$ rpki-client -vvf rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft File: W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft (raw, json) Hash identifier: XYsNcT+UFqU+TBiZGTX1Z14SfPdWk5b0fmcceHZf83M= Subject key identifier: 0F:0D:F8:D5:EB:3B:26:FF:7F:58:5A:A3:55:E2:28:84:7E:7C:30:BB Authority key identifier: 5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD Certificate issuer: /CN=A9122DC4/serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft Manifest number: 0102 Signing time: Mon 28 Apr 2025 18:31:28 +0000 Manifest this update: Mon 28 Apr 2025 18:31:28 +0000 Manifest next update: Mon 05 May 2025 18:31:28 +0000 Files and hashes: 1: W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl (hash: WIEXM8gvQa/FNyL/aLwECvhHQ6hhUmrPNsTBoK6rOYc=) 2: EAEFF196E3C811EE8818A409C4F9AE02.roa (hash: 3IxWoHZXBY8wNLxOtefHR/b4odnO9b8RMjvxcmJxOac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122DC4, serialNumber=5B4300FE49AEE0E415CC61976C02B5B9C0204AAD Validity Not Before: Apr 28 18:31:28 2025 GMT Not After : May 5 18:31:28 2025 GMT Subject: CN=680fc980-aa1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:33:31:34:09:bd:47:ec:50:eb:2c:d1:bb:67: d8:73:ac:00:46:82:86:40:5f:f2:14:4a:46:ec:76: 3e:26:47:fe:74:50:04:07:b7:6e:89:87:8f:be:66: 54:99:a5:32:06:5d:24:0e:35:89:8f:18:a7:1a:9a: e4:f7:9a:74:31:d4:90:98:f2:5d:fd:45:88:75:65: b5:eb:12:4a:1e:98:88:75:53:81:fb:5a:11:19:31: da:80:9e:03:f6:d1:c5:2c:2f:5a:d2:f6:b4:77:37: d0:f7:95:4c:36:be:26:c5:fa:7a:9f:be:88:10:d0: 9e:77:9c:fb:97:eb:9f:a0:ed:7b:fc:af:15:85:0a: a6:18:7f:db:57:ab:4c:8e:c1:18:a0:d7:14:81:57: 6e:02:19:22:36:42:cb:2f:dd:44:1f:ca:79:ca:cd: 2a:a8:7e:cf:b3:1b:e2:73:15:e9:61:dc:e3:eb:1a: f1:9a:8c:0e:78:3c:ed:97:7f:3c:f6:f3:8f:64:3a: ff:8c:db:58:9a:6f:c4:43:f8:f3:90:e1:98:52:2f: ae:55:d7:77:4d:46:10:87:0b:fd:6a:f1:4d:96:ca: be:7c:f2:d6:3b:3c:10:f5:bf:65:7d:ae:d2:64:57: 15:88:d7:7c:cb:80:b4:f4:f5:16:19:85:23:bc:90: 82:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0D:F8:D5:EB:3B:26:FF:7F:58:5A:A3:55:E2:28:84:7E:7C:30:BB X509v3 Authority Key Identifier: keyid:5B:43:00:FE:49:AE:E0:E4:15:CC:61:97:6C:02:B5:B9:C0:20:4A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W0MA_kmu4OQVzGGXbAK1ucAgSq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122DC4/5BEDD054B31611EEA8BCC624C4F9AE02/W0MA_kmu4OQVzGGXbAK1ucAgSq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:2f:cd:1d:0d:ea:d6:75:a0:a4:13:40:a9:7d:ad:db:c9:5d: d2:bc:5d:73:d7:02:f2:a8:b0:78:5c:d8:43:60:5f:47:fb:98: be:31:13:d9:c0:78:00:b4:80:82:3f:1f:83:1b:65:43:53:a6: b6:e4:67:48:8b:9a:d2:a9:37:31:19:4c:19:c4:f0:fe:e5:21: 1a:7f:ce:06:59:4a:8d:fb:bc:0d:50:3e:a7:e2:18:da:09:51: 10:73:25:d8:ee:72:73:2e:90:78:c0:36:15:d8:56:04:b5:ff: e4:a4:8e:aa:7d:bc:11:a0:89:cc:57:ca:e8:d0:bb:97:0f:e9: 64:88:73:39:f5:e5:e0:5b:bf:28:20:41:29:f3:b1:f8:8f:2f: 54:88:93:eb:6e:4c:84:76:31:8c:08:89:c0:58:37:fa:79:9c: b1:7d:49:d4:5f:ad:2b:35:7d:3d:ff:ea:91:31:d0:50:9e:c3: 54:ec:ec:69:2e:1e:f8:9e:61:16:bd:4b:b7:47:84:20:74:2b: 5c:03:b9:e9:e7:c5:77:7d:33:e9:c3:20:f2:17:3b:a5:63:f5: f2:fd:76:4f:bf:4c:45:c9:fb:22:1b:77:39:32:58:f2:6a:92: 0f:af:ec:d1:5c:b2:ce:57:13:9a:94:c8:0d:11:e9:7f:6f:bd: e5:4c:5c:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEQzQxMTAvBgNVBAUTKDVCNDMwMEZFNDlBRUUwRTQxNUNDNjE5NzZDMDJCNUI5 QzAyMDRBQUQwHhcNMjUwNDI4MTgzMTI4WhcNMjUwNTA1MTgzMTI4WjAYMRYwFAYD VQQDEw02ODBmYzk4MC1hYTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDMxNAm9R+xQ6yzRu2fYc6wARoKGQF/yFEpG7HY+Jkf+dFAEB7duiYePvmZU maUyBl0kDjWJjxinGprk95p0MdSQmPJd/UWIdWW16xJKHpiIdVOB+1oRGTHagJ4D 9tHFLC9a0va0dzfQ95VMNr4mxfp6n76IENCed5z7l+ufoO17/K8VhQqmGH/bV6tM jsEYoNcUgVduAhkiNkLLL91EH8p5ys0qqH7PsxvicxXpYdzj6xrxmowOeDztl388 9vOPZDr/jNtYmm/EQ/jzkOGYUi+uVdd3TUYQhwv9avFNlsq+fPLWOzwQ9b9lfa7S ZFcViNd8y4C09PUWGYUjvJCCewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8N+NXr Oyb/f1hao1XiKIR+fDC7MB8GA1UdIwQYMBaAFFtDAP5JruDkFcxhl2wCtbnAIEqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkRDNC81QkVERDA1NEIz MTYxMUVFQThCQ0M2MjRDNEY5QUUwMi9XME1BX2ttdTRPUVZ6R0dYYkFLMXVjQWdT cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cwTUFfa211NE9RVnpHR1hiQUsxdWNBZ1NxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkRDNC81QkVERDA1NEIzMTYxMUVFQThCQ0M2MjRDNEY5QUUwMi9XME1BX2ttdTRP UVZ6R0dYYkFLMXVjQWdTcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlL80dDerWdaCkE0Cpfa3byV3SvF1z1wLyqLB4XNhDYF9H+5i+MRPZ wHgAtICCPx+DG2VDU6a25GdIi5rSqTcxGUwZxPD+5SEaf84GWUqN+7wNUD6n4hja CVEQcyXY7nJzLpB4wDYV2FYEtf/kpI6qfbwRoInMV8ro0LuXD+lkiHM59eXgW78o IEEp87H4jy9UiJPrbkyEdjGMCInAWDf6eZyxfUnUX60rNX09/+qRMdBQnsNU7Oxp Lh74nmEWvUu3R4QgdCtcA7np58V3fTPpwyDyFzulY/Xy/XZPv0xFyfsiG3c5Mljy apIPr+zRXLLOVxOalMgNEel/b73lTFzc -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:24 2025 by rpki-client on console.sobornost.net