$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: l14PXzn+t+NYqHERnN4uvBz+83sUdhJVLpFyStk6Lqw= Subject key identifier: C3:3D:59:49:9B:01:5A:10:0B:58:92:81:D9:8B:01:C0:D8:EF:38:70 Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04C2 Signing time: Sat 26 Apr 2025 23:29:30 +0000 Manifest this update: Sat 26 Apr 2025 23:29:29 +0000 Manifest next update: Sat 03 May 2025 23:29:29 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: 8TxwJKdYnjW6qV4d8u4SUUIrGJ1gx0vnnKUdh/TMDw8=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Apr 26 23:29:29 2025 GMT Not After : May 3 23:29:29 2025 GMT Subject: CN=680d6c5a-88e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f2:b3:7c:de:13:30:d0:43:55:57:3e:90:a5: 2a:30:1f:ad:a6:a7:a2:8e:ca:f6:b2:91:86:c9:0a: 77:ca:db:22:59:b4:53:c5:b1:13:71:62:f7:35:6b: 58:94:ef:58:30:90:32:7a:e5:95:c4:41:49:d5:eb: 7d:89:3d:03:6f:c4:16:5b:9c:90:6c:f0:94:8d:7e: 09:96:03:91:15:29:dd:e3:de:7b:0a:22:e2:de:82: 49:87:56:87:e8:e3:9b:0e:7f:d0:57:3c:5e:0b:bc: 9e:3e:0f:28:db:ca:39:12:f7:ce:01:02:8a:aa:32: bc:ea:19:9b:44:69:32:59:60:70:71:ee:c0:b2:b8: 7d:7f:d6:d0:96:45:1d:f5:1c:a1:0a:15:54:ca:da: 48:95:89:a3:cc:dd:07:6a:72:eb:52:e2:f8:8a:e7: 4c:d8:f6:f8:b1:6e:c8:05:ee:41:6a:f6:fc:1c:6b: b3:cc:5a:83:da:90:42:a6:d3:cd:f5:a7:ce:95:09: cf:ce:11:fc:32:b8:0b:bf:95:6a:fd:0d:97:4f:75: 14:a1:01:45:83:dc:ac:f6:6f:a6:bc:8f:44:68:c7: a7:e6:12:51:35:76:e8:57:26:d2:0e:73:82:40:5e: 34:43:63:f6:83:ab:ed:a4:fd:2b:fc:c7:06:39:1a: 47:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:3D:59:49:9B:01:5A:10:0B:58:92:81:D9:8B:01:C0:D8:EF:38:70 X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:9e:cb:f0:c5:20:48:e1:9c:ca:dd:8e:04:e8:ec:1a:57:5a: ec:3f:8a:50:24:cc:af:5b:27:c5:69:9d:5b:21:b1:2d:3b:38: 33:84:18:32:e8:e8:64:dc:e0:81:85:58:5b:46:d7:44:c1:f1: bd:23:ea:4d:71:80:87:7a:9e:fc:70:2d:10:de:07:da:e2:54: 84:5d:6f:a4:ce:b7:56:ac:2f:65:b4:4f:c1:5f:8e:f1:17:e2: 4d:0e:92:9f:51:83:3f:0f:9b:2e:44:af:c9:2c:37:80:04:54: 9b:f6:9a:ae:d7:ec:71:6c:69:eb:45:e5:ac:bf:f9:ca:13:ca: 49:18:d0:ed:e6:a2:01:6d:67:5c:18:ec:be:db:a8:17:2d:2f: 7d:9a:5f:e3:38:b7:f0:e0:89:07:a4:8b:13:50:e9:bd:b4:66: 34:0c:b7:26:bc:b7:9f:08:a4:a6:ab:1e:20:6a:52:01:9e:6a: 34:a5:77:c8:bd:dc:d9:2a:ca:f3:e0:d0:6b:5e:43:3b:5b:01: 02:bb:81:67:8e:27:1d:61:92:a7:52:aa:cc:69:cc:b4:79:90: ac:e9:cb:1e:df:ca:68:75:ba:16:8a:37:04:ab:31:71:a6:ae: 26:93:35:53:95:b4:45:0f:97:83:a8:39:61:7b:d7:84:56:b8: bf:8d:af:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwNDI2MjMyOTI5WhcNMjUwNTAzMjMyOTI5WjAYMRYwFAYD VQQDEw02ODBkNmM1YS04OGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/KzfN4TMNBDVVc+kKUqMB+tpqeijsr2spGGyQp3ytsiWbRTxbETcWL3NWtY lO9YMJAyeuWVxEFJ1et9iT0Db8QWW5yQbPCUjX4JlgORFSnd4957CiLi3oJJh1aH 6OObDn/QVzxeC7yePg8o28o5EvfOAQKKqjK86hmbRGkyWWBwce7Asrh9f9bQlkUd 9RyhChVUytpIlYmjzN0HanLrUuL4iudM2Pb4sW7IBe5Bavb8HGuzzFqD2pBCptPN 9afOlQnPzhH8MrgLv5Vq/Q2XT3UUoQFFg9ys9m+mvI9EaMen5hJRNXboVybSDnOC QF40Q2P2g6vtpP0r/McGORpH6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMM9WUmb AVoQC1iSgdmLAcDY7zhwMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQnsvwxSBI4ZzK3Y4E6OwaV1rsP4pQJMyvWyfFaZ1bIbEtOzgzhBgy 6Ohk3OCBhVhbRtdEwfG9I+pNcYCHep78cC0Q3gfa4lSEXW+kzrdWrC9ltE/BX47x F+JNDpKfUYM/D5suRK/JLDeABFSb9pqu1+xxbGnrReWsv/nKE8pJGNDt5qIBbWdc GOy+26gXLS99ml/jOLfw4IkHpIsTUOm9tGY0DLcmvLefCKSmqx4galIBnmo0pXfI vdzZKsrz4NBrXkM7WwECu4FnjicdYZKnUqrMacy0eZCs6cse38podboWijcEqzFx pq4mkzVTlbRFD5eDqDlhe9eEVri/ja/N -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:37 2025 by rpki-client on console.sobornost.net