$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft File: 2QaTkaPngEpuvd-dQfLeTZG9UbM.mft (raw, json) Hash identifier: ihpHiIorjzhf5HnUrKGFq9FM6zr4naOaMsDr/ps1r3U= Subject key identifier: DB:51:5D:E5:13:9D:CF:D8:30:58:B1:02:79:7D:1A:28:AC:7C:5D:DA Authority key identifier: D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 Certificate issuer: /CN=A9125C22/serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Certificate serial: 0667 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft Manifest number: 065D Signing time: Sat 26 Apr 2025 22:06:55 +0000 Manifest this update: Sat 26 Apr 2025 22:06:55 +0000 Manifest next update: Sat 03 May 2025 22:06:55 +0000 Files and hashes: 1: 2QaTkaPngEpuvd-dQfLeTZG9UbM.crl (hash: 616f1WaKOtAnFABCvSn3QEYw6h2wEyzwyGOl7Ni15ik=) 2: 202A51EA52D611EFA0333E23C4F9AE02.roa (hash: jy45pLpGUEHdAvcc7aV1J1N0BlCts0GUmsU/8qKGZrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1639 (0x667) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=D9069391A3E7804A6EBDDF9D41F2DE4D91BD51B3 Validity Not Before: Apr 26 22:06:55 2025 GMT Not After : May 3 22:06:55 2025 GMT Subject: CN=680d58ff-1348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:a8:70:9f:ce:41:7f:99:d1:c3:c3:2a:3c: 47:82:3a:ab:72:5c:fa:ca:34:5a:b2:fb:4c:14:4a: e9:f7:7f:49:8a:cb:83:89:7d:61:a0:25:53:6d:53: bb:df:d4:84:ab:d1:b4:54:ac:78:dd:ae:42:60:96: 70:79:31:6c:65:98:18:83:9c:ce:51:32:b1:61:9d: 46:93:01:7b:ac:8e:0f:73:94:37:c1:c6:01:1e:f6: 3a:11:93:78:c8:5b:cf:23:f2:b4:9d:12:c1:df:27: e6:40:cd:7c:a1:2a:31:59:9a:96:4e:95:41:03:1a: 3b:c0:31:2b:4f:56:9f:d0:32:1c:e6:f7:5a:95:4c: 8d:84:c1:98:0c:96:cb:83:be:a7:b0:87:e6:2c:0e: eb:82:73:18:ce:7e:35:4d:07:28:e7:e4:92:15:50: 74:ca:31:1e:d6:a7:e0:07:f5:d9:89:8d:f8:6e:c9: 98:bb:ec:48:7e:8e:a5:17:99:b5:e5:ee:e7:f6:ef: 61:da:29:a1:79:a9:5c:84:7c:d6:70:1e:4d:8a:12: 24:2e:64:b2:f2:dc:1f:2a:24:93:77:33:8b:f5:98: 28:f8:b8:44:f2:bf:7e:d2:a2:c6:66:60:13:82:f4: 07:f2:30:d5:4b:27:ff:60:d0:7f:f1:fc:61:41:1b: f7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:51:5D:E5:13:9D:CF:D8:30:58:B1:02:79:7D:1A:28:AC:7C:5D:DA X509v3 Authority Key Identifier: keyid:D9:06:93:91:A3:E7:80:4A:6E:BD:DF:9D:41:F2:DE:4D:91:BD:51:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QaTkaPngEpuvd-dQfLeTZG9UbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/045695B87FAE11EB977B5335C4F9AE02/2QaTkaPngEpuvd-dQfLeTZG9UbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:3b:bb:b0:79:91:50:ce:1b:37:f9:2a:43:29:fb:35:b6:54: 