$ rpki-client -vvf rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft File: A6AuL12r8P85OGKLxP9fthZT8EU.mft (raw, json) Hash identifier: kKl6bdLqrKEFmDRZf07z8I9uy+ojwScii+FTEbKtxFQ= Subject key identifier: 63:00:05:7B:00:9C:D4:A2:C5:16:8F:AE:26:38:E0:95:0D:FC:3F:F6 Authority key identifier: 03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45 Certificate issuer: /CN=A9161099/serialNumber=03A02E2F5DABF0FF3938628BC4FF5FB61653F045 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft Manifest number: CB Signing time: Fri 25 Apr 2025 04:59:42 +0000 Manifest this update: Fri 25 Apr 2025 04:59:42 +0000 Manifest next update: Fri 02 May 2025 04:59:42 +0000 Files and hashes: 1: A6AuL12r8P85OGKLxP9fthZT8EU.crl (hash: 0+kE4zaDxKkdzglIC2kkaqZfg35W7oOi2yOGkV96pS8=) 2: 4335BE9C0D0611EFA3ECB057C4F9AE02.roa (hash: DY8IlqJNovXZ15/RMJieaaoHFKTdyQOVWYO2fidjVFA=) 3: 42D4C3BC0D0611EFA3ECB057C4F9AE02.roa (hash: +Bi7MtB+7NPx8cFWrjp/h07cFO2J6YI/bpEdCFFKQe0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.crl rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161099, serialNumber=03A02E2F5DABF0FF3938628BC4FF5FB61653F045 Validity Not Before: Apr 25 04:59:42 2025 GMT Not After : May 2 04:59:42 2025 GMT Subject: CN=680b16be-1d7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b2:e2:c0:7b:ec:38:7d:0a:6c:d1:a8:09:47: 03:d1:fe:e0:2c:87:bf:26:f2:3b:57:36:7f:f7:6e: 68:29:93:be:1f:1c:a2:24:35:58:9d:1e:41:f0:ec: 3c:e5:02:33:7b:d6:ba:b5:8d:07:7f:e6:da:37:e2: 9d:76:95:77:ca:33:4e:80:5b:50:13:80:9c:9f:15: a2:4f:bb:bc:cc:a9:ed:1e:f7:ab:fc:68:97:5f:de: 54:2e:18:36:29:93:b1:4f:ae:1e:56:46:32:eb:27: 41:f6:ba:8d:0c:a1:83:21:27:17:f3:b2:4e:12:b5: 9b:54:b2:11:19:db:87:ca:35:65:e9:80:0a:99:7e: ec:a3:eb:c1:a4:5e:29:4e:b1:a8:90:74:4a:fa:1d: f0:ba:e2:d8:48:18:48:e1:b7:4c:ba:d1:ac:7c:93: 3f:0c:9c:9d:93:64:c8:1f:c6:0b:fd:b7:10:88:40: 32:f0:44:87:3f:39:73:d5:7a:fc:1e:9a:c9:57:25: 41:f0:e6:9c:56:3b:62:08:ac:f7:1d:f3:5a:85:ae: 0e:a5:c3:ec:cb:c7:7d:64:f8:18:5f:b6:5d:93:d0: db:1b:9e:b4:89:7e:da:7c:be:00:23:70:88:71:c3: fb:ec:fc:86:f6:e8:c0:ca:ef:8f:d1:6b:2a:7c:c8: a8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:00:05:7B:00:9C:D4:A2:C5:16:8F:AE:26:38:E0:95:0D:FC:3F:F6 X509v3 Authority Key Identifier: keyid:03:A0:2E:2F:5D:AB:F0:FF:39:38:62:8B:C4:FF:5F:B6:16:53:F0:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6AuL12r8P85OGKLxP9fthZT8EU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161099/FD367C700D0411EF85E46F55C4F9AE02/A6AuL12r8P85OGKLxP9fthZT8EU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d1:3e:60:64:50:fc:c4:7a:1d:ad:7c:46:56:c3:8f:1f:9d: 