$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft File: kcPJZndvAR_FNQIdhfWue_utpX4.mft (raw, json) Hash identifier: Btj+ITCMcE3puxWY1gXgKyT0nsk05ahwj1yD83pxlkk= Subject key identifier: C0:BB:37:7C:BC:52:10:BA:5A:54:A8:08:52:1D:4C:EF:AC:0E:32:FA Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft Manifest number: 0B3E Signing time: Sat 26 Apr 2025 18:58:31 +0000 Manifest this update: Sat 26 Apr 2025 18:58:31 +0000 Manifest next update: Sat 03 May 2025 18:58:31 +0000 Files and hashes: 1: kcPJZndvAR_FNQIdhfWue_utpX4.crl (hash: /trRWBemTrw8IIc077WymcmDI1CjaptTV5CbDHixlUM=) 2: 41B2F448ECE611EA882BEA79C4F9AE02.roa (hash: 2OWyaPGRLrrFKnf1EOOsWE1CZ/F4XEfW9jNRJp2rUvY=) 3: 436F1AE2ECF411EA822E8D28C4F9AE02.roa (hash: OTRxLWYGIuHzUDilAOLR2h6DuKbihwZG+/xdIto74Po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Apr 26 18:58:31 2025 GMT Not After : May 3 18:58:31 2025 GMT Subject: CN=680d2cd7-7324 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:e4:a6:60:69:41:12:45:93:d1:2c:00:e2: 35:4b:70:25:aa:dd:78:16:66:b8:81:cb:bf:05:6c: 0b:26:46:51:75:10:1f:4e:10:86:6c:34:83:77:40: b1:51:ff:2c:73:a7:52:5e:4b:c1:17:38:ba:06:c8: 9f:77:2d:6d:76:88:4b:b2:47:8c:42:3d:1e:8b:cb: ae:29:4d:ec:e2:1f:f5:23:2a:62:a3:67:de:b1:d9: 21:d9:ea:e3:11:4f:cf:02:98:a7:fd:da:8a:5b:e5: 48:e9:7b:b2:a9:22:32:f3:6c:14:a5:8a:ab:6a:3c: a2:ee:e3:90:dc:4d:90:0a:71:c0:1b:3d:8c:36:17: af:f3:aa:6d:f1:cb:f7:e6:c0:e5:1f:04:80:42:f6: 02:e9:ee:85:bb:43:7e:bf:ab:5c:7d:3e:17:9b:8e: 99:f1:5c:f6:30:88:d4:18:be:5f:ea:99:e4:50:2d: eb:37:c2:5e:9b:54:69:e7:7e:5c:4a:ed:fb:b1:cd: f4:b7:0c:72:fb:a7:5a:83:7d:9e:8a:72:31:d3:bf: b6:78:e8:38:05:84:d8:d2:a8:d9:5a:8f:b8:15:d5: 29:01:26:dd:2b:20:55:6f:e4:cd:02:b2:9a:83:59: 26:1f:fe:41:32:b0:e4:2d:9a:7e:13:36:18:76:92: c4:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:BB:37:7C:BC:52:10:BA:5A:54:A8:08:52:1D:4C:EF:AC:0E:32:FA X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ff:46:58:3c:ed:ee:61:b1:24:2f:cf:b6:a9:6f:ec:f6:1b: 7d:5d:b2:66:68:81:a6:f5:a1:3c:fb:9a:17:cd:a6:b3:4b:36: 8a:c8:f5:62:db:f2:36:7c:e8:e8:0f:69:25:07:1a:37:9f:59: bc:df:7c:a3:23:d2:ff:bd:c1:ad:c9:b2:da:c9:0b:ac:a1:80: 92:2d:4b:39:2f:2f:5e:f4:03:36:53:6c:33:80:47:0c:cb:5c: 83:4d:1a:bb:81:c4:6e:83:76:3f:ff:43:05:25:9e:d6:4b:7a: 73:26:92:56:f9:4a:c8:a2:a4:26:fb:3f:74:6a:a4:06:5b:34: a2:76:a6:0d:36:02:1b:0c:8f:82:68:64:ef:2a:e1:bc:22:70: 3c:14:e4:97:24:70:61:a9:7f:80:cd:7e:3f:6a:21:bf:d5:d6: 4a:08:c6:5a:88:1d:65:5d:fc:b7:23:86:c6:c0:60:bd:ee:9b: 6b:33:67:76:3d:63:36:e4:a2:0a:bd:9f:a3:ce:cd:f4:63:e7: 77:d5:13:7a:f4:db:fe:47:c0:b5:5e:88:49:5b:43:99:e4:ab: cc:68:32:d0:78:41:fe:63:51:a9:f5:e7:73:7d:d9:03:44:78: a2:d7:f6:9f:5f:ee:5d:ba:ca:31:4f:cf:2d:57:3b:4e:6d:7a: 29:12:8c:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjUwNDI2MTg1ODMxWhcNMjUwNTAzMTg1ODMxWjAYMRYwFAYD VQQDEw02ODBkMmNkNy03MzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHXkpmBpQRJFk9EsAOI1S3Alqt14Fma4gcu/BWwLJkZRdRAfThCGbDSDd0Cx Uf8sc6dSXkvBFzi6Bsifdy1tdohLskeMQj0ei8uuKU3s4h/1Iypio2fesdkh2erj EU/PApin/dqKW+VI6XuyqSIy82wUpYqrajyi7uOQ3E2QCnHAGz2MNhev86pt8cv3 5sDlHwSAQvYC6e6Fu0N+v6tcfT4Xm46Z8Vz2MIjUGL5f6pnkUC3rN8Jem1Rp535c Su37sc30twxy+6dag32einIx07+2eOg4BYTY0qjZWo+4FdUpASbdKyBVb+TNArKa g1kmH/5BMrDkLZp+EzYYdpLEzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMC7N3y8 UhC6WlSoCFIdTO+sDjL6MB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTc4Ni9CMEQ3MjNFRTM1REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFS X0ZOUUlkaGZXdWVfdXRwWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy/0ZYPO3uYbEkL8+2qW/s9ht9XbJmaIGm9aE8+5oXzaazSzaKyPVi 2/I2fOjoD2klBxo3n1m833yjI9L/vcGtybLayQusoYCSLUs5Ly9e9AM2U2wzgEcM y1yDTRq7gcRug3Y//0MFJZ7WS3pzJpJW+UrIoqQm+z90aqQGWzSidqYNNgIbDI+C aGTvKuG8InA8FOSXJHBhqX+AzX4/aiG/1dZKCMZaiB1lXfy3I4bGwGC97ptrM2d2 PWM25KIKvZ+jzs30Y+d31RN69Nv+R8C1XohJW0OZ5KvMaDLQeEH+Y1Gp9edzfdkD RHii1/afX+5dusoxT88tVztObXopEoxi -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:03 2025 by rpki-client on console.sobornost.net