$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: QMA2hzR5yXkiTip4npQZURaDUDop/k3xOlIoyMqzM18= Subject key identifier: 43:A4:E7:7E:D9:A9:1D:7C:38:BA:49:A4:9D:AC:EC:F8:F4:C4:FB:49 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3493 Signing time: Thu 24 Apr 2025 14:19:22 +0000 Manifest this update: Thu 24 Apr 2025 14:19:22 +0000 Manifest next update: Thu 01 May 2025 14:19:22 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: ClLnsVZkaUWlPqwanJTmwMpC8vHRhSbIeWvjfJUmHrg=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: LKJoEQzPb1sMSVb2vDN9+BembbPiOElHd7gaQSKpvPY=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: 0Rx8HN5jmUeLiu9CtnRcyXpipRICUg/GHNM7vipXeYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 13:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13489 (0x34b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Apr 24 14:19:22 2025 GMT Not After : May 1 14:19:22 2025 GMT Subject: CN=680a486a-7573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1a:16:d8:4c:9e:d8:e4:87:73:f0:34:ba:a4: bd:9b:14:49:fa:86:a7:53:b3:95:38:3b:c1:0b:7c: 84:c9:88:05:f8:28:03:d1:d7:43:8f:44:90:6d:f4: 29:b7:f3:ed:0a:a6:d2:d9:7d:e5:7b:ff:a7:b4:34: e7:f2:d9:8b:df:15:8c:9f:c4:d4:92:03:13:2f:43: 45:12:8e:a3:7c:83:f3:60:4d:ff:17:05:27:28:ae: 1c:37:01:f9:0c:d4:5f:57:bb:b5:ff:10:5c:e8:f3: 05:3b:96:cd:48:0e:7d:c6:7a:34:b3:62:fc:e0:fb: 21:74:d1:bc:0a:cc:ee:02:80:89:22:df:b3:0b:78: 86:cd:05:ba:e8:c6:67:39:d9:8a:12:b7:6a:1a:95: 2f:76:5b:dc:3f:39:e0:37:0d:5f:aa:be:27:f9:bd: a7:a8:e6:f6:21:8e:3b:5f:4f:f3:a2:99:ba:c4:6e: b5:a1:18:e6:c4:ec:1e:e7:c4:e8:1c:8e:5f:b8:48: 54:28:74:12:97:a6:e1:84:5b:e0:40:9e:49:8e:09: db:89:51:89:50:a3:d5:69:03:e6:d3:1f:a3:87:f8: a9:31:d8:65:92:fd:4a:19:33:0b:b8:bd:73:ee:ed: fd:01:24:c3:08:47:ff:15:d2:1c:cf:02:c9:b6:16: a1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A4:E7:7E:D9:A9:1D:7C:38:BA:49:A4:9D:AC:EC:F8:F4:C4:FB:49 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:3f:f7:95:db:5e:ea:94:91:41:e6:f7:f9:56:80:df:27:71: 8e:da:e7:be:2a:27:12:be:24:42:33:3c:e2:d8:04:02:45:9f: 81:e7:43:e7:c1:f4:72:b3:fd:d8:bf:23:a1:26:1a:3d:f4:c3: 97:1d:6f:e7:8f:0b:26:27:c6:b7:b3:20:7e:3a:c9:1d:02:b0: ca:77:fd:0b:fd:70:fe:d3:6e:65:68:70:c1:e3:10:58:c7:31: 1c:ee:0d:2e:3d:f6:fa:23:1e:af:fa:ac:89:06:fd:e6:eb:b8: 8f:24:8e:d9:1d:64:7c:3b:6c:54:ec:89:ba:4d:94:46:b7:3c: 65:a1:ff:99:fa:d3:ab:1b:64:4e:da:3a:f4:80:20:f6:22:21: 79:67:63:2e:71:38:f3:7a:fd:c4:96:67:ca:b0:ce:e4:66:f1: ac:42:e8:77:a7:98:3a:3d:a2:01:33:56:db:3f:a4:22:c1:52: 15:8e:ab:1e:7c:c7:b8:70:c6:42:33:dc:1e:61:67:cb:68:75: 63:36:95:82:88:ac:f5:f0:93:f2:1a:f2:c6:f5:3f:d1:a5:7d: 5d:d1:f7:b7:7d:38:f6:90:51:4a:97:4e:69:f6:d6:01:7a:53: 58:12:64:4b:6a:cb:9a:2a:f3:8c:54:d6:ea:47:c8:5c:3b:e0: 2c:54:dc:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNDI0MTQxOTIyWhcNMjUwNTAxMTQxOTIyWjAYMRYwFAYD VQQDEw02ODBhNDg2YS03NTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxoW2Eye2OSHc/A0uqS9mxRJ+oanU7OVODvBC3yEyYgF+CgD0ddDj0SQbfQp t/PtCqbS2X3le/+ntDTn8tmL3xWMn8TUkgMTL0NFEo6jfIPzYE3/FwUnKK4cNwH5 DNRfV7u1/xBc6PMFO5bNSA59xno0s2L84PshdNG8CszuAoCJIt+zC3iGzQW66MZn OdmKErdqGpUvdlvcPzngNw1fqr4n+b2nqOb2IY47X0/zopm6xG61oRjmxOwe58To HI5fuEhUKHQSl6bhhFvgQJ5JjgnbiVGJUKPVaQPm0x+jh/ipMdhlkv1KGTMLuL1z 7u39ASTDCEf/FdIczwLJthahtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOk537Z qR18OLpJpJ2s7Pj0xPtJMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkP/eV217qlJFB5vf5VoDfJ3GO2ue+KicSviRCMzzi2AQCRZ+B50Pn wfRys/3YvyOhJho99MOXHW/njwsmJ8a3syB+OskdArDKd/0L/XD+025laHDB4xBY xzEc7g0uPfb6Ix6v+qyJBv3m67iPJI7ZHWR8O2xU7Im6TZRGtzxlof+Z+tOrG2RO 2jr0gCD2IiF5Z2MucTjzev3ElmfKsM7kZvGsQuh3p5g6PaIBM1bbP6QiwVIVjqse fMe4cMZCM9weYWfLaHVjNpWCiKz18JPyGvLG9T/RpX1d0fe3fTj2kFFKl05p9tYB elNYEmRLasuaKvOMVNbqR8hcO+AsVNwL -----END CERTIFICATE-----Generated at Thu Apr 24 15:52:52 2025 by rpki-client on console.sobornost.net