$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft File: SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft (raw, json) Hash identifier: 0yCld4nbLithl1knISS8uNh+ndf5AjqZqVgrWLkFNDQ= Subject key identifier: 36:0F:6E:63:16:76:20:33:2B:E8:58:D8:88:FA:C6:7C:ED:98:C1:DD Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft Manifest number: 6C Signing time: Sun 27 Apr 2025 05:44:25 +0000 Manifest this update: Sun 27 Apr 2025 05:44:25 +0000 Manifest next update: Sun 04 May 2025 05:44:25 +0000 Files and hashes: 1: SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl (hash: JSTaGX5Oz2z5qYypDz8oKIaWg66QLL1m6moxWFKPre4=) 2: 35525B92845611EFB053C341C4F9AE02.roa (hash: EALyqga77JnqqbNDgpUBBYz9RBMX9a1r4uv6AF60WLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Apr 27 05:44:25 2025 GMT Not After : May 4 05:44:25 2025 GMT Subject: CN=680dc439-0da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e3:21:ee:c4:80:30:82:19:27:62:eb:d0:4f: 9b:f5:8c:39:5a:99:3c:f0:44:3c:8c:4d:a3:70:0c: 1b:ff:d8:3c:69:a7:4c:53:9a:67:d0:ee:95:35:0c: 37:03:31:c9:a4:25:47:11:ab:f8:49:9e:f7:52:bf: 4d:ca:e9:51:95:4c:1a:a1:be:36:e0:20:32:d8:ad: f5:7c:7b:fe:64:b0:94:a8:6e:dd:31:32:6e:83:5d: f7:5b:72:c3:b2:be:cd:38:a6:62:84:a3:af:6a:c0: 4a:6f:7d:4f:77:2f:e4:c1:21:2c:41:31:ba:11:d9: f2:48:10:ff:21:c3:8a:1b:ec:e2:1f:d1:15:74:04: dc:7d:6b:9f:c6:99:01:82:d1:53:2b:0d:77:59:dc: 33:a1:8a:96:89:4e:52:60:e7:2d:a4:8e:66:60:59: b5:cc:19:73:f1:ca:94:10:e2:9d:35:5b:49:68:7a: cb:72:b9:d3:24:f5:e9:d4:66:5a:7c:cb:73:c5:a3: d7:84:28:2b:fa:7e:5b:3a:cf:6e:a4:8b:64:92:c0: 57:3a:2d:05:6d:90:26:df:b9:34:33:ff:57:ae:05: bc:30:53:62:7b:c1:91:e9:27:14:81:2d:79:1c:c5: c1:8c:8f:6d:e7:e6:05:1f:39:84:74:c5:35:cd:7b: dd:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0F:6E:63:16:76:20:33:2B:E8:58:D8:88:FA:C6:7C:ED:98:C1:DD X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:9a:38:26:64:c7:ef:74:ec:3f:96:70:6a:97:c0:4b:6c:29: b0:b1:9e:c4:a5:de:92:7a:6f:d0:b3:b6:da:5f:b5:b4:7c:29: fd:df:37:0b:7c:b7:11:66:7d:6d:2c:b7:61:5d:18:9d:64:f8: 13:22:00:ae:8c:5d:d9:81:16:59:ec:34:a0:7c:ac:2f:10:bf: 1a:1c:1a:29:90:1c:a2:d8:61:6c:e7:ed:ed:d1:7a:bf:04:1d: c7:a1:28:f1:db:d3:b3:e7:ba:6e:5c:d5:47:96:65:22:c2:74: 36:f5:bb:47:c4:dc:3b:02:04:18:00:08:67:ca:cf:6b:fc:ec: 1f:90:a8:4d:e3:c6:e4:9e:31:45:4a:b0:f5:17:ff:cf:1e:9d: 92:ed:4e:b0:40:14:ac:4a:db:8d:cf:1a:a5:ca:1b:e7:43:ff: 1b:b8:12:b9:08:4f:84:ba:5c:27:b3:80:76:98:8a:a3:6b:34: 0d:89:75:e3:21:1e:a5:35:d6:fb:4c:3b:f7:bc:44:9f:e8:f3: fe:6f:d3:62:85:d6:f4:ee:b2:dd:3a:cb:65:9a:78:82:58:b8: 04:06:d0:6d:20:46:9c:4a:b9:32:d4:5c:1e:40:1b:59:82:ad: 09:9a:4f:03:a3:38:1e:47:6d:73:1f:73:e2:39:e1:26:5c:71: c1:f6:7d:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzRGRjExMC8GA1UEBRMoNDk0NzVCNTk3NUYxOTc5ODk1QTNDNkU0NDE4M0U0QkNB MkU4MzQ2RjAeFw0yNTA0MjcwNTQ0MjVaFw0yNTA1MDQwNTQ0MjVaMBgxFjAUBgNV BAMTDTY4MGRjNDM5LTBkYTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm4yHuxIAwghknYuvQT5v1jDlamTzwRDyMTaNwDBv/2Dxpp0xTmmfQ7pU1DDcD McmkJUcRq/hJnvdSv03K6VGVTBqhvjbgIDLYrfV8e/5ksJSobt0xMm6DXfdbcsOy vs04pmKEo69qwEpvfU93L+TBISxBMboR2fJIEP8hw4ob7OIf0RV0BNx9a5/GmQGC 0VMrDXdZ3DOhipaJTlJg5y2kjmZgWbXMGXPxypQQ4p01W0loestyudMk9enUZlp8 y3PFo9eEKCv6fls6z26ki2SSwFc6LQVtkCbfuTQz/1euBbwwU2J7wZHpJxSBLXkc xcGMj23n5gUfOYR0xTXNe90FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNg9uYxZ2 IDMr6FjYiPrGfO2Ywd0wHwYDVR0jBBgwFoAUSUdbWXXxl5iVo8bkQYPkvKLoNG8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDNEZGLzlDNTZCRTQyODQ1 NTExRUZCNzZEMjc0MEM0RjlBRTAyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05H OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1VkYldYWHhsNWlWbzhia1FZUGt2S0xvTkc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJD NEZGLzlDNTZCRTQyODQ1NTExRUZCNzZEMjc0MEM0RjlBRTAyL1NVZGJXWFh4bDVp Vm84YmtRWVBrdktMb05HOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI2aOCZkx+907D+WcGqXwEtsKbCxnsSl3pJ6b9CzttpftbR8Kf3fNwt8 txFmfW0st2FdGJ1k+BMiAK6MXdmBFlnsNKB8rC8QvxocGimQHKLYYWzn7e3Rer8E HcehKPHb07Pnum5c1UeWZSLCdDb1u0fE3DsCBBgACGfKz2v87B+QqE3jxuSeMUVK sPUX/88enZLtTrBAFKxK243PGqXKG+dD/xu4ErkIT4S6XCezgHaYiqNrNA2JdeMh HqU11vtMO/e8RJ/o8/5v02KF1vTust06y2WaeIJYuAQG0G0gRpxKuTLUXB5AG1mC rQmaTwOjOB5HbXMfc+I54SZcccH2faY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net