$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: Cvt6de/7nVUXkZZ78wSQUUvALlnHHZsnEx5kescUxRo= Subject key identifier: AE:E5:C4:76:BC:35:D0:26:89:28:14:ED:BF:29:A4:40:D4:D4:DF:C9 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 041E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 041A Signing time: Sun 27 Apr 2025 00:03:51 +0000 Manifest this update: Sun 27 Apr 2025 00:03:50 +0000 Manifest next update: Sun 04 May 2025 00:03:50 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: mv4iwIQJV9kQfB3F4GCaB4rvXPPM/tLXdlsQu4XEATM=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:03:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Apr 27 00:03:50 2025 GMT Not After : May 4 00:03:50 2025 GMT Subject: CN=680d7466-8e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cf:52:a6:c2:44:2e:e9:6c:bd:56:b5:75:43: f0:9f:0d:ae:46:db:e4:85:ff:aa:89:f0:11:d7:b9: 79:5b:2a:21:29:22:73:96:5b:ad:03:4b:b4:56:99: f8:11:c1:9e:a6:6e:fd:96:71:76:35:f9:26:a1:cd: ea:1a:30:0f:bf:e8:d3:fd:f9:f6:c8:8e:f7:97:31: df:e2:ac:b9:26:fe:9f:2b:0a:86:0f:16:58:60:3d: 32:73:7e:b4:f5:19:47:9f:b0:a7:b1:5d:c9:12:60: 10:d6:1f:22:02:eb:cd:c1:5f:22:b8:56:6b:1f:0e: 13:f2:54:d8:49:2e:04:99:3f:ed:7e:75:d0:16:c9: 5d:90:3a:d3:06:3e:12:08:a9:51:ba:bc:48:1a:56: 26:d5:7b:e1:12:cf:4e:2d:fa:f1:5a:26:40:03:f1: e5:d1:1d:db:13:2c:6e:c7:3d:75:7f:67:8b:bf:be: 3c:ed:ce:e3:29:85:db:b7:dc:09:18:8c:af:62:e0: 39:66:be:76:43:b6:26:7f:98:d1:3b:49:e6:83:0a: 2a:8c:71:1f:b6:43:0a:85:54:af:e8:94:2c:d6:60: 42:96:43:40:8c:87:66:46:0b:ea:88:ca:aa:38:a5: 1f:92:ea:1e:63:cc:1a:0f:0a:a4:02:39:5e:6f:e8: 1e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E5:C4:76:BC:35:D0:26:89:28:14:ED:BF:29:A4:40:D4:D4:DF:C9 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:37:84:fd:8f:f1:0b:4d:50:74:c8:a7:92:29:0c:5f:d2:a9: d8:91:c2:c1:25:a2:d0:33:ef:a8:49:e2:9a:60:95:3d:4e:9e: b4:b5:bc:f1:a1:91:f1:2f:ca:ef:5a:bc:10:9f:c9:59:74:09: 06:5a:97:c1:5d:d7:31:f5:2d:0d:bc:02:02:87:ee:59:37:1c: 3f:97:02:e3:02:a2:ef:92:7c:dd:b3:e5:af:a9:e9:59:42:af: d6:39:05:c6:e8:c3:4f:90:89:77:9e:b0:a2:39:6c:cb:d5:72: ab:df:cb:d6:f9:b8:40:02:d4:5f:77:24:b7:c4:0a:58:53:81: c8:3a:1e:28:bb:1c:bb:0b:c6:27:e5:d5:38:2d:c4:d8:47:f4: 57:49:9f:ba:7d:ac:2d:a7:70:ee:9b:0e:2d:90:52:a6:2c:1c: 99:ac:31:52:ce:63:10:83:26:ce:cf:7e:78:1f:c7:f3:fe:62: ac:3d:f9:aa:92:39:6f:7f:36:99:b2:ab:e5:d9:99:3a:e5:82: 6b:e4:a6:ae:d8:90:65:8a:e7:9d:81:6f:23:5c:79:a3:cb:92: 93:17:d7:ea:59:04:64:41:f3:9f:74:93:30:a2:f5:af:0f:4b: 36:bf:a9:76:4f:b5:96:a4:89:13:5c:d6:26:99:fc:98:b3:4c: 0e:09:7e:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUwNDI3MDAwMzUwWhcNMjUwNTA0MDAwMzUwWjAYMRYwFAYD VQQDEw02ODBkNzQ2Ni04ZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuM9SpsJELulsvVa1dUPwnw2uRtvkhf+qifAR17l5WyohKSJzllutA0u0Vpn4 EcGepm79lnF2Nfkmoc3qGjAPv+jT/fn2yI73lzHf4qy5Jv6fKwqGDxZYYD0yc360 9RlHn7CnsV3JEmAQ1h8iAuvNwV8iuFZrHw4T8lTYSS4EmT/tfnXQFsldkDrTBj4S CKlRurxIGlYm1XvhEs9OLfrxWiZAA/Hl0R3bEyxuxz11f2eLv7487c7jKYXbt9wJ GIyvYuA5Zr52Q7Ymf5jRO0nmgwoqjHEftkMKhVSv6JQs1mBClkNAjIdmRgvqiMqq OKUfkuoeY8waDwqkAjleb+gefwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7lxHa8 NdAmiSgU7b8ppEDU1N/JMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEN4T9j/ELTVB0yKeSKQxf0qnYkcLBJaLQM++oSeKaYJU9Tp60tbzx oZHxL8rvWrwQn8lZdAkGWpfBXdcx9S0NvAICh+5ZNxw/lwLjAqLvknzds+WvqelZ Qq/WOQXG6MNPkIl3nrCiOWzL1XKr38vW+bhAAtRfdyS3xApYU4HIOh4ouxy7C8Yn 5dU4LcTYR/RXSZ+6fawtp3Dumw4tkFKmLByZrDFSzmMQgybOz354H8fz/mKsPfmq kjlvfzaZsqvl2Zk65YJr5Kau2JBliuedgW8jXHmjy5KTF9fqWQRkQfOfdJMwovWv D0s2v6l2T7WWpIkTXNYmmfyYs0wOCX64 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:09 2025 by rpki-client on console.sobornost.net