$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft File: -6JuPNfggZmzoY8WNmp1fwTN8FQ.mft (raw, json) Hash identifier: B5BEe5rW5DcnEowTAU71CdBrxNHhxzxhuJpJgTDZMsY= Subject key identifier: 32:FA:E9:D9:4F:83:39:70:10:50:DB:D6:9D:F8:A1:42:AB:8D:D5:CC Authority key identifier: FB:A2:6E:3C:D7:E0:81:99:B3:A1:8F:16:36:6A:75:7F:04:CD:F0:54 Certificate issuer: /CN=A91B7709/serialNumber=FBA26E3CD7E08199B3A18F16366A757F04CDF054 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft Manifest number: 65 Signing time: Sun 27 Apr 2025 05:49:17 +0000 Manifest this update: Sun 27 Apr 2025 05:49:16 +0000 Manifest next update: Sun 04 May 2025 05:49:16 +0000 Files and hashes: 1: -6JuPNfggZmzoY8WNmp1fwTN8FQ.crl (hash: BBSvCuVImWQKOrDjUSlndjXnmAVHAL0MvoXfbIH6ffY=) 2: 25FFA3768BB711EF9C572630C4F9AE02.roa (hash: PO3QH99TaEGXLczk5CFqhAB0Ach8mXnS87Xb+Nz/Uzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.crl rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7709, serialNumber=FBA26E3CD7E08199B3A18F16366A757F04CDF054 Validity Not Before: Apr 27 05:49:16 2025 GMT Not After : May 4 05:49:16 2025 GMT Subject: CN=680dc55c-7f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d7:6b:e0:cc:d4:5b:74:f8:ea:22:41:a3:ae: 20:db:a5:6b:76:00:06:a8:9f:7a:0b:fe:e8:2c:58: 02:47:2a:ea:84:d9:e2:f2:e6:3c:f7:62:a7:76:05: 3c:c0:2a:f8:f8:66:70:a1:56:3b:6f:f5:d6:02:42: 4e:4e:8e:37:f1:84:38:98:e6:4a:ba:53:72:77:5f: 57:d8:18:cc:37:9c:f9:b3:ef:49:4f:ed:45:6b:b1: ee:06:33:9f:87:db:fe:16:4b:a0:ba:3e:ed:00:1a: 6c:8d:c0:e1:6a:51:dd:c1:86:9e:0b:59:2f:1a:5c: f3:54:28:b8:03:e0:0f:c9:fa:22:98:c2:41:c8:63: e4:65:fe:68:66:05:c7:fc:1d:1c:e7:2c:be:c4:c9: 0a:7e:9a:17:bc:35:e9:af:97:21:68:6c:f4:02:ce: 99:1f:3c:d5:81:ba:c2:f2:d6:bd:13:0f:bb:28:8d: a3:d5:26:99:1d:c3:fa:a1:d1:35:34:83:e9:5c:42: c7:d8:27:f6:26:35:a0:67:f8:02:b7:40:48:91:35: 61:63:9b:bf:21:41:4a:e7:04:59:4a:75:a7:25:8d: 40:b0:55:e6:80:da:9b:c8:6a:48:05:9b:ee:9d:01: a2:6d:7a:5e:60:39:75:f4:c6:8c:01:d4:0c:59:0b: c2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FA:E9:D9:4F:83:39:70:10:50:DB:D6:9D:F8:A1:42:AB:8D:D5:CC X509v3 Authority Key Identifier: keyid:FB:A2:6E:3C:D7:E0:81:99:B3:A1:8F:16:36:6A:75:7F:04:CD:F0:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-6JuPNfggZmzoY8WNmp1fwTN8FQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7709/81623A4A8BB611EF998BAC72C4F9AE02/-6JuPNfggZmzoY8WNmp1fwTN8FQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:84:99:cb:b1:07:7a:d7:a8:03:7e:4c:b3:b1:b6:a3:eb:da: d8:d2:fd:17:a5:63:7d:9f:f1:31:15:0a:1a:56:fb:46:4c:af: e5:8f:b8:a6:33:4c:f5:41:44:a4:bc:9f:93:1e:b2:5f:18:48: 88:5d:78:24:fc:b5:74:57:35:a9:f8:80:a4:c3:2a:47:e9:5b: ad:21:93:fb:a1:a5:e0:1d:cd:c4:c6:31:84:55:88:e2:47:4a: ee:8f:43:b9:99:6d:9f:c6:17:4f:bc:53:78:73:2e:4c:dd:f7: 32:5c:42:c9:34:8d:56:3a:7c:6a:2d:dc:9a:cb:27:e5:3c:c9: ba:68:94:ea:8c:ae:60:c0:11:a6:14:5f:39:ec:21:fb:ff:79: 99:9b:9d:4c:b2:a4:d6:e1:f8:4e:ca:2b:0d:8e:1b:d2:ef:10: c3:69:01:7c:cf:c6:bb:a1:f3:f4:c3:78:70:8e:7e:cf:8c:1e: 69:7b:2c:04:2a:4a:d2:6a:d8:30:5f:d0:c7:83:e0:28:1f:6c: ec:12:fc:74:b0:ce:aa:03:29:c5:9f:d5:a0:f5:56:77:ab:a5: 38:2e:ae:e5:4e:37:78:47:8b:fd:32:c3:11:14:f7:d4:9f:91: 6e:15:74:a8:81:72:0e:43:71:48:a6:e5:d0:e7:1f:f7:7e:6b: 5d:5c:70:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzcwOTExMC8GA1UEBRMoRkJBMjZFM0NEN0UwODE5OUIzQTE4RjE2MzY2QTc1N0Yw NENERjA1NDAeFw0yNTA0MjcwNTQ5MTZaFw0yNTA1MDQwNTQ5MTZaMBgxFjAUBgNV BAMTDTY4MGRjNTVjLTdmMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW12vgzNRbdPjqIkGjriDbpWt2AAaon3oL/ugsWAJHKuqE2eLy5jz3Yqd2BTzA Kvj4ZnChVjtv9dYCQk5OjjfxhDiY5kq6U3J3X1fYGMw3nPmz70lP7UVrse4GM5+H 2/4WS6C6Pu0AGmyNwOFqUd3Bhp4LWS8aXPNUKLgD4A/J+iKYwkHIY+Rl/mhmBcf8 HRznLL7EyQp+mhe8NemvlyFobPQCzpkfPNWBusLy1r0TD7sojaPVJpkdw/qh0TU0 g+lcQsfYJ/YmNaBn+AK3QEiRNWFjm78hQUrnBFlKdacljUCwVeaA2pvIakgFm+6d AaJtel5gOXX0xowB1AxZC8JnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMvrp2U+D OXAQUNvWnfihQquN1cwwHwYDVR0jBBgwFoAU+6JuPNfggZmzoY8WNmp1fwTN8FQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NzA5LzgxNjIzQTRBOEJC NjExRUY5OThCQUM3MkM0RjlBRTAyLy02SnVQTmZnZ1ptem9ZOFdObXAxZndUTjhG US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTZKdVBOZmdnWm16b1k4V05tcDFmd1ROOEZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 NzA5LzgxNjIzQTRBOEJCNjExRUY5OThCQUM3MkM0RjlBRTAyLy02SnVQTmZnZ1pt em9ZOFdObXAxZndUTjhGUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI+EmcuxB3rXqAN+TLOxtqPr2tjS/RelY32f8TEVChpW+0ZMr+WPuKYz TPVBRKS8n5Mesl8YSIhdeCT8tXRXNan4gKTDKkfpW60hk/uhpeAdzcTGMYRViOJH Su6PQ7mZbZ/GF0+8U3hzLkzd9zJcQsk0jVY6fGot3JrLJ+U8ybpolOqMrmDAEaYU XznsIfv/eZmbnUyypNbh+E7KKw2OG9LvEMNpAXzPxruh8/TDeHCOfs+MHml7LAQq StJq2DBf0MeD4CgfbOwS/HSwzqoDKcWf1aD1VnerpTguruVON3hHi/0ywxEU99Sf kW4VdKiBcg5DcUim5dDnH/d+a11ccKg= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net