$ rpki-client -vvf rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft File: 1qn8yzagJxy8XxErtyBaV7n0hPc.mft (raw, json) Hash identifier: hoLuADchlDFC9OgvNmxA8+0IBmLWQRimeXrQaA6wLqM= Subject key identifier: 5A:01:DD:4C:38:DE:B0:73:0A:88:70:68:85:1C:DB:B0:37:C6:D3:14 Authority key identifier: D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 Certificate issuer: /CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Certificate serial: 03EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft Manifest number: 03DF Signing time: Sun 27 Apr 2025 00:14:36 +0000 Manifest this update: Sun 27 Apr 2025 00:14:36 +0000 Manifest next update: Sun 04 May 2025 00:14:36 +0000 Files and hashes: 1: 1qn8yzagJxy8XxErtyBaV7n0hPc.crl (hash: rmA1RdHZJYsHj8AoDmolX7Z3HELGFHv7I4Aj9Qn/ntQ=) 2: A34E20703F3411EF9DF9274AC4F9AE02.roa (hash: mj7Quo5wKTbG3d5ij/IP0EyOkfhXPi1COcacV2q2awg=) 3: 819150603F3411EF85BAC749C4F9AE02.roa (hash: W4tDaOtoueXLJGV231Xq5px334ORbAFdGWpLgfvtl8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168126, serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Validity Not Before: Apr 27 00:14:36 2025 GMT Not After : May 4 00:14:36 2025 GMT Subject: CN=680d76ec-f74b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:eb:60:52:7e:4d:1c:32:af:da:68:5b:65:1c: 03:44:3f:52:c1:9f:a6:ce:d2:98:de:80:a2:a2:3f: 93:5d:61:bd:6a:fc:2e:ce:da:6c:d2:e9:bb:a3:de: a2:88:8f:78:2e:d0:01:c6:ce:c0:62:ac:d6:b2:9f: 17:c4:09:1c:89:26:6c:85:00:83:ea:18:3b:7c:04: bd:df:74:8b:4f:d7:08:df:d6:0f:67:a0:4c:c1:a2: 64:93:07:59:1a:1b:96:87:bf:11:f1:6c:a6:40:fb: d5:cb:b3:5e:9f:cd:1c:37:1c:61:65:e3:82:e0:77: 07:0b:90:46:ee:8a:42:e1:dd:c3:99:72:45:1a:d2: ef:4e:7e:d9:34:46:87:00:4c:bc:e2:c2:bb:78:da: fc:16:d2:73:fe:ba:a5:83:b9:d1:aa:0b:9a:75:d1: a3:59:1e:6d:27:ac:b4:9e:0d:81:7c:f8:45:6b:c1: 38:27:eb:69:b7:86:6a:d3:d8:f9:50:e0:6e:43:03: 66:15:21:bc:e8:c6:2c:08:cd:0e:70:63:f1:05:48: 5d:55:4f:9a:bd:c4:22:37:df:ad:cc:62:c3:1c:e7: da:83:d6:98:04:ee:46:ca:5c:90:1b:b0:ec:39:b0: 3d:e7:52:a7:32:4e:2b:f4:3f:00:15:57:33:08:b5: ec:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:01:DD:4C:38:DE:B0:73:0A:88:70:68:85:1C:DB:B0:37:C6:D3:14 X509v3 Authority Key Identifier: keyid:D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:2e:b0:d3:7a:6a:ed:bc:68:c9:28:7f:08:8a:bb:b8:dd:53: a6:fb:3d:5d:2c:35:fb:b0:8d:fc:48:29:cc:d1:25:e4:82:f6: b7:fa:c1:19:c7:10:0b:bd:62:a9:d9:86:42:96:bf:1e:42:be: 59:58:52:1f:df:03:cd:d6:f4:5d:76:2c:a6:e3:78:f9:9b:5e: a9:f6:5e:62:97:62:00:bf:58:94:57:14:f5:eb:6f:48:e3:13: 11:68:e5:a5:fc:aa:51:df:c8:14:ee:d1:e7:a0:2f:44:d1:e0: b9:2f:6a:7e:21:c3:95:16:86:6f:4b:e6:e4:05:d6:fe:25:73: 75:d9:f5:86:b9:78:44:15:f6:b3:08:b8:21:3e:37:41:4f:d1: f9:c1:5c:7a:05:e0:e2:35:f1:ff:ef:83:94:9c:99:c3:90:d0: cb:e5:22:13:63:70:a7:f5:d5:71:2b:da:49:cf:5a:78:6e:e6: dd:91:be:f0:e8:58:d9:ff:63:d1:94:a5:47:7a:66:8b:dc:43: 05:32:83:96:c1:b2:c8:c6:77:87:69:54:61:90:74:a2:96:f6: 63:2c:2e:5d:86:4c:69:e3:f9:ed:2b:a2:7e:fd:b7:c7:12:e7: 6d:c3:61:d7:37:df:a7:6c:a8:d7:4b:d0:63:1a:f4:1d:62:58: 70:c9:1d:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxMjYxMTAvBgNVBAUTKEQ2QTlGQ0NCMzZBMDI3MUNCQzVGMTEyQkI3MjA1QTU3 QjlGNDg0RjcwHhcNMjUwNDI3MDAxNDM2WhcNMjUwNTA0MDAxNDM2WjAYMRYwFAYD VQQDEw02ODBkNzZlYy1mNzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0etgUn5NHDKv2mhbZRwDRD9SwZ+mztKY3oCioj+TXWG9avwuztps0um7o96i iI94LtABxs7AYqzWsp8XxAkciSZshQCD6hg7fAS933SLT9cI39YPZ6BMwaJkkwdZ GhuWh78R8WymQPvVy7Nen80cNxxhZeOC4HcHC5BG7opC4d3DmXJFGtLvTn7ZNEaH AEy84sK7eNr8FtJz/rqlg7nRqguaddGjWR5tJ6y0ng2BfPhFa8E4J+tpt4Zq09j5 UOBuQwNmFSG86MYsCM0OcGPxBUhdVU+avcQiN9+tzGLDHOfag9aYBO5GylyQG7Ds ObA951KnMk4r9D8AFVczCLXsSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFoB3Uw4 3rBzCohwaIUc27A3xtMUMB8GA1UdIwQYMBaAFNap/Ms2oCccvF8RK7cgWle59IT3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODEyNi8xNTdGNjZFQTgw MDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4eThYeEVydHlCYVY3bjBo UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFxbjh5emFnSnh5OFh4RXJ0eUJhVjduMGhQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODEyNi8xNTdGNjZFQTgwMDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4 eThYeEVydHlCYVY3bjBoUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLLrDTemrtvGjJKH8Iiru43VOm+z1dLDX7sI38SCnM0SXkgva3+sEZ xxALvWKp2YZClr8eQr5ZWFIf3wPN1vRddiym43j5m16p9l5il2IAv1iUVxT1629I 4xMRaOWl/KpR38gU7tHnoC9E0eC5L2p+IcOVFoZvS+bkBdb+JXN12fWGuXhEFfaz CLghPjdBT9H5wVx6BeDiNfH/74OUnJnDkNDL5SITY3Cn9dVxK9pJz1p4bubdkb7w 6FjZ/2PRlKVHemaL3EMFMoOWwbLIxneHaVRhkHSilvZjLC5dhkxp4/ntK6J+/bfH Eudtw2HXN9+nbKjXS9BjGvQdYlhwyR3N -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:58 2025 by rpki-client on console.sobornost.net