$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: JUJ3fiLWqPfp27izd0sOBwXqNImrmdcrARiSv1q8BDo= Subject key identifier: E9:50:70:8E:5E:E1:C0:45:16:7C:AC:0E:26:50:E6:18:BB:2A:E6:85 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 0142 Signing time: Sun 27 Apr 2025 03:15:49 +0000 Manifest this update: Sun 27 Apr 2025 03:15:49 +0000 Manifest next update: Sun 04 May 2025 03:15:49 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: SYV4SqOAbw3S6NsL0Q4EIgQ8s762FlKdrx8pCT0Zn5c=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: z6BHSk4cb9I8/kB9JR0TRRNQXU/qOZQ+pN/Lst+leW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Apr 27 03:15:49 2025 GMT Not After : May 4 03:15:49 2025 GMT Subject: CN=680da165-1428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:e0:79:fa:bd:e9:b2:6f:96:8c:da:ae:6b:56: a6:92:65:75:a5:94:a8:2e:81:fa:d2:ba:54:20:31: 49:34:39:fc:b2:bf:fc:ff:2a:f1:43:e6:e2:29:c2: 34:86:04:db:63:a7:5b:95:73:eb:a5:a8:5d:ec:b4: 74:62:c8:72:45:9c:74:9f:40:db:0e:8b:4e:c8:c9: 25:d4:0c:50:62:c6:de:46:de:72:47:c0:52:69:c6: 43:23:81:df:ca:7c:a2:af:dd:54:0d:ac:bd:8f:60: 86:9c:46:7d:c7:23:ca:92:d4:a3:87:cc:31:8f:c1: 02:83:fc:c6:38:e1:41:fd:34:23:34:e0:2a:7e:32: 71:26:a9:20:c7:2a:75:b8:3b:cd:4b:7c:0e:7a:d2: 23:76:5f:2a:ea:a5:be:a6:13:d4:5d:8e:ce:c2:89: f4:58:f9:cf:fa:6b:53:24:a5:4a:b6:f9:90:15:3f: fd:61:18:50:37:42:2f:dd:3c:bd:19:ca:34:89:be: f8:84:3e:ef:bf:2e:5d:8d:9e:2f:22:a1:39:92:25: 95:35:f6:88:5f:79:5b:97:13:39:bf:90:17:bf:6a: 81:b1:d5:d4:cc:da:78:d5:b2:dc:c2:68:f7:e0:48: fa:3a:2f:17:12:ea:04:a0:d0:12:ea:49:c8:54:57: d3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:50:70:8E:5E:E1:C0:45:16:7C:AC:0E:26:50:E6:18:BB:2A:E6:85 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:00:fc:94:9e:2e:e7:e1:51:b7:50:15:62:b9:4d:18:d2:f9: 65:3c:d0:2c:76:38:03:56:59:ac:00:34:c3:e4:69:70:30:62: 0c:be:ef:54:0a:e5:b5:a2:39:54:2f:a5:1b:50:32:7c:42:d8: b6:cf:ec:e7:5f:e9:63:f2:50:ce:10:a1:7d:3b:ac:67:39:de: 40:94:e7:74:74:4b:ae:5e:d7:ff:1f:6f:06:cf:26:62:8c:c6: 1a:60:cf:82:e6:c2:bb:b0:f5:9b:35:c8:8d:35:a9:bb:0d:52: 90:d1:8e:36:66:32:75:84:93:f2:2d:8d:f7:25:2d:a5:f9:1b: 6b:1c:e6:37:21:94:b0:f5:9e:c6:34:3c:8c:db:6b:3b:dd:98: ee:74:46:20:9b:63:c0:fd:ab:64:e3:9e:8a:47:71:e9:4f:55: af:ed:23:85:18:5a:29:3f:9b:f8:ab:d5:0e:44:ac:25:51:e7: d0:17:92:b7:d3:79:3e:2f:f8:8d:dc:c1:4f:cb:d2:5f:42:34: b8:7c:61:96:c6:29:b8:fa:1f:e3:91:d5:4a:54:2f:ac:96:18: d8:e4:1d:00:d6:8c:f7:f3:62:52:96:4b:21:aa:a9:96:66:3b: f7:80:de:fb:10:96:af:28:e7:66:b1:25:0c:49:6a:a1:e4:75: ea:7b:2e:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUwNDI3MDMxNTQ5WhcNMjUwNTA0MDMxNTQ5WjAYMRYwFAYD VQQDEw02ODBkYTE2NS0xNDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9OB5+r3psm+WjNqua1amkmV1pZSoLoH60rpUIDFJNDn8sr/8/yrxQ+biKcI0 hgTbY6dblXPrpahd7LR0YshyRZx0n0DbDotOyMkl1AxQYsbeRt5yR8BSacZDI4Hf ynyir91UDay9j2CGnEZ9xyPKktSjh8wxj8ECg/zGOOFB/TQjNOAqfjJxJqkgxyp1 uDvNS3wOetIjdl8q6qW+phPUXY7Owon0WPnP+mtTJKVKtvmQFT/9YRhQN0Iv3Ty9 Gco0ib74hD7vvy5djZ4vIqE5kiWVNfaIX3lblxM5v5AXv2qBsdXUzNp41bLcwmj3 4Ej6Oi8XEuoEoNAS6knIVFfTJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlQcI5e 4cBFFnysDiZQ5hi7KuaFMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+APyUni7n4VG3UBViuU0Y0vllPNAsdjgDVlmsADTD5GlwMGIMvu9U CuW1ojlUL6UbUDJ8Qti2z+znX+lj8lDOEKF9O6xnOd5AlOd0dEuuXtf/H28GzyZi jMYaYM+C5sK7sPWbNciNNam7DVKQ0Y42ZjJ1hJPyLY33JS2l+RtrHOY3IZSw9Z7G NDyM22s73ZjudEYgm2PA/atk456KR3HpT1Wv7SOFGFopP5v4q9UORKwlUefQF5K3 03k+L/iN3MFPy9JfQjS4fGGWxim4+h/jkdVKVC+slhjY5B0A1oz382JSlkshqqmW Zjv3gN77EJavKOdmsSUMSWqh5HXqey6V -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net