$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: S+o/QL0uHJQPCuE+cxXpVD3vN2BwN5Tvb7raYntQbKE= Subject key identifier: 7B:D9:09:6A:A6:81:51:0A:5D:64:EE:6E:1E:44:8D:88:7B:DE:53:51 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0E76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0E65 Signing time: Thu 24 Apr 2025 17:42:35 +0000 Manifest this update: Thu 24 Apr 2025 17:42:34 +0000 Manifest next update: Thu 01 May 2025 17:42:34 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: ga5IS7f2u6rnCQ6eGk1bRlkxzRzVFFf0GaW0wjHyYII=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3702 (0xe76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Apr 24 17:42:34 2025 GMT Not After : May 1 17:42:34 2025 GMT Subject: CN=680a780b-a310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:93:98:ca:48:83:bd:c2:c9:39:a3:d1:38:28: 06:fa:93:5b:50:6e:ab:5d:06:0b:e4:ca:20:af:47: ed:aa:4e:26:e0:8c:d0:b4:66:14:85:18:41:ad:d7: 77:63:62:4d:e4:77:34:58:7a:fe:61:ab:a7:70:55: da:6b:4a:c1:8c:0e:91:67:10:09:c7:d6:97:83:c3: f0:3f:6d:95:b2:dc:31:1b:5f:b9:26:43:16:2f:e8: f9:37:f5:a8:12:7f:2c:10:d6:54:36:41:5e:a9:7b: 88:42:24:6b:3a:73:4e:67:3e:4d:0f:80:52:af:63: dd:60:92:f6:be:8e:fe:bf:d5:89:82:d2:e1:89:ca: fc:06:2b:e4:46:a2:86:ad:07:73:92:ca:04:40:90: 72:88:ce:bd:65:43:f3:ca:e6:08:e8:a4:35:31:43: 85:90:16:90:6a:81:94:b3:26:ea:b6:63:d3:bc:f4: 2e:83:21:04:76:64:1a:50:c5:94:79:6c:10:06:59: 78:87:a1:f7:bc:cf:be:cf:59:af:d4:85:e9:b3:9b: a2:b6:2d:e4:13:97:a9:c4:d4:c6:27:b5:4b:07:75: b1:4f:e9:a2:5b:9e:6f:08:8a:10:27:a8:c3:ae:bd: 39:3d:a8:86:52:37:6b:62:a9:2f:d8:ff:a2:68:a4: 94:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D9:09:6A:A6:81:51:0A:5D:64:EE:6E:1E:44:8D:88:7B:DE:53:51 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:60:34:98:43:fe:af:44:26:18:31:7b:8a:e2:50:cb:51:6e: 31:84:30:bd:76:df:de:c6:af:4f:4f:50:e1:05:59:54:54:ea: 2e:51:b5:05:ff:8d:f9:34:57:e8:a5:db:03:11:51:d6:9c:9b: d2:34:8a:ad:f3:3b:20:c3:e2:73:20:05:b0:f7:1c:e7:1c:df: d7:91:04:40:95:1b:ed:43:30:6b:dd:5a:b8:2e:97:e8:6f:ef: 4f:7a:b1:11:54:8b:02:9b:01:ad:14:3c:90:c2:a2:87:6f:f8: 2e:f8:9e:c1:45:47:9e:0e:32:30:27:38:72:f8:f3:c1:2e:60: bb:d9:8e:95:6a:68:d8:26:fb:da:47:96:34:38:1c:50:b1:0b: 3e:cf:5d:97:b2:ce:04:75:75:46:32:50:c7:34:e4:1d:aa:8f: 6c:da:bc:ad:25:1d:bc:ce:d8:1c:a8:a4:fd:88:7e:b3:6d:80: d4:3b:ed:a0:a1:be:46:f2:0a:4d:e9:4d:30:36:3b:ef:f9:8f: 83:db:40:d9:df:ec:a0:27:8f:64:e8:1c:77:4b:fc:02:a1:88: 93:ad:43:f0:33:e3:00:d9:18:e2:c9:b1:21:cd:4e:2f:4a:87: ea:25:0c:e6:94:a9:c0:12:ee:4c:2c:ff:fd:7a:e7:21:93:22: fd:22:17:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUwNDI0MTc0MjM0WhcNMjUwNTAxMTc0MjM0WjAYMRYwFAYD VQQDEw02ODBhNzgwYi1hMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZOYykiDvcLJOaPROCgG+pNbUG6rXQYL5Mogr0ftqk4m4IzQtGYUhRhBrdd3 Y2JN5Hc0WHr+YauncFXaa0rBjA6RZxAJx9aXg8PwP22VstwxG1+5JkMWL+j5N/Wo En8sENZUNkFeqXuIQiRrOnNOZz5ND4BSr2PdYJL2vo7+v9WJgtLhicr8BivkRqKG rQdzksoEQJByiM69ZUPzyuYI6KQ1MUOFkBaQaoGUsybqtmPTvPQugyEEdmQaUMWU eWwQBll4h6H3vM++z1mv1IXps5uiti3kE5epxNTGJ7VLB3WxT+miW55vCIoQJ6jD rr05PaiGUjdrYqkv2P+iaKSUJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvZCWqm gVEKXWTubh5EjYh73lNRMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCYDSYQ/6vRCYYMXuK4lDLUW4xhDC9dt/exq9PT1DhBVlUVOouUbUF /435NFfopdsDEVHWnJvSNIqt8zsgw+JzIAWw9xznHN/XkQRAlRvtQzBr3Vq4Lpfo b+9PerERVIsCmwGtFDyQwqKHb/gu+J7BRUeeDjIwJzhy+PPBLmC72Y6VamjYJvva R5Y0OBxQsQs+z12Xss4EdXVGMlDHNOQdqo9s2rytJR28ztgcqKT9iH6zbYDUO+2g ob5G8gpN6U0wNjvv+Y+D20DZ3+ygJ49k6Bx3S/wCoYiTrUPwM+MA2RjiybEhzU4v SofqJQzmlKnAEu5MLP/9euchkyL9Ihc0 -----END CERTIFICATE-----Generated at Thu Apr 24 20:39:20 2025 by rpki-client on console.sobornost.net