$ rpki-client -vvf rpki.apnic.net/member_repository/A9119ED6/D317092C0E6C11EBB5414D20C4F9AE02/I4od3rdgPRIBUCNc2vtg1XhWa68.mft File: I4od3rdgPRIBUCNc2vtg1XhWa68.mft (raw, json) Hash identifier: BJxh7adWZNln8e2CdAdcA6iPMp+KtV9Mf4u/qGHX4V0= Subject key identifier: 3C:AE:22:EA:0C:72:59:92:81:74:D7:6B:20:67:BA:59:A2:94:22:D6 Authority key identifier: 23:8A:1D:DE:B7:60:3D:12:01:50:23:5C:DA:FB:60:D5:78:56:6B:AF Certificate issuer: /CN=A9119ED6/serialNumber=238A1DDEB7603D120150235CDAFB60D578566BAF Certificate serial: 0788 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I4od3rdgPRIBUCNc2vtg1XhWa68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119ED6/D317092C0E6C11EBB5414D20C4F9AE02/I4od3rdgPRIBUCNc2vtg1XhWa68.mft Manifest number: 0780 Signing time: Sat 26 Apr 2025 21:08:37 +0000 Manifest this update: Sat 26 Apr 2025 21:08:37 +0000 Manifest next update: Sat 03 May 2025 21:08:37 +0000 Files and hashes: 1: I4od3rdgPRIBUCNc2vtg1XhWa68.crl (hash: AnQqT3zC5YEgREkU6b7325yxEGlU9j2ooQQ+GbcqQFg=) 2: 1D3589E875AF11EC866EEF53C4F9AE02.roa (hash: pJsd3auztkAG0ZglRxVSFOGCBnUaQsBNRyP6xIkzkvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119ED6/D317092C0E6C11EBB5414D20C4F9AE02/I4od3rdgPRIBUCNc2vtg1XhWa68.crl rsync://rpki.apnic.net/member_repository/A9119ED6/D317092C0E6C11EBB5414D20C4F9AE02/I4od3rdgPRIBUCNc2vtg1XhWa68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I4od3rdgPRIBUCNc2vtg1XhWa68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1928 (0x788) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119ED6, serialNumber=238A1DDEB7603D120150235CDAFB60D578566BAF Validity Not Before: Apr 26 21:08:37 2025 GMT Not After : May 3 21:08:37 2025 GMT Subject: CN=680d4b55-dac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6b:53:0f:00:69:c3:0b:2a:7b:73:6a:d4:86: 4e:c0:07:e5:88:f8:ce:48:f3:ab:bc:bc:8b:82:21: 46:3b:d8:40:31:94:10:da:bc:a6:56:6a:8b:14:47: 42:de:dd:9e:ab:99:fd:2c:19:8b:84:b7:db:3a:6d: 88:d8:ec:0b:03:ac:ad:7d:23:70:68:61:00:6d:50: 97:58:74:22:24:26:f0:bc:19:80:54:be:82:c4:59: 4a:45:62:ed:aa:0e:95:ef:b5:ae:ca:ff:05:f9:d8: f7:c7:64:68:0d:60:10:59:dc:f6:bd:76:73:b4:de: 9f:b6:05:7a:0c:f3:3c:1a:b4:66:cb:2c:1e:a1:a5: 48:e2:f7:83:37:12:7b:7f:46:16:e1:3e:69:2a:34: 08:ea:b1:06:f2:63:3c:70:8a:9c:61:f4:42:50:39: 8f:ca:d3:be:89:d5:05:da:41:ff:23:ea:7b:e1:09: 2b:e7:1c:04:f1:5a:fb:0c:a2:e0:0f:f1:8d:1d:6a: 05:59:19:1d:36:6c:6f:bb:23:5a:fa:ed:06:47:e5: fa:67:c6:45:20:f7:d9:64:b1:b1:47:0c:3b:0b:53: 8c:73:6e:63:b6:68:16:c6:ac:2a:8b:64:68:bb:e4: 42:13:d9:dc:35:05:16:5c:0e:b3:6a:b7:10:e2:a5: c9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AE:22:EA:0C:72:59:92:81:74:D7:6B:20:67:BA:59:A2:94:22:D6 X509v3 Authority Key Identifier: keyid:23:8A:1D:DE:B7:60:3D:12:01:50:23:5C:DA:FB:60:D5:78:56:6B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119ED6/D317092C0E6C11EBB5414D20C4F9AE02/I4od3rdgPRIBUCNc2vtg1XhWa68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I4od3rdgPRIBUCNc2vtg1XhWa68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119ED6/D317092C0E6C11EBB5414D20C4F9AE02/I4od3rdgPRIBUCNc2vtg1XhWa68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:57:b9:a5:c4:9c:2f:a7:fb:b7:36:1a:1b:52:cf:4a:be:f5: 93:af:04:8d:e6:1e:27:02:c9:8c:0b:9f:17:d3:8e:6a:56:13: 2f:a3:f3:12:31:64:04:ef:44:80:12:99:9e:73:94:a1:cb:cf: df:12:8c:62:c2:3d:10:df:5e:ea:3d:69:3d:19:2e:8c:a9:80: fe:75:59:70:ca:f9:87:e0:6c:2b:ee:45:76:a8:36:4c:aa:6a: 2d:a1:1c:66:01:78:bd:14:0d:2e:71:32:a8:e2:45:35:09:81: df:7d:34:0f:df:2b:7b:b9:89:bd:0c:ef:43:99:39:1e:65:42: db:61:26:4c:30:61:ce:35:f0:c6:ec:d3:ef:f5:53:10:bd:bc: b1:e3:83:e9:53:a3:0b:95:ed:14:b8:61:90:e6:a8:15:f1:0d: b1:61:93:12:13:50:bb:55:0d:4d:8b:27:9b:26:d2:98:8f:bb: 43:e2:f7:d2:3f:90:72:51:42:a3:bd:56:f7:a7:fb:9b:71:f3: 81:6b:f3:14:b4:c4:bf:4b:98:d9:1b:8c:23:55:a5:c3:81:05: be:b4:a1:d0:ac:dd:a0:8a:f4:e6:3f:51:7f:06:58:b9:64:2a: 44:fd:f3:9c:53:93:02:8d:ae:6e:a3:52:8e:1a:eb:49:c8:2d: f7:78:fe:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlFRDYxMTAvBgNVBAUTKDIzOEExRERFQjc2MDNEMTIwMTUwMjM1Q0RBRkI2MEQ1 Nzg1NjZCQUYwHhcNMjUwNDI2MjEwODM3WhcNMjUwNTAzMjEwODM3WjAYMRYwFAYD VQQDEw02ODBkNGI1NS1kYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymtTDwBpwwsqe3Nq1IZOwAfliPjOSPOrvLyLgiFGO9hAMZQQ2rymVmqLFEdC 3t2eq5n9LBmLhLfbOm2I2OwLA6ytfSNwaGEAbVCXWHQiJCbwvBmAVL6CxFlKRWLt qg6V77Wuyv8F+dj3x2RoDWAQWdz2vXZztN6ftgV6DPM8GrRmyyweoaVI4veDNxJ7 f0YW4T5pKjQI6rEG8mM8cIqcYfRCUDmPytO+idUF2kH/I+p74Qkr5xwE8Vr7DKLg D/GNHWoFWRkdNmxvuyNa+u0GR+X6Z8ZFIPfZZLGxRww7C1OMc25jtmgWxqwqi2Ro u+RCE9ncNQUWXA6zarcQ4qXJXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyuIuoM clmSgXTXayBnulmilCLWMB8GA1UdIwQYMBaAFCOKHd63YD0SAVAjXNr7YNV4Vmuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUVENi9EMzE3MDkyQzBF NkMxMUVCQjU0MTREMjBDNEY5QUUwMi9JNG9kM3JkZ1BSSUJVQ05jMnZ0ZzFYaFdh NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k0b2QzcmRnUFJJQlVDTmMydnRnMVhoV2E2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUVENi9EMzE3MDkyQzBFNkMxMUVCQjU0MTREMjBDNEY5QUUwMi9JNG9kM3JkZ1BS SUJVQ05jMnZ0ZzFYaFdhNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8V7mlxJwvp/u3NhobUs9KvvWTrwSN5h4nAsmMC58X045qVhMvo/MS MWQE70SAEpmec5Shy8/fEoxiwj0Q317qPWk9GS6MqYD+dVlwyvmH4Gwr7kV2qDZM qmotoRxmAXi9FA0ucTKo4kU1CYHffTQP3yt7uYm9DO9DmTkeZULbYSZMMGHONfDG 7NPv9VMQvbyx44PpU6MLle0UuGGQ5qgV8Q2xYZMSE1C7VQ1NiyebJtKYj7tD4vfS P5ByUUKjvVb3p/ubcfOBa/MUtMS/S5jZG4wjVaXDgQW+tKHQrN2givTmP1F/Bli5 ZCpE/fOcU5MCja5uo1KOGutJyC33eP7f -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:54 2025 by rpki-client on console.sobornost.net