$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9CBB/D53BD14615B111F0A2774A09C4F9AE02/_CT1OQdHh-zqsAwkJgbCvWiBmg0.mft File: _CT1OQdHh-zqsAwkJgbCvWiBmg0.mft (raw, json) Hash identifier: eS/UmEA7k2c/7yAKhwQ3VsjxB+SA/gg6Hjlf9yiipcY= Subject key identifier: 6C:4D:EC:99:FA:B1:54:FE:AA:2B:B9:BB:62:49:2D:FA:90:03:E0:54 Authority key identifier: FC:24:F5:39:07:47:87:EC:EA:B0:0C:24:26:06:C2:BD:68:81:9A:0D Certificate issuer: /CN=A91A9CBB/serialNumber=FC24F539074787ECEAB00C242606C2BD68819A0D Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_CT1OQdHh-zqsAwkJgbCvWiBmg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9CBB/D53BD14615B111F0A2774A09C4F9AE02/_CT1OQdHh-zqsAwkJgbCvWiBmg0.mft Manifest number: 0C Signing time: Sun 27 Apr 2025 06:56:54 +0000 Manifest this update: Sun 27 Apr 2025 06:56:54 +0000 Manifest next update: Sun 04 May 2025 06:56:54 +0000 Files and hashes: 1: _CT1OQdHh-zqsAwkJgbCvWiBmg0.crl (hash: f055X1V3wztUhYJBtftzsfjuGfGzOK28mcEgWKQ/W7o=) 2: 2A8C8F02198E11F09D302145C4F9AE02.roa (hash: pkFF5f+Vaat+aJOayMibpTMU9Wp7Q864DQvUc24s624=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9CBB/D53BD14615B111F0A2774A09C4F9AE02/_CT1OQdHh-zqsAwkJgbCvWiBmg0.crl rsync://rpki.apnic.net/member_repository/A91A9CBB/D53BD14615B111F0A2774A09C4F9AE02/_CT1OQdHh-zqsAwkJgbCvWiBmg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_CT1OQdHh-zqsAwkJgbCvWiBmg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9CBB, serialNumber=FC24F539074787ECEAB00C242606C2BD68819A0D Validity Not Before: Apr 27 06:56:54 2025 GMT Not After : May 4 06:56:54 2025 GMT Subject: CN=680dd536-22ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:31:8d:20:cb:bb:dd:51:65:7c:d2:47:64: 54:2b:22:c5:c0:24:a7:1e:1f:95:7e:ee:f6:73:12: a0:e0:f0:85:37:85:2e:73:79:31:8c:dc:a7:cf:31: 58:55:00:49:0f:77:f7:b9:67:ff:11:f4:66:9c:25: b0:18:3a:b3:f7:64:50:30:d0:7d:ba:48:8c:d7:7a: d1:65:61:59:6a:c3:fa:43:a9:91:27:2c:04:0d:d6: c4:e6:d4:19:70:62:61:8a:a7:3f:49:05:cd:fa:43: 0e:cf:a4:0a:20:a2:65:ca:b9:f6:bd:8f:78:49:54: fb:c3:24:44:cb:f3:f0:b3:85:49:04:ce:73:17:52: a1:dd:8b:ef:7a:17:20:a1:d1:5b:85:ea:86:f7:a0: 7a:66:c5:c3:dd:b7:ee:81:23:1f:b1:cd:56:6b:64: d3:de:93:59:bf:eb:c9:c5:73:3b:b0:e5:30:51:9f: a3:7a:af:2e:91:71:4b:e0:3d:5b:dc:81:aa:10:fa: 69:5b:37:b8:db:30:b2:01:dc:18:2f:f3:6c:9d:76: 88:1b:ee:ed:d3:dd:38:81:14:57:64:c1:e5:f1:fd: 52:5e:5e:3f:a9:cc:ae:70:30:c8:c8:7c:91:3a:b7: 3c:80:f7:e4:b2:35:64:2f:44:82:87:21:c9:05:0f: fa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:4D:EC:99:FA:B1:54:FE:AA:2B:B9:BB:62:49:2D:FA:90:03:E0:54 X509v3 Authority Key Identifier: