$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: jK12w4Is2TuJ804Un2bjooWJg6qtcXSTuimuUIPNeKM= Subject key identifier: D0:B6:E7:3D:82:15:34:F8:DB:9F:E7:13:FE:64:A0:EE:74:92:4A:DF Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1B83 Signing time: Mon 28 Apr 2025 16:22:08 +0000 Manifest this update: Mon 28 Apr 2025 16:22:08 +0000 Manifest next update: Mon 05 May 2025 16:22:08 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: 7AyFmSInXcxoXyoVVYgtsMAdm6jwqliAQQjtcuapuK4=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7061 (0x1b95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Apr 28 16:22:08 2025 GMT Not After : May 5 16:22:08 2025 GMT Subject: CN=680fab30-91dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:62:11:da:d6:82:74:80:2b:c7:61:5f:b8:68: 0a:82:8b:67:33:9c:1c:6f:0f:c4:77:55:af:b3:48: 2e:f7:1a:50:86:06:8c:32:34:28:0a:51:d8:ae:b1: 39:00:3e:a5:8f:ca:a4:eb:c9:9b:cf:53:14:be:49: dd:5f:fb:fa:95:f5:4d:28:b9:fc:ff:f7:f7:54:75: d8:d4:6d:db:70:f8:78:55:97:de:53:42:6b:c4:b8: 0d:73:fd:2b:72:b1:9a:8b:d1:c2:53:35:39:50:20: b9:99:d9:7c:60:49:a8:da:ed:bd:be:13:2a:5d:f0: e4:57:30:bf:2f:93:df:16:c3:cd:4f:60:d6:c1:b9: 37:2e:5d:84:69:1d:98:33:87:87:20:2b:9d:df:52: ab:e9:71:a5:77:c7:93:35:21:79:bd:dd:3e:3b:6c: 89:19:79:7d:02:54:00:11:99:43:d5:89:01:36:9b: bc:c6:11:86:37:b9:d1:3f:59:6d:ac:63:86:03:b3: e4:f3:52:38:fc:51:23:e3:9c:5c:a6:13:1d:09:da: 83:d9:73:e3:07:85:a8:f4:a4:34:28:90:c1:37:19: d2:50:95:36:0d:91:76:47:f0:fc:43:aa:85:34:17: b4:1e:ce:7a:af:13:10:ec:c5:6d:b0:f9:f1:57:4e: d8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B6:E7:3D:82:15:34:F8:DB:9F:E7:13:FE:64:A0:EE:74:92:4A:DF X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:f1:19:20:d0:ea:4c:99:a3:bc:89:b8:67:b1:22:f4:32:d7: 9c:14:33:4a:13:33:90:99:82:0f:7f:df:f4:88:02:30:cc:65: 04:72:e6:9e:f8:21:7c:15:56:b8:57:9a:4f:32:32:c3:23:03: 0d:b1:b4:ff:18:0f:26:a8:27:51:c7:65:38:b1:e9:b4:1c:d5: 40:6b:69:d6:75:d2:bb:fd:07:aa:58:cc:88:1d:18:e4:55:77: 68:ad:4e:0f:f5:d4:58:ba:ad:4e:0d:6a:c6:5f:5e:5b:ef:e0: 5a:e6:4f:5d:86:4f:01:0a:a4:51:a8:a0:9c:37:71:15:09:59: cd:e1:ff:f9:6b:32:dc:6c:91:74:0a:b5:27:6a:e5:ef:d8:dd: eb:27:39:d6:55:5c:e4:25:0c:06:dd:94:6b:26:44:e9:29:b8: 08:58:01:b1:02:e0:06:27:d1:23:09:1e:5a:6c:b0:5d:13:13: f8:02:d1:86:f7:6d:ce:f5:d9:04:02:bb:28:98:ab:cb:97:28: f8:56:bb:1b:57:27:ec:a6:e2:ec:bd:d0:ee:89:28:5a:12:f3: 10:bc:99:59:18:d1:90:2f:4c:a2:e9:6f:80:f1:50:38:53:f7: f5:7a:85:22:bf:70:90:b9:39:02:2a:89:4f:1b:33:34:11:95: 94:5f:d8:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwNDI4MTYyMjA4WhcNMjUwNTA1MTYyMjA4WjAYMRYwFAYD VQQDEw02ODBmYWIzMC05MWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWIR2taCdIArx2FfuGgKgotnM5wcbw/Ed1Wvs0gu9xpQhgaMMjQoClHYrrE5 AD6lj8qk68mbz1MUvkndX/v6lfVNKLn8//f3VHXY1G3bcPh4VZfeU0JrxLgNc/0r crGai9HCUzU5UCC5mdl8YEmo2u29vhMqXfDkVzC/L5PfFsPNT2DWwbk3Ll2EaR2Y M4eHICud31Kr6XGld8eTNSF5vd0+O2yJGXl9AlQAEZlD1YkBNpu8xhGGN7nRP1lt rGOGA7Pk81I4/FEj45xcphMdCdqD2XPjB4Wo9KQ0KJDBNxnSUJU2DZF2R/D8Q6qF NBe0Hs56rxMQ7MVtsPnxV07YtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNC25z2C FTT425/nE/5koO50kkrfMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe8Rkg0OpMmaO8ibhnsSL0MtecFDNKEzOQmYIPf9/0iAIwzGUEcuae +CF8FVa4V5pPMjLDIwMNsbT/GA8mqCdRx2U4sem0HNVAa2nWddK7/QeqWMyIHRjk VXdorU4P9dRYuq1ODWrGX15b7+Ba5k9dhk8BCqRRqKCcN3EVCVnN4f/5azLcbJF0 CrUnauXv2N3rJznWVVzkJQwG3ZRrJkTpKbgIWAGxAuAGJ9EjCR5abLBdExP4AtGG 923O9dkEArsomKvLlyj4VrsbVyfspuLsvdDuiShaEvMQvJlZGNGQL0yi6W+A8VA4 U/f1eoUiv3CQuTkCKolPGzM0EZWUX9hE -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:32 2025 by rpki-client on console.sobornost.net