6e:d3:8f:a9:1a:cb:fb:40:dc:83:13:b6:f6:13:1a:67:54:11: 3a:7e:76:5e:6b:af:62:8c:a8:5a:e3:27:58:e5:ac:c4:9b:08: 25:bc:4e:86:75:e7:88:94:97:a5:2d:73:a7:e7:f2:f0:ea:f5: e1:81:64:02:67:37:42:93:d8:9d:bd:c2:b9:71:2f:d6:e8:cb: 95:cb:f8:e8:83:d0:08:ea:88:b2:c2:34:05:b9:67:58:c3:e9: 66:12:24:21:f9:cf:e3:be:c3:fc:1a:90:4f:35:57:51:ed:da: 33:3c:b5:32:07:d0:95:33:4a:86:d9:28:ee:0f:24:dc:71:32: db:e0:7f:f2:4b:c2:e6:ed:e3:80:6b:d3:77:77:54:54:f5:5c: c3:92:48:88:6d:95:bc:7a:e9:d7:63:e2:37:b3:c8:7b:50:84: 79:79:95:87:a2:0f:f8:fa:13:a7:50:f9:10:97:d9:3d:47:41: 7f:39:24:e8:bb:65:de:23:72:6d:f8:ce:5c:14:c1:e1:2e:53: 0d:37:eb:f3:db:80:9f:74:16:e1:42:74:b9:7a:16:0e:e4:6a: ba:79:be:4f:34:0d:f3:40:49:7c:8a:9b:45:7c:d9:6b:16:6c: 86:bf:15:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEQ5MDY5MzkxQTNFNzgwNEE2RUJEREY5RDQxRjJERTRE OTFCRDUxQjMwHhcNMjUwNDI2MjIwNjU1WhcNMjUwNTAzMjIwNjU1WjAYMRYwFAYD VQQDEw02ODBkNThmZi0xMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3iocJ/OQX+Z0cPDKjxHgjqrclz6yjRasvtMFErp939JisuDiX1hoCVTbVO7 39SEq9G0VKx43a5CYJZweTFsZZgYg5zOUTKxYZ1GkwF7rI4Pc5Q3wcYBHvY6EZN4 yFvPI/K0nRLB3yfmQM18oSoxWZqWTpVBAxo7wDErT1af0DIc5vdalUyNhMGYDJbL g76nsIfmLA7rgnMYzn41TQco5+SSFVB0yjEe1qfgB/XZiY34bsmYu+xIfo6lF5m1 5e7n9u9h2imhealchHzWcB5NihIkLmSy8twfKiSTdzOL9Zgo+LhE8r9+0qLGZmAT gvQH8jDVSyf/YNB/8fxhQRv3AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtRXeUT nc/YMFixAnl9GiisfF3aMB8GA1UdIwQYMBaAFNkGk5Gj54BKbr3fnUHy3k2RvVGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi8wNDU2OTVCODdG QUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdFcHV2ZC1kUWZMZVRaRzlV Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRYVRrYVBuZ0VwdXZkLWRRZkxlVFpHOVViTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi8wNDU2OTVCODdGQUUxMUVCOTc3QjUzMzVDNEY5QUUwMi8yUWFUa2FQbmdF cHV2ZC1kUWZMZVRaRzlVYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3O7uweZFQzhs3+SpDKfs1tlRu04+pGsv7QNyDE7b2ExpnVBE6fnZe a69ijKha4ydY5azEmwglvE6GdeeIlJelLXOn5/Lw6vXhgWQCZzdCk9idvcK5cS/W 6MuVy/jog9AI6oiywjQFuWdYw+lmEiQh+c/jvsP8GpBPNVdR7dozPLUyB9CVM0qG 2SjuDyTccTLb4H/yS8Lm7eOAa9N3d1RU9VzDkkiIbZW8eunXY+I3s8h7UIR5eZWH og/4+hOnUPkQl9k9R0F/OSTou2XeI3Jt+M5cFMHhLlMNN+vz24CfdBbhQnS5ehYO 5Gq6eb5PNA3zQEl8iptFfNlrFmyGvxXN -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:19 2025 by rpki-client on console.sobornost.net