$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft File: 9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft (raw, json) Hash identifier: +552A/YshTGrekn96mTNBqwmgiRO0Mbzqcx0pMRxr8M= Subject key identifier: DB:61:5A:3E:CA:45:F5:3F:FD:D7:CE:E6:CA:C9:54:F3:88:8B:56:E0 Authority key identifier: F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 Certificate issuer: /CN=A91FA5A2/serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft Manifest number: 0112 Signing time: Sun 27 Apr 2025 04:00:15 +0000 Manifest this update: Sun 27 Apr 2025 04:00:15 +0000 Manifest next update: Sun 04 May 2025 04:00:15 +0000 Files and hashes: 1: 9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl (hash: P10qKfUG1yKeqhQCuojGQP/CBmXwT1F5A1XSwNm8gpo=) 2: 9FE80B2898F711EE87DF6E1FC4F9AE02.roa (hash: LRpyZatatX4jc3xI3kv4CvOw5fWMnbigjWqOElPjGoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA5A2, serialNumber=F5B117054AF509C2C33369DA961F446DDCAB8342 Validity Not Before: Apr 27 04:00:15 2025 GMT Not After : May 4 04:00:15 2025 GMT Subject: CN=680dabcf-243b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1c:83:71:9f:58:35:b0:c6:76:0f:b3:84:95: 0c:a9:eb:47:67:a1:6d:0d:23:29:75:ef:d0:d2:db: 30:ef:8f:19:42:a4:08:62:b2:2f:a5:d7:ca:3a:8d: f4:25:3c:bd:34:9f:14:b2:95:39:ad:68:fc:24:c6: 70:99:dc:1d:d8:30:c5:6c:54:66:77:88:30:6e:93: 52:bb:f7:d2:0f:5b:5e:86:74:73:91:f5:f1:2c:d8: cf:f2:52:76:10:bc:f7:4a:3f:d0:22:57:24:6e:67: 9b:30:60:9f:4f:29:c8:70:c3:be:85:f4:ad:e4:de: fc:43:80:07:7d:43:30:4a:27:5e:89:70:ac:65:40: 2c:89:d2:6f:cd:06:af:e7:bc:47:8f:c7:d3:31:bd: ae:cf:98:6d:71:8b:2f:f2:cd:f9:9d:3e:a1:37:e5: 66:39:7d:92:87:79:2a:b1:51:d0:1c:a8:6f:7a:9e: e9:f1:8a:97:6c:92:77:ea:88:70:33:64:00:0b:9d: d2:e8:3b:3a:d4:da:54:d6:a0:90:80:2d:6c:07:b6: b0:7e:81:e5:ec:84:76:c4:b4:7a:6b:77:55:1c:f7: bf:98:f0:7a:64:9e:78:b4:11:e2:15:eb:09:75:3b: c0:db:48:96:78:41:86:75:4d:a7:26:c5:eb:98:17: 2b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:61:5A:3E:CA:45:F5:3F:FD:D7:CE:E6:CA:C9:54:F3:88:8B:56:E0 X509v3 Authority Key Identifier: keyid:F5:B1:17:05:4A:F5:09:C2:C3:33:69:DA:96:1F:44:6D:DC:AB:83:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9bEXBUr1CcLDM2nalh9Ebdyrg0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA5A2/4670EAAC98F611EEBBF1F417C4F9AE02/9bEXBUr1CcLDM2nalh9Ebdyrg0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:7f:e4:87:a4:08:2b:0e:e6:a1:4c:3d:55:8e:bc:45:6e:b7: 