$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft File: 9bzqkIXorbqorCGgTlPb_sMgvOI.mft (raw, json) Hash identifier: uvkQK1ayDoprCMKHHle0ndL5Yff0u1Wtq5h5zWpYzh4= Subject key identifier: A6:5B:27:34:53:77:0B:A1:F5:FD:5A:47:5B:F7:B8:87:C1:33:A0:FB Authority key identifier: F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 Certificate issuer: /CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft Manifest number: 0141 Signing time: Mon 28 Apr 2025 15:53:30 +0000 Manifest this update: Mon 28 Apr 2025 15:53:29 +0000 Manifest next update: Mon 05 May 2025 15:53:29 +0000 Files and hashes: 1: 9bzqkIXorbqorCGgTlPb_sMgvOI.crl (hash: ygE6VPD/UQ201Vb8twJHBvC1IQBWgFErMwLPZwaQO44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Validity Not Before: Apr 28 15:53:29 2025 GMT Not After : May 5 15:53:29 2025 GMT Subject: CN=680fa479-d98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:32:73:8f:cf:24:76:6e:a3:0a:32:a4:eb:bb: 51:b6:19:c5:12:44:6f:b3:18:88:34:98:aa:6b:e2: 54:b5:65:e2:fc:4d:ce:83:8b:21:67:da:2e:91:64: 3b:d3:9b:23:14:8b:5e:dc:df:75:02:bc:db:d3:54: b6:dd:fd:87:15:c9:c9:21:cc:ec:b6:d3:bf:20:b6: b0:d1:1b:46:d3:28:74:e5:63:63:cd:5d:ab:ad:20: b4:75:59:a4:95:72:35:9a:2f:6d:4d:2b:9a:68:17: a4:5b:a8:91:95:15:08:03:2a:35:dd:fe:77:b4:2f: c9:cc:59:84:7a:db:b6:80:14:d9:ba:9f:38:a3:01: 41:d9:ad:3c:53:05:e3:31:53:cb:40:7d:73:34:ca: a5:f9:94:a9:24:94:fe:08:b5:e7:23:c8:4c:4c:8b: 73:cc:12:c2:31:d0:af:c4:e5:d0:84:d6:22:06:1f: 49:ff:fd:79:5b:ec:94:f5:74:1f:2e:24:68:97:0a: 04:99:ef:2f:c3:1c:3f:bc:71:84:eb:c9:b3:0c:4f: a5:86:6e:86:7d:c0:fc:f2:85:9b:20:24:87:a7:22: 50:0c:6a:71:1f:7e:d6:b2:c8:03:3c:52:7a:08:c0: 00:c2:0a:7e:8d:2d:10:e9:d4:33:76:47:d4:09:e8: 52:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5B:27:34:53:77:0B:A1:F5:FD:5A:47:5B:F7:B8:87:C1:33:A0:FB X509v3 Authority Key Identifier: keyid:F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:3c:9c:b7:7f:24:89:ee:46:1b:34:f7:3e:7a:be:cf:5b:d6: cd:95:36:c0:b9:cf:70:86:7b:ae:6f:51:15:85:66:16:9c:ee: 07:d7:86:c6:f4:5f:26:fa:9d:a0:82:2d:07:0c:4a:8d:3c:26: e6:0e:52:ab:22:42:49:8a:00:ee:30:31:73:95:8e:97:90:1c: b2:e8:87:3a:68:6b:1e:0a:ad:20:bc:db:53:9c:95:63:2e:10: 5f:24:87:0f:70:0a:65:21:eb:67:d4:a8:a8:79:0f:3e:e0:fe: 14:e6:f6:0c:b0:20:e0:9b:dc:64:9c:cd:63:23:5b:e6:11:2b: 15:a0:97:63:81:83:1f:5e:b3:96:dc:00:16:7a:73:af:a7:b1: 95:c9:a1:0a:8e:0b:a1:75:02:e3:7c:89:c4:eb:b1:e4:de:b6: c3:cd:e5:aa:ef:3a:aa:05:fa:b2:6a:5f:22:bd:4e:bd:17:7d: 40:42:39:0c:2f:58:45:c1:af:fd:35:93:c1:3e:11:95:d4:aa: f1:68:ad:a9:70:f3:64:58:9d:c9:16:56:f7:63:77:15:f5:57: fc:36:8f:68:ec:3c:ae:1c:f5:bd:1f:f4:9c:62:bd:b2:e1:44: 14:b5:75:de:39:9e:bf:e5:11:3b:78:30:1c:d3:5e:97:ef:c5: 73:25:c0:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKEY1QkNFQTkwODVFOEFEQkFBOEFDMjFBMDRFNTNEQkZF QzMyMEJDRTIwHhcNMjUwNDI4MTU1MzI5WhcNMjUwNTA1MTU1MzI5WjAYMRYwFAYD VQQDEw02ODBmYTQ3OS1kOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jJzj88kdm6jCjKk67tRthnFEkRvsxiINJiqa+JUtWXi/E3Og4shZ9oukWQ7 05sjFIte3N91Arzb01S23f2HFcnJIczsttO/ILaw0RtG0yh05WNjzV2rrSC0dVmk lXI1mi9tTSuaaBekW6iRlRUIAyo13f53tC/JzFmEetu2gBTZup84owFB2a08UwXj MVPLQH1zNMql+ZSpJJT+CLXnI8hMTItzzBLCMdCvxOXQhNYiBh9J//15W+yU9XQf LiRolwoEme8vwxw/vHGE68mzDE+lhm6GfcD88oWbICSHpyJQDGpxH37WssgDPFJ6 CMAAwgp+jS0Q6dQzdkfUCehSJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZbJzRT dwuh9f1aR1v3uIfBM6D7MB8GA1UdIwQYMBaAFPW86pCF6K26qKwhoE5T2/7DILzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS9BMjk4OEYzODQw QUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3JicW9yQ0dnVGxQYl9zTWd2 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlienFrSVhvcmJxb3JDR2dUbFBiX3NNZ3ZPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS9BMjk4OEYzODQwQUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3Ji cW9yQ0dnVGxQYl9zTWd2T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkPJy3fySJ7kYbNPc+er7PW9bNlTbAuc9whnuub1EVhWYWnO4H14bG 9F8m+p2ggi0HDEqNPCbmDlKrIkJJigDuMDFzlY6XkByy6Ic6aGseCq0gvNtTnJVj LhBfJIcPcAplIetn1KioeQ8+4P4U5vYMsCDgm9xknM1jI1vmESsVoJdjgYMfXrOW 3AAWenOvp7GVyaEKjguhdQLjfInE67Hk3rbDzeWq7zqqBfqyal8ivU69F31AQjkM L1hFwa/9NZPBPhGV1KrxaK2pcPNkWJ3JFlb3Y3cV9Vf8No9o7DyuHPW9H/ScYr2y 4UQUtXXeOZ6/5RE7eDAc016X78VzJcC0 -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:09 2025 by rpki-client on console.sobornost.net