$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft File: hIP9VFfRHgUTVSER9bovNxLphfc.mft (raw, json) Hash identifier: z5Mmb4ubYNryUhw4XqliguKnyD4MHXE6nl1zwpMNvSM= Subject key identifier: 09:BD:FE:6A:78:E8:0A:38:CC:B5:7A:FB:68:72:13:4D:87:42:9F:ED Authority key identifier: 84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 Certificate issuer: /CN=A91DC9C4/serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft Manifest number: 01DE Signing time: Sun 27 Apr 2025 01:47:54 +0000 Manifest this update: Sun 27 Apr 2025 01:47:53 +0000 Manifest next update: Sun 04 May 2025 01:47:53 +0000 Files and hashes: 1: hIP9VFfRHgUTVSER9bovNxLphfc.crl (hash: 6dw4kN1th+AgBjdt/pBD9WYT8fJ4EhhyQjk4E/hF1RI=) 2: 153EBE3ADEF711EF84C57421C4F9AE02.roa (hash: f6YvpcInK7aMZI/gTlnIjzNzS2LMqoG/bSzJ7lAf9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC9C4, serialNumber=8483FD5457D11E0513552111F5BA2F3712E985F7 Validity Not Before: Apr 27 01:47:53 2025 GMT Not After : May 4 01:47:53 2025 GMT Subject: CN=680d8cca-c8ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:61:cb:09:49:b2:b0:5b:3b:4c:db:8b:f0:4c: 32:b7:45:c2:bb:b1:58:1f:a4:a4:5d:43:ac:18:6b: 9c:42:a8:81:f0:dd:87:91:e2:90:a7:16:e5:71:55: fa:3f:7c:ea:97:bb:a3:11:7a:ef:fa:25:47:d3:d2: 22:8c:59:56:ad:42:63:ec:b5:d2:80:fc:13:f7:cb: 79:41:db:50:b3:e3:71:66:1b:65:45:e9:1c:c0:34: 25:de:0c:1c:43:2c:1a:b0:10:f3:1e:2d:ca:6b:06: 39:76:a3:af:3e:bb:4f:7e:15:3c:82:b8:41:be:2d: 6e:81:cf:ca:9c:84:e8:a1:f9:33:f6:4c:37:b6:62: cb:7a:30:df:51:34:14:ec:52:16:b0:5f:b8:72:94: 81:f9:dc:70:fd:2e:6a:ab:4a:c7:61:bc:3b:ac:b2: a2:be:17:c2:21:33:7f:09:ef:70:1d:1d:2a:35:f3: 63:42:59:7a:78:7b:e4:e2:10:c7:83:7b:09:14:6c: 14:16:c9:44:56:26:49:f6:fc:80:7f:21:65:33:ca: 01:50:1c:e0:f4:58:6a:9b:10:33:d2:0a:e0:85:8b: 7b:f0:6b:8a:41:80:88:80:f9:23:68:c9:2c:af:34: 68:83:c9:c4:3b:b2:e0:08:e3:c5:83:81:d9:ab:f1: dd:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BD:FE:6A:78:E8:0A:38:CC:B5:7A:FB:68:72:13:4D:87:42:9F:ED X509v3 Authority Key Identifier: keyid:84:83:FD:54:57:D1:1E:05:13:55:21:11:F5:BA:2F:37:12:E9:85:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIP9VFfRHgUTVSER9bovNxLphfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC9C4/1A70DC864E9311EDA730ED32C4F9AE02/hIP9VFfRHgUTVSER9bovNxLphfc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:07:99:d0:15:20:ad:64:31:0b:f7:03:3f:78:38:12:05:15: