$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: rt5U1tXVlTWS7bf2ax0xvJtFUT1W3y0NUoEQvPXwOzU= Subject key identifier: 9D:F9:94:12:05:97:67:D8:69:C1:E5:AC:6F:97:4D:66:25:82:FA:56 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05C2 Signing time: Sat 26 Apr 2025 22:44:01 +0000 Manifest this update: Sat 26 Apr 2025 22:44:01 +0000 Manifest next update: Sat 03 May 2025 22:44:00 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: L0R4s9TjKzvkVL9Q6SlXrPAt9Pd/2eafts4OSFOc4O4=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 5uGQKQHacdIz6+gIYb0KhNuQPFZrw2PyFjSKiH2Athc=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: jXDp4XiCvpV4wY49c46QBfx2cr7QhdJZL2oEG7fy8Gs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Apr 26 22:44:01 2025 GMT Not After : May 3 22:44:00 2025 GMT Subject: CN=680d61b1-884a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:5c:04:b4:4b:33:3c:55:9c:2b:9c:d3:e4: 52:33:c1:18:26:d6:88:ba:4f:8e:4d:c5:e2:bf:71: 54:91:1f:ba:42:e8:d9:f0:8e:6d:b0:b5:ee:fb:f2: 46:0d:4a:99:89:46:5d:36:84:52:94:14:f1:94:7a: 80:60:f9:5d:2f:bb:e4:27:85:00:6c:a7:00:b6:87: fc:ef:52:8a:db:85:ab:f7:4c:f3:a7:7e:05:49:bd: 9f:12:6f:28:37:94:62:3b:72:a1:c8:de:65:2d:2f: 53:81:5f:57:cd:ff:26:46:52:e4:6c:fc:1f:e7:2b: 51:a2:a4:26:c1:b8:16:62:54:a5:d8:45:64:12:30: b8:fa:2f:0a:57:63:1e:82:5d:48:0d:da:90:31:6c: 90:e5:4e:03:e5:da:f8:e3:7f:ca:98:d9:50:09:a1: 6a:c9:36:01:38:7b:93:3c:96:3d:8d:bc:01:66:90: 0e:0c:b6:01:a9:63:10:d3:66:d3:48:07:d5:2f:cd: 01:95:90:43:88:58:7c:51:71:a4:67:45:8e:84:27: 4b:7b:3e:5a:1b:41:13:63:16:35:59:04:bc:a1:dc: 21:8e:00:83:f6:e7:fe:a0:83:e8:6d:65:51:38:19: bd:a4:e2:ef:54:b0:ce:6d:94:9f:e2:64:62:57:dc: fc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:F9:94:12:05:97:67:D8:69:C1:E5:AC:6F:97:4D:66:25:82:FA:56 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b9:00:e2:61:48:85:1d:ab:d8:e0:fd:71:00:fa:35:af:08: 8c:98:22:29:98:1d:a0:45:44:ec:77:ae:db:64:81:38:e3:f4: 77:f9:4f:45:8f:24:9d:e2:76:dc:cd:b2:30:81:4c:c2:74:e1: fa:18:59:19:d2:0e:b0:8b:f3:05:7c:2d:39:4c:78:6a:89:a7: 73:95:6c:94:21:f2:7d:b0:81:25:58:b9:27:4f:47:60:51:4f: 54:b9:90:ed:6e:a3:89:f8:e3:fc:38:ce:b8:34:1f:cd:46:47: 17:29:d6:11:aa:13:73:94:fb:81:6a:90:d3:5d:b7:1c:6e:c2: 5c:55:1e:6d:54:02:a7:84:6f:8e:97:5e:33:1f:46:de:70:c9: a5:c9:78:61:54:ec:9b:2a:94:f9:34:60:fc:d2:2b:4a:09:43: 9a:35:22:d8:97:ac:7e:d2:b4:0e:3c:d9:49:5b:89:b0:53:b5: 1f:3d:2e:22:08:6b:48:ae:25:20:e0:73:c8:98:0b:99:3f:c5: 54:92:8c:40:59:4d:a1:48:46:0b:0b:13:88:da:83:7b:38:be: d6:f7:30:97:86:30:ab:b6:f5:18:33:0d:46:de:67:05:96:07: a7:77:1f:5a:52:94:1f:3d:58:7d:dc:cb:e2:f5:84:33:1c:95: bf:0f:7b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNDI2MjI0NDAxWhcNMjUwNTAzMjI0NDAwWjAYMRYwFAYD VQQDEw02ODBkNjFiMS04ODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYxcBLRLMzxVnCuc0+RSM8EYJtaIuk+OTcXiv3FUkR+6QujZ8I5tsLXu+/JG DUqZiUZdNoRSlBTxlHqAYPldL7vkJ4UAbKcAtof871KK24Wr90zzp34FSb2fEm8o N5RiO3KhyN5lLS9TgV9Xzf8mRlLkbPwf5ytRoqQmwbgWYlSl2EVkEjC4+i8KV2Me gl1IDdqQMWyQ5U4D5dr443/KmNlQCaFqyTYBOHuTPJY9jbwBZpAODLYBqWMQ02bT SAfVL80BlZBDiFh8UXGkZ0WOhCdLez5aG0ETYxY1WQS8odwhjgCD9uf+oIPobWVR OBm9pOLvVLDObZSf4mRiV9z8XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ35lBIF l2fYacHlrG+XTWYlgvpWMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuuQDiYUiFHavY4P1xAPo1rwiMmCIpmB2gRUTsd67bZIE44/R3+U9F jySd4nbczbIwgUzCdOH6GFkZ0g6wi/MFfC05THhqiadzlWyUIfJ9sIElWLknT0dg UU9UuZDtbqOJ+OP8OM64NB/NRkcXKdYRqhNzlPuBapDTXbccbsJcVR5tVAKnhG+O l14zH0becMmlyXhhVOybKpT5NGD80itKCUOaNSLYl6x+0rQOPNlJW4mwU7UfPS4i CGtIriUg4HPImAuZP8VUkoxAWU2hSEYLCxOI2oN7OL7W9zCXhjCrtvUYMw1G3mcF lgendx9aUpQfPVh93Mvi9YQzHJW/D3uS -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:53 2025 by rpki-client on console.sobornost.net