$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft (raw, json) Hash identifier: UniG1/fZrDwxhrQ1MvEv1xLS0wxbtOTi07YNLqRCrvU= Subject key identifier: 59:27:CF:34:B1:BC:50:35:49:20:8C:ED:40:F0:FA:63:36:F3:B4:AB Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 08B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft Manifest number: 08A4 Signing time: Thu 24 Apr 2025 20:26:33 +0000 Manifest this update: Thu 24 Apr 2025 20:26:32 +0000 Manifest next update: Thu 01 May 2025 20:26:32 +0000 Files and hashes: 1: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl (hash: gkgx5OoS/zHVitvxSKds+DQ+/3KNoYcIOyjpH2sO1+s=) 2: 465DBB30BA8811EAAF996D39C4F9AE02.roa (hash: 23ndFVCcLg+/bCNKhL706A7YBuPjvG2i31lg9YjdTYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2229 (0x8b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Apr 24 20:26:32 2025 GMT Not After : May 1 20:26:32 2025 GMT Subject: CN=680a9e78-bfce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:3e:1a:fc:9b:1e:8b:17:23:f6:f4:8b:68: 56:6e:fa:b4:fa:1f:37:2f:72:62:19:c3:2d:60:3d: 57:58:75:be:78:ba:98:0c:37:9e:ff:21:5e:4f:0d: 6c:e1:4b:d3:e5:3f:ab:26:15:b9:05:b4:e6:e0:2f: 8e:81:03:2c:47:01:e1:e1:9d:fd:99:d8:80:b6:62: be:d8:02:52:1c:4c:ea:0b:18:b2:70:61:e6:ff:d6: df:c4:87:73:c4:ef:ca:a7:b1:97:0d:1f:75:50:e6: d5:12:94:16:2c:23:90:bb:3f:b8:ed:bf:12:97:36: a9:48:be:bc:eb:b9:8a:c8:cc:c3:a7:52:3f:44:f9: 6b:0e:d3:b1:4d:b8:cd:4d:0f:b9:0e:e9:1d:5d:6d: d1:97:e5:bb:3a:21:5d:30:7c:91:ee:c2:cf:91:55: 21:24:86:90:77:f5:91:20:58:c3:b0:3f:f8:e4:8c: e5:ad:3d:ce:ec:6c:5a:e1:3e:84:f8:6e:3a:4b:e0: d9:70:ad:64:94:67:4c:bc:63:1c:02:e9:de:43:09: 42:0c:76:65:c2:4d:f2:dc:e7:14:66:17:94:db:3b: a0:03:6e:bf:ae:ee:7f:1d:cc:d9:59:90:fd:f4:5c: 13:99:c6:16:cb:4e:71:ed:a2:73:dd:63:77:e3:ae: 85:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:27:CF:34:B1:BC:50:35:49:20:8C:ED:40:F0:FA:63:36:F3:B4:AB X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c5:70:df:e9:9c:bc:be:3c:db:af:41:f8:73:35:18:0d:b6: a4:7c:80:ca:98:7b:82:96:fb:a4:55:d5:92:70:53:1c:18:48: ad:9b:89:60:85:8a:97:02:21:84:44:3a:ff:a2:c7:68:e2:27: 1d:02:a6:64:c4:b7:b5:ad:ce:4e:39:76:9a:16:db:5c:b7:6f: e4:8b:58:08:40:1a:5c:e9:ad:a7:d5:c2:5c:5f:df:bc:cc:05: d2:08:b9:8b:63:71:26:9d:50:16:87:09:87:55:7e:e0:5a:4d: 23:60:ea:6c:44:c1:c4:ed:b2:c8:e3:94:62:87:a3:b6:62:7c: fd:73:e9:24:05:e6:51:a7:01:04:52:26:bc:86:cb:85:20:7e: fb:e1:68:b0:69:da:b2:50:98:d7:80:ce:66:c1:66:e6:09:dc: 66:2f:b6:0b:12:68:a1:a8:f4:54:e4:ad:62:67:a2:35:66:87: 31:4a:8f:9e:90:b4:5c:a9:b1:82:a2:3a:03:a2:78:09:12:26: da:47:41:5d:bc:31:db:21:5e:90:9e:bd:2e:fa:36:a4:0f:36: c2:5d:c3:0f:79:1d:e2:c0:9a:72:83:b5:ba:c6:9a:ad:b0:bb: e9:c3:0b:e6:07:2c:b2:4b:cb:24:07:33:ad:c5:23:67:da:b9: 06:e4:17:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjUwNDI0MjAyNjMyWhcNMjUwNTAxMjAyNjMyWjAYMRYwFAYD VQQDEw02ODBhOWU3OC1iZmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwk+GvybHosXI/b0i2hWbvq0+h83L3JiGcMtYD1XWHW+eLqYDDee/yFeTw1s 4UvT5T+rJhW5BbTm4C+OgQMsRwHh4Z39mdiAtmK+2AJSHEzqCxiycGHm/9bfxIdz xO/Kp7GXDR91UObVEpQWLCOQuz+47b8SlzapSL6867mKyMzDp1I/RPlrDtOxTbjN TQ+5DukdXW3Rl+W7OiFdMHyR7sLPkVUhJIaQd/WRIFjDsD/45IzlrT3O7Gxa4T6E +G46S+DZcK1klGdMvGMcAuneQwlCDHZlwk3y3OcUZheU2zugA26/ru5/HczZWZD9 9FwTmcYWy05x7aJz3WN3466FOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFknzzSx vFA1SSCM7UDw+mM287SrMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yQjczMkU3MEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2 bXRCYUtKMWhpQ0lMWDhfRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6xXDf6Zy8vjzbr0H4czUYDbakfIDKmHuClvukVdWScFMcGEitm4lg hYqXAiGERDr/osdo4icdAqZkxLe1rc5OOXaaFttct2/ki1gIQBpc6a2n1cJcX9+8 zAXSCLmLY3EmnVAWhwmHVX7gWk0jYOpsRMHE7bLI45Rih6O2Ynz9c+kkBeZRpwEE Uia8hsuFIH774WiwadqyUJjXgM5mwWbmCdxmL7YLEmihqPRU5K1iZ6I1ZocxSo+e kLRcqbGCojoDongJEibaR0FdvDHbIV6Qnr0u+jakDzbCXcMPeR3iwJpyg7W6xpqt sLvpwwvmByyyS8skBzOtxSNn2rkG5Bdk -----END CERTIFICATE-----Generated at Fri Apr 25 00:08:31 2025 by rpki-client on console.sobornost.net