$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft File: X-7enTglQ_BRUn-lM9R6kXB35jI.mft (raw, json) Hash identifier: 33bxEZ9zEajMThi8WEkIlkMh7R7K9Vh4e3rk/Q6p3I8= Subject key identifier: 13:99:B8:A2:1F:ED:D5:CD:35:17:CF:BD:4E:57:B9:35:7B:62:F6:D6 Authority key identifier: 5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 Certificate issuer: /CN=A91EA198/serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Certificate serial: 1E0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft Manifest number: 1D8C Signing time: Mon 28 Apr 2025 16:14:44 +0000 Manifest this update: Mon 28 Apr 2025 16:14:44 +0000 Manifest next update: Mon 05 May 2025 16:14:44 +0000 Files and hashes: 1: X-7enTglQ_BRUn-lM9R6kXB35jI.crl (hash: MM8JQhFMY7t7uNXyQ+0TNn2TLBqFl8BAm67WAqQNdcM=) 2: 1A0D44FA3B5411EABAC6EE18C4F9AE02.roa (hash: ErQUIZBQOuclNYifsKsmx5/Jnr/1hpU5xKibhIO600k=) 3: B8BA4E603B5211EAA0D53F12C4F9AE02.roa (hash: JDAGe4IksOtjrzlmQZ9zVBIzM1ZKwteeQYN9TBrAsPk=) 4: DF730482A32311EFBE77BA2EC4F9AE02.roa (hash: nvySfMAS7TN3zTFr4mHSPK7RJZZnC8NIvHsh40VIoNk=) 5: 4EA15AE44FD811ED8AEB0282C4F9AE02.roa (hash: KptRM9OhZOY+IAnuIj6dKpgRtL+UG95HSLHK6SbwluY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7694 (0x1e0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=5FEEDE9D382543F051527FA533D47A917077E632 Validity Not Before: Apr 28 16:14:44 2025 GMT Not After : May 5 16:14:44 2025 GMT Subject: CN=680fa974-6e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bc:07:ca:aa:af:a7:fc:0e:24:3b:b2:f5:95: da:24:42:b0:db:64:8b:54:9b:3e:33:64:fb:8b:4b: ce:cf:61:a9:0b:25:fa:e2:9b:c3:9a:0f:34:d8:eb: d9:ca:1d:d4:42:a3:83:2d:4b:01:39:dd:4a:cf:53: d9:c1:6e:ad:f9:45:3d:46:dd:68:c0:78:30:99:f2: af:74:31:4d:d8:a1:b7:db:c4:a3:08:55:d0:37:46: a0:d7:97:a4:e4:3f:f7:4f:4a:69:80:80:bf:76:73: 88:29:6a:8f:ae:c7:b0:fc:b8:17:07:59:76:d2:bb: c9:39:04:44:7d:14:ec:be:0c:bb:63:be:68:4c:fe: 0a:a3:b1:7e:66:78:a6:e0:b7:ff:75:4f:7b:85:6b: c5:12:9f:e1:c3:df:8d:7d:aa:ae:ab:f8:74:ae:4e: b7:f9:02:45:72:a3:0e:f3:dc:33:10:a6:fa:ac:3c: b0:84:a8:65:38:5e:fc:a4:d6:af:04:01:67:76:3a: e9:12:65:8e:2b:e1:a2:7b:23:ee:d7:78:4a:2a:8b: e7:cc:2b:0c:f5:2e:64:c6:f3:8d:39:a6:1f:30:fb: 51:d3:42:e9:6e:83:bd:30:57:c7:e0:2f:8d:22:24: e2:2c:2e:ab:35:a8:1d:d3:23:20:0a:fa:7b:36:28: b5:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:99:B8:A2:1F:ED:D5:CD:35:17:CF:BD:4E:57:B9:35:7B:62:F6:D6 X509v3 Authority Key Identifier: