$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft File: jyvUwSY28AWbQI0HFq8yyPVAaaU.mft (raw, json) Hash identifier: 1tGGZufzeHQrTIgHs1GLbkyuTkv7teGSVCwBVBcHAn8= Subject key identifier: 16:63:12:1F:EA:B4:FD:F0:C0:91:9C:0D:08:C7:80:75:7D:DD:8F:C4 Authority key identifier: 8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 Certificate issuer: /CN=A9120AC1/serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Certificate serial: 04AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft Manifest number: 04A2 Signing time: Sat 26 Apr 2025 23:36:55 +0000 Manifest this update: Sat 26 Apr 2025 23:36:54 +0000 Manifest next update: Sat 03 May 2025 23:36:54 +0000 Files and hashes: 1: jyvUwSY28AWbQI0HFq8yyPVAaaU.crl (hash: vNKrQiIt8c6NY0not/BnZsXggbvVovCSBPok7dARURQ=) 2: 17A5A8400EC811F088512D41C4F9AE02.roa (hash: tVHP7vE09ih639kPT+zHjlRDQm6GDfHkbd/XlPHcK/0=) 3: EDB1F68E3C8811EC889B9D78C4F9AE02.roa (hash: 8OgnHoASF/UsFAo8WcuH4tg18eHyDNchCEmDTI3RcYo=) 4: 8BE9B1A03C8B11EC8947D982C4F9AE02.roa (hash: Egnw+r9qbejML3EvsCqcWRH67VrUmMQV/ILZahM9IPk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1198 (0x4ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=8F2BD4C12636F0059B408D0716AF32C8F54069A5 Validity Not Before: Apr 26 23:36:54 2025 GMT Not After : May 3 23:36:54 2025 GMT Subject: CN=680d6e16-9577 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:74:50:67:d3:c4:a7:e4:07:fc:92:74:73:e4: c3:ef:af:c2:a8:bd:22:90:6e:a9:96:9d:8c:6a:e2: e1:91:92:a2:16:39:ec:5f:26:7c:ab:e4:be:66:eb: d2:41:d5:53:6d:f0:80:0c:0e:07:bd:cd:9d:41:04: 27:ee:73:40:45:88:75:87:de:40:13:33:9a:ff:c8: 53:f1:c9:cb:4f:70:1d:ac:7c:42:f9:e2:d5:a7:cf: 02:8e:9d:ff:fb:cb:f6:5c:19:35:20:9e:1c:9f:f2: 9c:d2:fe:87:33:46:a4:a7:30:78:b1:54:90:5b:e2: 0e:b9:70:d3:f3:1f:06:00:cd:c4:1c:67:ef:06:8d: f6:95:30:16:1a:8b:86:cf:af:8c:07:45:8f:4e:cb: e7:87:8d:f4:b8:40:a6:a9:9e:8b:92:07:47:e1:7e: 49:5d:ec:9c:d0:de:a9:f3:68:a4:1f:77:af:c2:33: 32:48:3b:89:53:e8:17:75:99:3f:9a:2f:71:4e:9c: d0:d0:a5:9b:99:eb:ca:b0:fe:eb:80:de:2c:5b:2d: 30:99:7b:a1:f3:c6:12:5b:6f:fb:c8:df:a2:b7:82: e0:f2:f2:2b:69:a3:3a:7d:63:c0:6d:25:e1:bb:81: de:cf:a5:63:a8:17:ec:46:51:e7:0e:f1:4e:90:79: c2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:63:12:1F:EA:B4:FD:F0:C0:91:9C:0D:08:C7:80:75:7D:DD:8F:C4 X509v3 Authority Key Identifier: keyid:8F:2B:D4:C1:26:36:F0:05:9B:40:8D:07:16:AF:32:C8:F5:40:69:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvUwSY28AWbQI0HFq8yyPVAaaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/48017D38309711ECB285A64BC4F9AE02/jyvUwSY28AWbQI0HFq8yyPVAaaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:8a:cf:02:be:61:07:96:32:31:f8:44:56:5e:0c:8e:ed:f6: 