3b:03:53:ca:e2:4e:de:d8:f8:f0:31:ab:86:8e:af:ea:04:00: e2:86:9f:52:76:21:77:64:41:90:5a:f7:f0:b4:77:9c:f5:dc: 19:95:42:64:bb:78:9d:8b:8f:5b:21:2a:99:83:fb:a6:4b:71: b3:a2:6d:70:f2:0c:92:eb:c6:d3:d5:58:88:16:70:b1:c5:9e: d3:27:e2:e6:5e:33:74:ab:9d:84:8a:a0:95:02:29:f7:a0:1d: 42:ba:01:91:d4:d2:e2:97:3b:3b:bf:13:e0:41:a4:5e:c2:64: cd:77:2b:cb:b3:68:bf:52:24:1c:cf:83:c6:ea:77:fd:da:c0: b2:a1:fd:d8:dc:a4:23:43:84:05:80:2a:6c:75:44:42:46:8d: 05:f9:4c:37:07:80:40:53:ea:4d:c9:96:d7:ee:29:39:12:33: cf:53:be:ef:98:4c:82:32:b4:b3:ce:00:c7:8c:c5:11:a5:d1: 1a:cb:1b:03:34:c3:ae:eb:53:16:e3:13:57:8e:5d:95:ba:ca: 85:0f:6b:5f:97:86:0f:45:53:60:11:4d:4c:ae:ce:08:e6:be: 79:99:94:87:3f:7b:3a:33:a0:f4:1b:50:16:fa:c8:5e:1c:05: ab:a2:67:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwOTkxMTAvBgNVBAUTKDAzQTAyRTJGNURBQkYwRkYzOTM4NjI4QkM0RkY1RkI2 MTY1M0YwNDUwHhcNMjUwNDI1MDQ1OTQyWhcNMjUwNTAyMDQ1OTQyWjAYMRYwFAYD VQQDEw02ODBiMTZiZS0xZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2rLiwHvsOH0KbNGoCUcD0f7gLIe/JvI7VzZ/925oKZO+HxyiJDVYnR5B8Ow8 5QIze9a6tY0Hf+baN+KddpV3yjNOgFtQE4CcnxWiT7u8zKntHver/GiXX95ULhg2 KZOxT64eVkYy6ydB9rqNDKGDIScX87JOErWbVLIRGduHyjVl6YAKmX7so+vBpF4p TrGokHRK+h3wuuLYSBhI4bdMutGsfJM/DJydk2TIH8YL/bcQiEAy8ESHPzlz1Xr8 HprJVyVB8OacVjtiCKz3HfNaha4OpcPsy8d9ZPgYX7Zdk9DbG560iX7afL4AI3CI ccP77PyG9ujAyu+P0WsqfMioLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMABXsA nNSixRaPriY44JUN/D/2MB8GA1UdIwQYMBaAFAOgLi9dq/D/OThii8T/X7YWU/BF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA5OS9GRDM2N0M3MDBE MDQxMUVGODVFNDZGNTVDNEY5QUUwMi9BNkF1TDEycjhQODVPR0tMeFA5ZnRoWlQ4 RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2QXVMMTJyOFA4NU9HS0x4UDlmdGhaVDhFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA5OS9GRDM2N0M3MDBEMDQxMUVGODVFNDZGNTVDNEY5QUUwMi9BNkF1TDEycjhQ ODVPR0tMeFA5ZnRoWlQ4RVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs0T5gZFD8xHodrXxGVsOPH507A1PK4k7e2PjwMauGjq/qBADihp9S diF3ZEGQWvfwtHec9dwZlUJku3idi49bISqZg/umS3Gzom1w8gyS68bT1ViIFnCx xZ7TJ+LmXjN0q52EiqCVAin3oB1CugGR1NLilzs7vxPgQaRewmTNdyvLs2i/UiQc z4PG6nf92sCyof3Y3KQjQ4QFgCpsdURCRo0F+Uw3B4BAU+pNyZbX7ik5EjPPU77v mEyCMrSzzgDHjMURpdEayxsDNMOu61MW4xNXjl2VusqFD2tfl4YPRVNgEU1Mrs4I 5r55mZSHP3s6M6D0G1AW+sheHAWromdK -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:54 2025 by rpki-client on console.sobornost.net