$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft File: K1N18tBgdUbVH2UR9hvEoYl0_eI.mft (raw, json) Hash identifier: lJ3LdGfx6fRtthHZ3IJchzU2GTLkCTjfmkEiFPVnkPY= Subject key identifier: CC:36:F5:11:D3:3B:5D:AC:34:09:B7:A1:DE:D2:FA:E6:B4:64:29:F8 Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 Certificate issuer: /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Certificate serial: 34AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft Manifest number: 349B Signing time: Mon 28 Apr 2025 14:24:29 +0000 Manifest this update: Mon 28 Apr 2025 14:24:28 +0000 Manifest next update: Mon 05 May 2025 14:24:28 +0000 Files and hashes: 1: K1N18tBgdUbVH2UR9hvEoYl0_eI.crl (hash: 6LcprirREijdAwcv8w4SPtAah+oWIzb/dYjJL1hWpEg=) 2: FACC58F855C411E9A0FEF781C4F9AE02.roa (hash: xRVsw1KmS2w+1EDgE8BbroBgIAZxNI85/W3Lxxz+NyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:24:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13483 (0x34ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Validity Not Before: Apr 28 14:24:28 2025 GMT Not After : May 5 14:24:28 2025 GMT Subject: CN=680f8f9c-1f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a7:a0:37:35:b8:f4:ae:6b:a6:a9:22:b0:2c: a5:49:b0:d3:75:32:9b:1a:69:d9:de:21:6c:2f:ac: 41:7c:d5:f7:8f:19:d0:51:98:cc:54:4f:87:ce:74: d4:22:6f:7e:0e:ab:1a:0f:b1:db:42:d8:03:ce:7a: 31:5e:fa:e0:c2:74:4e:7c:e0:ed:5c:30:81:a7:6c: de:77:d5:40:3a:27:16:3a:4c:2d:f3:5a:69:83:9a: 49:fd:de:ea:21:36:5e:6f:a9:78:7e:10:f2:2e:b2: cd:69:9c:a4:cf:1f:a4:c5:2e:db:cb:f5:b3:11:e0: 82:11:6f:92:8d:3a:2d:ca:a8:c3:49:55:3f:df:f0: a1:1c:21:35:09:67:03:f5:4f:a9:df:f9:eb:40:b5: a6:ce:eb:b5:12:26:2f:55:b9:35:17:34:8e:54:e2: 92:68:b1:d6:e5:29:10:a1:71:6b:35:5f:c4:1e:ea: f3:f9:5b:32:61:2b:81:bc:4a:eb:23:76:93:88:11: 1d:92:d4:01:21:fd:d8:ff:76:ae:a3:36:e0:5e:77: 5f:89:3f:31:84:46:41:42:6e:be:52:ed:89:5d:9b: 41:71:f0:a2:71:2b:ec:a3:39:ef:e4:43:91:98:9c: b2:d4:2b:d7:5a:32:ae:7e:3f:bc:d6:74:1f:4a:0b: f5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:36:F5:11:D3:3B:5D:AC:34:09:B7:A1:DE:D2:FA:E6:B4:64:29:F8 X509v3 Authority Key Identifier: keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:3b:99:91:8d:72:43:ed:4a:fc:e4:40:bd:ff:f6:34:3c:32: 63:66:0a:16:c1:cf:03:90:36:fc:1a:92:5a:b6:32:54:8c:58: 76:8a:b0:d6:33:52:b6:95:42:b3:77:a8:1a:5f:c5:5e:0c:ae: 60:68:87:51:7f:a1:32:a7:42:63:15:46:fb:7c:e3:9f:5e:ca: e8:cd:ad:88:d1:5e:e1:ab:be:a7:a6:9c:53:23:4f:b3:88:6f: 25:83:34:b8:bf:d6:be:2e:d4:16:9b:d4:23:15:17:07:bd:65: b9:c5:11:fe:dc:da:f8:77:05:49:67:ab:d9:30:fa:9d:62:9b: 69:18:a0:07:70:5e:08:cc:a2:b7:bc:8c:14:8f:c0:6a:86:be: bb:4c:af:a4:47:cd:6b:8e:47:94:9a:6c:96:08:76:3f:7b:3d: 44:5e:f2:13:d6:f1:a7:03:1d:43:e9:8b:a7:0f:23:da:ec:d0: 47:c6:a0:aa:34:41:8a:6f:e9:74:0b:17:a4:82:8d:89:3d:5c: 2e:9c:76:32:75:fc:40:e7:3f:63:df:c4:75:d9:f1:23:90:30: be:01:0a:32:12:37:33:8b:61:36:78:58:09:34:52:c2:1b:b3: 80:39:94:53:20:3d:ea:31:89:21:27:58:d7:de:f6:26:73:b5: a9:11:70:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDJCNTM3NUYyRDA2MDc1NDZENTFGNjUxMUY2MUJDNEEx ODk3NEZERTIwHhcNMjUwNDI4MTQyNDI4WhcNMjUwNTA1MTQyNDI4WjAYMRYwFAYD VQQDEw02ODBmOGY5Yy0xZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aegNzW49K5rpqkisCylSbDTdTKbGmnZ3iFsL6xBfNX3jxnQUZjMVE+HznTU Im9+DqsaD7HbQtgDznoxXvrgwnROfODtXDCBp2zed9VAOicWOkwt81ppg5pJ/d7q ITZeb6l4fhDyLrLNaZykzx+kxS7by/WzEeCCEW+SjTotyqjDSVU/3/ChHCE1CWcD 9U+p3/nrQLWmzuu1EiYvVbk1FzSOVOKSaLHW5SkQoXFrNV/EHurz+VsyYSuBvErr I3aTiBEdktQBIf3Y/3auozbgXndfiT8xhEZBQm6+Uu2JXZtBcfCicSvsoznv5EOR mJyy1CvXWjKufj+81nQfSgv1DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw29RHT O12sNAm3od7S+ua0ZCn4MB8GA1UdIwQYMBaAFCtTdfLQYHVG1R9lEfYbxKGJdP3i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS8wNUM0QzBBNDFE ODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RVYlZIMlVSOWh2RW9ZbDBf ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTjE4dEJnZFViVkgyVVI5aHZFb1lsMF9lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE5RS8wNUM0QzBBNDFEODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RV YlZIMlVSOWh2RW9ZbDBfZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZO5mRjXJD7Ur85EC9//Y0PDJjZgoWwc8DkDb8GpJatjJUjFh2irDW M1K2lUKzd6gaX8VeDK5gaIdRf6Eyp0JjFUb7fOOfXsroza2I0V7hq76nppxTI0+z iG8lgzS4v9a+LtQWm9QjFRcHvWW5xRH+3Nr4dwVJZ6vZMPqdYptpGKAHcF4IzKK3 vIwUj8Bqhr67TK+kR81rjkeUmmyWCHY/ez1EXvIT1vGnAx1D6YunDyPa7NBHxqCq NEGKb+l0Cxekgo2JPVwunHYydfxA5z9j38R12fEjkDC+AQoyEjczi2E2eFgJNFLC G7OAOZRTID3qMYkhJ1jX3vYmc7WpEXBg -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:07 2025 by rpki-client on console.sobornost.net