13:24:1f:18:07:b9:84:c2:7a:46:29:e3:6a:bf:77:71:6f:08: 41:24:d1:a2:e8:b1:c9:f0:8a:26:84:7d:4c:94:ad:22:f5:96: 1c:5e:2b:a6:27:ca:d4:7c:39:96:f1:e9:7a:55:92:e0:7d:c1: 74:67:1d:3c:43:c0:09:f0:75:db:2f:df:1b:83:06:a4:06:e4: 49:4f:71:94:bb:56:e9:70:85:e1:b8:f1:c5:2d:89:de:69:69: e0:64:23:c3:e5:8a:82:8e:5d:2c:f1:ca:1f:aa:5b:74:f6:70: 3c:c0:1f:12:38:5e:f3:75:a0:e9:b9:4d:d7:48:2e:c0:3e:ce: 3a:a1:da:4a:84:e2:07:73:2f:70:5a:29:fd:94:d3:2f:10:79: d9:58:5b:5b:df:46:3b:37:db:5f:e2:5e:61:1a:ad:4e:64:e8: 3b:54:c8:d1:5a:de:04:d2:2e:78:fc:63:ab:0b:6d:44:83:0a: 05:9c:44:a5:ab:4f:8d:82:5f:15:2c:4b:7c:3c:1e:1f:d0:d6: d2:75:fd:38:fb:69:f1:45:99:c4:4d:db:6a:c9:80:72:22:5c: 01:09:ba:91:d3:80:4d:e0:75:b6:0c:16:84:20:98:dc:92:db: 18:26:3d:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1QTIxMTAvBgNVBAUTKEY1QjExNzA1NEFGNTA5QzJDMzMzNjlEQTk2MUY0NDZE RENBQjgzNDIwHhcNMjUwNDI3MDQwMDE1WhcNMjUwNTA0MDQwMDE1WjAYMRYwFAYD VQQDEw02ODBkYWJjZi0yNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxyDcZ9YNbDGdg+zhJUMqetHZ6FtDSMpde/Q0tsw748ZQqQIYrIvpdfKOo30 JTy9NJ8UspU5rWj8JMZwmdwd2DDFbFRmd4gwbpNSu/fSD1tehnRzkfXxLNjP8lJ2 ELz3Sj/QIlckbmebMGCfTynIcMO+hfSt5N78Q4AHfUMwSideiXCsZUAsidJvzQav 57xHj8fTMb2uz5htcYsv8s35nT6hN+VmOX2Sh3kqsVHQHKhvep7p8YqXbJJ36ohw M2QAC53S6Ds61NpU1qCQgC1sB7awfoHl7IR2xLR6a3dVHPe/mPB6ZJ54tBHiFesJ dTvA20iWeEGGdU2nJsXrmBcrlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNthWj7K RfU//dfO5srJVPOIi1bgMB8GA1UdIwQYMBaAFPWxFwVK9QnCwzNp2pYfRG3cq4NC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTVBMi80NjcwRUFBQzk4 RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85YkVYQlVyMUNjTERNMm5hbGg5RWJkeXJn MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzliRVhCVXIxQ2NMRE0ybmFsaDlFYmR5cmcwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTVBMi80NjcwRUFBQzk4RjYxMUVFQkJGMUY0MTdDNEY5QUUwMi85YkVYQlVyMUNj TERNMm5hbGg5RWJkeXJnMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvf+SHpAgrDuahTD1VjrxFbrcTJB8YB7mEwnpGKeNqv3dxbwhBJNGi 6LHJ8IomhH1MlK0i9ZYcXiumJ8rUfDmW8el6VZLgfcF0Zx08Q8AJ8HXbL98bgwak BuRJT3GUu1bpcIXhuPHFLYneaWngZCPD5YqCjl0s8cofqlt09nA8wB8SOF7zdaDp uU3XSC7APs46odpKhOIHcy9wWin9lNMvEHnZWFtb30Y7N9tf4l5hGq1OZOg7VMjR Wt4E0i54/GOrC21EgwoFnESlq0+Ngl8VLEt8PB4f0NbSdf04+2nxRZnETdtqyYBy IlwBCbqR04BN4HW2DBaEIJjcktsYJj0w -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:59 2025 by rpki-client on console.sobornost.net