$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft File: vFNsAPhfWQQdnEwpYfciQr9g1R4.mft (raw, json) Hash identifier: TtaKMePt2jz9NHXczTHAXAN/Uaa819m+xkTnmYImQIs= Subject key identifier: 3B:15:35:DA:2F:D2:91:85:2B:07:3E:F9:C4:16:09:59:77:E1:12:05 Authority key identifier: BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E Certificate issuer: /CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Certificate serial: 124C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft Manifest number: 1217 Signing time: Mon 28 Apr 2025 17:23:49 +0000 Manifest this update: Mon 28 Apr 2025 17:23:48 +0000 Manifest next update: Mon 05 May 2025 17:23:48 +0000 Files and hashes: 1: vFNsAPhfWQQdnEwpYfciQr9g1R4.crl (hash: TM8Aj+cBD2s99EQh+JhPZGQhU6JjtDUldO0uYJn9N04=) 2: DA505546B74C11ED916B5A6AC4F9AE02.roa (hash: 9RHwtONKgQdHSDennn4HM2Ikhdy+C6zf57qmecAxamQ=) 3: 3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa (hash: EztUCIPqk3y/a6AcLfvax6DUhCHP6l9BEvQIvIo9iws=) 4: E0ACCAC4ECD211EFA6C15823C4F9AE02.roa (hash: /d3XQ565KopoANcg+pwgBZqGoqy8+pW8EGFbyyXXzys=) 5: 57A84138605911EE8ABC9318C4F9AE02.roa (hash: acU+THblHTmNuI3hvXPa2l7l+23XT3W88AntJDw2zgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4684 (0x124c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860, serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Validity Not Before: Apr 28 17:23:48 2025 GMT Not After : May 5 17:23:48 2025 GMT Subject: CN=680fb9a4-e447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:30:d0:33:02:b8:af:7a:96:b2:d2:5e:d3:30: f4:c9:a9:b4:26:20:3e:a7:53:84:f6:7e:d8:60:04: 4a:03:86:0e:c9:40:12:a3:b7:2d:02:26:35:36:fe: cc:9b:6d:49:b4:c7:6f:ba:87:2e:28:da:60:f9:01: 68:c9:11:cc:c2:97:f8:32:f2:c8:61:ec:37:68:70: b0:b4:cc:c0:2a:b9:4b:e3:64:f8:40:e8:a8:69:83: 3c:47:46:d7:53:5f:8a:97:86:4e:25:e6:f3:44:6b: 71:83:06:6f:a9:97:d7:c2:94:60:50:5b:ec:c6:1d: 60:b8:a2:cd:4e:05:83:37:78:98:c0:24:b8:d8:6f: 1e:2c:58:3b:6c:af:dc:9c:29:af:6f:2d:6e:68:db: 6b:6c:c9:b1:f1:de:4d:23:47:b6:7c:ad:ff:ed:32: 6f:f7:2b:73:40:da:a1:e2:68:de:f4:32:3c:58:17: 4c:2a:98:c8:ec:8e:70:55:76:ab:4b:e4:e9:af:65: b8:7c:01:02:7c:88:bd:26:ed:d4:06:2b:2b:ac:ab: 11:24:f4:6d:27:7a:28:4c:1a:14:2e:18:5f:0f:c6: 04:01:e5:a8:cf:dd:ac:79:da:cc:84:6a:31:7c:23: e1:4d:e0:00:70:18:5a:e9:c2:d6:21:c6:44:e1:e3: 0b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:15:35:DA:2F:D2:91:85:2B:07:3E:F9:C4:16:09:59:77:E1:12:05 X509v3 Authority Key Identifier: keyid:BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:69:27:70:18:18:5f:74:4b:a7:86:f8:8f:52:42:ae:43:90: 6d:11:80:a0:f2:24:47:ef:d0:73:ca:ee:97:34:87:11:fc:f0: c2:f8:81:73:c2:9b:6b:62:1d:ba:7d:58:d0:d2:00:46:14:6a: 53:da:74:4f:4f:6a:39:1a:06:9b:25:e9:32:c6:f5:6a:6c:36: af:61:7b:86:b3:7a:9b:99:de:58:09:3a:0d:ba:a0:f5:5e:3a: fb:05:e3:7a:b1:5a:24:9e:5c:65:cc:28:de:4f:0f:55:7a:25: 76:14:fe:db:7d:e3:9c:0a:34:b9:24:bd:4e:4f:58:e7:95:dd: b8:d4:5c:67:a7:e6:b1:85:18:6a:53:2e:91:3b:dc:8d:f1:76: 3d:08:f5:03:b9:2f:66:5b:46:e8:a9:0e:dc:5b:80:26:a3:af: 92:a2:fe:e8:06:07:38:44:7e:06:b1:71:d4:d2:f9:80:e6:4a: 9d:9b:b1:53:d0:c3:c6:64:13:85:4c:dd:22:97:84:49:60:26: b3:0c:bb:08:0a:7d:9d:50:49:0c:bf:4e:2d:a7:32:fc:0a:e9: 31:42:1c:06:e0:90:ca:80:86:17:1c:75:34:c2:9a:50:07:5d: 1f:8b:57:be:2a:97:1f:35:d6:3c:69:c3:2c:4f:a6:a5:44:a9: b9:1f:07:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKEJDNTM2QzAwRjg1RjU5MDQxRDlDNEMyOTYxRjcyMjQy QkY2MEQ1MUUwHhcNMjUwNDI4MTcyMzQ4WhcNMjUwNTA1MTcyMzQ4WjAYMRYwFAYD VQQDEw02ODBmYjlhNC1lNDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8TDQMwK4r3qWstJe0zD0yam0JiA+p1OE9n7YYARKA4YOyUASo7ctAiY1Nv7M m21JtMdvuocuKNpg+QFoyRHMwpf4MvLIYew3aHCwtMzAKrlL42T4QOioaYM8R0bX U1+Kl4ZOJebzRGtxgwZvqZfXwpRgUFvsxh1guKLNTgWDN3iYwCS42G8eLFg7bK/c nCmvby1uaNtrbMmx8d5NI0e2fK3/7TJv9ytzQNqh4mje9DI8WBdMKpjI7I5wVXar S+Tpr2W4fAECfIi9Ju3UBisrrKsRJPRtJ3ooTBoULhhfD8YEAeWoz92sedrMhGox fCPhTeAAcBha6cLWIcZE4eMLywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsVNdov 0pGFKwc++cQWCVl34RIFMB8GA1UdIwQYMBaAFLxTbAD4X1kEHZxMKWH3IkK/YNUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC9CNDAxQzk4MkU5 NzAxMUU4QjAzNTkzNTlDNEY5QUUwMi92Rk5zQVBoZldRUWRuRXdwWWZjaVFyOWcx UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZGTnNBUGhmV1FRZG5Fd3BZZmNpUXI5ZzFSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDg2MC9CNDAxQzk4MkU5NzAxMUU4QjAzNTkzNTlDNEY5QUUwMi92Rk5zQVBoZldR UWRuRXdwWWZjaVFyOWcxUjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4aSdwGBhfdEunhviPUkKuQ5BtEYCg8iRH79Bzyu6XNIcR/PDC+IFz wptrYh26fVjQ0gBGFGpT2nRPT2o5GgabJekyxvVqbDavYXuGs3qbmd5YCToNuqD1 Xjr7BeN6sVoknlxlzCjeTw9VeiV2FP7bfeOcCjS5JL1OT1jnld241Fxnp+axhRhq Uy6RO9yN8XY9CPUDuS9mW0boqQ7cW4Amo6+Sov7oBgc4RH4GsXHU0vmA5kqdm7FT 0MPGZBOFTN0il4RJYCazDLsICn2dUEkMv04tpzL8CukxQhwG4JDKgIYXHHU0wppQ B10fi1e+KpcfNdY8acMsT6alRKm5Hweh -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:38 2025 by rpki-client on console.sobornost.net