$ rpki-client -vvf rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft File: hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft (raw, json) Hash identifier: 6hZGaBlD0r+3hftUfVAVHiSF9acLlKBWWGlJNGzTPPg= Subject key identifier: 41:BF:A9:15:6B:E7:78:4F:14:96:CB:76:C4:1B:12:00:3A:96:D5:07 Authority key identifier: 86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 Certificate issuer: /CN=A919A8BE/serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Certificate serial: 0F83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft Manifest number: 0F6F Signing time: Mon 28 Apr 2025 17:48:32 +0000 Manifest this update: Mon 28 Apr 2025 17:48:32 +0000 Manifest next update: Mon 05 May 2025 17:48:32 +0000 Files and hashes: 1: hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl (hash: GOllHykc9sPDx3dDTwJOv7r/Iv4/qRpQNPx1IQJ2Alw=) 2: 0DC698EAAEF011E99D5EFB71C4F9AE02.roa (hash: Gd1MGVjBlHDrAPvjMKgg4lOzvec6N9agUffub5BmpEc=) 3: 28DA447C289B11EAA1EA9B53C4F9AE02.roa (hash: VgSqSz98AwrxUV81np8oJVgRErJmYI+BzJGwTzFUnSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3971 (0xf83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A8BE, serialNumber=86F2EBB4C1E2E90AD9007C42036766258D548565 Validity Not Before: Apr 28 17:48:32 2025 GMT Not After : May 5 17:48:32 2025 GMT Subject: CN=680fbf70-a662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a7:47:e0:ee:e9:2c:f4:49:12:89:f3:78:f4: dd:72:05:d3:4a:8a:ee:9f:5c:03:87:81:e0:5f:c1: d2:b7:fb:5f:a0:70:38:d2:f2:58:07:c6:38:16:58: eb:7f:f4:08:a7:3f:14:f6:2c:77:15:d3:67:e6:e7: 1c:f1:da:79:27:27:bc:50:05:67:b3:ab:de:39:3c: 02:85:73:a0:7c:3e:f0:3b:d6:18:67:05:e6:e6:8d: 9f:86:cd:ca:01:c9:5d:a4:e4:c4:94:fc:d1:37:4e: 17:5c:1d:b6:4f:6a:3f:2e:81:51:84:7c:6f:74:0b: 6e:05:76:67:b6:b0:a3:3d:6e:5c:54:61:e8:03:ac: dc:46:a4:88:80:8b:46:cb:ea:8f:0b:d3:4d:d3:53: c1:49:36:5b:fd:ee:7d:35:16:d3:cf:16:34:6f:e9: dc:c7:d5:c8:10:6b:9a:a2:fa:be:cf:c3:f7:26:c9: 97:be:08:d7:fc:bb:ac:c8:6d:99:56:d7:2a:22:07: c2:0d:99:e8:4b:11:bf:ec:a8:d1:dd:44:9a:26:87: 6a:4e:be:1b:04:6a:e6:c6:96:06:73:41:ea:17:cc: 46:7f:aa:f6:40:61:89:81:90:f6:cb:0b:35:c0:a9: 83:fe:e4:91:42:28:69:49:ed:73:b4:bf:13:41:ea: d8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:BF:A9:15:6B:E7:78:4F:14:96:CB:76:C4:1B:12:00:3A:96:D5:07 X509v3 Authority Key Identifier: keyid:86:F2:EB:B4:C1:E2:E9:0A:D9:00:7C:42:03:67:66:25:8D:54:85:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hvLrtMHi6QrZAHxCA2dmJY1UhWU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A8BE/9019D120640111E98EF6DC6FC4F9AE02/hvLrtMHi6QrZAHxCA2dmJY1UhWU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:28:b1:c8:5d:fe:ea:ce:f2:7c:7d:73:83:8f:f8:12:f2:03: b4:2b:21:64:14:6e:46:2a:9c:c9:24:e7:49:33:c4:6d:a5:09: f8:36:3e:97:68:35:7b:03:80:21:ae:4e:a6:4e:79:e0:f3:98: 0e:d7:4f:2e:fc:fd:68:8b:9b:cb:7a:f6:f6:77:bb:30:e4:9d: d0:23:8d:e3:6c:0b:b2:06:67:1a:90:85:be:80:d9:1d:17:02: 8b:bb:87:84:5f:75:56:ac:3a:c8:4a:d3:eb:ca:e0:83:86:a0: ee:fc:5d:c5:7e:c0:fe:09:a2:ee:94:f2:20:93:30:af:17:34: 3e:4a:6f:c3:e8:f5:5a:78:26:c9:50:93:83:8a:fe:97:de:d0: 42:61:80:67:0e:f7:d0:9f:57:d2:01:bc:d1:7f:d1:61:dc:1a: b1:6f:26:ad:28:f1:9a:e5:8d:be:e5:50:c7:c8:f0:59:3e:ec: a6:f7:a8:74:d2:6f:e6:be:bb:fb:98:f8:23:6e:f8:3c:e4:07: 51:7d:8a:be:40:4e:1b:bb:85:fe:04:c2:9e:08:44:68:6b:f8: 41:c5:f8:53:e7:fa:94:23:21:f2:6d:77:d3:d2:dd:6a:ad:af: fd:b6:72:c1:47:3a:ce:7c:10:dd:01:7d:08:d6:6a:6b:0e:ee: 73:ab:fb:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE4QkUxMTAvBgNVBAUTKDg2RjJFQkI0QzFFMkU5MEFEOTAwN0M0MjAzNjc2NjI1 OEQ1NDg1NjUwHhcNMjUwNDI4MTc0ODMyWhcNMjUwNTA1MTc0ODMyWjAYMRYwFAYD VQQDEw02ODBmYmY3MC1hNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxadH4O7pLPRJEonzePTdcgXTSorun1wDh4HgX8HSt/tfoHA40vJYB8Y4Fljr f/QIpz8U9ix3FdNn5ucc8dp5Jye8UAVns6veOTwChXOgfD7wO9YYZwXm5o2fhs3K AcldpOTElPzRN04XXB22T2o/LoFRhHxvdAtuBXZntrCjPW5cVGHoA6zcRqSIgItG y+qPC9NN01PBSTZb/e59NRbTzxY0b+ncx9XIEGuaovq+z8P3JsmXvgjX/LusyG2Z VtcqIgfCDZnoSxG/7KjR3USaJodqTr4bBGrmxpYGc0HqF8xGf6r2QGGJgZD2yws1 wKmD/uSRQihpSe1ztL8TQerYgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEG/qRVr 53hPFJbLdsQbEgA6ltUHMB8GA1UdIwQYMBaAFIby67TB4ukK2QB8QgNnZiWNVIVl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QThCRS85MDE5RDEyMDY0 MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZRclpBSHhDQTJkbUpZMVVo V1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h2THJ0TUhpNlFyWkFIeENBMmRtSlkxVWhXVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QThCRS85MDE5RDEyMDY0MDExMUU5OEVGNkRDNkZDNEY5QUUwMi9odkxydE1IaTZR clpBSHhDQTJkbUpZMVVoV1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsKLHIXf7qzvJ8fXODj/gS8gO0KyFkFG5GKpzJJOdJM8RtpQn4Nj6X aDV7A4Ahrk6mTnng85gO108u/P1oi5vLevb2d7sw5J3QI43jbAuyBmcakIW+gNkd FwKLu4eEX3VWrDrIStPryuCDhqDu/F3FfsD+CaLulPIgkzCvFzQ+Sm/D6PVaeCbJ UJODiv6X3tBCYYBnDvfQn1fSAbzRf9Fh3BqxbyatKPGa5Y2+5VDHyPBZPuym96h0 0m/mvrv7mPgjbvg85AdRfYq+QE4bu4X+BMKeCERoa/hBxfhT5/qUIyHybXfT0t1q ra/9tnLBRzrOfBDdAX0I1mprDu5zq/uc -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:50 2025 by rpki-client on console.sobornost.net