:27:f8:b2:fa:ae:fc: 91:dc:d8:fa:10:08:9e:4c:b5:ee:cd:6e:e1:3b:f3: 5e:ea:2d:de:56:65:5c:79:e9:6e:db:9f:8a:8b:7a: f3:68:f2:b2:99:ac:62:7a:51:65:ab:cb:a5:ad:c3: 20:30:ea:26:f0:9b:d1:28:d6:fa:2c:70:39:d8:83: 70:00:9d:26:fe:8e:c3:20:ce:9e:56:2f:00:f3:8c: 4e:b8:13:d1:17:34:7f:1c:3e:99:0d:34:22:0a:c1: 6a:99:2f:0f:1c:4d:3c:ea:8f:ad:44:7e:40:f4:1a: a5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B3:B8:B1:6B:35:87:98:CD:3B:53:DC:26:5C:E7:DA:EA:A5:BC:6C X509v3 Authority Key Identifier: keyid:3C:DE:F1:69:2A:48:BB:15:96:56:74:BC:00:2A:31:33:58:F5:2F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/F9952A5C430611EA85BCF56AC4F9AE02/PN7xaSpIuxWWVnS8ACoxM1j1L-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN7xaSpIuxWWVnS8ACoxM1j1L-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/F9952A5C430611EA85BCF56AC4F9AE02/PN7xaSpIuxWWVnS8ACoxM1j1L-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:df:40:ce:61:84:9b:78:32:d1:19:9c:1e:16:7a:52:0a:1d: 09:41:a9:e1:08:79:2c:c5:16:60:c7:eb:eb:70:58:ac:f0:8c: b0:0f:a2:c7:73:b9:87:eb:25:ca:af:0e:44:76:a4:6e:0f:b0: 65:a8:79:5a:6e:00:1d:20:3c:1a:dc:07:17:8d:fc:1d:c3:09: 01:2d:6f:4e:6c:28:ee:cc:9f:da:66:38:a1:52:f6:64:7c:8a: 9f:ed:93:d5:1d:a1:54:d7:6b:ee:b2:56:1b:1b:dd:9b:73:e7: 49:dd:af:68:ae:6f:be:b5:14:ac:e6:bb:b9:7e:6a:d4:b7:6d: 9c:d7:40:0b:9c:17:84:b7:d4:03:ad:6c:f7:3e:da:49:9f:73: 39:73:02:df:5a:83:8a:23:dc:f1:00:e0:ea:b2:66:ba:19:4b: 89:3b:33:1e:44:a0:7a:88:3d:8e:68:40:95:51:6f:f5:b0:9d: 3f:b0:8b:21:3d:92:77:98:54:a7:05:1e:6f:3b:4b:66:5c:32: 02:fc:41:02:dc:8a:e4:13:0c:7d:ce:57:6d:a4:ad:12:dd:a0: d4:f7:ed:24:75:24:0f:cb:87:67:78:2f:6f:88:f8:94:6b:ca: 4f:5e:64:08:90:88:e6:bc:b1:6b:d5:6b:8e:74:9c:01:c6:47: e1:c0:f1:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKDNDREVGMTY5MkE0OEJCMTU5NjU2NzRCQzAwMkEzMTMz NThGNTJGRUYwHhcNMjUwNDI4MTk0MzM2WhcNMjUwNTA1MTk0MzM2WjAYMRYwFAYD VQQDEw02ODBmZGE2OC01NDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X7uNU8zk8M8eALJiN4lb52xh/csi1xlTJjZL2X+sKXY07QndWj73U5t/3w1 G3MpggVOghiy3gFXyvjifmf9Sxm54fWE+8wgZS8wDiAlbCmIus/edtr6O1gRNhoq ndiirC270LSGhhxXRW9tpRT8NBpKcMmjWuFvGpVd6szp4KiYOCMG1HY+ENHSNrWL /4Mn+LL6rvyR3Nj6EAieTLXuzW7hO/Ne6i3eVmVceelu25+Ki3rzaPKymaxielFl q8ulrcMgMOom8JvRKNb6LHA52INwAJ0m/o7DIM6eVi8A84xOuBPRFzR/HD6ZDTQi CsFqmS8PHE086o+tRH5A9Bql7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOizuLFr NYeYzTtT3CZc59rqpbxsMB8GA1UdIwQYMBaAFDze8WkqSLsVllZ0vAAqMTNY9S/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi9GOTk1MkE1QzQz MDYxMUVBODVCQ0Y1NkFDNEY5QUUwMi9QTjd4YVNwSXV4V1dWblM4QUNveE0xajFM LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BON3hhU3BJdXhXV1ZuUzhBQ294TTFqMUwtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi9GOTk1MkE1QzQzMDYxMUVBODVCQ0Y1NkFDNEY5QUUwMi9QTjd4YVNwSXV4 V1dWblM4QUNveE0xajFMLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBd30DOYYSbeDLRGZweFnpSCh0JQanhCHksxRZgx+vrcFis8IywD6LH c7mH6yXKrw5EdqRuD7BlqHlabgAdIDwa3AcXjfwdwwkBLW9ObCjuzJ/aZjihUvZk fIqf7ZPVHaFU12vuslYbG92bc+dJ3a9orm++tRSs5ru5fmrUt22c10ALnBeEt9QD rWz3PtpJn3M5cwLfWoOKI9zxAODqsma6GUuJOzMeRKB6iD2OaECVUW/1sJ0/sIsh PZJ3mFSnBR5vO0tmXDIC/EEC3IrkEwx9zldtpK0S3aDU9+0kdSQPy4dneC9viPiU a8pPXmQIkIjmvLFr1WuOdJwBxkfhwPHL -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:39 2025 by rpki-client on console.sobornost.net