$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft File: SU13HlEeEgBTuwmx8nS9j1nXOqg.mft (raw, json) Hash identifier: G1pr+lRhe0m8v5zcfwSd1kTAt8PmDX95JqMPbsqb0Os= Subject key identifier: BF:38:B4:D0:A7:D9:40:91:84:42:8E:C7:49:7A:64:55:1B:FD:E2:C3 Authority key identifier: 49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8 Certificate issuer: /CN=A91C4614/serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8 Certificate serial: 0C9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft Manifest number: 0C8F Signing time: Mon 28 Apr 2025 18:26:45 +0000 Manifest this update: Mon 28 Apr 2025 18:26:45 +0000 Manifest next update: Mon 05 May 2025 18:26:45 +0000 Files and hashes: 1: SU13HlEeEgBTuwmx8nS9j1nXOqg.crl (hash: 3/8Nl7+dd+4p0TDfPRZJQrWlpv/mcb/O0XRUIdLLvmw=) 2: 7A89B302E7E511EFA8BD237AC4F9AE02.roa (hash: UCWjaCqEsXVhT35xitXZIRxEvFr2BDAPH30xrreLvIA=) 3: ACEBFE04E7E511EFBC775C0EC4F9AE02.roa (hash: 0yGPdzFunQ5T02jKLxMdi+Rjr7DQq/Vj6dobHVz6yro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.crl rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:26:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4614, serialNumber=494D771E511E120053BB09B1F274BD8F59D73AA8 Validity Not Before: Apr 28 18:26:45 2025 GMT Not After : May 5 18:26:45 2025 GMT Subject: CN=680fc865-4145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f0:f0:0e:89:83:7d:08:47:2a:23:ca:c3:5f: de:1b:0c:6d:08:97:65:9f:b7:f9:0b:8c:57:a3:d3: c2:a9:3c:b6:f9:30:67:76:96:b3:af:7a:41:f5:5a: 7d:65:9d:45:3f:88:e0:20:f4:02:50:8e:70:28:2c: da:f0:15:2d:26:2b:54:33:49:6d:15:13:41:f7:ad: 22:c3:d2:16:2d:64:e4:9b:65:10:8c:2d:9e:c2:e1: e7:ec:95:ed:24:09:e9:cd:f0:e0:94:4d:4c:a2:74: dc:55:5d:fc:b8:14:b9:02:25:cd:2e:13:f7:a9:2c: 7d:70:28:5a:9f:50:ba:a2:69:38:04:50:7a:af:91: 50:b5:8e:35:09:e2:99:f7:a0:de:af:9d:b5:63:91: 4b:dc:71:7f:e9:65:60:be:82:c5:92:45:8d:13:81: 10:b0:d8:85:62:dd:42:5a:7f:ec:b8:18:71:b7:5e: 77:e7:58:74:21:8c:9a:5b:e9:0f:ec:6c:7a:f1:a5: 6e:16:76:39:77:aa:a2:6a:e8:11:59:80:2d:4e:81: 12:95:38:95:63:5a:ca:9a:bb:a8:19:a8:b4:c3:3f: 6d:3f:5f:6e:48:c2:ca:40:66:51:bf:12:33:f8:cb: d0:a5:4e:b2:f3:99:63:c4:6a:cb:db:a8:e2:2a:33: 70:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:38:B4:D0:A7:D9:40:91:84:42:8E:C7:49:7A:64:55:1B:FD:E2:C3 X509v3 Authority Key Identifier: keyid:49:4D:77:1E:51:1E:12:00:53:BB:09:B1:F2:74:BD:8F:59:D7:3A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SU13HlEeEgBTuwmx8nS9j1nXOqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4614/1C94899AF4F011E9AC202B1DC4F9AE02/SU13HlEeEgBTuwmx8nS9j1nXOqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bd:a7:64:26:02:22:f5:c5:11:08:7c:27:4f:7a:c7:92:a3: dd:96:f0:84:21:28:8b:30:7e:7c:35:58:98:0f:c4:e6:78:6f: ff:68:e3:35:cc:75:5b:62:7a:c1:7e:ed:ff:89:df:04:da:41: 61:d0:55:a1:51:0d:92:60:a1:5c:ea:59:d6:b9:d3:6a:9f:64: f1:71:23:91:7d:a7:8d:8a:6b:de:b3:de:e9:84:4d:cb:37:93: 6d:59:61:02:bd:bd:f5:a6:b9:39:0f:bf:2c:2f:a5:10:1d:b5: 8a:82:bf:ac:99:5e:bc:88:1c:ee:bd:aa:5a:e7:ca:d2:ea:5f: ac:1c:9b:47:fc:f4:9b:8f:57:0f:6e:92:e8:5f:da:94:d0:44: 39:f8:7e:9a:79:6f:42:ef:07:91:82:46:ed:aa:7a:dc:a1:46: f7:22:43:a7:d8:4a:54:07:81:54:42:37:8f:d2:c0:cf:c6:fc: 0e:12:1f:c7:22:b5:9a:d2:e2:2c:55:4d:51:cc:ff:f1:d1:9a: 91:b1:83:83:ac:43:b1:bc:f9:5d:af:a0:53:6d:ae:f8:6f:e4: 90:14:73:09:2c:fc:e1:1a:68:64:b7:f2:a3:ac:d5:51:73:57: 9d:d4:8d:9c:cc:5a:d6:3e:3c:52:3f:c4:e2:67:50:3a:a5:b5: aa:c2:a0:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ2MTQxMTAvBgNVBAUTKDQ5NEQ3NzFFNTExRTEyMDA1M0JCMDlCMUYyNzRCRDhG NTlENzNBQTgwHhcNMjUwNDI4MTgyNjQ1WhcNMjUwNTA1MTgyNjQ1WjAYMRYwFAYD VQQDEw02ODBmYzg2NS00MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfDwDomDfQhHKiPKw1/eGwxtCJdln7f5C4xXo9PCqTy2+TBndpazr3pB9Vp9 ZZ1FP4jgIPQCUI5wKCza8BUtJitUM0ltFRNB960iw9IWLWTkm2UQjC2ewuHn7JXt JAnpzfDglE1MonTcVV38uBS5AiXNLhP3qSx9cChan1C6omk4BFB6r5FQtY41CeKZ 96Der521Y5FL3HF/6WVgvoLFkkWNE4EQsNiFYt1CWn/suBhxt15351h0IYyaW+kP 7Gx68aVuFnY5d6qiaugRWYAtToESlTiVY1rKmruoGai0wz9tP19uSMLKQGZRvxIz +MvQpU6y85ljxGrL26jiKjNwcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL84tNCn 2UCRhEKOx0l6ZFUb/eLDMB8GA1UdIwQYMBaAFElNdx5RHhIAU7sJsfJ0vY9Z1zqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDYxNC8xQzk0ODk5QUY0 RjAxMUU5QUMyMDJCMURDNEY5QUUwMi9TVTEzSGxFZUVnQlR1d214OG5TOWoxblhP cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVMTNIbEVlRWdCVHV3bXg4blM5ajFuWE9xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDYxNC8xQzk0ODk5QUY0RjAxMUU5QUMyMDJCMURDNEY5QUUwMi9TVTEzSGxFZUVn QlR1d214OG5TOWoxblhPcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvadkJgIi9cURCHwnT3rHkqPdlvCEISiLMH58NViYD8TmeG//aOM1 zHVbYnrBfu3/id8E2kFh0FWhUQ2SYKFc6lnWudNqn2TxcSORfaeNimves97phE3L N5NtWWECvb31prk5D78sL6UQHbWKgr+smV68iBzuvapa58rS6l+sHJtH/PSbj1cP bpLoX9qU0EQ5+H6aeW9C7weRgkbtqnrcoUb3IkOn2EpUB4FUQjeP0sDPxvwOEh/H IrWa0uIsVU1RzP/x0ZqRsYODrEOxvPldr6BTba74b+SQFHMJLPzhGmhkt/KjrNVR c1ed1I2czFrWPjxSP8TiZ1A6pbWqwqBg -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:57 2025 by rpki-client on console.sobornost.net