$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft File: tGadMNIQ5JB80oiL50uJpt08tsg.mft (raw, json) Hash identifier: 3nnPZOyPcpDoUV2ZIzOE0iVkzt5Uuywyh6TFMX9sKvM= Subject key identifier: C7:44:C4:39:D5:C0:A4:D1:30:A9:EE:24:A0:1B:5A:BF:88:06:54:CB Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 0912 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft Manifest number: 0900 Signing time: Mon 28 Apr 2025 20:50:00 +0000 Manifest this update: Mon 28 Apr 2025 20:49:59 +0000 Manifest next update: Mon 05 May 2025 20:49:59 +0000 Files and hashes: 1: tGadMNIQ5JB80oiL50uJpt08tsg.crl (hash: 3EkqEzP9A9Lv7kc2J7T7oQs5FXR+7zl2D+yrT5w3EhY=) 2: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (hash: 4s1yJr2g52+DMFY429ohpA5bZaHqp1IUUCW4B4SaCTc=) 3: B350B67E964611EDA10D8777C4F9AE02.roa (hash: Q3J0B0gf8wzjDQC7Y6zzpOQiUzusEOubL6oTAO7DZBI=) 4: D7120558A7ED11EA95BED565C4F9AE02.roa (hash: dHv+b9eqHvJpNCOa+cVeJt4WLtjB7VsmaWpat9hHq+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2322 (0x912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: Apr 28 20:49:59 2025 GMT Not After : May 5 20:49:59 2025 GMT Subject: CN=680fe9f7-f7fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:d6:fd:67:89:04:0c:b5:de:43:01:2b:c8: fb:7f:f4:64:0b:88:1d:db:50:1a:db:49:87:69:ca: 73:e0:ef:aa:38:05:29:73:46:56:2b:90:14:60:e6: f2:65:04:52:05:6b:c1:4e:27:fc:14:2c:a5:64:3a: 22:50:1a:72:55:e0:3f:82:b0:ca:92:0b:e2:09:e5: e5:22:42:9d:4c:10:cd:a5:7a:e6:8d:81:d0:57:8d: bc:0c:04:b0:1e:5c:24:a3:a1:e7:27:52:d0:a7:1c: ce:5b:13:37:e2:ef:64:82:90:08:4c:67:f1:94:8b: ef:06:14:49:04:5e:1c:d0:5c:92:87:07:27:af:14: a2:0d:3d:82:16:c1:65:17:29:76:c7:14:52:f9:bd: 9f:88:d2:5b:14:1a:9a:42:7d:15:21:d9:ea:7f:03: 9a:f3:8f:91:60:ff:bd:4f:47:2e:c9:9e:d9:3e:b8: dc:a5:00:04:8d:6b:64:b7:1d:93:5e:94:2e:9b:be: 0e:76:49:66:54:4d:01:0c:8b:f5:bf:ae:67:7a:42: 2b:c0:6a:00:e6:bb:54:d0:1f:20:73:8d:0f:88:50: 3a:6b:11:27:68:f0:83:ab:f3:ce:88:93:f1:73:f3: f6:bf:a9:23:57:ab:8b:c9:c4:05:e8:4a:f3:8f:2a: 9e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:44:C4:39:D5:C0:A4:D1:30:A9:EE:24:A0:1B:5A:BF:88:06:54:CB X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1a:29:7e:6e:bb:e0:17:86:a0:54:be:0e:af:ce:6c:51:bc: 4b:c8:a3:e8:c8:91:8c:c7:1b:f2:a1:c4:54:08:90:21:f7:7a: a3:f9:96:62:32:37:4e:de:b6:b9:02:ed:91:5b:9c:53:bb:c8: 05:1f:73:cd:44:47:da:b6:6a:66:68:9c:b5:b0:3e:e5:fc:d1: 0a:4a:38:84:d3:8c:49:3d:5c:66:f4:05:ed:ee:41:fd:7d:5d: 91:c1:73:a6:02:3b:4c:dd:23:9f:fc:3f:79:a5:0f:07:b7:fb: 8b:b7:e3:e3:40:43:92:33:a3:55:c8:d3:8c:1a:3c:27:07:e8: b4:02:68:06:2c:63:52:b2:09:3b:0e:73:02:2e:6a:39:7d:e5: 3f:44:22:83:38:7f:2e:aa:65:6a:45:41:3f:fb:c6:22:33:8f: 1c:63:cd:e4:49:49:91:c9:3f:b8:5c:55:ff:53:0c:7f:63:3e: 1a:0b:95:ba:5c:6b:7a:92:b8:c4:d8:e7:20:52:2d:78:1c:97: 68:1a:de:7a:5c:f6:e2:bd:ca:38:ac:58:de:ea:35:de:cd:16: f8:c4:5b:fc:ab:78:10:36:4d:de:85:47:53:92:5e:cd:e3:1a: b1:fe:c4:d8:f7:2b:27:e1:66:5d:64:bb:66:08:ef:b4:58:3a: c2:ae:66:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjUwNDI4MjA0OTU5WhcNMjUwNTA1MjA0OTU5WjAYMRYwFAYD VQQDEw02ODBmZTlmNy1mN2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0DW/WeJBAy13kMBK8j7f/RkC4gd21Aa20mHacpz4O+qOAUpc0ZWK5AUYOby ZQRSBWvBTif8FCylZDoiUBpyVeA/grDKkgviCeXlIkKdTBDNpXrmjYHQV428DASw Hlwko6HnJ1LQpxzOWxM34u9kgpAITGfxlIvvBhRJBF4c0FyShwcnrxSiDT2CFsFl Fyl2xxRS+b2fiNJbFBqaQn0VIdnqfwOa84+RYP+9T0cuyZ7ZPrjcpQAEjWtktx2T XpQum74OdklmVE0BDIv1v65nekIrwGoA5rtU0B8gc40PiFA6axEnaPCDq/POiJPx c/P2v6kjV6uLycQF6ErzjyqeiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdExDnV wKTRMKnuJKAbWr+IBlTLMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1OC9CMzg5MzA0RUE3RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVK Qjgwb2lMNTB1SnB0MDh0c2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiGil+brvgF4agVL4Or85sUbxLyKPoyJGMxxvyocRUCJAh93qj+ZZi MjdO3ra5Au2RW5xTu8gFH3PNREfatmpmaJy1sD7l/NEKSjiE04xJPVxm9AXt7kH9 fV2RwXOmAjtM3SOf/D95pQ8Ht/uLt+PjQEOSM6NVyNOMGjwnB+i0AmgGLGNSsgk7 DnMCLmo5feU/RCKDOH8uqmVqRUE/+8YiM48cY83kSUmRyT+4XFX/Uwx/Yz4aC5W6 XGt6krjE2OcgUi14HJdoGt56XPbivco4rFje6jXezRb4xFv8q3gQNk3ehUdTkl7N 4xqx/sTY9ysn4WZdZLtmCO+0WDrCrmZD -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:17 2025 by rpki-client on console.sobornost.net