$ rpki-client -vvf rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft File: gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft (raw, json) Hash identifier: FeaGQXo+R+swzhOxjSQ3PkfRNS12hvyiIJCwx4o7ZMc= Subject key identifier: 43:E2:FC:03:92:3F:A5:DB:BC:95:A8:C2:F3:69:77:A4:87:D0:43:1C Authority key identifier: 80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 Certificate issuer: /CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Certificate serial: 3562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft Manifest number: 34CD Signing time: Mon 28 Apr 2025 14:50:17 +0000 Manifest this update: Mon 28 Apr 2025 14:50:17 +0000 Manifest next update: Mon 05 May 2025 14:50:17 +0000 Files and hashes: 1: gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl (hash: KXlVqtAtRUovtABJT/Qvm+bRmZEhYJIwGPJpb8CAqLc=) 2: 24108E38125C11EFA53AA21EC4F9AE02.roa (hash: jjJ8qPnS0/nICN56yp6qO0H5skT5XCL/0DlZKxMJ70k=) 3: A98C92A0340411E9A22CD05CC4F9AE02.roa (hash: hsYOwOWg5RWqGecDOMbtdo5wShwG/Gl7BoVP0vZ6bGc=) 4: 26CCB614E0D011E9B0E8C36FC4F9AE02.roa (hash: kMC2WeYC4MWKHd2Kh8Eq/aNV3X4hXQ+t8sr83adHojY=) 5: 7E04A27C33F911E98674843BC4F9AE02.roa (hash: wLtvBH1ixy3w8HEFDYVnVxsE51AunrDxg1Sv+UfH0y8=) 6: AACC7DA6340411E9A22CD05CC4F9AE02.roa (hash: ZJ7mBIfK6kg44ULz9lZ+nGdvGWEwkZ1i6idGhEH1ny8=) 7: 29F5CB12FB5411ED914D5C39C4F9AE02.roa (hash: kLMHUaXxDc9JSr3uCUVN9uok6cTqtVMvyzIAoodsl5w=) 8: A8ED77E2340411E9A22CD05CC4F9AE02.roa (hash: 7IUX8R8tCZTwRimEawOsuuQRkKntzFGSWJJzMjhRIhw=) 9: 7D883CF033F911E98674843BC4F9AE02.roa (hash: t2VqhrZAW3k4gdKbAI0o6ca/tb/0ybdt22kYPc3tp54=) 10: AA2A006C340411E9A22CD05CC4F9AE02.roa (hash: nKUEIfIPimBIzQtFV8VjV5K70GmMdKase3l7FgyeD2c=) 11: A8689054340411E9A22CD05CC4F9AE02.roa (hash: itcw/LzViA9/AL4k7aRJEFd+ng6R/f3GHawU3mFJnvU=) 12: 9F5180204DE611ED852CCB87C4F9AE02.roa (hash: FXKeIuPsz0cxq/rV/xoooCu4bWy/R4+M5W25tXkYyCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13666 (0x3562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111318, serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Validity Not Before: Apr 28 14:50:17 2025 GMT Not After : May 5 14:50:17 2025 GMT Subject: CN=680f95a9-8a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:15:ab:d5:92:31:ab:27:96:94:b6:d7:fa:9b: 60:2e:7a:48:12:98:f8:5b:05:47:29:9a:92:48:49: 5d:ae:06:fc:89:ab:29:3f:0e:b9:00:d2:ef:54:09: de:e2:69:e0:9b:e6:0c:d3:22:b3:26:12:fd:05:3d: c9:f2:35:f6:7c:b6:06:a8:79:7d:a9:6a:14:11:50: 45:2d:4f:7c:48:fe:9d:cf:bc:a6:43:81:e5:65:97: e1:f4:9e:0c:62:59:99:52:35:83:84:3b:6b:75:5b: 86:81:3a:13:bd:ba:95:9d:7b:e2:e1:13:8b:fb:96: 9b:ce:79:09:e1:8d:b3:b3:81:f4:12:8f:cc:f4:81: 40:30:1a:17:4f:41:97:da:85:f6:48:e8:d1:eb:f4: e0:03:ed:25:d3:39:de:76:37:5c:32:9f:2a:79:30: 3e:67:1e:f6:c7:fc:ce:3d:b0:02:10:69:76:86:2e: 5d:de:7f:09:d9:82:8d:2b:90:d0:b7:1b:6c:45:9b: 