$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.mft File: tgxHDTEgWHLntvv9aE83B01-nXM.mft (raw, json) Hash identifier: FZ0izNrFI0PtTQ5m1o7U+pwa508DIjSTHdMC/TCxM9s= Subject key identifier: D0:82:8A:CE:FC:47:76:9E:11:8A:D2:81:53:90:AE:30:C9:38:F5:0D Authority key identifier: B6:0C:47:0D:31:20:58:72:E7:B6:FB:FD:68:4F:37:07:4D:7E:9D:73 Certificate issuer: /CN=A9110C2F/serialNumber=B60C470D31205872E7B6FBFD684F37074D7E9D73 Certificate serial: 3494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.mft Manifest number: 3484 Signing time: Mon 28 Apr 2025 15:01:20 +0000 Manifest this update: Mon 28 Apr 2025 15:01:19 +0000 Manifest next update: Mon 05 May 2025 15:01:19 +0000 Files and hashes: 1: tgxHDTEgWHLntvv9aE83B01-nXM.crl (hash: CDzr17HLDjhEQOdSTe88N5o7y/JMAJC/8qfSuiW4cqI=) 2: 4625A21A68B511EA9EF7951AC4F9AE02.roa (hash: RwfQrmvNnRQyIUXieZHGYDJzOJ942Gv6AiVFyJelDe0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.crl rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C2F, serialNumber=B60C470D31205872E7B6FBFD684F37074D7E9D73 Validity Not Before: Apr 28 15:01:19 2025 GMT Not After : May 5 15:01:19 2025 GMT Subject: CN=680f9840-29bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7b:ca:b7:58:32:bc:bf:f0:33:1f:a4:e9:d0: f3:00:09:d0:cc:27:36:ef:cd:96:76:76:68:02:2c: ef:8e:a2:66:b3:dc:b5:96:1f:50:6c:89:80:f6:5e: 33:99:13:42:93:db:ac:70:8e:7d:a4:2b:1a:d0:cb: 02:20:d3:9e:89:66:93:a2:79:8a:1d:de:61:68:94: fb:da:d4:33:bc:7b:3e:e5:12:ab:a0:1e:4c:ad:c9: 94:93:b2:bf:2e:5e:62:cd:ee:74:4f:f4:88:a1:f2: 38:f5:37:f1:44:6d:ca:9b:dd:46:b0:35:c5:71:dd: bf:3d:67:82:14:f0:d0:e4:07:11:bf:9c:74:07:12: e2:55:d5:26:3a:74:77:16:ec:2e:ed:e2:bd:49:ad: a2:f0:93:6d:6c:03:81:5c:cc:be:db:ae:f1:5d:99: 35:66:52:cf:a2:58:68:a2:3a:0f:37:95:b6:a6:42: 2b:4f:94:95:ef:05:e0:44:45:f8:a2:ad:b5:95:ed: 7b:54:f6:dd:aa:f5:ce:4e:11:3d:67:07:15:8e:14: 76:70:8f:99:63:de:69:62:1b:da:6f:c5:50:9d:0f: 4d:be:67:85:7d:86:67:32:46:03:c1:c7:b0:fa:3a: 79:8c:2f:1c:9d:c0:85:64:b2:05:78:25:bb:aa:be: 64:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:82:8A:CE:FC:47:76:9E:11:8A:D2:81:53:90:AE:30:C9:38:F5:0D X509v3 Authority Key Identifier: keyid:B6:0C:47:0D:31:20:58:72:E7:B6:FB:FD:68:4F:37:07:4D:7E:9D:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgxHDTEgWHLntvv9aE83B01-nXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C2F/705F52FC1D9911E285C9ED8508B02CD2/tgxHDTEgWHLntvv9aE83B01-nXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:1d:33:79:a9:00:40:58:02:b9:55:1e:d0:94:27:7d:d9:c9: 