$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: g9XQodB1SMxTRnFc2xiHFMDkYwAevhOtN6eE3NPLwvI= Subject key identifier: AE:25:4D:92:5D:F5:99:45:A7:C1:FE:9F:C9:48:91:D5:4A:0A:B4:A0 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 07DA Signing time: Sat 26 Apr 2025 20:48:08 +0000 Manifest this update: Sat 26 Apr 2025 20:48:07 +0000 Manifest next update: Sat 03 May 2025 20:48:07 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: A+XvNwSy34lUGoGBBCz48MNLmVIafnbG4zmEx/nn6hw=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: ruDiWo0iJ1IzCL54D+qZ/5Sx7ttq9JDNgJ3Itzo1mtM=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: szuCGA/YKFnqAyQx0YvfNE1CLpywYPi051pqX/mLZ+o=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: DRibOliaFFpVDYBNRPwSwfeFfAK79Ag7KRQOfCVsri4=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: Dvs5DAUQ59zCBbfUhpGLPZgVQyIVukk8Lis+ely0rgs=) 6: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: v8LvkvkZCh7/PfCtacYxlPwc3beChOibWsCiDIXZqaM=) 7: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: tsvfq1JS/MiwyfU6/6stmHXHI8bkcGx85DGNDrytcZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Apr 26 20:48:07 2025 GMT Not After : May 3 20:48:07 2025 GMT Subject: CN=680d4687-ae18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:f1:7a:6b:34:5f:5b:fa:3d:ac:9e:cc:93: b1:19:35:a6:1d:1a:dd:a9:df:e0:f0:6b:d9:7d:ad: f5:80:dc:6e:8d:36:cb:07:95:e7:d1:b6:39:d6:bd: f2:7e:09:00:fd:1d:b8:f5:33:9f:b1:aa:6c:55:c2: 83:e8:ff:0c:ec:39:5d:1f:12:56:6e:28:11:4f:12: 19:9a:52:e1:de:e3:3f:a5:bc:b6:dc:68:c8:4c:ed: 19:0b:33:68:d8:67:ad:ec:bb:3f:30:09:e1:89:b8: 4b:2f:88:2e:ee:cb:fe:8c:72:b2:78:94:d4:bd:6d: 72:e5:b3:5a:c9:4b:c1:f1:ff:b6:78:b0:98:f0:1c: e3:fc:19:6d:fd:63:2b:67:6b:2a:a4:61:da:70:21: ba:75:93:a1:b0:69:3f:83:93:c1:c9:a1:67:7a:88: 48:b5:87:03:f9:88:df:72:61:2b:42:4d:94:c2:c6: 2a:e4:3b:c8:95:4d:5d:d0:77:1b:af:00:a8:f3:9c: 62:e5:58:1d:68:a7:2f:82:e7:e7:46:e1:70:f5:2c: 90:a3:cc:a6:78:38:48:a2:2b:06:79:f8:1a:5f:85: 28:9a:67:4e:87:cc:85:fc:59:83:21:db:ea:c4:77: 26:5d:be:a7:f9:ba:46:e3:c3:f7:0e:c1:bc:50:c4: 25:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:25:4D:92:5D:F5:99:45:A7:C1:FE:9F:C9:48:91:D5:4A:0A:B4:A0 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:42:8a:97:f2:f5:71:fa:1a:bc:20:41:e5:64:8c:3e:d3:df: 93:b5:2d:c6:e3:04:26:ad:b4:7b:0e:38:88:52:6a:42:02:b4: a8:e6:c4:91:ab:8c:78:65:c4:30:09:7e:36:8d:95:1e:e6:af: 11:9b:c8:9a:1d:8f:64:d8:45:f3:54:fe:0e:41:20:4d:05:f0: f5:b1:05:c7:69:03:01:8f:b3:7c:9c:24:19:ac:68:56:88:17: 3f:66:67:3f:60:25:95:b1:c5:4a:a0:3f:cd:c9:f3:06:49:a9: df:db:2e:c2:da:4d:6b:f3:67:0c:38:20:6b:31:ac:c9:a6:27: 06:b6:47:d3:00:32:ae:97:e0:17:6d:0b:12:cf:ce:66:d3:38: d2:fc:dc:9b:30:c6:23:17:af:26:45:28:a7:7a:01:f4:e0:0b: 77:56:3c:44:3d:76:61:7c:63:81:10:54:8b:27:c3:d3:e9:ea: f9:72:c5:5b:a5:79:8e:52:f9:6a:a1:e5:c7:70:73:3d:18:e4: 03:6e:fc:27:5c:1c:8b:62:b4:d0:31:97:ff:14:ed:a8:61:3c: bc:4c:f1:98:3d:98:c6:af:9e:14:1a:4a:be:2e:9b:7b:98:c1: e4:2b:5f:fd:87:9c:e3:d3:bb:66:ba:35:5f:66:57:41:ac:48: 21:2b:17:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUwNDI2MjA0ODA3WhcNMjUwNTAzMjA0ODA3WjAYMRYwFAYD VQQDEw02ODBkNDY4Ny1hZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZnxems0X1v6PayezJOxGTWmHRrdqd/g8GvZfa31gNxujTbLB5Xn0bY51r3y fgkA/R249TOfsapsVcKD6P8M7DldHxJWbigRTxIZmlLh3uM/pby23GjITO0ZCzNo 2Get7Ls/MAnhibhLL4gu7sv+jHKyeJTUvW1y5bNayUvB8f+2eLCY8Bzj/Blt/WMr Z2sqpGHacCG6dZOhsGk/g5PByaFneohItYcD+YjfcmErQk2UwsYq5DvIlU1d0Hcb rwCo85xi5VgdaKcvgufnRuFw9SyQo8ymeDhIoisGefgaX4UommdOh8yF/FmDIdvq xHcmXb6n+bpG48P3DsG8UMQlbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4lTZJd 9ZlFp8H+n8lIkdVKCrSgMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZQoqX8vVx+hq8IEHlZIw+09+TtS3G4wQmrbR7DjiIUmpCArSo5sSR q4x4ZcQwCX42jZUe5q8Rm8iaHY9k2EXzVP4OQSBNBfD1sQXHaQMBj7N8nCQZrGhW iBc/Zmc/YCWVscVKoD/NyfMGSanf2y7C2k1r82cMOCBrMazJpicGtkfTADKul+AX bQsSz85m0zjS/NybMMYjF68mRSinegH04At3VjxEPXZhfGOBEFSLJ8PT6er5csVb pXmOUvlqoeXHcHM9GOQDbvwnXByLYrTQMZf/FO2oYTy8TPGYPZjGr54UGkq+Lpt7 mMHkK1/9h5zj07tmujVfZldBrEghKxdd -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:11 2025 by rpki-client on console.sobornost.net