$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: BMfV+aK1n05vz7D2ZLziz2HNAdVGx3p4i/v/v/3IURk= Subject key identifier: 5D:38:6B:54:3C:9B:90:AE:C9:61:82:DB:91:A2:D1:95:5A:A3:01:65 Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: E7 Signing time: Thu 24 Apr 2025 20:13:50 +0000 Manifest this update: Thu 24 Apr 2025 20:13:50 +0000 Manifest next update: Thu 01 May 2025 20:13:50 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: jJeh/0t2grswStWpqOPho3TBS50IZbyf+qDdwQx/nao=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Apr 24 20:13:50 2025 GMT Not After : May 1 20:13:50 2025 GMT Subject: CN=680a9b7e-d266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ee:74:a4:eb:af:37:de:39:d2:3a:4e:28:25: 55:2f:73:e2:6d:14:33:36:ca:6f:e4:2c:7c:a4:a8: 25:5d:46:05:36:f5:b2:a7:c1:9b:30:14:48:76:b7: 47:ca:b9:0c:88:00:34:bf:39:10:74:d9:42:b3:b0: f4:35:72:d7:f6:d5:df:ec:65:99:b4:4a:d1:a2:f2: 58:96:d7:04:b9:1e:93:6d:82:85:c0:84:e9:c1:d2: dc:f4:1c:36:10:7b:30:4e:32:b4:0d:55:1a:49:9d: df:d2:b3:26:36:c0:c7:2d:49:9f:ae:b4:7f:0f:38: 50:13:38:ed:46:dd:a3:e1:46:a8:86:d7:bb:c9:d3: ad:4b:88:aa:77:bf:70:24:8a:ad:72:65:f2:cc:bd: c0:23:21:9d:64:7f:5a:9f:e9:78:3a:ce:14:61:15: 6c:51:97:07:d1:16:3c:6f:54:2f:07:9a:c6:b3:ef: e4:c9:6d:73:51:74:0d:6d:64:ae:31:62:98:52:0c: c9:d2:5f:67:14:4f:b6:99:b5:81:cc:50:4a:59:48: c2:b2:61:13:d8:97:cf:92:e9:d7:09:06:a5:72:81: df:c5:24:b4:5d:71:c1:3c:74:d6:e9:b8:5e:2c:32: d2:88:5b:2f:bb:09:bb:26:ca:a6:30:e4:02:39:b3: 64:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:38:6B:54:3C:9B:90:AE:C9:61:82:DB:91:A2:D1:95:5A:A3:01:65 X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:8b:06:d3:4e:fb:fd:df:af:01:97:e8:73:c4:10:c4:f6:64: db:eb:c8:79:e9:76:f8:bf:b7:01:60:bd:d6:f2:f4:4a:c0:19: b9:44:79:a7:b5:21:30:95:c7:c8:cd:42:94:d2:bc:eb:bd:1d: b2:9c:42:d7:8b:d8:4f:0a:0a:07:9b:ad:51:a9:9a:42:84:5d: 56:d9:bd:8e:71:49:7e:32:cc:8f:56:85:cb:17:1d:ab:cd:a0: c8:7c:04:df:83:49:2f:dc:e4:b8:7b:31:2d:7a:ee:32:d5:c9: 4d:94:94:4c:bf:e4:77:5d:a2:6b:24:1c:2f:41:9d:f4:ef:c6: 06:7e:80:35:b0:73:b3:ca:8d:44:14:2a:c0:ce:f3:b6:77:57: 9a:5b:e1:45:7f:e0:dc:2f:02:46:8e:fc:7b:ab:34:af:8b:f1: e3:33:a5:96:25:ba:25:20:0f:8f:a8:96:81:2e:e5:c2:f0:be: 14:85:bd:54:90:e4:91:7a:aa:8b:ab:94:03:ec:db:53:b1:af: 9e:99:96:62:99:0a:9f:5b:51:6e:9d:2f:d0:39:6f:b8:f9:65: b6:5f:48:c0:65:58:dd:fa:cf:c0:ac:88:31:2b:33:a8:65:6c: ba:b1:57:38:85:94:8e:13:ac:c8:a3:5a:be:a0:51:ee:9f:12: 8f:2e:c0:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjUwNDI0MjAxMzUwWhcNMjUwNTAxMjAxMzUwWjAYMRYwFAYD VQQDEw02ODBhOWI3ZS1kMjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqu50pOuvN9450jpOKCVVL3PibRQzNspv5Cx8pKglXUYFNvWyp8GbMBRIdrdH yrkMiAA0vzkQdNlCs7D0NXLX9tXf7GWZtErRovJYltcEuR6TbYKFwITpwdLc9Bw2 EHswTjK0DVUaSZ3f0rMmNsDHLUmfrrR/DzhQEzjtRt2j4Uaohte7ydOtS4iqd79w JIqtcmXyzL3AIyGdZH9an+l4Os4UYRVsUZcH0RY8b1QvB5rGs+/kyW1zUXQNbWSu MWKYUgzJ0l9nFE+2mbWBzFBKWUjCsmET2JfPkunXCQalcoHfxSS0XXHBPHTW6bhe LDLSiFsvuwm7JsqmMOQCObNkswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF04a1Q8 m5CuyWGC25Gi0ZVaowFlMB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiiwbTTvv9368Bl+hzxBDE9mTb68h56Xb4v7cBYL3W8vRKwBm5RHmn tSEwlcfIzUKU0rzrvR2ynELXi9hPCgoHm61RqZpChF1W2b2OcUl+MsyPVoXLFx2r zaDIfATfg0kv3OS4ezEteu4y1clNlJRMv+R3XaJrJBwvQZ3078YGfoA1sHOzyo1E FCrAzvO2d1eaW+FFf+DcLwJGjvx7qzSvi/HjM6WWJbolIA+PqJaBLuXC8L4Uhb1U kOSReqqLq5QD7NtTsa+emZZimQqfW1FunS/QOW+4+WW2X0jAZVjd+s/ArIgxKzOo ZWy6sVc4hZSOE6zIo1q+oFHunxKPLsB+ -----END CERTIFICATE-----Generated at Fri Apr 25 00:08:31 2025 by rpki-client on console.sobornost.net