$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft File: nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft (raw, json) Hash identifier: WUfOKU1ymkH87em8SF9oFd8TQx2WY3SKC2hHSaKXf2U= Subject key identifier: 41:58:BD:36:6D:75:7D:82:20:45:F5:88:F9:C9:A9:B6:67:3F:3C:87 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft Manifest number: 07CA Signing time: Sat 26 Apr 2025 20:46:31 +0000 Manifest this update: Sat 26 Apr 2025 20:46:31 +0000 Manifest next update: Sat 03 May 2025 20:46:31 +0000 Files and hashes: 1: nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl (hash: 0RcQ+Ur51azgLBVRmJpMdKeRrztsz4TgIyTz6PYc6Ik=) 2: 149009E6EE8111EAABC5C05CC4F9AE02.roa (hash: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4, serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Validity Not Before: Apr 26 20:46:31 2025 GMT Not After : May 3 20:46:31 2025 GMT Subject: CN=680d4627-3bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ef:d9:de:1e:c8:08:bc:c3:65:6b:76:e5:51: b9:24:a3:3e:91:13:14:a7:e4:da:06:ca:fb:ba:62: dc:90:be:6a:ee:e2:1b:d1:8a:fc:9d:b9:ab:fd:a3: ed:99:ab:88:2d:56:12:fa:20:f0:d0:a6:46:05:3c: f5:ee:2c:84:3b:1c:79:87:ba:58:54:1c:3a:0f:9b: 99:af:96:a1:8c:76:db:44:3c:d0:86:90:4b:f3:ec: dd:e4:86:26:98:fa:ca:1b:ec:a4:d5:2f:7a:21:8a: eb:18:e8:74:df:f8:1c:32:e6:d7:91:ea:54:9f:fb: 99:9f:95:5d:e3:75:ab:2b:40:ab:b0:36:53:03:fc: eb:8b:bf:61:a3:b1:4a:32:30:c1:0e:af:bc:12:7b: 71:16:95:08:5a:37:c3:6e:07:73:17:c9:79:19:4a: b4:45:4b:b5:07:c8:c2:e5:cf:19:07:48:cf:cd:7a: ab:80:53:b4:5d:ed:4a:0c:83:82:e0:17:51:fb:ec: fc:89:40:d8:d0:64:c3:f4:e7:b7:2a:8d:b8:f7:b8: b2:a3:dd:e5:47:51:af:db:00:0a:65:af:02:3e:00: e4:45:ac:f5:83:bc:4e:64:5e:d0:b2:bf:9e:67:03: a8:eb:0d:1c:a5:03:1c:4e:d9:23:fb:1a:d0:a0:c5: 5d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:58:BD:36:6D:75:7D:82:20:45:F5:88:F9:C9:A9:B6:67:3F:3C:87 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:6e:ba:6a:4e:6e:ef:d9:d4:ea:c2:e1:47:fe:8d:23:40:f3: c5:c3:24:38:89:a1:8b:0c:01:c5:bc:da:be:64:58:71:4b:a3: 3e:a6:7b:4d:52:f4:e7:99:60:a6:34:ff:46:74:be:ed:60:cd: 63:42:20:ce:5e:69:a5:32:14:e5:dd:5e:d7:58:c7:57:59:37: b5:a5:0f:59:bc:cb:65:94:8c:ed:41:4d:86:d0:67:da:95:ae: 3f:60:cf:08:5a:ce:09:ba:41:c8:ca:cd:f5:14:56:eb:76:fc: 85:d1:ee:70:64:c0:52:61:9b:2d:d8:2b:e2:65:5e:6a:81:b1: 0e:38:fd:10:4f:a5:e4:33:c6:e5:ed:66:da:ca:5d:db:9e:e4: 4a:aa:a4:e1:43:1a:ec:2f:1e:f9:97:66:71:f5:7d:ce:f4:6d: 39:15:de:59:87:2f:a1:b7:d1:4f:5c:9f:3f:61:af:26:5e:9b: ac:35:dd:ce:16:5a:dd:01:d7:d5:51:ee:34:1c:f3:bc:d3:07: 95:72:fc:a8:ba:1a:0d:6d:8c:94:c3:21:3b:b3:39:0f:d6:9c: b4:89:76:b3:3b:46:09:4e:1c:94:f7:29:2e:fa:e4:7b:5e:97: 72:7a:96:0b:03:2c:1b:3d:5c:32:b8:56:90:9f:65:24:c4:35: cf:d0:1d:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwNDI2MjA0NjMxWhcNMjUwNTAzMjA0NjMxWjAYMRYwFAYD VQQDEw02ODBkNDYyNy0zYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u/Z3h7ICLzDZWt25VG5JKM+kRMUp+TaBsr7umLckL5q7uIb0Yr8nbmr/aPt mauILVYS+iDw0KZGBTz17iyEOxx5h7pYVBw6D5uZr5ahjHbbRDzQhpBL8+zd5IYm mPrKG+yk1S96IYrrGOh03/gcMubXkepUn/uZn5Vd43WrK0CrsDZTA/zri79ho7FK MjDBDq+8EntxFpUIWjfDbgdzF8l5GUq0RUu1B8jC5c8ZB0jPzXqrgFO0Xe1KDIOC 4BdR++z8iUDY0GTD9Oe3Ko2497iyo93lR1Gv2wAKZa8CPgDkRaz1g7xOZF7Qsr+e ZwOo6w0cpQMcTtkj+xrQoMVdewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFYvTZt dX2CIEX1iPnJqbZnPzyHMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RThCNC80QTY1RUFDOEVFODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gz eFV1U01OWTUya1R6Z05JZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPbrpqTm7v2dTqwuFH/o0jQPPFwyQ4iaGLDAHFvNq+ZFhxS6M+pntN UvTnmWCmNP9GdL7tYM1jQiDOXmmlMhTl3V7XWMdXWTe1pQ9ZvMtllIztQU2G0Gfa la4/YM8IWs4JukHIys31FFbrdvyF0e5wZMBSYZst2CviZV5qgbEOOP0QT6XkM8bl 7Wbayl3bnuRKqqThQxrsLx75l2Zx9X3O9G05Fd5Zhy+ht9FPXJ8/Ya8mXpusNd3O FlrdAdfVUe40HPO80weVcvyouhoNbYyUwyE7szkP1py0iXazO0YJThyU9yku+uR7 XpdyepYLAywbPVwyuFaQn2UkxDXP0B0v -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:12 2025 by rpki-client on console.sobornost.net