c8:d4:73:1d:f9:3d:a0:e5:cc:74:16:3f:90:7f:f8:dd:3e:b2: fe:ed:16:56:3a:a5:29:2c:53:10:c8:ed:ef:62:db:cd:db:e4: 3b:1c:b0:99:39:44:cc:27:bc:d4:99:c0:11:f3:be:54:25:4c: 4b:c2:3f:e6:dd:59:3c:71:9d:db:07:8f:e2:dc:87:98:74:f2: 92:be:56:88:b9:70:78:92:06:c6:f3:d1:39:7d:1e:0c:5d:ff: f9:d1:33:44:3d:a5:70:d1:f4:23:c7:ee:dd:e6:a0:5f:60:01: eb:e0:54:a3:6e:ea:bd:e1:22:f3:7e:93:4e:53:b6:39:31:b0: 95:d1:fd:f7:4a:96:5b:1f:01:89:cd:5f:e5:ad:e5:c9:62:4e: d9:33:35:e7:be:85:9a:72:37:65:ec:ec:aa:ec:3b:f6:c6:87: 8e:76:6f:80:1b:9d:36:47:0e:00:76:10:df:da:4c:8f:9c:d7: b5:d8:88:14:d9:04:e2:e4:fe:11:69:f7:82:9e:1f:88:12:f9: e2:eb:d1:6a:98:8d:77:9c:96:0f:16:df:43:10:e7:89:1b:35: 3b:4f:6a:b7:b2:de:84:67:80:38:8a:6a:1e:e6:99:86:88:5e: 5a:21:e3:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5QzQxMTAvBgNVBAUTKDg0ODNGRDU0NTdEMTFFMDUxMzU1MjExMUY1QkEyRjM3 MTJFOTg1RjcwHhcNMjUwNDI3MDE0NzUzWhcNMjUwNTA0MDE0NzUzWjAYMRYwFAYD VQQDEw02ODBkOGNjYS1jOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mHLCUmysFs7TNuL8Ewyt0XCu7FYH6SkXUOsGGucQqiB8N2HkeKQpxblcVX6 P3zql7ujEXrv+iVH09IijFlWrUJj7LXSgPwT98t5QdtQs+NxZhtlRekcwDQl3gwc QywasBDzHi3KawY5dqOvPrtPfhU8grhBvi1ugc/KnIToofkz9kw3tmLLejDfUTQU 7FIWsF+4cpSB+dxw/S5qq0rHYbw7rLKivhfCITN/Ce9wHR0qNfNjQll6eHvk4hDH g3sJFGwUFslEViZJ9vyAfyFlM8oBUBzg9FhqmxAz0grghYt78GuKQYCIgPkjaMks rzRog8nEO7LgCOPFg4HZq/HddQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm9/mp4 6Ao4zLV6+2hyE02HQp/tMB8GA1UdIwQYMBaAFISD/VRX0R4FE1UhEfW6LzcS6YX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzlDNC8xQTcwREM4NjRF OTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhnVVRWU0VSOWJvdk54THBo ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJUDlWRmZSSGdVVFZTRVI5Ym92TnhMcGhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzlDNC8xQTcwREM4NjRFOTMxMUVEQTczMEVEMzJDNEY5QUUwMi9oSVA5VkZmUkhn VVRWU0VSOWJvdk54THBoZmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0B5nQFSCtZDEL9wM/eDgSBRXI1HMd+T2g5cx0Fj+Qf/jdPrL+7RZW OqUpLFMQyO3vYtvN2+Q7HLCZOUTMJ7zUmcAR875UJUxLwj/m3Vk8cZ3bB4/i3IeY dPKSvlaIuXB4kgbG89E5fR4MXf/50TNEPaVw0fQjx+7d5qBfYAHr4FSjbuq94SLz fpNOU7Y5MbCV0f33SpZbHwGJzV/lreXJYk7ZMzXnvoWacjdl7Oyq7Dv2xoeOdm+A G502Rw4AdhDf2kyPnNe12IgU2QTi5P4RafeCnh+IEvni69FqmI13nJYPFt9DEOeJ GzU7T2q3st6EZ4A4imoe5pmGiF5aIePk -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net