$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft File: OQo4N6umkSos8p5hDaSVVd8sb6U.mft (raw, json) Hash identifier: sl5BH64tJ3BBMe49a+cwIn6l50Z5qm0ENZsTJRDYs08= Subject key identifier: 70:47:30:EB:0A:A8:D6:FA:57:0B:19:2C:4C:04:F7:B8:5C:BC:4B:D2 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft Manifest number: 3B Signing time: Sun 27 Apr 2025 06:19:40 +0000 Manifest this update: Sun 27 Apr 2025 06:19:40 +0000 Manifest next update: Sun 04 May 2025 06:19:39 +0000 Files and hashes: 1: OQo4N6umkSos8p5hDaSVVd8sb6U.crl (hash: zD0klJI7Wj8RCCh8T49IdoIVkXzOvIxYec1k+iGFOH0=) 2: 731ABC30CB5A11EFBEE64062C4F9AE02.roa (hash: Q1rZZ9iM/5ZnKcT/2gghzGKoj09HJfMAmvtogcokE8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Apr 27 06:19:40 2025 GMT Not After : May 4 06:19:39 2025 GMT Subject: CN=680dcc7c-438b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7c:ec:6b:ce:de:20:3d:08:30:12:2d:2c:31: a3:2c:86:3d:6e:84:0d:5d:e6:7b:00:d7:a1:0d:fa: f1:3f:83:e5:b3:b0:9a:eb:81:8e:cc:b3:cf:38:45: d1:57:e2:f1:fb:f4:a5:33:d4:db:69:10:45:c8:a0: db:43:9f:88:76:db:cc:41:a5:f6:f2:ac:af:de:d3: 99:9f:32:5f:b8:6b:e3:43:f0:c0:3a:a7:cf:5b:bb: e7:78:ac:c0:19:98:fd:12:f0:be:4d:8e:d3:3d:bf: 97:9a:aa:80:0f:33:ca:95:68:b3:f6:8e:c9:6d:e4: ec:43:f8:7c:d9:0c:5f:b6:4b:e7:c5:78:52:66:58: ce:e9:dd:8e:df:21:c3:86:61:39:0a:ea:be:7e:00: d6:ab:1d:33:ef:b6:c7:5e:7e:f1:38:d9:73:62:44: 91:55:63:2e:88:cf:43:69:cd:68:65:5b:5b:0f:13: 1a:6a:51:3b:a6:07:67:5e:f5:2a:37:86:dd:13:80: a5:e0:7b:e9:19:69:32:49:9f:34:77:ee:96:aa:14: 51:d6:b2:10:72:fb:ce:4e:d7:35:f5:c5:bc:d3:6d: 6e:90:a1:af:1e:2b:8b:67:e5:92:cc:ac:f0:a7:29: 87:b7:dd:75:97:79:ac:23:9b:97:fa:eb:52:91:4f: 70:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:47:30:EB:0A:A8:D6:FA:57:0B:19:2C:4C:04:F7:B8:5C:BC:4B:D2 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:26:97:4f:08:49:21:14:b8:c9:2e:4e:bd:a2:e8:f1:62:dd: f8:c8:63:a7:c3:49:d6:54:a2:02:3b:00:d0:86:ec:56:4f:42: 6c:78:a6:98:6a:40:59:7b:eb:b5:4a:bc:fc:2a:91:4a:23:e6: 8b:6a:ad:fb:b5:39:73:0a:9b:3e:3c:99:6e:64:78:bf:a9:e8: bd:91:d8:e5:c2:07:e7:8a:da:6e:c1:5c:7e:d8:e1:74:90:64: 8b:70:46:ed:d9:43:ce:db:38:54:ca:05:d7:d3:19:9c:01:0e: dd:47:53:d8:d0:36:3a:d5:d4:da:13:92:04:70:ba:a8:d0:0e: aa:28:d9:27:7a:ed:01:86:d9:de:98:05:fd:63:8f:67:5c:76: ca:37:c6:aa:83:5b:12:13:4b:3c:73:1d:23:99:6d:2e:d3:d9: e4:3b:2c:9a:a5:b8:80:19:ed:c4:3d:86:92:f0:e4:67:9e:80: ec:5e:15:15:63:b1:3a:5e:61:d8:c3:33:a4:b9:59:5d:3c:10: d7:0e:98:0a:0d:2d:23:29:d0:87:e3:e1:32:ec:01:e9:6b:8f: e4:be:45:e1:cb:c5:af:c5:34:01:62:3f:7f:46:da:39:4c:7f: e3:50:ef:b5:5b:e2:c3:d6:b8:2c:e5:63:96:03:08:d8:d6:80: 4c:b7:17:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoMzkwQTM4MzdBQkE2OTEyQTJDRjI5RTYxMERBNDk1NTVE RjJDNkZBNTAeFw0yNTA0MjcwNjE5NDBaFw0yNTA1MDQwNjE5MzlaMBgxFjAUBgNV BAMTDTY4MGRjYzdjLTQzOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxfOxrzt4gPQgwEi0sMaMshj1uhA1d5nsA16EN+vE/g+WzsJrrgY7Ms884RdFX 4vH79KUz1NtpEEXIoNtDn4h228xBpfbyrK/e05mfMl+4a+ND8MA6p89bu+d4rMAZ mP0S8L5NjtM9v5eaqoAPM8qVaLP2jslt5OxD+HzZDF+2S+fFeFJmWM7p3Y7fIcOG YTkK6r5+ANarHTPvtsdefvE42XNiRJFVYy6Iz0NpzWhlW1sPExpqUTumB2de9So3 ht0TgKXge+kZaTJJnzR37paqFFHWshBy+85O1zX1xbzTbW6Qoa8eK4tn5ZLMrPCn KYe33XWXeawjm5f661KRT3ArAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcEcw6wqo 1vpXCxksTAT3uFy8S9IwHwYDVR0jBBgwFoAUOQo4N6umkSos8p5hDaSVVd8sb6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0RFN0UzMjFFQ0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1FvNE42dW1rU29zOHA1aERhU1ZWZDhzYjZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 MkI2L0RFN0UzMjFFQ0I1OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1Nv czhwNWhEYVNWVmQ4c2I2VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAsml08ISSEUuMkuTr2i6PFi3fjIY6fDSdZUogI7ANCG7FZPQmx4pphq QFl767VKvPwqkUoj5otqrfu1OXMKmz48mW5keL+p6L2R2OXCB+eK2m7BXH7Y4XSQ ZItwRu3ZQ87bOFTKBdfTGZwBDt1HU9jQNjrV1NoTkgRwuqjQDqoo2Sd67QGG2d6Y Bf1jj2dcdso3xqqDWxITSzxzHSOZbS7T2eQ7LJqluIAZ7cQ9hpLw5GeegOxeFRVj sTpeYdjDM6S5WV08ENcOmAoNLSMp0Ifj4TLsAelrj+S+ReHLxa/FNAFiP39G2jlM f+NQ77Vb4sPWuCzlY5YDCNjWgEy3F5M= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net