$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: /XQfVEMK4sw8aZCbNkyHpQlN1MFiBKoMpJVm9HbZwHQ= Subject key identifier: 32:2B:5F:46:AC:75:D2:34:0D:EA:2D:70:C9:B3:C6:23:E0:BE:8F:B7 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 01DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 01D9 Signing time: Sun 27 Apr 2025 01:48:53 +0000 Manifest this update: Sun 27 Apr 2025 01:48:52 +0000 Manifest next update: Sun 04 May 2025 01:48:52 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: Xsov3H2KUFiA+A4HigfyW3rm5hERN9zNpYfU3XxqE/Y=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Apr 27 01:48:52 2025 GMT Not After : May 4 01:48:52 2025 GMT Subject: CN=680d8d04-3ec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b1:7a:de:a1:e1:09:ac:39:b2:0a:5a:bd:9c: e7:b8:6c:c4:35:b2:8a:ef:c8:5d:09:e6:44:40:c7: 56:79:c5:29:17:75:9d:21:d0:c1:ff:82:40:8f:79: ce:de:6d:f5:d0:34:0d:3a:d4:b3:e1:98:57:26:b3: 10:66:e9:94:fe:a4:18:d0:2b:a3:77:12:be:c9:4e: 57:b3:ea:bb:f7:dc:7d:cf:b1:6b:7e:08:55:9c:7b: 00:46:00:f3:ad:39:26:a5:ad:c6:01:9e:f7:8b:24: 0c:17:ea:1e:1a:60:2b:3d:cc:04:5d:b7:94:34:75: 57:9f:68:b0:2e:0d:6a:37:0a:d1:bb:29:e1:b5:56: 82:5a:ab:1c:ea:b8:19:22:85:c7:aa:21:a1:3a:34: 9b:68:ae:12:5b:24:b4:67:43:a2:d4:0f:94:48:a2: f5:cf:3b:5e:67:dd:59:81:26:14:25:cf:fe:50:25: fa:e4:92:fb:61:bf:38:d6:67:35:ce:0c:c8:3f:2f: 17:a2:30:a1:da:5b:00:47:d0:2c:ee:19:77:13:27: 81:db:4a:36:2d:46:ca:35:36:b2:95:5a:49:f7:e4: 1f:dd:6e:2a:7d:a2:c6:c5:21:0c:7d:98:8d:0e:85: 9d:ae:13:0d:d2:db:d4:6b:f5:64:a6:eb:b4:39:55: 71:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2B:5F:46:AC:75:D2:34:0D:EA:2D:70:C9:B3:C6:23:E0:BE:8F:B7 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:30:c0:27:3b:6a:3f:8d:ec:a1:8f:fe:ed:47:da:ca:e9:a0: d9:64:01:5c:44:92:4d:53:81:93:3f:3c:88:46:31:ea:45:37: 64:13:c0:35:f2:b4:2b:94:0d:d1:dc:74:68:fa:20:13:22:22: f1:eb:41:c2:90:ca:35:b0:4c:00:2b:89:3c:7a:6a:22:49:fc: 2b:30:52:5a:82:bd:e8:08:45:47:37:39:ef:93:74:bd:d2:59: c2:f7:6f:54:e1:0f:24:4d:df:b9:63:be:26:bf:31:b8:9e:cc: 28:e0:6f:71:a5:4c:0b:65:0c:6b:06:00:da:6a:6d:21:37:32: 40:99:5f:fb:7e:eb:90:39:06:ee:73:54:45:33:33:de:60:7f: 4b:2e:41:8a:7f:8e:a5:50:09:ce:4a:7f:4b:6f:05:f3:0c:3f: fd:b2:e2:ea:db:a7:84:23:b6:39:13:00:f3:f4:4c:f2:11:e4: 40:ec:21:49:9d:bc:0a:eb:8e:74:74:1f:ad:e0:bd:40:4e:83: d1:b4:3d:e7:26:56:b2:02:8a:2e:39:6b:bc:fd:1e:81:41:ea: 1e:47:fe:87:19:a7:a7:21:3f:83:61:17:68:bb:a2:7e:cb:27: db:9f:91:77:fa:fd:c8:46:cc:38:48:7a:65:d2:f6:2b:95:a8: a6:56:58:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwNDI3MDE0ODUyWhcNMjUwNTA0MDE0ODUyWjAYMRYwFAYD VQQDEw02ODBkOGQwNC0zZWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LF63qHhCaw5sgpavZznuGzENbKK78hdCeZEQMdWecUpF3WdIdDB/4JAj3nO 3m310DQNOtSz4ZhXJrMQZumU/qQY0CujdxK+yU5Xs+q799x9z7FrfghVnHsARgDz rTkmpa3GAZ73iyQMF+oeGmArPcwEXbeUNHVXn2iwLg1qNwrRuynhtVaCWqsc6rgZ IoXHqiGhOjSbaK4SWyS0Z0Oi1A+USKL1zzteZ91ZgSYUJc/+UCX65JL7Yb841mc1 zgzIPy8XojCh2lsAR9As7hl3EyeB20o2LUbKNTaylVpJ9+Qf3W4qfaLGxSEMfZiN DoWdrhMN0tvUa/Vkpuu0OVVx8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIrX0as ddI0DeotcMmzxiPgvo+3MB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtMMAnO2o/jeyhj/7tR9rK6aDZZAFcRJJNU4GTPzyIRjHqRTdkE8A1 8rQrlA3R3HRo+iATIiLx60HCkMo1sEwAK4k8emoiSfwrMFJagr3oCEVHNznvk3S9 0lnC929U4Q8kTd+5Y74mvzG4nswo4G9xpUwLZQxrBgDaam0hNzJAmV/7fuuQOQbu c1RFMzPeYH9LLkGKf46lUAnOSn9LbwXzDD/9suLq26eEI7Y5EwDz9EzyEeRA7CFJ nbwK6450dB+t4L1AToPRtD3nJlayAoouOWu8/R6BQeoeR/6HGaenIT+DYRdou6J+ yyfbn5F3+v3IRsw4SHpl0vYrlaimVlj1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:47 2025 by rpki-client on console.sobornost.net