$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft File: oUnn_U15BvwaY0EphlXagYXykBQ.mft (raw, json) Hash identifier: KCIx+iy5GYbOH9bmME+0Aoz2LcYgS+NXn1E5n81H6yM= Subject key identifier: 10:51:7C:C6:FE:55:ED:C6:B9:84:81:71:C2:C2:BF:6F:E3:06:2C:7A Authority key identifier: A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 Certificate issuer: /CN=A91FF639/serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Certificate serial: 13A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft Manifest number: 1397 Signing time: Mon 28 Apr 2025 17:11:49 +0000 Manifest this update: Mon 28 Apr 2025 17:11:49 +0000 Manifest next update: Mon 05 May 2025 17:11:49 +0000 Files and hashes: 1: oUnn_U15BvwaY0EphlXagYXykBQ.crl (hash: fBNMg1H58DJvAcKh491SfnIQel0BeqAA+r+OaZ5L8YM=) 2: 9D1CF15E90EE11E8960E8480C4F9AE02.roa (hash: H7cacnsh0VuhyC5itqeb5pDEzr5EF2LWGOPta4fd7j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5025 (0x13a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF639, serialNumber=A149E7FD4D7906FC1A6341298655DA8185F29014 Validity Not Before: Apr 28 17:11:49 2025 GMT Not After : May 5 17:11:49 2025 GMT Subject: CN=680fb6d5-d95e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:c7:34:b1:b6:69:8e:2e:2f:ab:e1:7e:cf: 6a:c6:d9:d1:d9:9f:33:fc:01:49:79:8f:38:af:8c: 9e:a6:03:20:ac:cd:80:c5:8b:f4:6f:74:08:78:15: 75:17:6d:f4:24:84:1e:69:8b:9e:c0:bc:18:2a:f1: 1e:6f:52:ac:fc:9a:97:e9:55:e4:ec:88:a2:2c:70: bd:c5:93:e0:b3:13:88:5e:08:35:64:94:e9:6f:01: 0b:2a:2b:1a:e9:1d:91:64:0a:e3:6e:78:07:bb:22: 48:d6:00:0e:d1:54:5d:98:2b:7f:7d:f4:24:b2:ae: 99:c0:ff:da:9b:a9:d3:7c:59:8c:96:5a:41:06:6d: b4:b6:e8:0e:89:2d:de:f0:7f:0d:4e:af:99:4d:1d: dc:bf:e7:bd:fa:53:7b:fb:cd:bf:e7:8e:f6:12:37: 6a:1b:2a:9c:b9:15:41:dc:d1:7c:26:53:d8:18:3b: c4:64:8d:b0:a2:07:51:ea:4b:4b:96:77:c8:f5:73: 67:96:08:1a:60:57:81:b3:10:f0:44:47:4f:8d:93: 93:53:d1:9c:6c:69:2e:5d:d1:43:90:45:a7:d1:95: 56:b0:0e:75:2c:6a:fd:09:1c:d7:5c:6d:f4:d3:c5: 38:73:c0:2a:35:bb:76:77:b9:b6:a6:47:e9:59:96: f2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:51:7C:C6:FE:55:ED:C6:B9:84:81:71:C2:C2:BF:6F:E3:06:2C:7A X509v3 Authority Key Identifier: keyid:A1:49:E7:FD:4D:79:06:FC:1A:63:41:29:86:55:DA:81:85:F2:90:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUnn_U15BvwaY0EphlXagYXykBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF639/AEF068B890EC11E883C3D47BC4F9AE02/oUnn_U15BvwaY0EphlXagYXykBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:df:d6:e7:e4:1a:a0:34:2a:96:0a:bd:ae:eb:8c:04:16:05: 