$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft File: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft (raw, json) Hash identifier: iAhL2H/P+0cBAOohbenWCWIsyUfugnSw3zMla4+zZCQ= Subject key identifier: C6:07:BC:EB:97:18:FB:2C:B1:48:DE:8E:CB:C8:91:57:F5:00:67:EF Authority key identifier: 97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB Certificate issuer: /CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Certificate serial: 0BA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft Manifest number: 0B8F Signing time: Mon 28 Apr 2025 19:22:15 +0000 Manifest this update: Mon 28 Apr 2025 19:22:15 +0000 Manifest next update: Mon 05 May 2025 19:22:15 +0000 Files and hashes: 1: l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl (hash: sj25P1WlQWiZq1nXQlKypkdMiWBvglRrP+m4actjiYY=) 2: A807146437E411EC9BA3E20AC4F9AE02.roa (hash: dh5ymVZvIc7FqFzTtBzYEQEIMygfVmNQaVU/qA2YVgE=) 3: A6EF086637E411EC9BA3E20AC4F9AE02.roa (hash: K2Zxx9ME49vXDeg1Ffdf+j0UFdQqBnMUQi0IozP8thk=) 4: A64A2A9437E411EC9BA3E20AC4F9AE02.roa (hash: W6nL3EukqFE9RFLXXry6g4CH+1Dbd14zPnwD38PnUxM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2977 (0xba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E9B, serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Validity Not Before: Apr 28 19:22:15 2025 GMT Not After : May 5 19:22:15 2025 GMT Subject: CN=680fd567-cf7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1a:b1:7b:0e:66:22:27:9c:19:ab:fa:9f:5b: 5e:b4:9b:f2:d4:54:86:a4:02:c4:cc:e9:af:af:90: 87:31:ca:63:4c:15:de:72:7d:6f:13:4c:8c:b6:91: 0f:2a:a7:aa:c8:f0:ea:26:5f:64:08:72:ca:f7:d2: f6:57:3d:6a:d9:88:6b:9f:eb:a9:71:22:78:16:5a: be:45:ff:4e:ca:51:19:da:8e:13:0e:86:c4:d5:a6: 9d:06:07:75:b2:31:46:de:35:2e:36:fc:01:09:1f: b8:87:38:15:2f:8e:bf:bf:da:52:8f:51:82:0b:64: 7f:2d:39:c0:c7:d2:d0:c0:a2:d5:81:bf:04:ba:aa: b5:56:c2:a6:2f:15:30:8f:05:8b:4c:38:6e:bd:d6: a3:ae:a3:0b:31:5b:82:14:b0:ce:33:ec:73:f3:25: 5b:48:ae:cd:90:90:5a:54:48:cc:d5:11:74:05:cc: 58:8e:8f:05:f3:3b:9d:13:12:9c:4d:82:5c:12:eb: 06:e2:a1:95:97:ea:c7:ce:39:e0:ca:70:09:45:22: 72:81:f7:0e:0d:ab:38:a8:cf:fa:00:5d:1d:07:fd: 7d:ac:70:e4:ef:fb:2f:dc:25:82:3f:9d:64:2f:57: 64:77:15:da:82:a9:cd:cb:56:6f:0c:b1:98:67:0c: cc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:07:BC:EB:97:18:FB:2C:B1:48:DE:8E:CB:C8:91:57:F5:00:67:EF X509v3 Authority Key Identifier: keyid:97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:56:a4:a4:74:f7:9a:ba:b9:9e:33:c4:7b:e1:b8:85:a0:b7: c8:33:dd:8c:89:af:28:f9:f8:81:6f:ab:c4:04:33:37:50:47: 33:1f:44:08:54:9d:7a:5c:f0:b4:4d:7a:84:c8:39:ca:00:c9: f8:a2:80:24:ba:11:d8:50:52:42:9d:cd:ca:5f:7f:8f:5b:e5: ea:eb:d3:cc:1d:f0:c9:1c:17:50:d0:38:bd:c1:c9:9f:da:a4: 80:54:a1:5b:6a:a1:67:ab:b3:00:6c:d3:1d:22:6c:0f:8a:45: 13:a5:c8:61:47:db:44:2a:35:55:7e:eb:86:25:1e:e6:d0:d4: 92:e3:10:ed:07:10:f2:f4:25:45:8a:b8:71:7d:3a:a9:2b:28: eb:ee:53:03:79:11:c9:c2:67:a0:1b:02:f0:04:42:0a:d6:81: 5f:0a:d2:e0:24:b3:ae:c9:a3:5d:7a:9c:eb:87:64:01:c1:5a: 92:a6:5c:84:aa:64:11:29:65:bb:53:77:f5:05:9e:a7:74:35: ad:0a:91:c4:35:21:f9:31:a9:7d:d8:2b:00:bf:f2:c4:d2:5f: e8:88:b7:a8:07:55:7d:b2:e6:74:a1:9c:61:41:12:ab:67:32: ec:49:63:b4:9e:84:e1:c0:85:d9:55:d4:9f:eb:13:14:9a:fb: 87:ff:16:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlFOUIxMTAvBgNVBAUTKDk3NDk1ODE2RDZEQjQ5REZFREVBQzRDMTc0MjkxMjZG RTNERjk3RkIwHhcNMjUwNDI4MTkyMjE1WhcNMjUwNTA1MTkyMjE1WjAYMRYwFAYD VQQDEw02ODBmZDU2Ny1jZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshqxew5mIiecGav6n1tetJvy1FSGpALEzOmvr5CHMcpjTBXecn1vE0yMtpEP KqeqyPDqJl9kCHLK99L2Vz1q2Yhrn+upcSJ4Flq+Rf9OylEZ2o4TDobE1aadBgd1 sjFG3jUuNvwBCR+4hzgVL46/v9pSj1GCC2R/LTnAx9LQwKLVgb8Euqq1VsKmLxUw jwWLTDhuvdajrqMLMVuCFLDOM+xz8yVbSK7NkJBaVEjM1RF0BcxYjo8F8zudExKc TYJcEusG4qGVl+rHzjngynAJRSJygfcODas4qM/6AF0dB/19rHDk7/sv3CWCP51k L1dkdxXagqnNy1ZvDLGYZwzMjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYHvOuX GPsssUjejsvIkVf1AGfvMB8GA1UdIwQYMBaAFJdJWBbW20nf7erEwXQpEm/j35f7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUU5Qi83QTUzQTYxODI1 QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNkX3Q2c1RCZENrU2ItUGZs X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wwbFlGdGJiU2RfdDZzVEJkQ2tTYi1QZmxfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUU5Qi83QTUzQTYxODI1QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNk X3Q2c1RCZENrU2ItUGZsX3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQVqSkdPeaurmeM8R74biFoLfIM92Mia8o+fiBb6vEBDM3UEczH0QI VJ16XPC0TXqEyDnKAMn4ooAkuhHYUFJCnc3KX3+PW+Xq69PMHfDJHBdQ0Di9wcmf 2qSAVKFbaqFnq7MAbNMdImwPikUTpchhR9tEKjVVfuuGJR7m0NSS4xDtBxDy9CVF irhxfTqpKyjr7lMDeRHJwmegGwLwBEIK1oFfCtLgJLOuyaNdepzrh2QBwVqSplyE qmQRKWW7U3f1BZ6ndDWtCpHENSH5Mal92CsAv/LE0l/oiLeoB1V9suZ0oZxhQRKr ZzLsSWO0noThwIXZVdSf6xMUmvuH/xaC -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:21 2025 by rpki-client on console.sobornost.net