$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: l4yUiiBELWoPYXPoTENRO+Lbqy726qPVCscjDVIYUMg= Subject key identifier: 24:A2:99:E0:C4:AB:81:48:26:E2:BC:97:76:F7:E6:7F:39:03:FA:B5 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: A9 Signing time: Sun 27 Apr 2025 04:59:46 +0000 Manifest this update: Sun 27 Apr 2025 04:59:46 +0000 Manifest next update: Sun 04 May 2025 04:59:46 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: I8iE3g2U8mrNGxZDd6pA+XFC+08U0RyhlBWdcjA5U0Y=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Apr 27 04:59:46 2025 GMT Not After : May 4 04:59:46 2025 GMT Subject: CN=680db9c2-141c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:82:d2:1b:7b:e9:39:ae:85:02:ac:bf:15:4c: 95:65:f4:d7:74:07:cc:96:bb:0d:76:7f:c3:07:c9: 1b:2f:4b:8b:0f:3c:e8:d2:b3:77:d0:bb:88:32:3c: bd:82:7f:f0:11:95:14:2b:8a:51:64:29:42:e5:f1: fd:2c:b8:4d:7a:6d:c5:fd:83:99:01:4f:70:cb:7f: 70:a0:bd:0a:fb:37:9e:ad:1b:75:31:8f:65:b2:ae: 77:df:54:95:4f:a5:f1:93:c1:de:43:b6:60:f3:9d: d6:07:47:17:a8:9a:49:47:03:b2:da:19:21:3d:dd: 4a:02:5b:b5:f8:48:55:8b:b7:64:1b:ac:f7:b2:1f: 5d:85:75:00:2c:03:44:db:f7:f2:f9:72:e5:79:f8: 76:a4:53:c5:83:9d:be:36:a8:70:8e:9e:7e:29:39: c4:c7:aa:c0:d2:02:b2:0b:10:d0:b4:4c:31:c7:98: 05:b4:f4:a6:38:bf:ad:53:00:56:81:58:d7:b7:3f: a3:72:7e:51:af:c6:6a:5d:14:15:32:92:b3:3a:ed: 66:5b:20:e1:ea:2e:f4:82:c0:ef:a1:ed:ac:3d:d6: c2:aa:8f:bf:b5:ef:3f:d1:e7:78:d6:f4:c3:c0:75: 3b:39:02:60:21:5b:38:e6:5b:93:e8:57:8e:10:b2: 25:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A2:99:E0:C4:AB:81:48:26:E2:BC:97:76:F7:E6:7F:39:03:FA:B5 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:2f:20:8b:32:cc:8d:dd:90:38:a0:81:f0:a9:58:c3:9e:68: b8:ae:95:cb:c0:0a:69:c8:30:9b:89:c2:5e:1f:db:ed:59:0f: ae:36:d8:b3:eb:2b:ec:1b:d2:14:57:89:45:65:10:6e:98:bd: 9f:a4:42:05:94:16:36:a6:d2:64:0d:41:2a:75:83:4c:2f:20: 1f:8b:f0:75:0a:5c:f6:16:92:c7:4d:c8:54:be:76:63:b8:d3: a4:9c:af:3b:ab:82:54:df:ec:7c:fd:37:2b:3b:26:cc:7f:cd: f7:e9:2c:3c:27:8b:4b:f2:f9:a9:7f:05:58:96:d9:ec:50:00: 40:fc:45:cd:24:e7:23:36:97:9e:49:11:42:25:fe:1a:22:3e: 0e:03:5a:83:37:2a:d7:a4:cc:81:96:ef:c7:70:2b:28:e0:fa: 6a:87:ae:12:2f:34:7a:6b:93:d3:5e:21:cc:20:40:a6:7d:f3: f4:2e:b9:ff:4a:ba:92:74:24:b2:d8:bb:be:d4:47:e3:30:15: a9:be:3e:47:59:aa:cb:fe:e6:f7:b0:30:c8:53:fe:a7:af:00: b2:2c:1e:21:02:1f:d9:50:67:e8:02:e2:04:ce:8e:aa:2d:f7: c9:1d:ef:fb:fb:01:8d:bb:13:be:dc:b9:0d:5a:e5:00:61:c8: cd:3a:da:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwNDI3MDQ1OTQ2WhcNMjUwNTA0MDQ1OTQ2WjAYMRYwFAYD VQQDEw02ODBkYjljMi0xNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmILSG3vpOa6FAqy/FUyVZfTXdAfMlrsNdn/DB8kbL0uLDzzo0rN30LuIMjy9 gn/wEZUUK4pRZClC5fH9LLhNem3F/YOZAU9wy39woL0K+zeerRt1MY9lsq5331SV T6Xxk8HeQ7Zg853WB0cXqJpJRwOy2hkhPd1KAlu1+EhVi7dkG6z3sh9dhXUALANE 2/fy+XLlefh2pFPFg52+Nqhwjp5+KTnEx6rA0gKyCxDQtEwxx5gFtPSmOL+tUwBW gVjXtz+jcn5Rr8ZqXRQVMpKzOu1mWyDh6i70gsDvoe2sPdbCqo+/te8/0ed41vTD wHU7OQJgIVs45luT6FeOELIluQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSimeDE q4FIJuK8l3b35n85A/q1MB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvLyCLMsyN3ZA4oIHwqVjDnmi4rpXLwAppyDCbicJeH9vtWQ+uNtiz 6yvsG9IUV4lFZRBumL2fpEIFlBY2ptJkDUEqdYNMLyAfi/B1Clz2FpLHTchUvnZj uNOknK87q4JU3+x8/TcrOybMf8336Sw8J4tL8vmpfwVYltnsUABA/EXNJOcjNpee SRFCJf4aIj4OA1qDNyrXpMyBlu/HcCso4Ppqh64SLzR6a5PTXiHMIECmffP0Lrn/ SrqSdCSy2Lu+1EfjMBWpvj5HWarL/ub3sDDIU/6nrwCyLB4hAh/ZUGfoAuIEzo6q LffJHe/7+wGNuxO+3LkNWuUAYcjNOto2 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net