$ rpki-client -vvf rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft File: tkVWXJMbKETS92DqqrDirkvjFBQ.mft (raw, json) Hash identifier: UGI7CuRS03FTCWfBN7kiPS5csnJ2xQG5vma6DqoupBc= Subject key identifier: 67:58:EE:15:2A:CF:5D:99:2B:42:1D:9F:50:4B:AD:DB:35:99:A9:07 Authority key identifier: B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 Certificate issuer: /CN=A9170187/serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft Manifest number: 043A Signing time: Sat 26 Apr 2025 23:56:10 +0000 Manifest this update: Sat 26 Apr 2025 23:56:09 +0000 Manifest next update: Sat 03 May 2025 23:56:09 +0000 Files and hashes: 1: tkVWXJMbKETS92DqqrDirkvjFBQ.crl (hash: CQHoKu6WtcCAjJGrOzTfGJazxZeA5aNGALjYcbhdXoY=) 2: 838DF1B0572011EC905C770CC4F9AE02.roa (hash: jLktry4iXdQWD0/47QB08nrgPUPRx2Qy+Cc/teSX0cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:56:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170187, serialNumber=B645565C931B2844D2F760EAAAB0E2AE4BE31414 Validity Not Before: Apr 26 23:56:09 2025 GMT Not After : May 3 23:56:09 2025 GMT Subject: CN=680d729a-6b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:44:9f:b1:86:46:ee:d2:9d:52:37:2f:39:86: 07:bd:ef:7e:7e:56:07:76:4a:68:96:0b:7d:62:ff: 78:98:b6:51:ad:5a:45:35:b8:dc:05:4c:95:47:b4: 56:b2:62:76:24:e9:ce:37:2f:df:2e:93:7f:bb:c2: 85:40:d5:6c:dc:eb:59:fc:cb:e6:78:05:1a:c1:83: 14:0c:36:51:b5:82:64:39:bb:12:41:a3:32:30:38: c7:21:7c:ae:3e:61:03:ec:56:41:46:7b:85:b2:a3: d2:3c:60:9c:ca:07:b7:77:c4:8e:80:eb:31:7d:88: 1b:8f:ec:03:a7:dc:e0:91:c1:40:0e:89:dc:3e:16: ee:ba:de:b6:38:cb:66:21:77:1a:8e:4a:8a:37:3e: 03:ce:50:fd:b1:a1:44:97:19:90:ca:27:55:b5:e4: 70:c6:d8:51:86:31:35:50:59:95:30:51:72:de:13: 02:2e:c8:21:2c:49:4e:26:da:62:25:6e:23:5e:0b: fd:7d:e5:df:51:5b:92:8e:d2:2e:40:38:b6:63:f5: da:a8:3b:c2:69:a3:fb:80:67:02:29:b6:c5:fb:82: fa:27:b7:14:2e:43:d5:c9:45:c2:0c:bb:62:b7:17: 24:b4:49:95:94:15:b5:41:74:fe:b0:b5:57:56:3d: ca:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:58:EE:15:2A:CF:5D:99:2B:42:1D:9F:50:4B:AD:DB:35:99:A9:07 X509v3 Authority Key Identifier: keyid:B6:45:56:5C:93:1B:28:44:D2:F7:60:EA:AA:B0:E2:AE:4B:E3:14:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkVWXJMbKETS92DqqrDirkvjFBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170187/F1E2A3F8571C11ECBB63FE83C4F9AE02/tkVWXJMbKETS92DqqrDirkvjFBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:0c:d4:88:93:76:c2:06:00:c5:9e:47:27:15:ce:96:c8:92: 