$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: mnbnNHDJNknOMK7QssVvWaJe2HGblKoJpkYR3qAq7kE= Subject key identifier: 57:E1:FD:E0:92:2D:A9:6F:C8:44:8F:5E:A7:A7:A6:F9:8B:F6:7B:47 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 98 Signing time: Sun 27 Apr 2025 05:10:48 +0000 Manifest this update: Sun 27 Apr 2025 05:10:47 +0000 Manifest next update: Sun 04 May 2025 05:10:47 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: hvDaWtT+Zm5zdB8rxs40Zv2VVnQ9cTub/fbNl+VPLkQ=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: LrQNetWX/kWMMJz247yWUJ25L5V6W9haJZqldtz3j0Y=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: KlwexvDGFQzb3abuiXQPF43ztld2Pg+xYp8Fr2ZD2ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Apr 27 05:10:47 2025 GMT Not After : May 4 05:10:47 2025 GMT Subject: CN=680dbc58-9aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1d:cf:be:08:39:7b:30:d6:16:be:3a:7e:48: b4:2c:ef:7b:f9:f4:2d:cb:96:01:f3:85:aa:88:fd: 6b:9a:34:85:95:d0:39:6c:e3:88:19:17:d1:3f:4d: 43:10:8e:fa:86:57:bd:f1:ec:69:1e:2d:d4:ef:57: 8a:28:19:33:7f:c2:2a:48:34:74:41:d6:4d:ce:d7: 13:31:de:ac:5c:88:1a:79:de:90:df:4c:2a:3f:ab: 8c:1e:38:39:77:dd:05:4c:ce:38:ff:91:b8:1a:c7: 2c:60:ae:96:50:ea:8f:b9:be:09:0e:09:44:3e:88: 93:43:a5:b2:31:d8:e5:44:7e:8e:6c:55:c6:97:2b: bd:0c:bf:ad:0a:3b:97:77:fd:49:4a:13:d5:3b:74: a4:87:85:33:35:78:05:a4:f1:df:12:e0:95:6c:83: b2:5c:50:57:9f:b4:6b:5a:74:f9:1a:ff:cc:a2:7b: 2f:da:64:5c:50:ad:cd:84:62:b2:c5:00:d3:17:73: 42:70:82:46:b8:a3:ff:1a:0b:67:23:b1:4f:a1:a1: f3:8f:22:fc:18:07:e9:34:65:37:2d:37:34:f5:26: 65:d7:4f:f1:95:50:9f:b5:bd:9b:50:bd:9f:89:57: e4:ff:97:0a:a1:c8:cc:39:c2:83:82:75:11:52:ff: fe:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E1:FD:E0:92:2D:A9:6F:C8:44:8F:5E:A7:A7:A6:F9:8B:F6:7B:47 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:13:df:81:89:99:e0:97:68:cc:1e:a1:d0:9f:4f:74:7b:08: 2d:93:92:98:9e:c1:8e:52:27:ed:ac:bf:fe:48:ea:4b:7c:03: 17:67:3a:24:af:ae:6a:cf:52:7a:9d:01:30:ff:3d:04:a4:75: e8:9b:e8:46:19:ec:96:16:e3:e5:66:a3:c4:d0:24:39:2b:db: 22:50:f0:d1:60:fc:f7:68:e2:64:3d:21:5d:47:f2:34:e8:a3: 10:3d:2d:4b:63:67:55:f1:40:c2:a3:8a:ee:b9:87:32:a0:22: 78:b1:99:0c:5e:5c:4a:d3:30:e6:38:72:e3:77:cd:e9:8c:11: f5:94:f5:16:37:6d:00:fa:0d:5d:de:3c:53:3b:36:3e:b7:80: 15:12:fd:df:48:1c:a5:c0:43:31:cd:68:bd:68:a3:64:78:b6: a6:87:2a:95:09:73:f9:71:b8:3a:13:bc:31:bc:dc:d0:d4:53: b5:6c:a0:8b:30:0b:25:31:ea:39:cd:e8:d6:16:84:22:cc:3b: 6d:24:fb:3c:0c:3a:ed:ac:ab:85:d4:f9:07:dc:0f:08:29:0f: 67:5a:c1:ae:d2:32:a5:1e:31:46:47:0f:63:7c:c2:f4:3f:4b: 7f:bb:3b:ff:07:1d:6d:55:69:43:d2:41:07:fe:ef:7d:2e:a1: 57:4f:b4:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUwNDI3MDUxMDQ3WhcNMjUwNTA0MDUxMDQ3WjAYMRYwFAYD VQQDEw02ODBkYmM1OC05YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxx3Pvgg5ezDWFr46fki0LO97+fQty5YB84WqiP1rmjSFldA5bOOIGRfRP01D EI76hle98expHi3U71eKKBkzf8IqSDR0QdZNztcTMd6sXIgaed6Q30wqP6uMHjg5 d90FTM44/5G4GscsYK6WUOqPub4JDglEPoiTQ6WyMdjlRH6ObFXGlyu9DL+tCjuX d/1JShPVO3Skh4UzNXgFpPHfEuCVbIOyXFBXn7RrWnT5Gv/Monsv2mRcUK3NhGKy xQDTF3NCcIJGuKP/GgtnI7FPoaHzjyL8GAfpNGU3LTc09SZl10/xlVCftb2bUL2f iVfk/5cKocjMOcKDgnURUv/+YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfh/eCS LalvyESPXqenpvmL9ntHMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANE9+BiZngl2jMHqHQn090ewgtk5KYnsGOUiftrL/+SOpLfAMXZzok r65qz1J6nQEw/z0EpHXom+hGGeyWFuPlZqPE0CQ5K9siUPDRYPz3aOJkPSFdR/I0 6KMQPS1LY2dV8UDCo4ruuYcyoCJ4sZkMXlxK0zDmOHLjd83pjBH1lPUWN20A+g1d 3jxTOzY+t4AVEv3fSBylwEMxzWi9aKNkeLamhyqVCXP5cbg6E7wxvNzQ1FO1bKCL MAslMeo5zejWFoQizDttJPs8DDrtrKuF1PkH3A8IKQ9nWsGu0jKlHjFGRw9jfML0 P0t/uzv/Bx1tVWlD0kEH/u99LqFXT7QD -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:48 2025 by rpki-client on console.sobornost.net