$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: gdIuNHFn0vOpwq9pNf0hf/ZQy2N+wek2LYP9uX/sKIk= Subject key identifier: 13:9B:37:09:46:F5:27:82:7E:10:33:3A:20:37:5F:28:48:59:59:8D Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0107 Signing time: Sun 27 Apr 2025 03:57:48 +0000 Manifest this update: Sun 27 Apr 2025 03:57:47 +0000 Manifest next update: Sun 04 May 2025 03:57:47 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: nbmQERDMMkGT/7WNKp0B9posHZLLMBpU1hvNA0epQAE=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: iKey44OboTB8NilxUb2DzRzq18OyDEY6fi5JIxPzxK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Apr 27 03:57:47 2025 GMT Not After : May 4 03:57:47 2025 GMT Subject: CN=680dab3c-8516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:26:71:0f:bf:77:1c:e6:b1:1a:26:d5:6f:6b: 68:ed:38:5d:bd:e4:d7:37:20:42:9c:d5:1d:2d:d8: 82:54:60:f8:43:47:df:24:d8:76:eb:fa:2b:ae:45: 2f:86:a8:6f:be:3b:61:b9:40:1e:32:96:d9:72:f0: 1a:cb:b8:99:9c:09:a0:03:75:ab:0c:a6:5b:da:1f: 70:f3:95:ef:70:4e:3b:ce:ac:3d:2b:35:fc:8c:a6: ab:37:26:8d:3c:2c:9c:b3:8a:e3:e0:3d:44:56:47: 50:72:8a:65:3c:4a:bd:41:e2:65:6e:e4:04:b4:ae: 0c:56:55:98:ca:e2:bc:ef:f4:d3:99:04:9b:17:8a: ad:19:a6:85:2f:60:38:57:11:3a:1d:3b:37:eb:12: 11:c6:e9:80:8d:95:78:9e:3b:4c:a5:f9:d8:f9:cd: e0:78:da:ea:94:12:37:95:1f:e7:e6:0f:5a:92:ec: 19:89:d8:ee:be:cb:42:fe:d4:de:28:44:8a:1a:a2: e3:78:9e:4f:2f:41:fe:4a:c9:76:60:4f:0b:e4:53: 88:86:f8:8f:0e:38:9f:8e:5d:b5:46:de:79:f6:20: 08:ce:f4:49:ef:1a:54:7e:15:7c:1a:78:d4:94:64: 38:65:94:54:e1:7f:58:69:c1:a7:e4:00:36:3f:e9: 10:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9B:37:09:46:F5:27:82:7E:10:33:3A:20:37:5F:28:48:59:59:8D X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:11:87:2f:45:e0:58:84:24:95:4d:e0:c0:86:5d:44:f7:0b: 9b:c4:f6:c5:1f:9e:5d:55:3a:0e:b5:0d:75:f2:d8:61:0f:56: bd:1e:93:d6:a6:80:ab:da:07:df:f7:44:05:87:2b:17:20:42: 91:42:2e:55:45:05:42:1e:66:12:bd:50:f3:66:de:50:92:59: 33:03:9b:d3:18:0c:80:0f:05:70:01:4b:e6:a3:25:ab:7c:05: d6:58:60:1f:68:06:80:af:4c:b3:0c:90:cc:36:37:5b:25:1f: c9:9c:37:a4:bc:b0:e8:70:a3:2c:a2:a6:f8:a1:69:d2:5d:b6: 89:df:c9:72:8a:52:7b:cd:c1:06:de:a3:40:d3:b2:35:4d:6f: d2:54:e1:95:38:96:00:52:20:f3:db:75:0a:42:10:73:64:47: 62:35:00:2b:bc:1e:09:ac:ab:0a:51:c7:f4:db:fa:97:20:35: 39:f8:a2:1e:aa:b4:6c:74:c9:a8:e0:60:46:f8:9f:63:61:58: a4:8c:73:8c:f4:73:fa:0e:7b:8f:18:73:c5:00:47:c4:1a:ea: 8c:aa:b2:80:65:72:6e:b0:45:3b:a2:ae:bb:c2:fc:64:b7:50: 6a:17:38:b4:f1:e9:cf:cf:e4:04:e3:a4:c4:7f:51:c9:c8:5e: ed:ae:d1:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwNDI3MDM1NzQ3WhcNMjUwNTA0MDM1NzQ3WjAYMRYwFAYD VQQDEw02ODBkYWIzYy04NTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySZxD793HOaxGibVb2to7ThdveTXNyBCnNUdLdiCVGD4Q0ffJNh26/orrkUv hqhvvjthuUAeMpbZcvAay7iZnAmgA3WrDKZb2h9w85XvcE47zqw9KzX8jKarNyaN PCycs4rj4D1EVkdQcoplPEq9QeJlbuQEtK4MVlWYyuK87/TTmQSbF4qtGaaFL2A4 VxE6HTs36xIRxumAjZV4njtMpfnY+c3geNrqlBI3lR/n5g9akuwZidjuvstC/tTe KESKGqLjeJ5PL0H+Ssl2YE8L5FOIhviPDjifjl21Rt559iAIzvRJ7xpUfhV8GnjU lGQ4ZZRU4X9YacGn5AA2P+kQ9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBObNwlG 9SeCfhAzOiA3XyhIWVmNMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4EYcvReBYhCSVTeDAhl1E9wubxPbFH55dVToOtQ118thhD1a9HpPW poCr2gff90QFhysXIEKRQi5VRQVCHmYSvVDzZt5QklkzA5vTGAyADwVwAUvmoyWr fAXWWGAfaAaAr0yzDJDMNjdbJR/JnDekvLDocKMsoqb4oWnSXbaJ38lyilJ7zcEG 3qNA07I1TW/SVOGVOJYAUiDz23UKQhBzZEdiNQArvB4JrKsKUcf02/qXIDU5+KIe qrRsdMmo4GBG+J9jYVikjHOM9HP6DnuPGHPFAEfEGuqMqrKAZXJusEU7oq67wvxk t1BqFzi08enPz+QE46TEf1HJyF7trtGR -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:00 2025 by rpki-client on console.sobornost.net