$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft File: z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft (raw, json) Hash identifier: 9DGTI9nxUHHmhRtfeYrjnO+4riN4A+teTySmJOXNRZw= Subject key identifier: F8:D5:9B:8E:01:C0:E7:7D:E0:E0:A3:41:E1:E8:E7:07:63:71:FA:32 Authority key identifier: CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 Certificate issuer: /CN=A91D462A/serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Certificate serial: 1A29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft Manifest number: 1A0D Signing time: Sat 26 Apr 2025 16:20:37 +0000 Manifest this update: Sat 26 Apr 2025 16:20:37 +0000 Manifest next update: Sat 03 May 2025 16:20:37 +0000 Files and hashes: 1: z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl (hash: +rwxpHO0livXB6brkxrdprdzVfTqnjuf+/ZToWSd5Po=) 2: 84559BB01D4611EDBB06705BC4F9AE02.roa (hash: nliRTAkVAtJ8FfxKEHQS9HqVovT0tZ32fPM48Sk/l8k=) 3: F39D90EE561B11EFB51A9149C4F9AE02.roa (hash: EijUWJlocJ1+GHXxh5XIDZa+yD2/CG2e199ekLmtdEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6697 (0x1a29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=CF712CB389EE84DA19CA981DE630F509FF44CD45 Validity Not Before: Apr 26 16:20:37 2025 GMT Not After : May 3 16:20:37 2025 GMT Subject: CN=680d07d5-d0f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5d:0e:19:0c:86:9a:14:c6:61:af:f4:f7:0a: 99:12:19:f1:8d:5d:54:77:9b:b8:c9:01:b4:cd:12: 19:b7:ef:d7:16:a4:ad:a3:b0:47:a1:7a:5f:09:7f: 48:30:e4:22:87:1f:8c:12:ab:66:67:de:16:0d:54: 09:e1:d1:64:a3:32:9c:c7:98:4e:8d:02:74:ee:c4: a7:c7:b5:04:5e:b9:3d:f3:65:b3:28:aa:7e:72:52: 76:c4:95:c9:d0:e8:67:0d:2d:af:fa:fb:e5:2a:a1: af:06:8f:8a:03:9d:ad:e6:55:43:2d:3d:60:18:3d: a6:9a:1f:b8:a5:31:d6:e0:fa:f4:c9:4a:7d:7c:d5: 1a:e7:26:b7:60:2d:7a:57:1d:d5:21:b7:ea:01:50: c3:8c:b3:9c:88:5c:e3:ec:64:23:ab:21:be:18:f5: 9e:a9:33:47:19:1e:59:44:94:9c:f5:0c:2a:90:09: ae:d8:f2:be:77:c9:db:68:21:46:39:03:aa:f9:9b: b5:c2:02:5c:68:bc:96:53:8c:7b:62:f1:cd:c3:92: 86:5f:2c:2d:eb:a7:94:16:4d:57:c4:aa:4a:0d:58: 58:aa:0b:81:fc:89:ee:a5:b3:8b:fc:de:9f:66:2d: f6:71:3d:e9:c3:e7:a8:d7:3f:cf:c6:fc:d2:58:6f: 07:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D5:9B:8E:01:C0:E7:7D:E0:E0:A3:41:E1:E8:E7:07:63:71:FA:32 X509v3 Authority Key Identifier: keyid:CF:71:2C:B3:89:EE:84:DA:19:CA:98:1D:E6:30:F5:09:FF:44:CD:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3Ess4nuhNoZypgd5jD1Cf9EzUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4CBD3F8450D511E79313AE12C4F9AE02/z3Ess4nuhNoZypgd5jD1Cf9EzUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:07:7d:ac:a1:99:57:25:ee:f5:d2:ff:02:57:4e:c0:9c:be: 