$ rpki-client -vvf rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft File: HTaU7xQhyRhUqIesqWELxWCucIQ.mft (raw, json) Hash identifier: uS6TcDY8sKP2tmtSRI8CRq+L1BzZeXTXI2ep1Glg5F8= Subject key identifier: 1D:69:80:CB:D8:90:90:12:D3:7E:64:7A:0E:34:F1:F3:5E:55:53:FD Authority key identifier: 1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 Certificate issuer: /CN=A919EB4E/serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Certificate serial: 0EA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft Manifest number: 0E7F Signing time: Mon 28 Apr 2025 17:57:12 +0000 Manifest this update: Mon 28 Apr 2025 17:57:11 +0000 Manifest next update: Mon 05 May 2025 17:57:11 +0000 Files and hashes: 1: HTaU7xQhyRhUqIesqWELxWCucIQ.crl (hash: LFJ6i4oMcU94H2UFnaYYNHrgtxs6HilxQYKbgKPsjk0=) 2: 89A93D5E971811E9AE51CA15C4F9AE02.roa (hash: 5Mh91OkrfeMvxN8zUlmhEA/cU28vfWanQEE4gEKGkZE=) 3: F73EFF46839211EEA1EC8A0EC4F9AE02.roa (hash: 2l3pLCgtvIHc/+HLPDdULsr+5gl+RLvHUNSD8p67gig=) 4: 7A40B730E2D811EBAB97665DC4F9AE02.roa (hash: nERwHYLrCQbTGbVdhkuVu4DLbRWJapvf+ehHeDcqXoI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3745 (0xea1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EB4E, serialNumber=1D3694EF1421C91854A887ACA9610BC560AE7084 Validity Not Before: Apr 28 17:57:11 2025 GMT Not After : May 5 17:57:11 2025 GMT Subject: CN=680fc178-53c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9b:6d:c4:3f:16:b4:a2:c0:46:a6:62:9f:f0: 54:f6:84:56:4b:b9:fc:a7:6b:4d:57:68:b7:bc:f9: 0f:b7:bb:aa:11:a0:79:67:de:9d:78:4e:36:df:d2: 01:56:09:c0:ec:02:a9:2c:c3:29:b3:3f:ce:c2:4d: 0f:81:0b:b5:ff:1e:45:63:1a:19:26:61:bd:07:6f: a2:b8:bf:5c:26:ae:84:e2:da:e2:2b:39:48:15:22: 76:78:f6:05:3b:98:93:9e:45:96:33:0a:26:85:de: 80:69:9a:6c:50:5c:6b:d1:01:51:43:ed:14:2f:6a: cd:0c:11:91:7a:9d:b8:2b:74:e4:10:8d:dd:8e:5e: 11:df:33:2c:05:f1:8c:c7:24:95:7f:de:46:23:95: 8e:c0:19:ce:a3:2b:e1:f3:29:70:76:62:4e:0f:fb: 65:85:a6:cf:cf:fb:55:2e:1f:ed:25:95:bc:83:a1: b1:62:91:c4:b9:18:78:13:7a:92:70:3e:28:65:88: b0:95:0d:10:2e:2c:df:f7:d0:36:70:a3:68:2e:a2: 2f:2b:16:1f:11:9e:5c:bd:ab:4a:7d:2f:01:10:07: c3:a1:b9:83:10:06:3f:f2:e0:88:f1:e1:9a:40:39: 3f:29:67:4d:14:4e:aa:34:e1:57:5d:04:9f:e0:4f: 68:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:69:80:CB:D8:90:90:12:D3:7E:64:7A:0E:34:F1:F3:5E:55:53:FD X509v3 Authority Key Identifier: keyid:1D:36:94:EF:14:21:C9:18:54:A8:87:AC:A9:61:0B:C5:60:AE:70:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTaU7xQhyRhUqIesqWELxWCucIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EB4E/A2843C08971711E985FCAB14C4F9AE02/HTaU7xQhyRhUqIesqWELxWCucIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:6e:d7:35:89:ad:44:66:48:b1:38:86:c1:e4:c6:66:3d:10: a5:1b:6c:55:9c:ba:aa:02:1e:f0:89:ff:33:4f:62:fb:7c:72: e0:86:52:59:4e:a7:29:09:58:6c:44:55:cd:88:e2:ca:70:0b: 40:99:c2:62:c9:d5:0b:e2:a4:1d:8f:73:4c:2c:1c:bb:65:41: 79:ad:12:85:41:73:1e:fb:cc:ac:4c:1d:5f:61:01:a4:dc:ca: 2c:85:7e:21:bc:4f:30:ec:63:f4:81:75:e1:0b:07:b4:20:2e: 6d:ac:33:42:24:e0:46:59:57:26:d7:82:d1:7a:51:16:7e:0e: 50:35:08:19:c9:96:25:c9:8e:b3:b0:34:47:22:45:d4:c9:ed: 03:55:3f:c6:c8:48:c7:b6:23:cc:e1:43:76:b0:24:14:8a:e4: 9f:37:b5:ff:ef:e3:65:c9:c3:97:a6:9c:0b:86:96:2f:a1:37: 97:fd:bb:cd:19:99:fc:54:9f:6f:ad:a8:c7:04:04:e7:52:ec: 61:88:b1:32:28:6e:09:d0:d1:b6:8c:32:0d:96:93:6e:65:a0: ed:68:d3:78:4a:fb:d2:25:39:a7:a9:54:e4:04:c1:91:ec:4b: 5a:cf:02:94:1c:c6:14:42:5e:f0:73:c1:ae:01:82:32:b0:c3: fd:a5:da:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVCNEUxMTAvBgNVBAUTKDFEMzY5NEVGMTQyMUM5MTg1NEE4ODdBQ0E5NjEwQkM1 NjBBRTcwODQwHhcNMjUwNDI4MTc1NzExWhcNMjUwNTA1MTc1NzExWjAYMRYwFAYD VQQDEw02ODBmYzE3OC01M2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypttxD8WtKLARqZin/BU9oRWS7n8p2tNV2i3vPkPt7uqEaB5Z96deE4239IB VgnA7AKpLMMpsz/Owk0PgQu1/x5FYxoZJmG9B2+iuL9cJq6E4triKzlIFSJ2ePYF O5iTnkWWMwomhd6AaZpsUFxr0QFRQ+0UL2rNDBGRep24K3TkEI3djl4R3zMsBfGM xySVf95GI5WOwBnOoyvh8ylwdmJOD/tlhabPz/tVLh/tJZW8g6GxYpHEuRh4E3qS cD4oZYiwlQ0QLizf99A2cKNoLqIvKxYfEZ5cvatKfS8BEAfDobmDEAY/8uCI8eGa QDk/KWdNFE6qNOFXXQSf4E9otQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1pgMvY kJAS035keg408fNeVVP9MB8GA1UdIwQYMBaAFB02lO8UIckYVKiHrKlhC8VgrnCE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUI0RS9BMjg0M0MwODk3 MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlSaFVxSWVzcVdFTHhXQ3Vj SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUYVU3eFFoeVJoVXFJZXNxV0VMeFdDdWNJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUI0RS9BMjg0M0MwODk3MTcxMUU5ODVGQ0FCMTRDNEY5QUUwMi9IVGFVN3hRaHlS aFVxSWVzcVdFTHhXQ3VjSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCibtc1ia1EZkixOIbB5MZmPRClG2xVnLqqAh7wif8zT2L7fHLghlJZ TqcpCVhsRFXNiOLKcAtAmcJiydUL4qQdj3NMLBy7ZUF5rRKFQXMe+8ysTB1fYQGk 3MoshX4hvE8w7GP0gXXhCwe0IC5trDNCJOBGWVcm14LRelEWfg5QNQgZyZYlyY6z sDRHIkXUye0DVT/GyEjHtiPM4UN2sCQUiuSfN7X/7+NlycOXppwLhpYvoTeX/bvN GZn8VJ9vrajHBATnUuxhiLEyKG4J0NG2jDINlpNuZaDtaNN4SvvSJTmnqVTkBMGR 7EtazwKUHMYUQl7wc8GuAYIysMP9pdq+ -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:51 2025 by rpki-client on console.sobornost.net