$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: sTdr55vhd5mgRfQdJEtzL1DAVIq4oTCT1pGsl9/dmGw= Subject key identifier: 33:B2:94:0E:BC:AE:F1:76:BE:8D:4A:DB:37:A6:88:C5:58:82:86:33 Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0B62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0B5A Signing time: Mon 28 Apr 2025 19:27:24 +0000 Manifest this update: Mon 28 Apr 2025 19:27:23 +0000 Manifest next update: Mon 05 May 2025 19:27:23 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: +23siXNJ4UvPtyKXTXESMpEA8f84ijnsqA28OHKy3IE=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: DFFj/9slvAH+PEbWNXT9e7xoWXrU79TcIDoX6Iil9eI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Apr 28 19:27:23 2025 GMT Not After : May 5 19:27:23 2025 GMT Subject: CN=680fd69b-33c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:95:12:b0:d7:d3:f5:59:7f:4d:0c:a6:2f:91: ca:0c:a8:4e:4e:fa:d9:d2:41:27:d4:0a:70:49:9e: 47:59:2e:dd:00:20:c1:f0:1e:0b:60:be:73:3a:ef: c3:3d:f7:d5:b1:81:72:18:15:42:fd:98:1d:ea:91: 68:8c:95:80:e3:5d:04:8a:11:44:4b:33:60:9f:a3: b1:83:c3:99:4d:b5:41:06:ff:2b:2d:60:e2:ad:d9: cc:47:68:51:70:30:0e:7a:e1:c4:63:82:be:93:92: a0:f2:45:0e:37:8c:13:ca:f6:92:de:49:da:1a:b5: 19:bd:a2:0a:9a:df:6b:04:fe:6d:d5:69:35:67:91: 06:a4:16:f6:9b:19:36:62:59:20:18:38:42:07:11: 4a:3f:b1:f0:d5:b7:47:3d:e4:d5:68:3c:d1:a7:11: d7:45:c1:b7:3d:79:70:4b:80:b0:a9:a7:fa:c6:f2: b2:8c:8b:bf:a2:6a:a2:b3:0f:cf:1f:4e:a8:22:9e: fb:9d:0c:28:c4:4a:64:82:ca:2a:d5:fe:b7:67:c7: be:08:63:c6:69:7a:8b:d0:8f:a2:e4:99:c4:9a:06: 0e:5c:34:20:4f:a5:71:cd:cf:e0:1a:d8:7c:1a:c3: c0:2f:fd:38:a0:56:8e:68:8c:18:78:12:d3:55:52: e7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B2:94:0E:BC:AE:F1:76:BE:8D:4A:DB:37:A6:88:C5:58:82:86:33 X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f9:0d:ce:26:42:a8:dd:12:5d:15:c1:ac:32:7f:aa:d8:cf: a3:dd:e0:d6:0c:44:fd:3e:cf:ea:aa:ab:0a:64:97:d7:f2:33: d4:35:22:b8:2f:4d:23:ba:0c:f7:06:6d:97:dc:59:b2:6a:b1: 7f:88:26:b3:d5:3c:d2:40:13:49:0e:88:3e:85:16:91:8d:99: 67:7f:7a:7b:2d:64:68:ed:29:e3:87:cf:5e:dc:59:71:ee:a1: b5:3c:b8:11:3c:ad:ed:ab:33:b7:c5:7f:0a:d0:8e:04:d3:5f: 0a:5a:39:57:8e:cf:20:7c:37:94:ce:b0:25:02:6d:07:71:42: c1:8e:0d:cc:84:0b:d0:d5:42:40:30:75:22:51:42:d7:56:a5: 6f:78:0d:81:9a:ea:2a:f6:a3:9b:6d:f1:3f:b9:62:4d:d6:a6: 09:7d:2a:0d:af:3a:6e:58:9c:7b:09:ad:a0:7b:f0:88:19:45: 47:4e:2f:24:00:67:78:34:4e:1e:8b:5e:5f:42:d8:50:17:4a: 12:31:25:88:43:5a:45:7d:47:20:03:53:c8:c9:8b:4b:a9:08: 1e:30:30:e3:a0:bd:59:89:69:51:e5:76:72:58:88:85:39:1a: 04:d0:95:8f:29:ed:b8:96:3d:c4:74:95:c3:a7:77:e2:8a:9e: 4a:34:66:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUwNDI4MTkyNzIzWhcNMjUwNTA1MTkyNzIzWjAYMRYwFAYD VQQDEw02ODBmZDY5Yi0zM2M4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JUSsNfT9Vl/TQymL5HKDKhOTvrZ0kEn1ApwSZ5HWS7dACDB8B4LYL5zOu/D PffVsYFyGBVC/Zgd6pFojJWA410EihFESzNgn6Oxg8OZTbVBBv8rLWDirdnMR2hR cDAOeuHEY4K+k5Kg8kUON4wTyvaS3knaGrUZvaIKmt9rBP5t1Wk1Z5EGpBb2mxk2 YlkgGDhCBxFKP7Hw1bdHPeTVaDzRpxHXRcG3PXlwS4Cwqaf6xvKyjIu/omqisw/P H06oIp77nQwoxEpkgsoq1f63Z8e+CGPGaXqL0I+i5JnEmgYOXDQgT6Vxzc/gGth8 GsPAL/04oFaOaIwYeBLTVVLnSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOylA68 rvF2vo1K2zemiMVYgoYzMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP+Q3OJkKo3RJdFcGsMn+q2M+j3eDWDET9Ps/qqqsKZJfX8jPUNSK4 L00jugz3Bm2X3FmyarF/iCaz1TzSQBNJDog+hRaRjZlnf3p7LWRo7Snjh89e3Flx 7qG1PLgRPK3tqzO3xX8K0I4E018KWjlXjs8gfDeUzrAlAm0HcULBjg3MhAvQ1UJA MHUiUULXVqVveA2Bmuoq9qObbfE/uWJN1qYJfSoNrzpuWJx7Ca2ge/CIGUVHTi8k AGd4NE4ei15fQthQF0oSMSWIQ1pFfUcgA1PIyYtLqQgeMDDjoL1ZiWlR5XZyWIiF ORoE0JWPKe24lj3EdJXDp3fiip5KNGYg -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:07 2025 by rpki-client on console.sobornost.net