$ rpki-client -vvf rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft File: SslcipdeTPMQhCyVVkBRdT3rAok.mft (raw, json) Hash identifier: gaK4kY53L5r+2RcOeA+S9sTmay5J9YBfprC69m05s00= Subject key identifier: 01:7D:03:A4:FD:74:48:1D:BE:3A:39:C7:BC:61:04:87:78:64:AE:B0 Authority key identifier: 4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89 Certificate issuer: /CN=A9110D07/serialNumber=4AC95C8A975E4CF310842C95564051753DEB0289 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft Manifest number: 0137 Signing time: Sun 27 Apr 2025 03:53:34 +0000 Manifest this update: Sun 27 Apr 2025 03:53:34 +0000 Manifest next update: Sun 04 May 2025 03:53:34 +0000 Files and hashes: 1: SslcipdeTPMQhCyVVkBRdT3rAok.crl (hash: qkGuRhPRx1qJO5+cJQA3qBVeuzajcODM8CVMai/QhIM=) 2: CDF495A4E47D11EFAFC6496FC4F9AE02.roa (hash: 28Pcqodr/XiyCXR1rm1sG8vgE+8OCqXnMRTKbKZwlik=) 3: CEB166C0E47D11EFAFC6496FC4F9AE02.roa (hash: DZtIXQ1ghN4hCYJ+ctwT88CELrMnqgkRwXBOtM2ymVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110D07, serialNumber=4AC95C8A975E4CF310842C95564051753DEB0289 Validity Not Before: Apr 27 03:53:34 2025 GMT Not After : May 4 03:53:34 2025 GMT Subject: CN=680daa3e-04a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ea:eb:ad:9e:57:e7:67:bc:47:33:dc:5d:d9: d0:dc:9a:7f:c3:11:c2:0e:9a:8d:31:9b:79:c2:f6: 0a:79:1f:bf:82:e0:73:b8:4d:8e:d2:bc:70:70:a2: 65:51:cb:f9:d8:bb:3f:e2:18:1d:e2:aa:4b:0d:6e: 8a:bc:f6:06:85:d1:a6:8b:e5:62:c9:90:3b:e1:bf: a8:58:45:ae:95:a3:67:64:5c:3e:5b:ca:bc:15:87: d2:46:ee:67:db:8f:96:9e:6e:12:89:00:d0:92:a5: 7f:25:4e:8c:86:c1:3f:fe:aa:75:db:4e:1b:22:18: 08:59:bf:49:df:f4:ec:de:db:20:28:b9:37:8b:c7: 2a:53:59:8f:8b:f1:d7:51:1c:5e:42:e7:ff:30:1e: 16:66:84:1a:c8:4a:4e:60:5a:c9:a8:64:c9:eb:f5: a8:0c:f4:87:ca:b4:df:8e:cc:a3:42:c0:d1:a4:21: ce:44:75:16:fc:5e:e6:e5:60:e0:c9:b6:90:e4:be: ac:b6:75:3c:b8:9e:6f:72:70:5e:68:8a:95:98:98: bb:20:bb:61:a4:a5:51:7a:62:a4:6a:59:5a:14:7e: 3e:46:33:99:f1:da:a9:f1:81:bf:d9:df:65:5e:f6: 21:67:3a:5f:ce:d1:1b:9a:58:76:bf:76:61:89:56: 87:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7D:03:A4:FD:74:48:1D:BE:3A:39:C7:BC:61:04:87:78:64:AE:B0 X509v3 Authority Key Identifier: keyid:4A:C9:5C:8A:97:5E:4C:F3:10:84:2C:95:56:40:51:75:3D:EB:02:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SslcipdeTPMQhCyVVkBRdT3rAok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110D07/D3E889D48E7F11EE8E97B484C4F9AE02/SslcipdeTPMQhCyVVkBRdT3rAok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a0:bc:c5:02:41:17:05:ea:55:be:00:76:b3:3a:cc:71:d2: 