91:fd:22:44:6b:74:88:34:e7:77:4d:20:bd:c9:24:fc:6c:d9: a7:df:48:f4:6a:62:8c:69:96:13:d1:f1:a8:54:d4:ab:9c:36: f7:03:40:a3:82:0f:e9:48:6e:09:9d:0e:7e:80:fb:47:62:2f: c2:0b:4c:3f:cc:c4:2a:8a:a1:f7:58:88:98:63:81:21:9f:6c: 87:36:09:e1:b0:1f:6e:90:4f:29:61:8c:f4:ca:e6:e2:6d:f8: 03:db:35:1d:62:6c:f0:34:b4:87:84:6c:9c:f9:7b:51:5e:d7: 6d:4f:69:7f:85:53:65:7e:24:3f:47:27:38:fc:89:15:c5:9a: 9a:14:9f:a9:4f:8b:07:dd:5d:42:29:7e:80:77:c8:a6:71:fa: c0:ed:8f:38:8d:54:69:b5:09:27:8a:79:24:c9:03:28:bf:e5: ad:b7:b1:a1:69:e7:94:aa:e7:1c:1d:86:ff:2f:a6:24:52:67: 68:9d:2a:c8:85:fd:8e:4b:8e:e2:55:66:f9:00:19:09:70:25: f8:71:da:34:de:2c:cb:9a:7f:5f:f4:f8:f3:aa:27:cf:33:79: 72:19:f0:77:89:55:7a:73:38:ee:34:e1:e4:2b:8d:a1:2b:de: 16:cb:ec:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDhGMkJENEMxMjYzNkYwMDU5QjQwOEQwNzE2QUYzMkM4 RjU0MDY5QTUwHhcNMjUwNDI2MjMzNjU0WhcNMjUwNTAzMjMzNjU0WjAYMRYwFAYD VQQDEw02ODBkNmUxNi05NTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XRQZ9PEp+QH/JJ0c+TD76/CqL0ikG6plp2MauLhkZKiFjnsXyZ8q+S+ZuvS QdVTbfCADA4Hvc2dQQQn7nNARYh1h95AEzOa/8hT8cnLT3AdrHxC+eLVp88Cjp3/ +8v2XBk1IJ4cn/Kc0v6HM0akpzB4sVSQW+IOuXDT8x8GAM3EHGfvBo32lTAWGouG z6+MB0WPTsvnh430uECmqZ6LkgdH4X5JXeyc0N6p82ikH3evwjMySDuJU+gXdZk/ mi9xTpzQ0KWbmevKsP7rgN4sWy0wmXuh88YSW2/7yN+it4Lg8vIraaM6fWPAbSXh u4Hez6VjqBfsRlHnDvFOkHnC6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZjEh/q tP3wwJGcDQjHgHV93Y/EMB8GA1UdIwQYMBaAFI8r1MEmNvAFm0CNBxavMsj1QGml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS80ODAxN0QzODMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9qeXZVd1NZMjhBV2JRSTBIRnE4eXlQVkFh YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dlV3U1kyOEFXYlFJMEhGcTh5eVBWQWFhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS80ODAxN0QzODMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9qeXZVd1NZMjhB V2JRSTBIRnE4eXlQVkFhYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgis8CvmEHljIx+ERWXgyO7faR/SJEa3SINOd3TSC9yST8bNmn30j0 amKMaZYT0fGoVNSrnDb3A0Cjgg/pSG4JnQ5+gPtHYi/CC0w/zMQqiqH3WIiYY4Eh n2yHNgnhsB9ukE8pYYz0yubibfgD2zUdYmzwNLSHhGyc+XtRXtdtT2l/hVNlfiQ/ Ryc4/IkVxZqaFJ+pT4sH3V1CKX6Ad8imcfrA7Y84jVRptQkninkkyQMov+Wtt7Gh aeeUquccHYb/L6YkUmdonSrIhf2OS47iVWb5ABkJcCX4cdo03izLmn9f9PjzqifP M3lyGfB3iVV6czjuNOHkK42hK94Wy+y5 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:17 2025 by rpki-client on console.sobornost.net