$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: zsyLZJ5xirOhsxZbnKntjd6VzrXIxBla4c17cvLVm8s= Subject key identifier: 5F:8D:75:FD:0B:AD:24:94:4A:9E:FE:FE:03:80:EE:59:88:9E:B0:26 Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0A9D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0A9D Signing time: Mon 28 Apr 2025 16:54:26 +0000 Manifest this update: Mon 28 Apr 2025 16:54:26 +0000 Manifest next update: Mon 05 May 2025 16:54:26 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: 9qy75QY9GuhykKuDhiLIpWQb5d+WETL1JO6YYJ0k7as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2717 (0xa9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: Apr 28 16:54:26 2025 GMT Not After : May 5 16:54:26 2025 GMT Subject: CN=680fb2c2-fa4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c0:a2:32:b6:ca:e1:5a:64:d8:c1:17:fd:6c: 19:5d:17:5a:cf:23:fa:d9:55:aa:12:86:c3:c5:e6: ae:53:9c:22:72:a7:ca:c4:f1:f5:52:fb:2a:f0:1f: 3a:0c:17:4c:39:ed:a9:03:4a:f3:79:2b:2b:cf:ef: 6f:ed:2c:d9:d8:d7:a8:e1:ea:28:48:ae:b9:b4:32: 7e:6f:17:80:5f:ab:2b:cb:90:03:9c:c7:2c:c3:d7: 49:09:cf:c4:d3:85:0f:08:f6:1e:d9:86:d9:6c:c2: 97:2b:a4:2f:89:5d:2e:f2:ea:4c:21:0d:5f:76:be: 1e:5f:79:64:23:ab:a6:3c:26:8d:72:11:67:8c:0e: 3f:e5:ac:c7:9e:a9:f5:00:d0:80:de:bb:0d:ec:ca: 3d:2a:3d:2a:81:53:20:80:41:b7:3d:e3:94:c0:84: 4a:92:23:91:a6:ec:74:94:9c:ed:86:d4:28:0e:68: 77:18:6d:0e:40:2b:47:8b:05:2a:5b:35:13:79:04: 35:62:3f:a7:b7:2f:b4:b4:86:9d:aa:58:37:8b:57: dd:ae:f8:44:25:fb:41:32:a6:e7:a9:71:e8:ec:56: eb:09:3b:b3:5d:a9:71:15:8b:26:93:10:0b:0e:1e: 67:fa:0e:df:e0:24:38:66:d4:74:2a:ae:98:c5:b7: 4d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:8D:75:FD:0B:AD:24:94:4A:9E:FE:FE:03:80:EE:59:88:9E:B0:26 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:91:2f:a7:9b:4c:f9:98:7c:e9:b1:a3:06:aa:bd:2a:9f:a0: b1:d8:97:66:c2:6e:2d:e7:2f:d6:41:bf:3e:ee:b4:72:86:d6: 4d:a9:5e:f0:00:3f:e8:de:37:fe:06:32:95:bc:02:0a:90:d6: 52:e5:91:3b:5d:83:31:89:09:d4:61:8b:b5:25:31:0c:bd:6b: de:09:c7:34:f6:bd:84:ae:5f:c2:cb:f6:67:a8:c2:af:6a:98: aa:d0:51:6e:76:04:54:fd:c9:f4:53:8a:a3:68:8c:37:50:65: 5d:db:48:08:7a:d1:1f:45:88:2e:5a:12:fb:ac:86:f1:bd:49: 41:62:98:80:10:94:5e:5a:e8:9a:db:79:0c:6e:3c:9e:b5:3e: a2:10:4c:d3:5b:2f:6c:ea:47:3e:85:a1:b9:8c:8c:d9:9d:d0: 01:7c:2e:86:2b:07:26:11:6a:45:62:cf:40:62:b2:84:ff:65: 62:f4:bc:aa:76:59:aa:e0:35:c0:d1:ec:de:14:77:14:66:8e: 6c:cf:94:a3:e1:f9:e2:ea:92:d9:48:24:25:2b:3f:09:03:11: ce:2b:45:43:c5:56:fb:ad:4e:cb:ad:5d:1c:cb:c6:1e:cc:ef: 34:8f:f2:d0:14:d4:6a:0e:46:c6:fd:23:f2:8d:30:0c:68:60: 4c:f6:53:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjUwNDI4MTY1NDI2WhcNMjUwNTA1MTY1NDI2WjAYMRYwFAYD VQQDEw02ODBmYjJjMi1mYTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsCiMrbK4Vpk2MEX/WwZXRdazyP62VWqEobDxeauU5wicqfKxPH1Uvsq8B86 DBdMOe2pA0rzeSsrz+9v7SzZ2Neo4eooSK65tDJ+bxeAX6sry5ADnMcsw9dJCc/E 04UPCPYe2YbZbMKXK6QviV0u8upMIQ1fdr4eX3lkI6umPCaNchFnjA4/5azHnqn1 ANCA3rsN7Mo9Kj0qgVMggEG3PeOUwIRKkiORpux0lJzthtQoDmh3GG0OQCtHiwUq WzUTeQQ1Yj+nty+0tIadqlg3i1fdrvhEJftBMqbnqXHo7FbrCTuzXalxFYsmkxAL Dh5n+g7f4CQ4ZtR0Kq6YxbdNmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+Ndf0L rSSUSp7+/gOA7lmInrAmMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAkS+nm0z5mHzpsaMGqr0qn6Cx2Jdmwm4t5y/WQb8+7rRyhtZNqV7w AD/o3jf+BjKVvAIKkNZS5ZE7XYMxiQnUYYu1JTEMvWveCcc09r2Erl/Cy/ZnqMKv apiq0FFudgRU/cn0U4qjaIw3UGVd20gIetEfRYguWhL7rIbxvUlBYpiAEJReWuia 23kMbjyetT6iEEzTWy9s6kc+haG5jIzZndABfC6GKwcmEWpFYs9AYrKE/2Vi9Lyq dlmq4DXA0ezeFHcUZo5sz5Sj4fni6pLZSCQlKz8JAxHOK0VDxVb7rU7LrV0cy8Ye zO80j/LQFNRqDkbG/SPyjTAMaGBM9lMt -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:25 2025 by rpki-client on console.sobornost.net