$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: B8w+vIl5cXZEYNlRt4xRo9BQomDUU7Qwg89/+eMfwCE= Subject key identifier: 04:92:A7:0E:C3:B1:C9:58:05:54:67:73:3C:6B:E4:E9:33:1C:B7:8A Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: 4B Signing time: Sun 27 Apr 2025 06:17:15 +0000 Manifest this update: Sun 27 Apr 2025 06:17:14 +0000 Manifest next update: Sun 04 May 2025 06:17:14 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: KoeqPxXVEs1zWhDwJnkW/70iNlETltA4lltwKMRbsd4=) 2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) 3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Apr 27 06:17:14 2025 GMT Not After : May 4 06:17:14 2025 GMT Subject: CN=680dcbeb-b2f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4d:20:2a:90:53:6b:d9:19:9a:3e:78:66:49: d4:ca:73:fd:28:fa:86:8f:97:89:18:24:60:ed:64: 45:43:ef:67:7a:ad:19:db:c8:5d:11:68:4b:4b:b0: fc:1d:2f:1b:f0:75:70:a5:50:b3:96:0f:f8:49:06: ac:27:d6:40:ae:a9:22:ba:8f:ed:75:a7:7f:46:3b: 2f:02:6b:8a:77:53:7a:30:ed:9d:9d:3b:73:b1:36: 77:f9:19:da:8e:30:82:0c:4e:a2:0d:8f:53:b9:2c: cd:9f:78:e4:52:b3:b4:3a:22:89:0d:0e:1a:62:76: ba:f8:7a:8e:24:9b:d5:d3:19:30:20:ca:58:64:de: 19:30:50:59:41:0f:6f:21:e1:a3:44:e1:0e:83:cb: 2a:92:bd:c2:c9:14:38:e1:13:70:a9:4d:16:72:21: b5:fb:72:d5:03:f1:e7:12:27:8d:f7:3c:75:97:b5: aa:2c:cb:26:f8:e5:41:b1:b8:88:ee:2d:48:65:28: 57:a0:1b:fa:b4:25:bc:ed:72:0f:c9:ed:ee:21:56: 05:f6:a7:2a:c8:18:68:2b:06:09:2f:cf:c9:2f:a1: 68:89:4d:99:60:60:14:c3:5b:11:ba:ac:78:48:49: 7c:19:cb:88:a0:93:ad:4b:25:c7:a3:f7:54:3e:a4: 2f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:92:A7:0E:C3:B1:C9:58:05:54:67:73:3C:6B:E4:E9:33:1C:B7:8A X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:13:69:62:56:ed:cd:b8:40:da:f7:a2:fa:4d:b2:c9:a6:a2: 09:b2:7d:94:a1:6d:48:86:dd:db:cf:2e:f3:c6:9c:db:c1:af: f4:00:b8:ad:5a:ac:6b:e5:ba:6a:c2:1f:c7:d9:d7:2f:65:07: 0e:c3:30:c1:b8:4d:fd:e2:1e:4e:eb:3a:1c:86:65:eb:9c:a0: 2e:85:f6:3d:c9:60:12:ee:f3:a5:d9:e6:45:5f:69:ac:13:57: 21:e5:12:68:bf:e2:51:ca:6b:ee:8a:dd:bb:9d:38:cf:02:e7: ad:7e:59:54:78:01:9c:c5:4b:81:df:e6:58:25:30:1f:27:34: 9e:a4:8a:9f:49:80:92:4f:c2:05:0e:7b:11:c8:08:88:77:3d: 9f:a2:a6:c8:ef:57:46:8b:f0:b5:13:f1:98:75:13:53:75:ee: ca:d9:71:63:1f:1b:9c:e6:52:37:16:45:00:bb:c8:b3:84:6e: 5a:4a:d9:46:4f:c5:7e:d2:b8:ba:8c:76:d5:ec:8a:d9:0b:36: e8:d6:18:91:d1:96:ca:c8:10:1f:e5:06:78:87:77:61:84:cc: fb:a8:57:e9:f1:26:94:a3:26:51:99:a1:ff:1e:57:6d:5e:74: d5:a2:2f:29:50:8b:01:0f:c2:ed:8d:1f:57:26:53:b1:e8:96: 77:5c:21:fa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OEI2NzExMC8GA1UEBRMoRDQ1OUQyNjc1MjUyMzRBMDUzNUVDMzhEOENDQzg5OTAx OTRERTE4OTAeFw0yNTA0MjcwNjE3MTRaFw0yNTA1MDQwNjE3MTRaMBgxFjAUBgNV BAMTDTY4MGRjYmViLWIyZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuTSAqkFNr2RmaPnhmSdTKc/0o+oaPl4kYJGDtZEVD72d6rRnbyF0RaEtLsPwd LxvwdXClULOWD/hJBqwn1kCuqSK6j+11p39GOy8Ca4p3U3ow7Z2dO3OxNnf5GdqO MIIMTqINj1O5LM2feORSs7Q6IokNDhpidrr4eo4km9XTGTAgylhk3hkwUFlBD28h 4aNE4Q6DyyqSvcLJFDjhE3CpTRZyIbX7ctUD8ecSJ433PHWXtaosyyb45UGxuIju LUhlKFegG/q0Jbztcg/J7e4hVgX2pyrIGGgrBgkvz8kvoWiJTZlgYBTDWxG6rHhI SXwZy4igk61LJcej91Q+pC8hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBJKnDsOx yVgFVGdzPGvk6TMct4owHwYDVR0jBBgwFoAU1FnSZ1JSNKBTXsONjMyJkBlN4Ykw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4QjY3LzJGQTAwRDNFQzZB QTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMUZuU1oxSlNOS0JUWHNPTmpNeUprQmxONFlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4 QjY3LzJGQTAwRDNFQzZBQTExRUY4NEZCMEQwREM0RjlBRTAyLzFGblNaMUpTTktC VFhzT05qTXlKa0JsTjRZay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABsTaWJW7c24QNr3ovpNssmmogmyfZShbUiG3dvPLvPGnNvBr/QAuK1a rGvlumrCH8fZ1y9lBw7DMMG4Tf3iHk7rOhyGZeucoC6F9j3JYBLu86XZ5kVfaawT VyHlEmi/4lHKa+6K3budOM8C561+WVR4AZzFS4Hf5lglMB8nNJ6kip9JgJJPwgUO exHICIh3PZ+ipsjvV0aL8LUT8Zh1E1N17srZcWMfG5zmUjcWRQC7yLOEblpK2UZP xX7SuLqMdtXsitkLNujWGJHRlsrIEB/lBniHd2GEzPuoV+nxJpSjJlGZof8eV21e dNWiLylQiwEPwu2NH1cmU7HolndcIfo= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net