$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: AXpwAsJSxCo7nViyzH8sjuYRCMwTLpHS7FChOZ43z4E= Subject key identifier: 25:4E:E1:15:51:FE:A0:AE:C2:D1:8F:6D:36:81:43:73:A4:67:ED:87 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2B80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B5C Signing time: Mon 28 Apr 2025 15:38:09 +0000 Manifest this update: Mon 28 Apr 2025 15:38:08 +0000 Manifest next update: Mon 05 May 2025 15:38:08 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: w65Uvzq+7JtRPgQnzGtH26GLzNbR2qLkFOnuvmWk1FI=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11136 (0x2b80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Apr 28 15:38:08 2025 GMT Not After : May 5 15:38:08 2025 GMT Subject: CN=680fa0e1-c8a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:60:2c:81:bd:dd:7f:85:7d:23:31:dd:8d: e2:d2:40:70:ac:4f:30:0a:06:e5:01:2a:f1:bb:da: 36:52:41:63:48:db:b7:58:05:dd:f0:e9:15:5d:14: 3a:08:07:1e:75:d1:82:86:a7:e2:ec:bb:f1:36:23: d5:2e:b3:60:e5:ff:43:d4:91:4b:4b:6d:79:ad:98: 14:14:5a:0f:61:88:db:41:7a:35:9b:63:c0:76:fe: 06:90:24:7a:7d:cc:8f:97:d0:53:ce:11:6e:58:9c: 91:9c:73:46:a2:ad:cc:70:e4:22:26:0f:78:6f:79: 20:75:9c:ca:3c:36:35:0f:20:ba:8a:38:43:bb:d5: b4:0e:86:84:d5:89:62:80:99:a2:79:b4:aa:19:3a: d1:03:13:ad:50:aa:03:5e:2e:76:35:ff:ab:c6:25: 32:1a:66:8d:9a:b5:96:97:27:98:69:4f:d9:fe:48: 50:d1:66:7e:35:59:f1:b0:7d:1c:8d:a3:b1:0e:a0: 87:f4:1c:4e:4e:b8:7b:3b:18:f8:ea:76:35:84:24: 1e:23:b7:74:7c:9c:83:27:83:c2:f4:66:c4:fc:13: 8e:17:1d:07:18:98:58:9d:31:79:2f:1b:26:94:28: 82:98:65:1c:f6:1d:85:d0:36:92:d2:03:8d:06:53: d2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4E:E1:15:51:FE:A0:AE:C2:D1:8F:6D:36:81:43:73:A4:67:ED:87 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:fd:89:d4:45:34:e7:92:06:e2:43:64:71:26:23:71:2c:c4: d5:e4:18:46:f9:bb:2d:d7:ef:40:f0:d0:d9:1f:45:20:0b:56: 98:b7:11:76:d1:8f:51:ea:49:2d:1b:a3:66:b4:bf:e7:d7:0f: d2:43:6e:f6:ac:69:79:1e:f8:2e:96:34:6f:e4:2d:6c:bd:97: 70:1c:8b:91:64:1d:35:fb:fe:bd:02:8e:2c:68:66:2b:d2:f7: 5a:35:aa:5e:ec:db:24:e2:59:fb:79:b6:2c:73:dc:0a:b1:a4: b0:80:2a:38:15:6b:bf:65:3e:e2:0e:81:6e:8b:e6:07:e6:9d: 33:25:14:60:d6:9f:f9:c1:10:99:4f:21:5a:79:84:2d:4a:06: 13:b7:63:ec:eb:9e:96:af:14:bc:bb:21:d6:c4:2d:9e:6b:75: 74:bc:12:1e:d8:fa:25:38:1e:75:ba:2e:b8:34:87:0a:11:78: 9d:fa:ca:df:e7:2e:26:65:d7:f3:c7:a2:92:8a:4c:e7:e0:12: c3:ee:6b:b3:d0:89:c5:dc:dc:15:3f:70:96:61:0a:9e:d8:dd: a8:f5:04:72:88:1d:85:8e:5a:12:8e:a5:ce:99:ca:ae:58:1d: 13:26:65:92:cf:1a:c9:19:6a:15:a8:38:8e:d1:b8:7f:c1:ed: 7b:da:2e:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwNDI4MTUzODA4WhcNMjUwNTA1MTUzODA4WjAYMRYwFAYD VQQDEw02ODBmYTBlMS1jOGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/NgLIG93X+FfSMx3Y3i0kBwrE8wCgblASrxu9o2UkFjSNu3WAXd8OkVXRQ6 CAceddGChqfi7LvxNiPVLrNg5f9D1JFLS215rZgUFFoPYYjbQXo1m2PAdv4GkCR6 fcyPl9BTzhFuWJyRnHNGoq3McOQiJg94b3kgdZzKPDY1DyC6ijhDu9W0DoaE1Yli gJmiebSqGTrRAxOtUKoDXi52Nf+rxiUyGmaNmrWWlyeYaU/Z/khQ0WZ+NVnxsH0c jaOxDqCH9BxOTrh7Oxj46nY1hCQeI7d0fJyDJ4PC9GbE/BOOFx0HGJhYnTF5Lxsm lCiCmGUc9h2F0DaS0gONBlPSDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCVO4RVR /qCuwtGPbTaBQ3OkZ+2HMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv/YnURTTnkgbiQ2RxJiNxLMTV5BhG+bst1+9A8NDZH0UgC1aYtxF2 0Y9R6kktG6NmtL/n1w/SQ272rGl5HvguljRv5C1svZdwHIuRZB01+/69Ao4saGYr 0vdaNape7Nsk4ln7ebYsc9wKsaSwgCo4FWu/ZT7iDoFui+YH5p0zJRRg1p/5wRCZ TyFaeYQtSgYTt2Ps656WrxS8uyHWxC2ea3V0vBIe2PolOB51ui64NIcKEXid+srf 5y4mZdfzx6KSikzn4BLD7muz0InF3NwVP3CWYQqe2N2o9QRyiB2FjloSjqXOmcqu WB0TJmWSzxrJGWoVqDiO0bh/we172i7d -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:03 2025 by rpki-client on console.sobornost.net