13:e9:09:ba:32:6b:1e:c7:2e:db:b6:5f:59:e9:30:ce:bd:7a: 29:3a:e5:94:50:88:02:ff:75:f2:53:b2:1c:29:b3:27:9e:20: ab:09:28:49:d5:fb:86:8c:45:7f:67:63:e4:15:04:8c:09:aa: b9:71:9e:f4:67:8b:d3:0f:df:69:0c:81:a4:b2:64:0b:00:81: f2:04:b4:bf:9a:da:81:f0:8d:2f:fc:88:b6:b6:4b:00:d6:c0: a9:1c:ee:69:4d:0d:ef:97:b1:a7:7b:68:b6:59:db:08:6e:72: 7c:49:54:15:cb:5b:8f:b8:35:f1:fd:1f:9a:1c:1a:f0:c3:46: 31:a6:88:53:f9:80:67:49:2d:17:62:76:4f:49:a5:a0:56:0c: 92:ba:a4:ba:cd:3b:6e:1d:f0:f2:ad:2a:f6:4d:b4:f7:0a:45: e3:4d:35:52:08:d2:e8:57:0b:77:ed:97:7f:0c:07:e9:09:f0: db:12:f9:ac:9d:91:39:7d:2c:53:0d:5a:06:f3:e9:8c:d5:30: e6:99:f9:0d:25:8a:9b:18:82:09:c4:f1:4e:09:6c:c6:14:fe: 91:97:c5:83:4f:8a:be:fd:c1:aa:c9:0d:f6:c9:6c:81:48:c4: 33:53:ce:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzkxMTAvBgNVBAUTKEExNDlFN0ZENEQ3OTA2RkMxQTYzNDEyOTg2NTVEQTgx ODVGMjkwMTQwHhcNMjUwNDI4MTcxMTQ5WhcNMjUwNTA1MTcxMTQ5WjAYMRYwFAYD VQQDEw02ODBmYjZkNS1kOTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaXHNLG2aY4uL6vhfs9qxtnR2Z8z/AFJeY84r4yepgMgrM2AxYv0b3QIeBV1 F230JIQeaYuewLwYKvEeb1Ks/JqX6VXk7IiiLHC9xZPgsxOIXgg1ZJTpbwELKisa 6R2RZArjbngHuyJI1gAO0VRdmCt/ffQksq6ZwP/am6nTfFmMllpBBm20tugOiS3e 8H8NTq+ZTR3cv+e9+lN7+82/5472EjdqGyqcuRVB3NF8JlPYGDvEZI2wogdR6ktL lnfI9XNnlggaYFeBsxDwREdPjZOTU9GcbGkuXdFDkEWn0ZVWsA51LGr9CRzXXG30 08U4c8AqNbt2d7m2pkfpWZbyUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBRfMb+ Ve3GuYSBccLCv2/jBix6MB8GA1UdIwQYMBaAFKFJ5/1NeQb8GmNBKYZV2oGF8pAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzOS9BRUYwNjhCODkw RUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2d2FZMEVwaGxYYWdZWHlr QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Vbm5fVTE1QnZ3YVkwRXBobFhhZ1lYeWtCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzOS9BRUYwNjhCODkwRUMxMUU4ODNDM0Q0N0JDNEY5QUUwMi9vVW5uX1UxNUJ2 d2FZMEVwaGxYYWdZWHlrQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu39bn5BqgNCqWCr2u64wEFgUT6Qm6Mmsexy7btl9Z6TDOvXopOuWU UIgC/3XyU7IcKbMnniCrCShJ1fuGjEV/Z2PkFQSMCaq5cZ70Z4vTD99pDIGksmQL AIHyBLS/mtqB8I0v/Ii2tksA1sCpHO5pTQ3vl7Gne2i2WdsIbnJ8SVQVy1uPuDXx /R+aHBrww0YxpohT+YBnSS0XYnZPSaWgVgySuqS6zTtuHfDyrSr2TbT3CkXjTTVS CNLoVwt37Zd/DAfpCfDbEvmsnZE5fSxTDVoG8+mM1TDmmfkNJYqbGIIJxPFOCWzG FP6Rl8WDT4q+/cGqyQ32yWyBSMQzU85h -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:17 2025 by rpki-client on console.sobornost.net