$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: n4W+PVqhOqP/85usZhWzHjy6mBQgsu9LJf/l8BTQPRM= Subject key identifier: E6:9B:D7:7E:F9:97:10:4E:77:02:31:DC:64:67:CE:4B:B2:47:BB:3B Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2D6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2D52 Signing time: Mon 28 Apr 2025 15:35:45 +0000 Manifest this update: Mon 28 Apr 2025 15:35:44 +0000 Manifest next update: Mon 05 May 2025 15:35:44 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: om2hLffzMYFh6kupz1M9zkCsOptFDccjhNVFXKSMSnM=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: qYH+0NoYqUVH/kICTwmC5FSWgYMcanxVuKqTuwnMQdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11629 (0x2d6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Apr 28 15:35:44 2025 GMT Not After : May 5 15:35:44 2025 GMT Subject: CN=680fa051-cf00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5d:46:f2:36:8d:43:2d:b2:06:0f:aa:61:91: a7:13:26:c1:8b:a7:e5:5c:bf:a2:33:86:56:b0:43: 3a:21:f3:42:ed:d8:f4:6d:a6:22:c2:bd:8e:82:78: 65:45:52:0d:76:c7:46:9e:24:9d:7c:51:bd:fc:7b: 98:80:ea:96:bf:40:16:2c:6b:c5:dd:3c:61:8f:bf: aa:1f:6b:7f:d7:45:74:8d:ca:db:78:d2:9d:9a:8d: d1:6a:cb:fc:f6:27:4d:4e:92:3b:43:5a:66:65:d2: 69:79:c6:9f:a1:fe:42:d8:63:9e:6e:0e:e2:14:f7: 9e:90:9e:0d:5a:30:10:cd:ea:74:a0:32:6c:1b:a3: 42:2c:4b:9b:9d:91:a0:6a:39:a1:18:32:40:e7:08: e8:03:66:f5:47:66:77:bd:cd:2c:7f:44:e0:d1:44: f0:d1:df:a4:bd:e5:b6:43:6d:af:a3:7a:b6:16:f0: db:19:28:2f:95:24:05:82:07:3f:48:fc:47:65:da: 37:7a:d5:aa:12:f8:62:f7:e5:c5:85:fa:69:8f:5b: 26:b4:40:c4:16:d1:45:e5:1b:6c:c8:20:4d:16:bd: f2:91:47:be:f9:68:3d:b6:b5:34:77:6d:55:9c:9e: e1:e9:18:c4:67:88:03:c2:05:02:47:d7:d1:1f:43: 4f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:9B:D7:7E:F9:97:10:4E:77:02:31:DC:64:67:CE:4B:B2:47:BB:3B X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:9a:47:f8:76:46:6f:ce:3f:34:1c:f0:a9:0c:c0:35:e5:f3: 9f:04:d5:ad:41:8c:82:c6:80:dc:71:23:ec:b3:8e:ae:7c:c6: a1:25:5d:01:44:d0:57:49:28:1a:c4:85:76:48:7f:31:6a:3e: 8a:d0:fa:ec:1f:26:55:eb:99:9d:54:43:e1:d4:7f:b0:30:c9: c9:ea:b5:e7:a4:0b:8c:84:f6:fc:d0:d7:01:7b:e0:25:fc:53: c8:c7:a4:0e:95:63:7d:a4:02:92:06:99:5a:79:09:4b:6d:eb: ca:53:7a:2c:ca:c4:a5:f5:33:69:6b:76:c8:6a:fe:50:20:69: 23:53:6c:68:50:e9:be:ed:ea:89:4b:38:9c:9a:a8:b8:4b:82: 51:18:f6:84:d9:13:30:e8:94:43:15:e7:4d:8b:30:83:e0:24: 65:32:d2:13:4e:a9:1d:2b:3a:9e:af:a2:4b:24:a4:35:5a:c2: 49:ae:ec:92:b0:11:38:ed:36:17:ea:e2:21:3c:66:76:03:c8: 88:57:53:1f:b2:fa:c3:30:ac:d4:5f:01:99:4b:0f:d1:e0:5a: 40:aa:30:2c:e6:83:df:8a:51:cd:ff:da:41:9a:e1:1f:f9:93: ca:08:a9:ea:ca:3f:1f:40:52:94:ec:11:7e:de:83:9e:0f:9f: 71:ed:c0:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjUwNDI4MTUzNTQ0WhcNMjUwNTA1MTUzNTQ0WjAYMRYwFAYD VQQDEw02ODBmYTA1MS1jZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA011G8jaNQy2yBg+qYZGnEybBi6flXL+iM4ZWsEM6IfNC7dj0baYiwr2Ognhl RVINdsdGniSdfFG9/HuYgOqWv0AWLGvF3Txhj7+qH2t/10V0jcrbeNKdmo3Rasv8 9idNTpI7Q1pmZdJpecafof5C2GOebg7iFPeekJ4NWjAQzep0oDJsG6NCLEubnZGg ajmhGDJA5wjoA2b1R2Z3vc0sf0Tg0UTw0d+kveW2Q22vo3q2FvDbGSgvlSQFggc/ SPxHZdo3etWqEvhi9+XFhfppj1smtEDEFtFF5RtsyCBNFr3ykUe++Wg9trU0d21V nJ7h6RjEZ4gDwgUCR9fRH0NPxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOab1375 lxBOdwIx3GRnzkuyR7s7MB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQmkf4dkZvzj80HPCpDMA15fOfBNWtQYyCxoDccSPss46ufMahJV0B RNBXSSgaxIV2SH8xaj6K0PrsHyZV65mdVEPh1H+wMMnJ6rXnpAuMhPb80NcBe+Al /FPIx6QOlWN9pAKSBplaeQlLbevKU3osysSl9TNpa3bIav5QIGkjU2xoUOm+7eqJ Szicmqi4S4JRGPaE2RMw6JRDFedNizCD4CRlMtITTqkdKzqer6JLJKQ1WsJJruyS sBE47TYX6uIhPGZ2A8iIV1MfsvrDMKzUXwGZSw/R4FpAqjAs5oPfilHN/9pBmuEf +ZPKCKnqyj8fQFKU7BF+3oOeD59x7cBa -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:50 2025 by rpki-client on console.sobornost.net