$ rpki-client -vvf rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft File: _nzI0SyMuUDQbq7bWwrUPQUDYvE.mft (raw, json) Hash identifier: 3XfSyGQyblEno3DcgKhfsC8Imvgn43V8cXbRsd6+9tU= Subject key identifier: 03:B2:8E:7B:96:99:7D:DE:9E:6E:7C:D6:39:49:69:CF:4B:A3:A3:20 Authority key identifier: FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 Certificate issuer: /CN=A91D404F/serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft Manifest number: 39 Signing time: Wed 23 Apr 2025 06:37:44 +0000 Manifest this update: Wed 23 Apr 2025 06:37:43 +0000 Manifest next update: Wed 30 Apr 2025 06:37:43 +0000 Files and hashes: 1: _nzI0SyMuUDQbq7bWwrUPQUDYvE.crl (hash: YjiZrpMXBNhHa5qhkTY8zuPXEmQVjmvhfRFx31vFPYk=) 2: F943DF74CBF711EFB86EC74FC4F9AE02.roa (hash: OQsiNqk/6UEhG+WoM7b9x1Qk45e1mg8EolKiz0N5DwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D404F, serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Validity Not Before: Apr 23 06:37:43 2025 GMT Not After : Apr 30 06:37:43 2025 GMT Subject: CN=68088ab8-1893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:62:60:8e:8e:61:5b:f0:32:f9:fd:0d:25:e4: 0f:37:1f:47:92:b9:0f:ec:a6:d0:b5:b5:31:52:dc: 1e:c2:c3:95:2b:ff:48:84:9c:ff:e6:71:94:12:34: e2:31:b8:e1:3a:02:dc:40:14:5a:6f:38:2e:59:bf: 04:c2:b9:4e:55:bc:8b:46:17:e6:f3:9a:42:2a:0a: f1:af:cd:35:2e:cf:7f:e4:a4:94:b8:cb:e8:d2:26: c3:8f:35:35:c9:7f:44:39:0f:0f:23:2f:29:d4:4d: 70:b3:97:f0:b1:78:38:e2:24:00:b2:b0:8a:5d:11: 02:87:fb:3f:1f:51:80:28:5c:75:74:a3:62:fb:48: 79:2b:34:a2:8e:b4:3b:d8:50:12:9c:82:09:7b:a0: 53:c7:6b:49:7e:a7:1f:22:78:02:65:4a:ef:d3:18: 0f:17:81:92:ba:e3:da:c2:ec:14:43:6a:80:0a:26: ad:03:db:8f:43:c1:01:16:88:e8:a6:01:4d:d6:af: ef:4a:c3:59:c2:a5:62:bf:6c:c2:b4:41:59:c8:c9: 16:2c:10:de:0d:9b:02:bf:75:ec:43:fb:19:65:0b: f7:f7:5f:9d:26:53:b0:d2:df:47:d2:22:c1:81:95: d6:a9:3c:14:24:75:1d:93:f1:86:56:b8:e2:b4:ef: b7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B2:8E:7B:96:99:7D:DE:9E:6E:7C:D6:39:49:69:CF:4B:A3:A3:20 X509v3 Authority Key Identifier: keyid:FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:84:7c:7b:0e:f2:b9:1e:1e:01:7d:b4:67:2b:42:5e:a3:ea: ef:99:c1:36:50:03:d2:72:82:85:97:1c:16:fd:9c:6b:6b:a5: 39:51:b1:0e:4f:99:c4:06:6b:3d:f8:96:b9:e1:3b:fe:bd:88: eb:63:62:35:95:7b:91:ef:8a:b3:14:a9:75:66:f5:30:4e:de: c9:1a:c6:37:27:5e:73:8f:3f:d5:c5:49:da:c4:c4:f6:60:7c: bf:26:c3:84:69:3b:c4:e7:e7:c5:0b:a1:ed:b8:3b:6c:7e:f8: 09:a1:68:0d:1d:88:04:d4:9c:07:08:e5:39:4e:9f:c7:71:80: d6:75:d9:3b:a8:22:a8:73:c1:28:f8:8b:68:20:55:5a:a2:86: 45:ba:27:46:1b:d0:5d:0e:56:43:81:0f:65:da:d7:2c:f2:6d: 59:e0:ea:6f:db:fb:94:1a:69:65:f1:60:2a:e2:84:63:ec:83: 92:25:64:c0:cb:9c:0f:0d:d5:7b:34:60:09:9f:b0:fe:46:e5: a5:1d:fe:69:9d:68:45:c1:bc:aa:98:1c:f3:59:a5:4d:2f:b8: ac:76:fb:3a:c5:7f:94:40:3d:e4:49:66:bb:aa:8c:c1:91:f0: f0:f4:29:1c:d3:c7:45:c0:43:6b:78:64:ab:a2:ae:ef:0b:49: 52:1f:08:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDA0RjExMC8GA1UEBRMoRkU3Q0M4RDEyQzhDQjk0MEQwNkVBRURCNUIwQUQ0M0Qw NTAzNjJGMTAeFw0yNTA0MjMwNjM3NDNaFw0yNTA0MzAwNjM3NDNaMBgxFjAUBgNV BAMTDTY4MDg4YWI4LTE4OTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD4YmCOjmFb8DL5/Q0l5A83H0eSuQ/sptC1tTFS3B7Cw5Ur/0iEnP/mcZQSNOIx uOE6AtxAFFpvOC5ZvwTCuU5VvItGF+bzmkIqCvGvzTUuz3/kpJS4y+jSJsOPNTXJ f0Q5Dw8jLynUTXCzl/CxeDjiJACysIpdEQKH+z8fUYAoXHV0o2L7SHkrNKKOtDvY UBKcggl7oFPHa0l+px8ieAJlSu/TGA8XgZK649rC7BRDaoAKJq0D249DwQEWiOim AU3Wr+9Kw1nCpWK/bMK0QVnIyRYsEN4NmwK/dexD+xllC/f3X50mU7DS30fSIsGB ldapPBQkdR2T8YZWuOK077d9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA7KOe5aZ fd6ebnzWOUlpz0ujoyAwHwYDVR0jBBgwFoAU/nzI0SyMuUDQbq7bWwrUPQUDYvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0MDRGL0Q1RDBGRUI0Q0JG NzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVEUWJxN2JXd3JVUFFVRFl2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX256STBTeU11VURRYnE3Yld3clVQUVVEWXZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 MDRGL0Q1RDBGRUI0Q0JGNzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVE UWJxN2JXd3JVUFFVRFl2RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACmEfHsO8rkeHgF9tGcrQl6j6u+ZwTZQA9JygoWXHBb9nGtrpTlRsQ5P mcQGaz34lrnhO/69iOtjYjWVe5HvirMUqXVm9TBO3skaxjcnXnOPP9XFSdrExPZg fL8mw4RpO8Tn58ULoe24O2x++AmhaA0diATUnAcI5TlOn8dxgNZ12TuoIqhzwSj4 i2ggVVqihkW6J0Yb0F0OVkOBD2Xa1yzybVng6m/b+5QaaWXxYCrihGPsg5IlZMDL nA8N1Xs0YAmfsP5G5aUd/mmdaEXBvKqYHPNZpU0vuKx2+zrFf5RAPeRJZruqjMGR 8PD0KRzTx0XAQ2t4ZKuiru8LSVIfCOE= -----END CERTIFICATE-----Generated at Wed Apr 23 09:03:18 2025 by rpki-client on console.sobornost.net