$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft File: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft (raw, json) Hash identifier: EGvlCDp76IeJ++ozM/Q5sA5tBByfVZdBwWzsZueeuSg= Subject key identifier: 3D:09:7B:72:59:3B:25:41:83:0E:35:91:3B:96:A5:42:17:20:E6:AA Authority key identifier: D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 Certificate issuer: /CN=A91AAE16/serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Certificate serial: 0F9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft Manifest number: 0F93 Signing time: Sat 26 Apr 2025 17:27:09 +0000 Manifest this update: Sat 26 Apr 2025 17:27:09 +0000 Manifest next update: Sat 03 May 2025 17:27:09 +0000 Files and hashes: 1: 1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl (hash: mp30/MqMLJPzlVAsRXhPIZgoutn0oMEJq5ghlLIeDDE=) 2: 682B76C05BB211E9BF474F16C4F9AE02.roa (hash: 4lBnHy42IrC+CuFwqVAzKyt4CMy0vA1UroTjFuzkrh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3995 (0xf9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=D680BF3A796A355B125A602C7466B9A56D344254 Validity Not Before: Apr 26 17:27:09 2025 GMT Not After : May 3 17:27:09 2025 GMT Subject: CN=680d176d-d69d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ec:47:03:30:f3:44:95:94:2c:5b:53:c1:c7: dc:b4:0c:06:9e:d7:f2:81:02:ba:1d:2f:27:2c:fb: 87:12:1b:34:1f:50:c8:94:6b:13:13:33:e9:b0:af: 08:fd:0c:de:90:01:0b:9d:7b:8d:0d:8e:06:63:db: fc:8e:69:dd:2a:8f:98:fe:c3:ea:9e:c9:8b:50:f9: 8c:7c:12:5d:e9:31:9f:f6:0e:e1:3a:c5:f5:f9:24: cc:e2:3c:4d:84:35:5a:0f:cd:2c:91:c3:c9:32:5b: 34:2c:b8:f0:58:3c:04:5d:bd:2e:49:fb:21:cc:a0: ab:22:d9:f1:90:b0:fc:37:26:84:c6:e7:47:2c:78: fc:3d:8a:19:79:d0:f7:ed:87:d6:46:6e:cd:02:8d: 5e:a9:43:8f:90:79:c3:53:86:ce:2c:db:35:14:6a: 84:4a:c6:26:1d:47:00:51:3c:10:2f:e6:69:c3:53: 1f:a6:eb:ea:5d:ad:fc:d3:65:01:92:af:46:fe:4e: 8d:06:d7:1b:a5:43:da:94:4d:3b:25:be:f0:29:3d: 1b:56:89:ea:d7:d0:e1:88:b8:ca:dc:68:c8:59:64: fe:b4:fc:5b:a5:98:d1:96:83:ce:78:da:49:5a:27: 2a:d3:4c:48:a7:2e:b3:a9:05:1b:a7:44:60:88:cc: 81:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:09:7B:72:59:3B:25:41:83:0E:35:91:3B:96:A5:42:17:20:E6:AA X509v3 Authority Key Identifier: keyid:D6:80:BF:3A:79:6A:35:5B:12:5A:60:2C:74:66:B9:A5:6D:34:42:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1oC_OnlqNVsSWmAsdGa5pW00QlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/0EACF82C5BB111E98B103B13C4F9AE02/1oC_OnlqNVsSWmAsdGa5pW00QlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:5f:4a:96:a0:f3:d3:cb:e1:c7:80:76:32:b2:1a:9c:4c:a0: f2:8a:8c:29:38:5b:55:46:55:c7:69:3e:f7:ae:33:20:a2:7b: 9f:ee:7e:5a:72:de:0e:70:01:dc:3b:8b:58:36:b4:a2:05:05: f6:39:e2:5f:fa:73:bf:b9:c3:a7:bd:03:48:9c:0b:7c:d2:80: b2:1c:41:8d:02:a8:c8:7a:d3:51:75:9f:45:c8:0e:b5:bc:57: 36:d6:8b:e3:04:9b:c7:92:52:2f:82:2d:ad:95:a4:a0:1c:e7: 42:96:24:ac:d0:59:62:46:2d:b2:78:af:47:7c:6d:09:4b:90: 2d:66:49:d3:a1:fd:f0:5c:59:43:a8:11:be:56:13:28:51:38: 89:a7:43:52:e9:a9:e8:13:31:b6:45:2f:6b:ff:94:a9:52:51: b8:d7:32:3d:b7:78:9d:4c:da:89:41:ff:0e:b5:40:96:38:5c: 8c:fb:ee:c7:ad:f3:5a:19:47:ba:8c:3f:f7:cc:f1:70:c2:69: e0:3f:29:67:01:5a:3a:cf:62:6b:e2:0d:96:b3:0c:0d:a5:08: 67:c9:b8:0c:8d:5d:90:9e:ea:72:fb:04:47:82:fb:38:6e:fa: b9:81:86:80:ee:ff:d5:0f:4a:df:ff:0a:1d:5e:89:f8:dc:c3: 45:7d:28:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKEQ2ODBCRjNBNzk2QTM1NUIxMjVBNjAyQzc0NjZCOUE1 NkQzNDQyNTQwHhcNMjUwNDI2MTcyNzA5WhcNMjUwNTAzMTcyNzA5WjAYMRYwFAYD VQQDEw02ODBkMTc2ZC1kNjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlOxHAzDzRJWULFtTwcfctAwGntfygQK6HS8nLPuHEhs0H1DIlGsTEzPpsK8I /QzekAELnXuNDY4GY9v8jmndKo+Y/sPqnsmLUPmMfBJd6TGf9g7hOsX1+STM4jxN hDVaD80skcPJMls0LLjwWDwEXb0uSfshzKCrItnxkLD8NyaExudHLHj8PYoZedD3 7YfWRm7NAo1eqUOPkHnDU4bOLNs1FGqESsYmHUcAUTwQL+Zpw1MfpuvqXa3802UB kq9G/k6NBtcbpUPalE07Jb7wKT0bVonq19DhiLjK3GjIWWT+tPxbpZjRloPOeNpJ Wicq00xIpy6zqQUbp0RgiMyB2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0Je3JZ OyVBgw41kTuWpUIXIOaqMB8GA1UdIwQYMBaAFNaAvzp5ajVbElpgLHRmuaVtNEJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8wRUFDRjgyQzVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5Wc1NXbUFzZEdhNXBXMDBR bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFvQ19PbmxxTlZzU1dtQXNkR2E1cFcwMFFsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8wRUFDRjgyQzVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi8xb0NfT25scU5W c1NXbUFzZEdhNXBXMDBRbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2X0qWoPPTy+HHgHYyshqcTKDyiowpOFtVRlXHaT73rjMgonuf7n5a ct4OcAHcO4tYNrSiBQX2OeJf+nO/ucOnvQNInAt80oCyHEGNAqjIetNRdZ9FyA61 vFc21ovjBJvHklIvgi2tlaSgHOdCliSs0FliRi2yeK9HfG0JS5AtZknTof3wXFlD qBG+VhMoUTiJp0NS6anoEzG2RS9r/5SpUlG41zI9t3idTNqJQf8OtUCWOFyM++7H rfNaGUe6jD/3zPFwwmngPylnAVo6z2Jr4g2WswwNpQhnybgMjV2Qnupy+wRHgvs4 bvq5gYaA7v/VD0rf/wodXon43MNFfShF -----END CERTIFICATE-----Generated at Sat Apr 26 21:01:59 2025 by rpki-client on console.sobornost.net