keyid:5F:EE:DE:9D:38:25:43:F0:51:52:7F:A5:33:D4:7A:91:70:77:E6:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X-7enTglQ_BRUn-lM9R6kXB35jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/AD629222B52511E6AF6C895EC4F9AE02/X-7enTglQ_BRUn-lM9R6kXB35jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3b:b5:57:35:25:18:64:eb:65:96:d4:ab:ed:1b:38:03:8d: 23:e7:94:50:85:a8:e9:e8:17:80:bb:c4:8c:4f:56:09:fe:93: 1a:3b:8c:0c:fe:ee:cc:f8:cc:f4:3c:ad:ac:6c:10:b1:87:3b: 8d:ca:86:56:75:cd:c9:59:b3:63:3b:45:1f:9b:d8:cc:43:4e: 3c:c0:77:5f:5e:9d:1f:f6:ed:1c:f3:a2:3b:39:55:08:35:f3: bd:5d:88:ec:6c:69:04:75:05:ac:f3:13:5c:3a:48:d1:c8:46: 9e:49:ba:74:7a:e7:ba:f9:5c:dd:ef:eb:64:a2:82:d1:ae:e4: df:c9:29:3e:f0:5c:b2:de:ff:e9:f2:cc:2a:8c:a6:c8:55:f6: e9:39:d0:77:48:1a:b4:50:02:21:a9:68:8c:89:46:7d:75:56: f8:16:65:3a:ef:0f:6f:b3:df:45:9a:76:4f:70:f6:d9:c2:93: 9d:88:50:f5:8b:1e:12:37:b9:84:17:43:33:82:c9:f4:08:f1: cb:85:a8:71:20:cf:c2:9a:c0:04:f5:0b:e2:b4:1a:bf:3a:10: 01:20:83:9e:14:c2:85:e6:f8:da:f7:6f:d5:6e:ea:55:17:86: ef:e4:d5:c7:e9:c0:1c:b4:98:77:83:2e:4e:50:4a:5c:22:b8: 42:d2:87:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDVGRUVERTlEMzgyNTQzRjA1MTUyN0ZBNTMzRDQ3QTkx NzA3N0U2MzIwHhcNMjUwNDI4MTYxNDQ0WhcNMjUwNTA1MTYxNDQ0WjAYMRYwFAYD VQQDEw02ODBmYTk3NC02ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbwHyqqvp/wOJDuy9ZXaJEKw22SLVJs+M2T7i0vOz2GpCyX64pvDmg802OvZ yh3UQqODLUsBOd1Kz1PZwW6t+UU9Rt1owHgwmfKvdDFN2KG328SjCFXQN0ag15ek 5D/3T0ppgIC/dnOIKWqPrsew/LgXB1l20rvJOQREfRTsvgy7Y75oTP4Ko7F+Znim 4Lf/dU97hWvFEp/hw9+Nfaquq/h0rk63+QJFcqMO89wzEKb6rDywhKhlOF78pNav BAFndjrpEmWOK+GieyPu13hKKovnzCsM9S5kxvONOaYfMPtR00LpboO9MFfH4C+N IiTiLC6rNagd0yMgCvp7Nii1SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOZuKIf 7dXNNRfPvU5XuTV7YvbWMB8GA1UdIwQYMBaAFF/u3p04JUPwUVJ/pTPUepFwd+Yy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC9BRDYyOTIyMkI1 MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFfQlJVbi1sTTlSNmtYQjM1 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1gtN2VuVGdsUV9CUlVuLWxNOVI2a1hCMzVqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE5OC9BRDYyOTIyMkI1MjUxMUU2QUY2Qzg5NUVDNEY5QUUwMi9YLTdlblRnbFFf QlJVbi1sTTlSNmtYQjM1akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSO7VXNSUYZOtlltSr7Rs4A40j55RQhajp6BeAu8SMT1YJ/pMaO4wM /u7M+Mz0PK2sbBCxhzuNyoZWdc3JWbNjO0Ufm9jMQ048wHdfXp0f9u0c86I7OVUI NfO9XYjsbGkEdQWs8xNcOkjRyEaeSbp0eue6+Vzd7+tkooLRruTfySk+8Fyy3v/p 8swqjKbIVfbpOdB3SBq0UAIhqWiMiUZ9dVb4FmU67w9vs99FmnZPcPbZwpOdiFD1 ix4SN7mEF0Mzgsn0CPHLhahxIM/CmsAE9QvitBq/OhABIIOeFMKF5vja92/VbupV F4bv5NXH6cActJh3gy5OUEpcIrhC0ofn -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:14 2025 by rpki-client on console.sobornost.net