$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: JXNXa6U0Sf+Sb2WsLXfauSKq7drRdg6gOmx4SkDCnok= Subject key identifier: 9A:9A:DD:8A:8D:70:75:22:FA:BA:B7:DD:77:7B:81:11:7A:4F:0B:56 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 100F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 100E Signing time: Mon 28 Apr 2025 17:40:14 +0000 Manifest this update: Mon 28 Apr 2025 17:40:13 +0000 Manifest next update: Mon 05 May 2025 17:40:13 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: fUjskYRp6g8aFbxqaHKyCyonXSqOA3/Pkem6xq1i06A=) 2: 90FBBCBEB3F311EFA5A0C630C4F9AE02.roa (hash: fjbjZHBA/FnAxnWN8e7Z/ROBTRwA1nOrCoj5zv4PAPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4111 (0x100f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Apr 28 17:40:13 2025 GMT Not After : May 5 17:40:13 2025 GMT Subject: CN=680fbd7d-23de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c0:a9:52:79:44:b2:ec:c2:01:84:80:dd:a7: 26:14:06:f6:ea:ac:36:d1:14:5b:57:d0:bb:5c:a2: 36:e4:0e:da:50:3f:46:65:b3:7d:3b:04:57:7d:a4: 8d:07:3b:a4:cc:52:fd:7a:21:c1:e6:b1:b2:1f:d4: ae:6d:ae:d8:85:c9:5e:9b:0b:92:bb:1d:32:44:8f: 6c:2d:e4:c3:40:2a:a1:9c:39:4d:85:b8:25:8c:d8: bb:e1:3b:e4:d2:69:00:db:dd:77:46:32:5c:8b:40: c1:96:1e:66:5e:d2:e8:b5:e4:f4:d1:39:f0:dc:5d: e9:4e:26:c5:db:b5:78:8b:6a:25:17:27:13:b2:cd: 24:67:f1:90:07:64:cf:68:eb:e5:c8:1a:ea:bd:83: 80:1a:7b:b5:05:cf:c1:73:d2:af:ea:fe:fd:1e:e3: bb:06:bd:85:71:90:af:aa:d2:1b:32:04:50:99:fa: 4a:73:3f:ad:60:fb:7d:2e:5b:1a:e7:02:d1:f5:c9: d4:76:ba:54:92:71:07:2c:9e:3a:c0:c0:da:98:7f: cf:d7:a1:72:d0:32:ba:e3:9d:fb:fd:96:85:57:96: 6c:74:ce:79:e6:bd:88:3e:00:72:d5:c5:cd:98:bf: aa:8d:af:19:4a:f2:53:04:e3:fb:3a:5e:c7:4c:05: cf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:9A:DD:8A:8D:70:75:22:FA:BA:B7:DD:77:7B:81:11:7A:4F:0B:56 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ac:f2:44:ad:1a:bf:87:ae:be:01:6d:86:05:08:5e:91:1e: b4:30:12:df:48:f6:03:40:d0:36:49:8c:d8:64:da:75:5b:b8: 3e:ff:bb:72:04:63:fb:ec:65:81:cc:6a:47:c0:fb:c9:49:ee: d1:5a:f6:f7:e4:8c:a4:78:7d:97:5b:18:99:6f:47:99:5c:12: 73:bb:8d:eb:b6:3a:d1:0d:e0:85:06:bc:ae:1d:7b:91:67:98: 2e:16:b8:4f:b4:64:b5:e9:08:2d:b7:9a:39:44:e1:9a:15:fb: 9e:85:2b:1c:f1:08:cd:85:b5:a6:27:1e:e3:0e:0c:7e:6d:5b: 3b:3b:04:ae:cc:cf:c1:9d:7e:14:72:f6:2b:4a:55:3a:c9:5b: e3:9f:d8:41:1c:26:64:53:3a:bc:30:20:9a:cb:30:22:f3:d0: 88:4f:cc:08:24:b5:6a:34:89:84:c7:60:b1:f5:44:da:08:e4: ce:25:04:96:60:45:d1:05:d8:25:27:06:db:64:bb:b4:34:f2: e3:be:7e:11:b3:6e:9a:f9:d1:12:47:d4:08:ef:f1:01:a2:46: 85:8b:3f:67:ba:26:e7:39:6d:b6:21:29:9b:2c:60:f2:0b:1b: ab:c4:1f:44:d3:e2:ae:35:17:11:74:75:e6:6e:ab:3f:38:cc: 8f:80:8e:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUwNDI4MTc0MDEzWhcNMjUwNTA1MTc0MDEzWjAYMRYwFAYD VQQDEw02ODBmYmQ3ZC0yM2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMCpUnlEsuzCAYSA3acmFAb26qw20RRbV9C7XKI25A7aUD9GZbN9OwRXfaSN BzukzFL9eiHB5rGyH9Suba7YhclemwuSux0yRI9sLeTDQCqhnDlNhbgljNi74Tvk 0mkA2913RjJci0DBlh5mXtLoteT00Tnw3F3pTibF27V4i2olFycTss0kZ/GQB2TP aOvlyBrqvYOAGnu1Bc/Bc9Kv6v79HuO7Br2FcZCvqtIbMgRQmfpKcz+tYPt9Llsa 5wLR9cnUdrpUknEHLJ46wMDamH/P16Fy0DK64537/ZaFV5ZsdM555r2IPgBy1cXN mL+qja8ZSvJTBOP7Ol7HTAXPtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqa3YqN cHUi+rq33Xd7gRF6TwtWMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBerPJErRq/h66+AW2GBQhekR60MBLfSPYDQNA2SYzYZNp1W7g+/7ty BGP77GWBzGpHwPvJSe7RWvb35IykeH2XWxiZb0eZXBJzu43rtjrRDeCFBryuHXuR Z5guFrhPtGS16Qgtt5o5ROGaFfuehSsc8QjNhbWmJx7jDgx+bVs7OwSuzM/BnX4U cvYrSlU6yVvjn9hBHCZkUzq8MCCayzAi89CIT8wIJLVqNImEx2Cx9UTaCOTOJQSW YEXRBdglJwbbZLu0NPLjvn4Rs26a+dESR9QI7/EBokaFiz9nuibnOW22ISmbLGDy CxurxB9E0+KuNRcRdHXmbqs/OMyPgI4j -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:24 2025 by rpki-client on console.sobornost.net