$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: x1WrJxrlI6pilYYPCBp2MRo6/iQUmOU6PWzzzaSe7z8= Subject key identifier: 1D:2D:CB:6E:86:79:D3:6E:44:99:36:9E:67:D6:01:DC:79:EC:D6:CF Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: D3 Signing time: Sun 27 Apr 2025 04:33:30 +0000 Manifest this update: Sun 27 Apr 2025 04:33:30 +0000 Manifest next update: Sun 04 May 2025 04:33:30 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: 8xB8Nq/vFSeOYcXPJvc9sEsWxlSzR/zGdt3FKy/G3Fg=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: Apr 27 04:33:30 2025 GMT Not After : May 4 04:33:30 2025 GMT Subject: CN=680db39a-b499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c4:a8:86:5a:85:e1:25:6b:1d:cd:4e:18:29: 67:09:96:e0:20:12:89:d2:7a:ef:eb:12:c5:43:0a: a0:d2:a9:cd:04:5b:62:50:b9:67:be:c2:24:69:6c: e2:ac:72:20:af:c1:b6:ec:19:01:fe:3e:bc:5c:8d: a2:28:f6:e0:92:8e:a2:83:b9:22:80:23:27:00:ae: 1c:82:f3:06:f3:de:09:69:61:59:e9:b8:e0:4e:d6: 13:f7:ac:d8:6a:93:f8:4d:c5:0e:cb:67:b0:45:2b: 9b:a2:1b:46:13:86:dc:99:c1:33:89:06:97:f8:d3: b4:dc:24:63:9f:9e:1f:81:98:31:25:3b:4c:85:53: 4b:f4:1f:d9:d1:e0:b3:fe:41:4b:80:3d:57:9b:70: d0:f8:f1:64:3c:cf:d7:7e:35:f0:1b:55:ac:da:dc: ae:07:3e:1b:1b:0f:2f:5f:16:87:74:81:f7:e7:1a: 99:b6:b7:5b:ed:91:7f:0d:a7:1b:97:87:4b:9d:04: 39:b1:3e:be:a4:5b:2d:38:6e:f6:44:d5:13:5b:0c: 0e:78:12:23:43:2d:ff:9d:1a:9e:03:82:c0:ef:4d: a3:5e:16:e4:65:a1:df:e3:c9:8e:70:da:75:93:97: 9b:2e:54:40:20:d5:bd:b7:12:c9:7f:5d:f5:49:6a: 19:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2D:CB:6E:86:79:D3:6E:44:99:36:9E:67:D6:01:DC:79:EC:D6:CF X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:0f:e2:82:74:b0:ab:89:4e:3d:c6:c1:d1:47:bf:f8:83:f7: 63:54:24:99:43:25:4b:e2:b1:2f:eb:03:60:25:a3:ce:aa:3a: 1e:a9:e7:f1:e5:54:55:8e:97:b0:dd:3a:6e:98:d3:fa:6a:f5: a5:82:2b:3f:12:fd:97:e1:b1:b4:24:7e:5f:eb:0d:a3:8a:64: b3:dc:41:a4:8f:b9:a4:a2:8c:13:b4:a7:ee:85:25:45:84:26: 31:43:39:60:01:c0:c7:c1:e0:43:ce:d4:b3:ee:2a:7e:56:c0: 79:33:10:bb:ee:d5:75:8d:d9:56:4d:5c:c0:00:a8:19:ea:d3: 7e:e5:48:b5:a8:41:80:7e:d6:6a:f2:ad:67:66:18:6b:66:a2: 3a:d3:e8:d3:3f:85:c6:71:c4:ca:28:13:22:22:bf:ac:db:e9: 39:e3:cf:65:1a:9f:f7:1b:ef:57:8e:11:af:76:a3:eb:de:70: de:f4:4f:8e:33:cb:85:47:e0:36:ef:26:07:49:ed:a2:00:60: 07:43:ab:88:1c:12:d2:c9:92:aa:d7:0f:d1:90:21:06:6d:4c: 57:df:91:8c:48:1d:b0:ad:f9:ad:0e:2b:72:3c:f5:e9:e9:ea: df:cf:5b:e4:4f:5d:58:d6:4b:32:37:ef:13:d4:ca:51:6b:51: c6:a2:f6:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjUwNDI3MDQzMzMwWhcNMjUwNTA0MDQzMzMwWjAYMRYwFAYD VQQDEw02ODBkYjM5YS1iNDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sSohlqF4SVrHc1OGClnCZbgIBKJ0nrv6xLFQwqg0qnNBFtiULlnvsIkaWzi rHIgr8G27BkB/j68XI2iKPbgko6ig7kigCMnAK4cgvMG894JaWFZ6bjgTtYT96zY apP4TcUOy2ewRSubohtGE4bcmcEziQaX+NO03CRjn54fgZgxJTtMhVNL9B/Z0eCz /kFLgD1Xm3DQ+PFkPM/XfjXwG1Ws2tyuBz4bGw8vXxaHdIH35xqZtrdb7ZF/Dacb l4dLnQQ5sT6+pFstOG72RNUTWwwOeBIjQy3/nRqeA4LA702jXhbkZaHf48mOcNp1 k5ebLlRAINW9txLJf131SWoZEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0ty26G edNuRJk2nmfWAdx57NbPMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1D+KCdLCriU49xsHRR7/4g/djVCSZQyVL4rEv6wNgJaPOqjoeqefx 5VRVjpew3TpumNP6avWlgis/Ev2X4bG0JH5f6w2jimSz3EGkj7mkoowTtKfuhSVF hCYxQzlgAcDHweBDztSz7ip+VsB5MxC77tV1jdlWTVzAAKgZ6tN+5Ui1qEGAftZq 8q1nZhhrZqI60+jTP4XGccTKKBMiIr+s2+k5489lGp/3G+9XjhGvdqPr3nDe9E+O M8uFR+A27yYHSe2iAGAHQ6uIHBLSyZKq1w/RkCEGbUxX35GMSB2wrfmtDityPPXp 6erfz1vkT11Y1ksyN+8T1MpRa1HGovbH -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:42 2025 by rpki-client on console.sobornost.net