$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft File: rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft (raw, json) Hash identifier: PFkoPBg3lnaJ74vcKb6fxH8nTxI96eZmYr7nDGEn8Ok= Subject key identifier: D6:BD:A4:F9:27:23:43:C8:34:D7:BF:2A:1F:DC:14:4A:63:03:5C:4A Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft Manifest number: D8 Signing time: Sun 27 Apr 2025 04:46:30 +0000 Manifest this update: Sun 27 Apr 2025 04:46:29 +0000 Manifest next update: Sun 04 May 2025 04:46:29 +0000 Files and hashes: 1: rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl (hash: XUvnfjHXe3IxT0k2IPGzbKJkfxYWama+4jzvmzjjVH0=) 2: 3285ADDAA9D911EF9F30DA47C4F9AE02.roa (hash: u80/WP/FyzFGjNMk1YFjGdFPVtQyAbLjV6K7I70DeS4=) 3: DD267C66316511EFB284A421C4F9AE02.roa (hash: fBqSW8jISb6HiF16XH44dQP540yVqiuhIc6mypavGXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Apr 27 04:46:29 2025 GMT Not After : May 4 04:46:29 2025 GMT Subject: CN=680db6a5-1c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b2:d4:94:6b:3d:e1:34:e2:ee:68:8f:3f:de: 09:8b:4e:83:99:85:3e:c0:d3:92:3b:f2:2b:d7:8a: d5:e1:6a:0d:ce:f9:39:88:be:51:35:77:74:f9:73: 9a:f7:76:08:70:bb:e4:77:3f:ba:99:64:8d:a9:22: 59:93:56:7e:f8:80:ee:a4:fd:35:00:9e:d1:ef:ea: ca:1c:9e:89:bb:f0:f9:21:1d:25:c5:c2:ed:03:ed: 58:9a:81:1c:86:8c:7a:2d:f5:0c:7d:be:29:4a:59: a9:75:6a:b2:f9:f1:6d:60:ab:2c:53:2b:39:5d:09: d4:a9:64:d9:6b:cc:ef:c6:bc:9d:00:a8:f7:70:06: 39:4d:a7:cc:49:3d:0b:66:5f:99:43:7a:76:35:e2: c8:0b:bd:86:3e:99:04:34:f8:38:48:f8:49:ec:f4: 6e:68:74:96:8c:7e:dd:dd:aa:a7:e2:67:88:6e:4a: 09:b1:9f:4a:fa:18:23:de:85:61:6e:b0:d7:aa:91: b7:14:63:73:5a:54:80:15:1d:b7:ba:67:df:1c:c4: 62:c9:d4:80:5b:0d:ff:b1:8c:07:dc:0c:3b:47:bf: 94:d0:0c:35:b4:7b:49:2c:8d:52:44:b0:a3:06:f0: da:d9:e6:7e:a6:a1:d7:92:78:18:86:48:fa:f8:78: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BD:A4:F9:27:23:43:C8:34:D7:BF:2A:1F:DC:14:4A:63:03:5C:4A X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:bf:2c:13:e9:b8:d6:f9:de:ee:08:a5:e5:4d:28:8b:fd:3f: f1:d7:fc:a3:10:6d:41:16:6a:8c:e4:6f:75:34:9b:66:94:47: 2d:1a:b7:11:b3:83:51:5d:48:b2:53:e9:a2:f6:99:5d:41:da: c2:b3:a9:5a:11:0b:02:18:b1:a9:85:31:31:b3:cc:34:10:37: cf:4d:87:eb:6a:15:5e:d9:f8:04:d3:df:1d:4c:b3:60:6a:90: 56:26:19:c5:c2:65:0e:7a:7a:c1:33:64:05:6f:10:ad:de:32: 78:74:6f:1c:f4:86:23:69:21:4e:0c:7f:3e:7a:fe:0a:3b:9c: 12:fd:33:17:87:10:64:69:61:22:5f:5e:ee:4a:f0:ea:10:9c: 49:e8:72:3e:9e:a0:3c:7d:79:ca:9e:bf:8c:62:e9:27:c9:3b: 0f:23:f6:fc:a6:cd:c5:c8:81:8a:15:48:34:df:c1:f2:9e:9c: 30:72:64:02:42:02:33:da:2f:ca:61:67:85:a2:3e:2b:88:d2: bc:06:5d:37:c5:6b:38:92:3b:ee:ac:01:96:a3:cf:2f:fb:1a: d1:f5:d0:1a:c2:84:6c:37:34:4b:c9:47:f4:dc:01:19:20:d5: 47:c2:89:01:51:3c:0e:8b:f3:fd:fb:63:cd:39:ac:54:7a:38: c9:f7:f8:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkzNTMxMTAvBgNVBAUTKEFDRDA0N0QwRDg4RTI2NTdFMTJDRjkxMzAxQzE2MEYx RDNDRDJGMzMwHhcNMjUwNDI3MDQ0NjI5WhcNMjUwNTA0MDQ0NjI5WjAYMRYwFAYD VQQDEw02ODBkYjZhNS0xYzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLLUlGs94TTi7miPP94Ji06DmYU+wNOSO/Ir14rV4WoNzvk5iL5RNXd0+XOa 93YIcLvkdz+6mWSNqSJZk1Z++IDupP01AJ7R7+rKHJ6Ju/D5IR0lxcLtA+1YmoEc hox6LfUMfb4pSlmpdWqy+fFtYKssUys5XQnUqWTZa8zvxrydAKj3cAY5TafMST0L Zl+ZQ3p2NeLIC72GPpkENPg4SPhJ7PRuaHSWjH7d3aqn4meIbkoJsZ9K+hgj3oVh brDXqpG3FGNzWlSAFR23umffHMRiydSAWw3/sYwH3Aw7R7+U0Aw1tHtJLI1SRLCj BvDa2eZ+pqHXkngYhkj6+HgpaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNa9pPkn I0PINNe/Kh/cFEpjA1xKMB8GA1UdIwQYMBaAFKzQR9DYjiZX4Sz5EwHBYPHTzS8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTM1My8wODc1RTY0ODA1 QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0psZmhMUGtUQWNGZzhkUE5M ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTM1My8wODc1RTY0ODA1QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0ps ZmhMUGtUQWNGZzhkUE5Mek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2vywT6bjW+d7uCKXlTSiL/T/x1/yjEG1BFmqM5G91NJtmlEctGrcR s4NRXUiyU+mi9pldQdrCs6laEQsCGLGphTExs8w0EDfPTYfrahVe2fgE098dTLNg apBWJhnFwmUOenrBM2QFbxCt3jJ4dG8c9IYjaSFODH8+ev4KO5wS/TMXhxBkaWEi X17uSvDqEJxJ6HI+nqA8fXnKnr+MYuknyTsPI/b8ps3FyIGKFUg038HynpwwcmQC QgIz2i/KYWeFoj4riNK8Bl03xWs4kjvurAGWo88v+xrR9dAawoRsNzRLyUf03AEZ INVHwokBUTwOi/P9+2PNOaxUejjJ9/g8 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:59 2025 by rpki-client on console.sobornost.net