$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: HMaoeJi1y6Dl9MlmL/I89FuoHQO2bfNKIiIpKQthdys= Subject key identifier: 40:9B:AE:8D:FC:42:C2:74:BA:EC:BF:79:94:A5:7C:D9:B4:D3:9C:C7 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0A19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0A12 Signing time: Mon 28 Apr 2025 20:14:53 +0000 Manifest this update: Mon 28 Apr 2025 20:14:52 +0000 Manifest next update: Mon 05 May 2025 20:14:52 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: 2H+MdwhC+FhHA+l+tof9rKVffZCxTcKcbz0JoRqID48=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: FFN4hO+BD0+aFl8/ZDC9OYQdd66UMk5Uncgv5z8RJvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309, serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Apr 28 20:14:52 2025 GMT Not After : May 5 20:14:52 2025 GMT Subject: CN=680fe1bd-fe65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:24:59:6e:db:e8:2a:fc:7c:0f:9c:e9:5d:25: 92:45:51:a8:d6:3b:cd:c9:e7:8b:8a:05:16:b8:87: 96:59:69:3f:ed:2a:44:6d:01:b4:bd:85:13:3d:24: 48:b5:c6:08:b2:cc:58:1b:e5:ab:36:4d:6e:86:94: 4c:5f:59:88:79:1a:5f:81:f1:ad:c8:73:a3:a0:25: fb:03:01:4c:35:4e:3b:6f:01:96:1e:2c:a6:81:e0: 9f:93:c0:0b:89:40:f3:c8:da:9b:fc:d9:05:ab:24: 76:24:c8:b2:3e:20:40:63:ae:9d:4d:ee:5c:b0:53: 1d:60:d8:d1:13:1f:ab:ea:1b:55:58:a7:12:94:84: 46:1c:d0:0c:3c:95:2c:22:8d:7c:b0:de:49:ab:19: fe:46:9d:ae:91:40:ea:73:17:10:3b:27:d7:38:bd: 95:33:3f:f0:d8:e4:7f:36:07:b6:72:ae:da:50:ed: fc:94:4e:3f:9b:7e:cd:c6:1f:61:10:27:ca:bf:7b: f3:3f:13:54:09:20:ae:1f:d9:e2:bd:8a:3b:13:29: d4:8b:af:2d:27:17:25:e2:de:1d:9b:ed:e5:48:7f: b4:87:e6:1f:0b:0f:02:2b:7c:63:46:db:35:e5:23: 3e:80:78:ae:5a:02:b7:de:1a:92:77:10:af:0a:c1: 5d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:9B:AE:8D:FC:42:C2:74:BA:EC:BF:79:94:A5:7C:D9:B4:D3:9C:C7 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:e2:60:6f:b3:dc:f7:10:d8:c0:65:10:6c:3a:05:39:b7:ef: f8:a8:2a:f2:2c:17:42:d4:17:88:6f:29:74:56:ea:69:29:c1: 54:99:05:ef:3f:4a:1c:65:6d:15:c7:5b:90:2b:da:93:87:9e: 87:30:4c:ac:c4:55:7c:5e:b3:b7:81:26:ed:b3:0c:d4:39:7e: 01:2b:dd:13:a6:6e:76:7d:89:6e:64:5b:09:e8:5b:33:2b:a5: fb:39:45:94:1e:84:7c:f6:dc:1d:91:35:ef:82:bb:73:06:31: 50:1d:02:48:ea:a9:f2:9a:fe:14:3b:ac:2d:10:45:ff:d2:ac: e9:df:14:2a:ca:7b:b6:db:17:71:3f:81:08:2f:76:be:d3:00: 35:94:4d:e2:80:d8:4b:05:f0:82:05:61:98:88:39:e8:c7:15: a5:55:60:21:b4:a7:c7:f8:f0:d3:22:77:89:7f:08:1a:73:d3: fb:e6:2a:7e:88:e1:93:41:01:a2:37:b0:eb:9c:43:83:06:04: 79:9e:41:35:96:81:21:66:11:f6:a5:0f:88:28:7e:46:05:95: 09:3d:9b:a3:b4:91:6b:c2:ec:d1:a9:f7:ba:8d:72:86:9b:d3: b6:96:92:60:77:02:90:68:fc:cf:50:01:78:7d:34:be:20:71: 0d:c4:aa:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjUwNDI4MjAxNDUyWhcNMjUwNTA1MjAxNDUyWjAYMRYwFAYD VQQDEw02ODBmZTFiZC1mZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCRZbtvoKvx8D5zpXSWSRVGo1jvNyeeLigUWuIeWWWk/7SpEbQG0vYUTPSRI tcYIssxYG+WrNk1uhpRMX1mIeRpfgfGtyHOjoCX7AwFMNU47bwGWHiymgeCfk8AL iUDzyNqb/NkFqyR2JMiyPiBAY66dTe5csFMdYNjREx+r6htVWKcSlIRGHNAMPJUs Io18sN5Jqxn+Rp2ukUDqcxcQOyfXOL2VMz/w2OR/Nge2cq7aUO38lE4/m37Nxh9h ECfKv3vzPxNUCSCuH9nivYo7EynUi68tJxcl4t4dm+3lSH+0h+YfCw8CK3xjRts1 5SM+gHiuWgK33hqSdxCvCsFdPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECbro38 QsJ0uuy/eZSlfNm005zHMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl4mBvs9z3ENjAZRBsOgU5t+/4qCryLBdC1BeIbyl0VuppKcFUmQXv P0ocZW0Vx1uQK9qTh56HMEysxFV8XrO3gSbtswzUOX4BK90Tpm52fYluZFsJ6Fsz K6X7OUWUHoR89twdkTXvgrtzBjFQHQJI6qnymv4UO6wtEEX/0qzp3xQqynu22xdx P4EIL3a+0wA1lE3igNhLBfCCBWGYiDnoxxWlVWAhtKfH+PDTIneJfwgac9P75ip+ iOGTQQGiN7DrnEODBgR5nkE1loEhZhH2pQ+IKH5GBZUJPZujtJFrwuzRqfe6jXKG m9O2lpJgdwKQaPzPUAF4fTS+IHENxKpM -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:50 2025 by rpki-client on console.sobornost.net