6b:ac:ff:66:0c:fe:16:f0:be:f6:0f:29:ea:f4:c6:ba:d4:79: ae:91:cd:eb:28:e1:9f:85:27:8e:67:b9:b4:c9:73:ac:25:4b: f0:b2:6f:2b:99:d1:43:30:34:e1:c4:fa:ac:b7:78:d0:e6:eb: 88:39:01:8d:2c:45:e2:39:1e:31:cc:be:9e:b3:83:16:08:b3: 68:69:89:2c:6e:ad:3f:e4:4a:5a:9c:86:14:27:3a:a2:91:2a: d9:bb:a6:8a:4f:90:85:e0:15:ca:fe:15:0c:96:d0:9e:19:2f: 83:79:b3:42:57:58:c4:13:ad:a5:0e:c2:e0:bf:a7:33:df:4e: 11:17:ee:c7:cc:94:24:1a:8d:b0:cd:88:4c:a7:06:e9:08:42: 6a:88:ff:d7:b0:72:a1:a5:8d:99:e1:f8:bc:fc:b0:d9:45:1b: 84:c8:59:24:cd:71:66:2f:b4:d7:5c:da:27:8b:50:f6:a8:8b: 7f:4d:86:fd:40:54:33:af:0e:4f:ac:4c:64:e7:fc:fb:83:2f: f2:e6:d9:77:69:1a:9a:95:55:fe:6c:04:7e:56:a6:42:86:49: b0:97:ff:3b:9f:70:c6:e7:42:99:a4:47:b1:e1:f0:33:19:6b: 32:d6:ab:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAxODcxMTAvBgNVBAUTKEI2NDU1NjVDOTMxQjI4NDREMkY3NjBFQUFBQjBFMkFF NEJFMzE0MTQwHhcNMjUwNDI2MjM1NjA5WhcNMjUwNTAzMjM1NjA5WjAYMRYwFAYD VQQDEw02ODBkNzI5YS02YjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA80SfsYZG7tKdUjcvOYYHve9+flYHdkpolgt9Yv94mLZRrVpFNbjcBUyVR7RW smJ2JOnONy/fLpN/u8KFQNVs3OtZ/MvmeAUawYMUDDZRtYJkObsSQaMyMDjHIXyu PmED7FZBRnuFsqPSPGCcyge3d8SOgOsxfYgbj+wDp9zgkcFADoncPhbuut62OMtm IXcajkqKNz4DzlD9saFElxmQyidVteRwxthRhjE1UFmVMFFy3hMCLsghLElOJtpi JW4jXgv9feXfUVuSjtIuQDi2Y/XaqDvCaaP7gGcCKbbF+4L6J7cULkPVyUXCDLti txcktEmVlBW1QXT+sLVXVj3KGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdY7hUq z12ZK0Idn1BLrds1makHMB8GA1UdIwQYMBaAFLZFVlyTGyhE0vdg6qqw4q5L4xQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDE4Ny9GMUUyQTNGODU3 MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktFVFM5MkRxcXJEaXJrdmpG QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RrVldYSk1iS0VUUzkyRHFxckRpcmt2akZCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDE4Ny9GMUUyQTNGODU3MUMxMUVDQkI2M0ZFODNDNEY5QUUwMi90a1ZXWEpNYktF VFM5MkRxcXJEaXJrdmpGQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxDNSIk3bCBgDFnkcnFc6WyJJrrP9mDP4W8L72Dynq9Ma61Hmukc3r KOGfhSeOZ7m0yXOsJUvwsm8rmdFDMDThxPqst3jQ5uuIOQGNLEXiOR4xzL6es4MW CLNoaYksbq0/5EpanIYUJzqikSrZu6aKT5CF4BXK/hUMltCeGS+DebNCV1jEE62l DsLgv6cz304RF+7HzJQkGo2wzYhMpwbpCEJqiP/XsHKhpY2Z4fi8/LDZRRuEyFkk zXFmL7TXXNoni1D2qIt/TYb9QFQzrw5PrExk5/z7gy/y5tl3aRqalVX+bAR+VqZC hkmwl/87n3DG50KZpEex4fAzGWsy1qtx -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net