$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: +tUujOZJ7hBxv+1JLutH0ZcOAPtns5hBmbI7UT9nKHE= Subject key identifier: AA:D7:68:4C:08:A9:D4:C9:87:09:1C:8C:D3:CE:C8:D6:BF:CB:3F:3E Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 0906 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 0900 Signing time: Mon 28 Apr 2025 20:48:22 +0000 Manifest this update: Mon 28 Apr 2025 20:48:22 +0000 Manifest next update: Mon 05 May 2025 20:48:22 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: xMusISIs07RwQkfL6McZi1pBZo9eLUJkH+zNTXoHd2I=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: oh99riu32xDufqLh4s49Z+OfJBlHg4YCfXKo4NVguOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Apr 28 20:48:22 2025 GMT Not After : May 5 20:48:22 2025 GMT Subject: CN=680fe996-94e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ca:d2:7e:18:dc:aa:59:eb:0a:53:ac:24:e6: 53:d3:34:0c:16:72:de:c2:04:e5:4e:02:3d:16:7d: f1:49:f4:7d:fa:89:2d:85:af:7a:31:26:21:e2:42: 57:4d:ab:38:aa:f8:85:a7:4b:2f:d9:58:21:20:74: a8:48:8c:d0:f1:b5:61:0f:e6:c2:a3:06:8a:32:d1: c7:83:a8:2f:e6:73:a7:4d:3d:5d:d5:46:ee:23:e1: eb:c8:c7:08:e8:d2:d3:6f:44:07:0e:aa:b2:3f:1d: 37:4c:88:8d:94:19:ee:56:26:a5:1c:43:c8:b8:27: a6:ee:f6:05:43:5d:4b:39:72:11:e2:aa:42:54:7b: fd:73:45:05:84:b9:aa:f1:b9:81:be:ce:30:9a:8b: 1e:94:ee:ba:00:7b:a8:13:8c:22:4b:cf:ee:9c:35: f3:df:78:3f:dc:5e:43:a8:31:46:33:b4:0f:ed:5a: 68:45:39:df:50:0f:9c:a8:5d:09:25:94:65:c8:cf: 2f:c7:d0:da:aa:98:60:08:44:ee:99:b9:67:1b:7b: cb:24:b7:8b:cf:9b:20:6b:ff:db:26:8a:7f:3a:46: 17:e3:28:2b:38:9c:f2:70:f0:12:62:ea:72:61:79: 0b:78:23:40:db:d6:cb:dd:f2:cc:e4:fa:3b:55:f8: 97:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D7:68:4C:08:A9:D4:C9:87:09:1C:8C:D3:CE:C8:D6:BF:CB:3F:3E X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:99:fd:66:37:6a:f2:01:f2:c3:3c:1f:8b:b7:14:18:37:06: 59:06:4f:0c:a9:66:ae:3f:16:fc:4b:6d:9b:72:1f:b4:e1:d5: 3c:62:e8:81:15:dd:4e:3c:c8:c2:b4:d3:d9:30:aa:ea:03:9e: 49:ba:1a:84:ce:14:8e:14:1e:bb:0a:5a:47:f5:78:63:ff:4b: 22:93:e8:07:eb:96:4c:8f:de:d3:34:46:da:b1:10:aa:ed:88: 63:3f:39:52:b7:b1:5d:97:d4:96:35:4b:ae:0e:06:34:9b:9e: cb:50:12:69:e0:14:d8:dc:e5:9f:c8:44:d5:63:4f:ae:0e:5e: 2b:08:19:b9:af:a7:52:d4:a2:c4:12:3c:16:57:26:be:91:7a: 9c:12:70:ef:68:23:8b:47:cb:91:39:70:6e:38:bc:b4:f5:98: 48:ef:2c:f8:4e:a4:ad:3c:92:bb:00:7f:a7:67:55:51:56:a2: d9:78:3b:f0:fb:c7:fb:f0:e5:b0:84:f7:ae:47:c2:70:33:e9: c0:82:9a:27:be:f6:de:f2:56:12:78:13:49:46:77:e4:a7:5c: 71:91:a9:ed:17:0a:37:2c:c4:34:8a:c1:df:c1:48:df:20:2e: 85:0e:28:b7:a6:1b:ea:a2:7e:82:29:d4:b8:33:78:b0:9c:23: c6:a3:f6:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUwNDI4MjA0ODIyWhcNMjUwNTA1MjA0ODIyWjAYMRYwFAYD VQQDEw02ODBmZTk5Ni05NGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMrSfhjcqlnrClOsJOZT0zQMFnLewgTlTgI9Fn3xSfR9+oktha96MSYh4kJX Tas4qviFp0sv2VghIHSoSIzQ8bVhD+bCowaKMtHHg6gv5nOnTT1d1UbuI+HryMcI 6NLTb0QHDqqyPx03TIiNlBnuVialHEPIuCem7vYFQ11LOXIR4qpCVHv9c0UFhLmq 8bmBvs4wmoselO66AHuoE4wiS8/unDXz33g/3F5DqDFGM7QP7VpoRTnfUA+cqF0J JZRlyM8vx9DaqphgCETumblnG3vLJLeLz5sga//bJop/OkYX4ygrOJzycPASYupy YXkLeCNA29bL3fLM5Po7VfiXDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrXaEwI qdTJhwkcjNPOyNa/yz8+MB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMmf1mN2ryAfLDPB+LtxQYNwZZBk8MqWauPxb8S22bch+04dU8YuiB Fd1OPMjCtNPZMKrqA55JuhqEzhSOFB67ClpH9Xhj/0sik+gH65ZMj97TNEbasRCq 7YhjPzlSt7Fdl9SWNUuuDgY0m57LUBJp4BTY3OWfyETVY0+uDl4rCBm5r6dS1KLE EjwWVya+kXqcEnDvaCOLR8uROXBuOLy09ZhI7yz4TqStPJK7AH+nZ1VRVqLZeDvw +8f78OWwhPeuR8JwM+nAgponvvbe8lYSeBNJRnfkp1xxkantFwo3LMQ0isHfwUjf IC6FDii3phvqon6CKdS4M3iwnCPGo/Zg -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:06 2025 by rpki-client on console.sobornost.net