keyid:FC:24:F5:39:07:47:87:EC:EA:B0:0C:24:26:06:C2:BD:68:81:9A:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9CBB/D53BD14615B111F0A2774A09C4F9AE02/_CT1OQdHh-zqsAwkJgbCvWiBmg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_CT1OQdHh-zqsAwkJgbCvWiBmg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9CBB/D53BD14615B111F0A2774A09C4F9AE02/_CT1OQdHh-zqsAwkJgbCvWiBmg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:bc:52:69:74:16:82:b6:34:66:33:87:63:d6:a7:28:3e:1f: 93:6a:e2:56:13:1c:1e:88:4f:49:9e:83:a4:52:1f:a4:33:b9: 47:c7:e7:79:09:83:ca:3e:13:a2:86:b4:d5:6c:60:26:73:57: f0:5c:8f:4f:ee:ee:f6:ad:f5:54:17:2a:41:8e:11:b1:b3:28: 91:da:8f:8f:5a:48:1f:dc:c3:63:f3:08:be:72:71:80:88:59: 03:3f:5c:2a:6c:d0:22:af:10:49:8b:85:37:2b:d4:e6:44:52: 21:77:30:cf:d1:61:f1:11:69:28:69:be:92:a3:30:a7:f3:7b: 21:bf:7c:23:a7:4a:9d:bf:a0:5e:37:1d:20:bc:e9:48:83:9a: 73:e1:a8:05:a6:93:39:1d:a1:86:45:de:f3:e9:9c:e8:2f:41: 4b:85:9c:03:1a:a1:23:f9:c7:70:c7:ae:c9:9d:04:60:44:68: 8a:6c:e8:a9:f3:ca:d7:da:8b:75:45:d9:51:99:53:1c:1f:84: 52:19:a3:e2:05:70:97:1f:e1:2c:53:70:45:58:69:7b:2c:ec: 02:f6:72:01:87:66:46:35:b2:2b:d8:af:e4:a7:b1:98:54:cf: 33:1b:88:1a:fc:89:db:3b:61:5a:ff:21:2b:3d:73:72:a5:d6: 44:e1:7d:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OUNCQjExMC8GA1UEBRMoRkMyNEY1MzkwNzQ3ODdFQ0VBQjAwQzI0MjYwNkMyQkQ2 ODgxOUEwRDAeFw0yNTA0MjcwNjU2NTRaFw0yNTA1MDQwNjU2NTRaMBgxFjAUBgNV BAMTDTY4MGRkNTM2LTIyYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCEzGNIMu73VFlfNJHZFQrIsXAJKceH5V+7vZzEqDg8IU3hS5zeTGM3KfPMVhV AEkPd/e5Z/8R9GacJbAYOrP3ZFAw0H26SIzXetFlYVlqw/pDqZEnLAQN1sTm1Blw YmGKpz9JBc36Qw7PpAogomXKufa9j3hJVPvDJETL8/CzhUkEznMXUqHdi+96FyCh 0VuF6ob3oHpmxcPdt+6BIx+xzVZrZNPek1m/68nFczuw5TBRn6N6ry6RcUvgPVvc gaoQ+mlbN7jbMLIB3Bgv82yddogb7u3T3TiBFFdkweXx/VJeXj+pzK5wMMjIfJE6 tzyA9+SyNWQvRIKHIckFD/rjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbE3smfqx VP6qK7m7Ykkt+pAD4FQwHwYDVR0jBBgwFoAU/CT1OQdHh+zqsAwkJgbCvWiBmg0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5Q0JCL0Q1M0JEMTQ2MTVC MTExRjBBMjc3NEEwOUM0RjlBRTAyL19DVDFPUWRIaC16cXNBd2tKZ2JDdldpQm1n MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX0NUMU9RZEhoLXpxc0F3a0pnYkN2V2lCbWcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 Q0JCL0Q1M0JEMTQ2MTVCMTExRjBBMjc3NEEwOUM0RjlBRTAyL19DVDFPUWRIaC16 cXNBd2tKZ2JDdldpQm1nMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADu8Uml0FoK2NGYzh2PWpyg+H5Nq4lYTHB6IT0meg6RSH6QzuUfH53kJ g8o+E6KGtNVsYCZzV/Bcj0/u7vat9VQXKkGOEbGzKJHaj49aSB/cw2PzCL5ycYCI WQM/XCps0CKvEEmLhTcr1OZEUiF3MM/RYfERaShpvpKjMKfzeyG/fCOnSp2/oF43 HSC86UiDmnPhqAWmkzkdoYZF3vPpnOgvQUuFnAMaoSP5x3DHrsmdBGBEaIps6Knz ytfai3VF2VGZUxwfhFIZo+IFcJcf4SxTcEVYaXss7AL2cgGHZkY1sivYr+SnsZhU zzMbiBr8ids7YVr/ISs9c3Kl1kThfZs= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net