45:ec:9c:db:7d:24:fe:68:b7:9c:44:c6:c0:01:56: d0:34:ad:64:5b:73:92:50:52:6f:1f:bc:f4:4d:de: 7f:a6:f8:02:c3:8c:5c:cc:50:13:ea:76:61:58:a3: 86:28:8f:fd:ca:8b:60:25:08:a6:bc:0c:78:05:83: 22:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E2:FC:03:92:3F:A5:DB:BC:95:A8:C2:F3:69:77:A4:87:D0:43:1C X509v3 Authority Key Identifier: keyid:80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:6b:34:a7:02:14:2e:ee:43:88:42:3a:a6:38:48:cf:dd:fb: aa:14:cb:4d:f6:db:b8:53:f1:4a:0b:c5:a6:fa:78:c6:00:8f: 69:5a:53:b0:d6:a4:e3:cb:bd:17:48:cb:24:12:ed:e6:23:0e: 96:22:fc:5a:8a:c0:5c:37:1b:56:d3:f3:3f:32:0c:a4:f8:f8: 98:d5:e2:21:8b:af:d4:00:12:6e:1b:93:b9:eb:bb:7f:a2:2e: 6f:29:cf:ed:25:67:2b:e8:cd:1d:a9:0e:ee:e5:d4:cd:d8:25: 76:44:a5:b0:bc:6c:1a:07:4b:af:a4:70:71:18:f4:1a:44:b9: e0:c7:9c:b2:1b:20:23:a8:ae:2c:1e:40:b5:24:53:ae:bd:a7: f7:d3:47:27:38:ca:72:a9:fc:44:32:47:2d:f1:3f:15:cc:96: 02:83:27:56:ca:e6:32:71:25:73:0d:7b:72:17:2d:6f:be:ed: 6a:de:05:49:9c:05:56:d4:42:da:b3:fe:60:b6:da:32:37:7f: 36:e8:c7:ff:19:ef:59:75:6a:53:e5:35:f3:f6:8b:4d:c4:04: f3:7f:e3:07:c5:4f:a4:01:0f:40:4c:3b:d6:bb:64:b8:e0:da: 84:2c:00:da:fb:5f:fc:2d:e6:af:ce:9a:b9:a0:72:af:9e:53: 38:00:58:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEzMTgxMTAvBgNVBAUTKDgwNkFCRkY0NjM1OTRDQUEzMERFNzBBMzExQUUyRjg0 OTE4OUJDNjQwHhcNMjUwNDI4MTQ1MDE3WhcNMjUwNTA1MTQ1MDE3WjAYMRYwFAYD VQQDEw02ODBmOTVhOS04YTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhWr1ZIxqyeWlLbX+ptgLnpIEpj4WwVHKZqSSEldrgb8iaspPw65ANLvVAne 4mngm+YM0yKzJhL9BT3J8jX2fLYGqHl9qWoUEVBFLU98SP6dz7ymQ4HlZZfh9J4M YlmZUjWDhDtrdVuGgToTvbqVnXvi4ROL+5abznkJ4Y2zs4H0Eo/M9IFAMBoXT0GX 2oX2SOjR6/TgA+0l0znedjdcMp8qeTA+Zx72x/zOPbACEGl2hi5d3n8J2YKNK5DQ txtsRZtF7JzbfST+aLecRMbAAVbQNK1kW3OSUFJvH7z0Td5/pvgCw4xczFAT6nZh WKOGKI/9yotgJQimvAx4BYMiTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPi/AOS P6XbvJWowvNpd6SH0EMcMB8GA1UdIwQYMBaAFIBqv/RjWUyqMN5woxGuL4SRibxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTMxOC9EQzc0NTFGMjFE OTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRLb3czbkNqRWE0dmhKR0p2 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHcV85R05aVEtvdzNuQ2pFYTR2aEpHSnZHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTMxOC9EQzc0NTFGMjFEOTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRL b3czbkNqRWE0dmhKR0p2R1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/azSnAhQu7kOIQjqmOEjP3fuqFMtN9tu4U/FKC8Wm+njGAI9pWlOw 1qTjy70XSMskEu3mIw6WIvxaisBcNxtW0/M/Mgyk+PiY1eIhi6/UABJuG5O567t/ oi5vKc/tJWcr6M0dqQ7u5dTN2CV2RKWwvGwaB0uvpHBxGPQaRLngx5yyGyAjqK4s HkC1JFOuvaf300cnOMpyqfxEMkct8T8VzJYCgydWyuYycSVzDXtyFy1vvu1q3gVJ nAVW1ELas/5gttoyN3826Mf/Ge9ZdWpT5TXz9otNxATzf+MHxU+kAQ9ATDvWu2S4 4NqELADa+1/8Leavzpq5oHKvnlM4AFiE -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:42 2025 by rpki-client on console.sobornost.net