67:d9:c8:86:74:5f:00:c5:fe:89:81:c8:d3:f5:eb:27:e0:a1: 76:f1:63:58:16:29:a9:95:cc:84:28:8e:64:68:c8:df:84:1b: 7f:c9:38:3a:32:1a:69:36:3f:22:a4:82:08:e7:c3:9e:43:d1: e9:02:99:ae:1b:1d:98:19:0d:6b:24:ef:c3:3f:3b:8f:a8:56: d8:ba:8f:d8:dc:f2:8c:34:e9:54:4a:62:94:44:d5:5e:f2:27: 47:41:a8:66:0c:33:77:d9:62:d8:ae:de:83:0a:93:40:75:77: 07:f5:49:76:4c:9f:6f:0a:4c:d9:65:28:bc:2f:5b:ed:43:c3: 41:1c:48:09:16:b6:37:b2:ab:96:f6:e6:7e:22:47:ac:f5:93: 8d:e9:1c:ef:a9:72:5e:5b:f4:89:19:36:d4:74:d3:2e:a0:62: d8:09:a5:bb:31:f9:6f:7f:18:9c:66:c5:d2:a0:8e:b7:2a:83: bd:a7:f9:44:19:0a:e1:63:99:9c:08:2c:13:47:e4:47:1a:d7: 3d:14:aa:45:0d:43:f9:65:0d:25:5d:43:19:f6:7b:69:d6:bd: 2f:dd:e5:58:7b:b7:f5:a7:8d:e0:2e:ee:f7:ff:d1:d6:06:a6: 20:d1:82:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDMkYxMTAvBgNVBAUTKEI2MEM0NzBEMzEyMDU4NzJFN0I2RkJGRDY4NEYzNzA3 NEQ3RTlENzMwHhcNMjUwNDI4MTUwMTE5WhcNMjUwNTA1MTUwMTE5WjAYMRYwFAYD VQQDEw02ODBmOTg0MC0yOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXvKt1gyvL/wMx+k6dDzAAnQzCc2782WdnZoAizvjqJms9y1lh9QbImA9l4z mRNCk9uscI59pCsa0MsCINOeiWaTonmKHd5haJT72tQzvHs+5RKroB5MrcmUk7K/ Ll5ize50T/SIofI49TfxRG3Km91GsDXFcd2/PWeCFPDQ5AcRv5x0BxLiVdUmOnR3 Fuwu7eK9Sa2i8JNtbAOBXMy+267xXZk1ZlLPolhoojoPN5W2pkIrT5SV7wXgREX4 oq21le17VPbdqvXOThE9ZwcVjhR2cI+ZY95pYhvab8VQnQ9NvmeFfYZnMkYDwcew +jp5jC8cncCFZLIFeCW7qr5kRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCCis78 R3aeEYrSgVOQrjDJOPUNMB8GA1UdIwQYMBaAFLYMRw0xIFhy57b7/WhPNwdNfp1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEMyRi83MDVGNTJGQzFE OTkxMUUyODVDOUVEODUwOEIwMkNEMi90Z3hIRFRFZ1dITG50dnY5YUU4M0IwMS1u WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RneEhEVEVnV0hMbnR2djlhRTgzQjAxLW5YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEMyRi83MDVGNTJGQzFEOTkxMUUyODVDOUVEODUwOEIwMkNEMi90Z3hIRFRFZ1dI TG50dnY5YUU4M0IwMS1uWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8HTN5qQBAWAK5VR7QlCd92cln2ciGdF8Axf6JgcjT9esn4KF28WNY FimplcyEKI5kaMjfhBt/yTg6MhppNj8ipIII58OeQ9HpApmuGx2YGQ1rJO/DPzuP qFbYuo/Y3PKMNOlUSmKURNVe8idHQahmDDN32WLYrt6DCpNAdXcH9Ul2TJ9vCkzZ ZSi8L1vtQ8NBHEgJFrY3squW9uZ+Ikes9ZON6RzvqXJeW/SJGTbUdNMuoGLYCaW7 MflvfxicZsXSoI63KoO9p/lEGQrhY5mcCCwTR+RHGtc9FKpFDUP5ZQ0lXUMZ9ntp 1r0v3eVYe7f1p43gLu73/9HWBqYg0YL7 -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:42 2025 by rpki-client on console.sobornost.net