$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: XMy/4vk2LwscEf664gekZJ+gWjxcesmf8B2cziLm54E= Subject key identifier: 43:06:F6:07:80:BB:78:0A:E4:09:AC:A9:CC:26:A3:1C:61:A6:35:0E Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 10 Signing time: Sun 27 Apr 2025 06:53:22 +0000 Manifest this update: Sun 27 Apr 2025 06:53:21 +0000 Manifest next update: Sun 04 May 2025 06:53:21 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: Loj6rR/7RjHlnaQOycbQpYt7DHJJ5FnB7kegQdRXUEI=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Apr 27 06:53:21 2025 GMT Not After : May 4 06:53:21 2025 GMT Subject: CN=680dd462-08eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:db:31:ff:eb:3a:c7:f6:75:fb:c4:f7:01: aa:7f:52:65:c1:96:19:bf:f1:97:ff:39:e7:aa:29: 96:09:56:8e:73:fd:3f:3d:17:b8:98:15:54:fb:11: 78:b2:2d:08:38:63:1d:a4:ab:a5:07:ee:30:ab:c6: 4d:83:4f:d5:b1:a5:3a:2e:f6:07:fb:57:34:7b:71: 57:7c:06:d4:c7:9e:26:57:80:a1:8b:6b:a6:b2:e6: ff:54:22:ce:c5:3b:91:cb:52:95:4a:88:e6:eb:9e: 57:83:8d:f5:98:8a:29:b3:6f:f5:08:e3:42:60:34: 68:81:94:35:1d:a4:2d:05:6b:e4:cf:34:9f:4c:15: 3e:d1:6d:94:8b:9e:f8:29:84:7b:2a:46:9e:e6:10: fb:55:37:f7:16:3e:fa:ea:76:98:1f:e3:2b:e2:fe: 99:56:88:c6:b8:eb:9f:4e:11:6c:a0:50:e0:ca:c2: de:b4:09:bc:ec:d9:1e:6a:43:21:10:f4:7e:38:cd: 6f:76:c8:af:5d:8c:e3:08:f3:fd:9a:c2:7a:ea:a5: 44:53:c2:ed:aa:99:38:40:ea:da:77:47:85:08:77: 0a:ba:92:59:bd:1c:79:f5:65:81:4b:1a:c4:9e:c7: d3:84:92:2e:18:f7:eb:3f:44:3d:75:cf:b1:db:e3: d4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:06:F6:07:80:BB:78:0A:E4:09:AC:A9:CC:26:A3:1C:61:A6:35:0E X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:54:da:33:f9:86:a2:56:15:8c:8e:4b:8e:6c:30:08:45:ef: d3:ba:1f:f4:2d:b1:6e:a4:2f:16:53:81:c5:d6:c8:96:93:db: f2:0f:b3:d6:79:14:9b:2a:d3:d9:7f:1e:27:4f:d4:65:98:ec: 57:4f:ee:2c:3f:e6:67:64:ba:43:cc:fd:29:f2:f8:98:c5:a5: 31:52:6f:21:0f:b5:1e:69:f9:7c:a5:0e:90:b2:e4:1d:73:ed: 36:40:e5:73:55:4d:35:19:79:41:52:98:65:4e:61:1f:e9:92: b2:c2:e6:40:31:f0:c1:ed:f9:dd:88:17:44:54:2b:cf:da:66: d4:37:53:55:d2:f0:ee:de:4b:7f:52:6e:5e:c2:81:0c:e6:bf: 5d:ff:5c:1e:75:bd:45:05:e1:6d:01:04:a7:b7:3c:d9:3e:ab: f0:fd:6b:4f:9d:15:3f:1a:79:5a:8a:e5:36:69:f2:0c:97:9e: f8:7b:e0:0c:5c:79:72:f3:12:dd:f9:d9:c7:07:48:f7:97:37: 83:21:c0:0a:fc:10:2b:8a:e9:0c:91:5f:79:7a:df:91:b7:5f: 9c:45:10:e8:39:3d:5b:31:fc:61:e1:69:fd:db:2c:86:10:a6: 3f:d3:79:86:ce:9f:b5:63:16:fd:65:54:6c:03:2c:96:e4:0c: 80:99:65:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTA0MjcwNjUzMjFaFw0yNTA1MDQwNjUzMjFaMBgxFjAUBgNV BAMTDTY4MGRkNDYyLTA4ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7BNsx/+s6x/Z1+8T3Aap/UmXBlhm/8Zf/OeeqKZYJVo5z/T89F7iYFVT7EXiy LQg4Yx2kq6UH7jCrxk2DT9WxpTou9gf7VzR7cVd8BtTHniZXgKGLa6ay5v9UIs7F O5HLUpVKiObrnleDjfWYiimzb/UI40JgNGiBlDUdpC0Fa+TPNJ9MFT7RbZSLnvgp hHsqRp7mEPtVN/cWPvrqdpgf4yvi/plWiMa4659OEWygUODKwt60Cbzs2R5qQyEQ 9H44zW92yK9djOMI8/2awnrqpURTwu2qmThA6tp3R4UIdwq6klm9HHn1ZYFLGsSe x9OEki4Y9+s/RD11z7Hb49R7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQwb2B4C7 eArkCaypzCajHGGmNQ4wHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFtU2jP5hqJWFYyOS45sMAhF79O6H/QtsW6kLxZTgcXWyJaT2/IPs9Z5 FJsq09l/HidP1GWY7FdP7iw/5mdkukPM/Sny+JjFpTFSbyEPtR5p+XylDpCy5B1z 7TZA5XNVTTUZeUFSmGVOYR/pkrLC5kAx8MHt+d2IF0RUK8/aZtQ3U1XS8O7eS39S bl7CgQzmv13/XB51vUUF4W0BBKe3PNk+q/D9a0+dFT8aeVqK5TZp8gyXnvh74Axc eXLzEt352ccHSPeXN4MhwAr8ECuK6QyRX3l635G3X5xFEOg5PVsx/GHhaf3bLIYQ pj/TeYbOn7VjFv1lVGwDLJbkDICZZcY= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net