5b:58:29:62:28:ce:7a:29:a7:0d:3e:9f:cd:c3:a5:c2:31:47: 85:26:41:da:87:80:82:3e:27:c6:b9:ec:89:83:a8:70:9d:9c: 96:ee:4e:19:86:72:2c:fb:82:94:51:c3:4e:94:5c:ec:04:ce: 14:7d:bc:90:bb:94:b4:ff:d1:6f:10:99:ed:42:f2:b6:68:fd: 63:c6:b3:eb:40:ca:a9:d6:1b:77:98:bb:7e:c0:84:d6:c1:5f: ba:47:0d:aa:fa:f5:8e:eb:6e:ef:eb:d9:f9:83:cb:1c:f9:f3: 0b:bb:e4:8e:65:10:58:43:ee:5d:45:e6:18:31:29:da:e3:b3: 7b:bd:09:56:0e:52:be:c8:5e:d8:6d:ec:6f:0e:2c:d3:8e:7e: 98:fe:4a:31:19:66:e2:6c:45:47:3e:3a:4e:73:51:18:ba:5d: 60:a8:68:40:52:ce:7f:88:5a:d5:dc:af:fb:40:d2:44:be:71: f4:b3:fc:e7:ae:9d:53:ce:51:48:5d:f8:43:b8:2f:44:9b:f4: 4a:39:f9:1d:f1:6c:a7:6f:41:7b:29:3f:49:da:ba:e4:03:c2: 8d:90:71:82:16:18:85:1c:48:03:a1:a9:2e:f4:bd:4a:4d:05: 8f:94:79:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBEMDcxMTAvBgNVBAUTKDRBQzk1QzhBOTc1RTRDRjMxMDg0MkM5NTU2NDA1MTc1 M0RFQjAyODkwHhcNMjUwNDI3MDM1MzM0WhcNMjUwNTA0MDM1MzM0WjAYMRYwFAYD VQQDEw02ODBkYWEzZS0wNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+rrrZ5X52e8RzPcXdnQ3Jp/wxHCDpqNMZt5wvYKeR+/guBzuE2O0rxwcKJl Ucv52Ls/4hgd4qpLDW6KvPYGhdGmi+ViyZA74b+oWEWulaNnZFw+W8q8FYfSRu5n 24+Wnm4SiQDQkqV/JU6MhsE//qp1204bIhgIWb9J3/Ts3tsgKLk3i8cqU1mPi/HX URxeQuf/MB4WZoQayEpOYFrJqGTJ6/WoDPSHyrTfjsyjQsDRpCHORHUW/F7m5WDg ybaQ5L6stnU8uJ5vcnBeaIqVmJi7ILthpKVRemKkallaFH4+RjOZ8dqp8YG/2d9l XvYhZzpfztEbmlh2v3ZhiVaHCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAF9A6T9 dEgdvjo5x7xhBId4ZK6wMB8GA1UdIwQYMBaAFErJXIqXXkzzEIQslVZAUXU96wKJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEQwNy9EM0U4ODlENDhF N0YxMUVFOEU5N0I0ODRDNEY5QUUwMi9Tc2xjaXBkZVRQTVFoQ3lWVmtCUmRUM3JB b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NzbGNpcGRlVFBNUWhDeVZWa0JSZFQzckFvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEQwNy9EM0U4ODlENDhFN0YxMUVFOEU5N0I0ODRDNEY5QUUwMi9Tc2xjaXBkZVRQ TVFoQ3lWVmtCUmRUM3JBb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACoLzFAkEXBepVvgB2szrMcdJbWCliKM56KacNPp/Nw6XCMUeFJkHa h4CCPifGueyJg6hwnZyW7k4ZhnIs+4KUUcNOlFzsBM4UfbyQu5S0/9FvEJntQvK2 aP1jxrPrQMqp1ht3mLt+wITWwV+6Rw2q+vWO627v69n5g8sc+fMLu+SOZRBYQ+5d ReYYMSna47N7vQlWDlK+yF7YbexvDizTjn6Y/koxGWbibEVHPjpOc1EYul1gqGhA Us5/iFrV3K/7QNJEvnH0s/znrp1TzlFIXfhDuC9Em/RKOfkd8Wynb0F7KT9J2rrk A8KNkHGCFhiFHEgDoaku9L1KTQWPlHl6 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:14 2025 by rpki-client on console.sobornost.net