$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft File: tRdNgmVknN0nQmySfRaHddeD1Tg.mft (raw, json) Hash identifier: zKrZ7PHvXx5AnoX/wT+rcKTuAdWUM0ANnieOdGIKXWs= Subject key identifier: 6A:80:0A:C9:56:70:F4:A4:BE:DF:B5:76:74:1C:CA:3B:42:EB:0D:51 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft Manifest number: 0B01 Signing time: Tue 06 May 2025 19:14:21 +0000 Manifest this update: Tue 06 May 2025 19:14:20 +0000 Manifest next update: Tue 13 May 2025 19:14:20 +0000 Files and hashes: 1: tRdNgmVknN0nQmySfRaHddeD1Tg.crl (hash: IleXwbANdyJ0/AYxfRqoZJgCHphxPvQeTA9ONqUN/zM=) 2: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (hash: muZS9WNxEL2wJKlgL2513BvJDYDXcwI4cyb0WW+U1LY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 19:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: May 6 19:14:20 2025 GMT Not After : May 13 19:14:20 2025 GMT Subject: CN=681a5f8c-8ccd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:92:c0:d6:f6:b2:99:80:5c:d0:57:f0:a3:26: 2c:e3:d8:f0:8a:04:9f:89:a7:94:5e:7c:74:de:ca: e4:a1:7b:17:2e:aa:9d:78:73:08:cf:1e:b8:99:13: 76:72:cf:82:d4:b7:47:42:fc:4b:ea:83:16:f0:f6: d4:1e:64:14:8e:16:d2:8f:43:be:e4:81:b3:47:61: 28:40:1d:10:25:e6:f7:30:80:2c:42:79:ab:2a:58: 6b:da:a0:06:07:17:f6:69:d0:df:c4:0e:eb:35:45: 06:b0:26:96:12:32:53:89:76:10:3c:5a:79:62:c7: 26:80:03:8d:b0:3e:37:de:9f:e2:6f:ab:3f:3e:60: 7c:31:41:b4:e8:3d:5e:fa:1f:51:60:e5:6f:4a:4d: a7:a3:95:65:77:68:4d:15:96:4a:2b:c1:85:db:df: 77:a4:77:92:90:a8:cf:c9:fb:31:3e:7f:da:84:51: c3:18:8f:6a:2c:0d:3e:f8:d5:9d:df:1b:83:0c:4b: d4:be:62:a3:f9:b7:ad:0c:5b:02:97:e8:7c:d7:15: b0:4f:40:63:01:57:f4:46:97:e7:81:5c:c6:41:5d: b6:7e:27:f3:cd:e2:fc:b7:29:5f:04:47:61:3d:4d: 90:45:2c:72:79:d5:29:43:d5:c8:2c:21:12:90:75: 62:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:80:0A:C9:56:70:F4:A4:BE:DF:B5:76:74:1C:CA:3B:42:EB:0D:51 X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:4c:f1:b5:60:36:1c:f1:3f:89:11:80:f0:66:4d:02:00:28: d6:0e:d0:9b:1b:35:04:6a:ff:69:df:45:53:09:fd:45:0e:de: 8f:7f:06:6a:30:29:9d:14:7f:69:91:4b:22:be:d9:35:f0:d6: 10:65:cf:73:b8:e6:1a:59:66:ec:a7:7c:6b:6e:42:0d:fe:5a: 40:e5:50:99:1a:94:84:52:cb:ae:1b:b3:dd:14:ba:43:ec:f9: 24:4c:b3:4c:68:3e:7a:11:4b:a7:df:40:04:08:87:30:0d:40: c7:a2:f9:dd:b7:65:13:1a:4f:2b:35:26:04:23:53:84:3b:96: 5a:1e:f2:81:03:9b:5f:19:62:9e:36:2c:e3:31:8b:9d:63:9f: 51:98:71:c7:f9:6c:5f:a8:f9:9a:ec:55:c6:ff:70:c4:4e:a2: ff:38:d2:79:0e:b4:69:76:8b:c1:75:cf:88:3b:f0:c5:d7:f1: 28:ee:42:96:5c:9a:4b:24:5a:c0:04:21:d1:a6:3e:48:f1:b4: 73:91:45:2b:d2:30:5e:eb:cc:b3:9d:83:86:d7:45:d9:b8:aa: f6:c8:41:4d:9b:b5:78:f2:4f:3d:6f:e2:6a:85:69:cb:88:99: 2b:5b:38:02:84:19:6d:f7:0d:f4:d7:02:59:e3:d3:bd:48:83: e8:3a:a7:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwNTA2MTkxNDIwWhcNMjUwNTEzMTkxNDIwWjAYMRYwFAYD VQQDEw02ODFhNWY4Yy04Y2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5LA1vaymYBc0FfwoyYs49jwigSfiaeUXnx03srkoXsXLqqdeHMIzx64mRN2 cs+C1LdHQvxL6oMW8PbUHmQUjhbSj0O+5IGzR2EoQB0QJeb3MIAsQnmrKlhr2qAG Bxf2adDfxA7rNUUGsCaWEjJTiXYQPFp5YscmgAONsD433p/ib6s/PmB8MUG06D1e +h9RYOVvSk2no5Vld2hNFZZKK8GF2993pHeSkKjPyfsxPn/ahFHDGI9qLA0++NWd 3xuDDEvUvmKj+betDFsCl+h81xWwT0BjAVf0RpfngVzGQV22fifzzeL8tylfBEdh PU2QRSxyedUpQ9XILCESkHViZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqACslW cPSkvt+1dnQcyjtC6w1RMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDQ1OS85OUVDODlFQzQyMjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25O MG5RbXlTZlJhSGRkZUQxVGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARTPG1YDYc8T+JEYDwZk0CACjWDtCbGzUEav9p30VTCf1FDt6PfwZq MCmdFH9pkUsivtk18NYQZc9zuOYaWWbsp3xrbkIN/lpA5VCZGpSEUsuuG7PdFLpD 7PkkTLNMaD56EUun30AECIcwDUDHovndt2UTGk8rNSYEI1OEO5ZaHvKBA5tfGWKe NizjMYudY59RmHHH+WxfqPma7FXG/3DETqL/ONJ5DrRpdovBdc+IO/DF1/Eo7kKW XJpLJFrABCHRpj5I8bRzkUUr0jBe68yznYOG10XZuKr2yEFNm7V48k89b+JqhWnL iJkrWzgChBlt9w301wJZ49O9SIPoOqdz -----END CERTIFICATE-----Generated at Tue May 6 22:43:59 2025 by rpki-client on console.sobornost.net