2e:8a:66:14:a1:3d:92:71:ae:c9:c8:1f:49:5b:61:14:a8:2e: 54:a7:7d:bb:c9:dc:07:c4:95:66:33:99:0a:b4:52:86:73:77: 63:be:bf:25:fc:67:ac:c2:a7:d1:49:6b:b6:c8:7c:d2:f5:6c: 27:94:bd:c2:16:f4:0f:91:62:69:60:ea:90:e2:96:aa:26:9d: 1a:50:13:fd:dc:1e:84:c7:50:ac:f5:de:b8:da:8c:9f:ab:59: 9b:0b:4e:6d:7e:83:15:48:51:47:f2:c9:43:5a:b2:cc:13:bd: e2:20:2a:80:e2:61:ad:57:12:2f:70:5c:8e:56:42:19:70:b7: aa:91:3c:0c:6b:65:ff:4e:34:b0:d1:e1:ea:73:58:d0:c5:1e: 38:cb:2f:9c:07:e2:2c:ec:52:5a:4b:42:97:54:bb:6e:bf:18: fc:fb:12:f3:28:18:47:84:11:e2:18:2d:92:30:53:c7:38:a7: 76:f0:2b:15:58:e6:b9:a9:4c:e0:9c:cc:9f:fb:e6:1d:c0:52: 5c:90:14:6d:6b:63:cf:5d:cd:d2:36:83:96:9f:93:ee:01:77: 84:f3:22:c1:51:2d:bb:e5:4c:7e:d4:27:30:6a:99:63:94:18: bd:87:68:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKENGNzEyQ0IzODlFRTg0REExOUNBOTgxREU2MzBGNTA5 RkY0NENENDUwHhcNMjUwNDI2MTYyMDM3WhcNMjUwNTAzMTYyMDM3WjAYMRYwFAYD VQQDEw02ODBkMDdkNS1kMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt10OGQyGmhTGYa/09wqZEhnxjV1Ud5u4yQG0zRIZt+/XFqSto7BHoXpfCX9I MOQihx+MEqtmZ94WDVQJ4dFkozKcx5hOjQJ07sSnx7UEXrk982WzKKp+clJ2xJXJ 0OhnDS2v+vvlKqGvBo+KA52t5lVDLT1gGD2mmh+4pTHW4Pr0yUp9fNUa5ya3YC16 Vx3VIbfqAVDDjLOciFzj7GQjqyG+GPWeqTNHGR5ZRJSc9QwqkAmu2PK+d8nbaCFG OQOq+Zu1wgJcaLyWU4x7YvHNw5KGXywt66eUFk1XxKpKDVhYqguB/InupbOL/N6f Zi32cT3pw+eo1z/PxvzSWG8HfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjVm44B wOd94OCjQeHo5wdjcfoyMB8GA1UdIwQYMBaAFM9xLLOJ7oTaGcqYHeYw9Qn/RM1F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80Q0JEM0Y4NDUw RDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhOb1p5cGdkNWpEMUNmOUV6 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozRXNzNG51aE5vWnlwZ2Q1akQxQ2Y5RXpVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80Q0JEM0Y4NDUwRDUxMUU3OTMxM0FFMTJDNEY5QUUwMi96M0VzczRudWhO b1p5cGdkNWpEMUNmOUV6VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDB32soZlXJe710v8CV07AnL4uimYUoT2Sca7JyB9JW2EUqC5Up327 ydwHxJVmM5kKtFKGc3djvr8l/GeswqfRSWu2yHzS9WwnlL3CFvQPkWJpYOqQ4paq Jp0aUBP93B6Ex1Cs9d642oyfq1mbC05tfoMVSFFH8slDWrLME73iICqA4mGtVxIv cFyOVkIZcLeqkTwMa2X/TjSw0eHqc1jQxR44yy+cB+Is7FJaS0KXVLtuvxj8+xLz KBhHhBHiGC2SMFPHOKd28CsVWOa5qUzgnMyf++YdwFJckBRta2PPXc3SNoOWn5Pu AXeE8yLBUS275Ux+1CcwapljlBi9h2iw -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:31 2025 by rpki-client on console.sobornost.net