$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft File: l85Wj2RoJWRz-Es4s84D6jVJ64k.mft (raw, json) Hash identifier: IxQrmq2IsgbcXBpkvEc0X4FQBDt38vbK5ywPC32BeVE= Subject key identifier: A6:8E:BA:03:18:82:83:DF:6E:6C:68:FA:62:46:23:70:73:30:9B:11 Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft Manifest number: 0162 Signing time: Sun 27 Apr 2025 02:55:35 +0000 Manifest this update: Sun 27 Apr 2025 02:55:34 +0000 Manifest next update: Sun 04 May 2025 02:55:34 +0000 Files and hashes: 1: l85Wj2RoJWRz-Es4s84D6jVJ64k.crl (hash: IZpqBx6hrshPsbZSWd/iunMj69nXSkcI3+8zn4DLjGY=) 2: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (hash: HMZ69Vk7ZS0Jv78BueT5h2a9dKdT1kZJMuqKYnjLHLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC, serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Apr 27 02:55:34 2025 GMT Not After : May 4 02:55:34 2025 GMT Subject: CN=680d9ca7-b9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:54:c1:41:20:ad:79:0e:f5:2a:c6:fb:45:a3: 2c:29:aa:20:8e:cd:fc:c4:e9:ec:58:d2:a1:4a:3e: de:fe:2b:41:56:87:14:49:8c:6d:53:9e:74:74:bc: 28:82:a3:0a:72:68:f8:72:36:ed:4e:fa:3d:5b:18: 72:67:b0:4c:6e:68:9c:ff:df:51:31:4a:3b:cc:0d: 28:b3:83:97:a4:e7:bb:f6:37:5d:5f:48:ed:f6:74: 69:75:b3:7d:c5:5d:86:f8:fa:e1:56:1f:05:3f:99: ad:88:a6:99:ec:4e:3f:17:9a:9f:97:c6:3a:6d:17: 31:46:ad:7f:ec:e5:7e:5e:a7:ba:7f:fe:82:3a:f1: 14:85:c6:56:25:d7:d9:4c:82:93:5c:76:db:40:e3: 73:f4:70:83:bd:70:dc:a6:24:70:47:40:a2:97:58: ed:7d:dc:9f:c9:a2:2e:c3:5c:60:fe:39:0d:bd:8a: 8f:4e:5a:db:49:ab:9e:35:0a:7b:83:af:29:d5:cf: 75:fc:c0:f0:97:ce:05:55:7b:aa:cd:4b:be:12:24: 8c:b2:08:ac:6b:47:2d:05:90:6c:80:00:c2:ab:b7: 6b:e9:9a:79:4d:75:9f:5e:13:50:de:a8:cb:f1:ad: 48:02:2d:b5:fc:2c:cf:f2:a2:25:86:27:f4:e4:ed: 44:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:8E:BA:03:18:82:83:DF:6E:6C:68:FA:62:46:23:70:73:30:9B:11 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:42:82:17:44:07:d2:6a:64:80:c8:f2:95:c0:87:01:7e:dd: 57:d7:89:a0:ba:97:54:e1:f9:33:64:b4:66:67:9c:37:1f:1c: b7:85:f4:3c:7d:60:b2:5d:69:25:6a:17:b3:2d:3f:fa:ca:88: 13:74:a9:ba:3d:49:a1:2e:cc:f6:a0:21:e0:c5:72:bd:fc:4c: a4:7a:9f:86:6f:ba:fa:aa:80:ca:d4:6c:98:d6:99:d2:7a:fa: 1e:62:76:33:9b:ec:de:19:c6:56:db:a9:d3:39:dd:e0:83:ce: fa:7e:6a:7c:a5:48:c0:8a:44:b4:74:f6:3a:36:a4:10:f0:8b: bd:9a:67:e3:f3:ec:68:54:7d:2f:a1:4c:82:11:09:24:b5:c5: 10:86:f6:59:ca:4a:d0:05:d3:f8:fe:09:43:20:4a:f4:21:62: c8:84:03:39:42:ff:73:cc:eb:3e:13:ae:fa:a8:98:ac:86:56: 0f:c9:5c:1c:ab:f4:bd:c5:c0:07:e9:d3:94:d9:69:0f:ea:da: 11:38:25:0c:91:3d:32:69:16:e0:34:7d:f0:f8:ed:19:31:4e: b3:97:90:e8:8b:5e:04:41:14:af:20:f6:96:ff:e5:22:e1:2a: a8:04:8f:63:e2:03:12:19:a6:c1:c2:c9:f4:40:ea:53:39:15: 04:4b:89:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBQkMxMTAvBgNVBAUTKDk3Q0U1NjhGNjQ2ODI1NjQ3M0Y4NEIzOEIzQ0UwM0VB MzU0OUVCODkwHhcNMjUwNDI3MDI1NTM0WhcNMjUwNTA0MDI1NTM0WjAYMRYwFAYD VQQDEw02ODBkOWNhNy1iOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVTBQSCteQ71Ksb7RaMsKaogjs38xOnsWNKhSj7e/itBVocUSYxtU550dLwo gqMKcmj4cjbtTvo9WxhyZ7BMbmic/99RMUo7zA0os4OXpOe79jddX0jt9nRpdbN9 xV2G+PrhVh8FP5mtiKaZ7E4/F5qfl8Y6bRcxRq1/7OV+Xqe6f/6COvEUhcZWJdfZ TIKTXHbbQONz9HCDvXDcpiRwR0Cil1jtfdyfyaIuw1xg/jkNvYqPTlrbSaueNQp7 g68p1c91/MDwl84FVXuqzUu+EiSMsgisa0ctBZBsgADCq7dr6Zp5TXWfXhNQ3qjL 8a1IAi21/CzP8qIlhif05O1EjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaOugMY goPfbmxo+mJGI3BzMJsRMB8GA1UdIwQYMBaAFJfOVo9kaCVkc/hLOLPOA+o1SeuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0FCQy9DNTUxNjQxMjA1 QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pXUnotRXM0czg0RDZqVko2 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi9sODVXajJSb0pX UnotRXM0czg0RDZqVko2NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOQoIXRAfSamSAyPKVwIcBft1X14mgupdU4fkzZLRmZ5w3Hxy3hfQ8 fWCyXWklahezLT/6yogTdKm6PUmhLsz2oCHgxXK9/Eykep+Gb7r6qoDK1GyY1pnS evoeYnYzm+zeGcZW26nTOd3gg876fmp8pUjAikS0dPY6NqQQ8Iu9mmfj8+xoVH0v oUyCEQkktcUQhvZZykrQBdP4/glDIEr0IWLIhAM5Qv9zzOs+E676qJishlYPyVwc q/S9xcAH6dOU2WkP6toROCUMkT0yaRbgNH3w+O0ZMU6zl5Doi14EQRSvIPaW/+Ui 4SqoBI9j4gMSGabBwsn0QOpTORUES4mz -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:19 2025 by rpki-client on console.sobornost.net