$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: qhFAiTYlVrK29/LTm1NZ/qi3iQyxyZj5IOT3nk6UuaM= Subject key identifier: F0:36:C7:92:C5:84:8C:1D:FB:B9:8F:C2:BF:EC:B2:00:F3:4F:85:8D Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 2FD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 2FB4 Signing time: Mon 28 Apr 2025 15:33:35 +0000 Manifest this update: Mon 28 Apr 2025 15:33:35 +0000 Manifest next update: Mon 05 May 2025 15:33:35 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: bS68cFoYuKA/cOgV31wYHH5Ire1CTP0uxS0RgNTpPtY=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: E2NZXpYraOPVv0cpnUWbQpkzMNGT1LYi52LyYrBbmwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12248 (0x2fd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Apr 28 15:33:35 2025 GMT Not After : May 5 15:33:35 2025 GMT Subject: CN=680f9fcf-d013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a4:4a:c5:bb:eb:b4:69:c6:75:a7:35:06:45: 31:a4:c9:52:8c:ba:a9:62:f3:44:ba:5a:07:19:41: e7:ea:81:57:54:cc:99:f8:22:7c:71:02:db:a0:9c: 5c:a8:da:4f:8d:fd:7d:91:cc:1c:1e:8e:0c:25:da: 1a:82:c7:f6:a2:d2:6f:cf:87:58:b4:5a:c9:e5:23: 80:ca:38:9e:68:10:5c:5d:1a:89:b0:e0:5e:16:92: 90:39:3d:f4:51:72:50:26:34:ee:0e:b8:fd:19:28: 03:5f:9a:26:3c:cb:9d:a9:2b:69:51:e8:b4:c7:fd: d0:42:94:92:95:b6:a4:24:a6:07:54:db:e3:15:95: 43:ab:69:89:bf:e7:fc:6c:8e:84:79:5a:27:38:5e: 72:84:d8:60:6e:68:05:c3:4f:e7:1a:87:21:e1:70: c6:37:4e:59:82:2f:9f:4b:eb:f3:91:2e:f4:15:fb: 82:27:96:c9:6d:3a:3d:12:c4:f0:e3:0f:c7:9d:8c: 0c:b0:2b:c3:48:cc:40:05:bb:ad:33:18:c0:ff:7b: 30:e2:b7:ce:2c:bd:c6:16:49:34:2e:17:73:e2:90: 17:ee:dd:13:fd:80:16:7a:6d:44:c7:80:a1:47:52: f1:36:24:ae:83:1a:5a:3b:0c:d8:fa:77:c4:e9:78: cb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:36:C7:92:C5:84:8C:1D:FB:B9:8F:C2:BF:EC:B2:00:F3:4F:85:8D X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:e5:a5:91:ab:b4:3b:48:ea:19:c6:b4:21:d7:d1:66:03:cd: 05:af:e7:78:d0:1f:e4:74:d0:eb:27:6c:52:ba:1b:a3:2a:59: 45:94:a5:aa:f5:19:64:e1:c7:ba:3d:51:23:c6:0c:8d:36:e3: 0b:1a:c5:95:75:02:9a:08:ab:e1:42:75:62:91:de:d4:95:3a: 91:83:c7:7c:15:6e:9a:77:74:88:77:ae:5e:d4:18:9f:e9:05: f3:6d:b9:69:9b:4c:8f:f0:ad:f0:fc:86:59:be:9f:aa:d4:d1: 65:43:d3:6f:88:0c:45:3f:54:43:23:34:8b:37:01:74:c9:4c: ed:ef:38:74:52:ca:51:8b:3c:f0:13:f8:14:ec:8a:37:12:26: dc:18:07:e9:5a:4a:43:f6:92:2c:46:5b:72:e6:57:bd:e3:25: 2b:5f:3d:f2:66:c1:d9:af:09:b0:87:5b:d4:cd:83:1f:88:c8: 0f:66:71:e1:24:0f:15:f5:e0:93:63:d1:c0:24:b7:82:46:90: 57:45:be:26:f0:c9:b1:89:6c:0b:a3:0f:9d:9a:4d:f6:06:23: 1c:4d:56:53:20:48:42:ab:5a:51:7d:2e:e4:e0:a3:ec:8a:23: 3b:18:d4:f8:08:40:7c:7f:db:43:cb:56:c8:be:8d:af:01:ad: c3:c3:18:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUwNDI4MTUzMzM1WhcNMjUwNTA1MTUzMzM1WjAYMRYwFAYD VQQDEw02ODBmOWZjZi1kMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KRKxbvrtGnGdac1BkUxpMlSjLqpYvNEuloHGUHn6oFXVMyZ+CJ8cQLboJxc qNpPjf19kcwcHo4MJdoagsf2otJvz4dYtFrJ5SOAyjieaBBcXRqJsOBeFpKQOT30 UXJQJjTuDrj9GSgDX5omPMudqStpUei0x/3QQpSSlbakJKYHVNvjFZVDq2mJv+f8 bI6EeVonOF5yhNhgbmgFw0/nGoch4XDGN05Zgi+fS+vzkS70FfuCJ5bJbTo9EsTw 4w/HnYwMsCvDSMxABbutMxjA/3sw4rfOLL3GFkk0Lhdz4pAX7t0T/YAWem1Ex4Ch R1LxNiSugxpaOwzY+nfE6XjLiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPA2x5LF hIwd+7mPwr/ssgDzT4WNMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV5aWRq7Q7SOoZxrQh19FmA80Fr+d40B/kdNDrJ2xSuhujKllFlKWq 9Rlk4ce6PVEjxgyNNuMLGsWVdQKaCKvhQnVikd7UlTqRg8d8FW6ad3SId65e1Bif 6QXzbblpm0yP8K3w/IZZvp+q1NFlQ9NviAxFP1RDIzSLNwF0yUzt7zh0UspRizzw E/gU7Io3EibcGAfpWkpD9pIsRlty5le94yUrXz3yZsHZrwmwh1vUzYMfiMgPZnHh JA8V9eCTY9HAJLeCRpBXRb4m8MmxiWwLow+dmk32BiMcTVZTIEhCq1pRfS7k4KPs iiM7GNT4CEB8f9tDy1bIvo2vAa3DwxiY -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:52 2025 by rpki-client on console.sobornost.net