$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: sBw+rG4eSV+l4Tq+g5lQ97uZjRC34ivFZWw8ae7cTAQ= Subject key identifier: F5:7E:0C:C2:79:5C:DC:F3:D7:B5:2A:66:17:CE:D5:6E:0F:9C:7C:B8 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: 6C Signing time: Sun 27 Apr 2025 05:45:20 +0000 Manifest this update: Sun 27 Apr 2025 05:45:19 +0000 Manifest next update: Sun 04 May 2025 05:45:19 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: jzmLJaKhmbeEdXpT0EQbMJXwEQtD1FQEE0s5UQQrCys=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: RrqE2FvhQsWooo2STNcNmbHYOAPrQ1yGVEmXNwdzve4=) 3: 2593F55EBB2D11EF958B1257C4F9AE02.roa (hash: jEtmqnpChnquvMhQ+zoC7zY7voYqL/7oT1xiWD/K3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Apr 27 05:45:19 2025 GMT Not After : May 4 05:45:19 2025 GMT Subject: CN=680dc46f-d937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7d:dc:76:8e:c1:4e:f5:b7:26:4a:10:af:f8: fd:f2:28:7f:da:4a:f4:aa:8f:76:da:7b:f3:f7:50: a4:0d:7d:dd:f5:fb:51:38:87:2f:16:4d:9a:ed:91: b3:e0:97:c3:0c:c0:b6:2b:49:6c:6b:f3:65:1e:ca: 98:10:53:38:c7:4f:97:b3:57:3d:ac:b2:b2:89:7f: a1:7d:86:7d:3f:f2:f9:5c:ac:06:47:bc:83:1f:73: c1:79:f7:d0:82:94:58:5b:51:86:9b:a5:e8:f9:4d: 85:8e:70:90:90:17:ef:0f:c7:37:55:10:80:46:ec: 17:5f:b7:91:2b:d0:78:75:81:a0:8c:a4:d7:90:59: 9b:1c:f8:e4:f5:dc:40:40:74:84:b8:17:52:0e:5f: 66:12:99:95:cd:d0:d0:65:fe:ca:d4:21:92:8f:3f: 50:c6:b6:c5:68:5e:0f:57:28:64:9f:5e:91:1b:12: e9:bc:c9:de:a1:74:ce:6a:0d:95:9b:4e:d9:1c:09: 5f:a6:d6:2d:77:b4:3e:b9:e6:2d:ef:ff:89:82:79: 2a:69:4d:1d:d8:75:24:c7:4d:8d:91:98:ca:92:21: 40:5b:67:48:ff:3a:56:24:8d:99:b9:2e:9e:c4:01: 87:96:70:91:2e:a5:98:91:73:bc:24:58:4b:a9:85: 20:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7E:0C:C2:79:5C:DC:F3:D7:B5:2A:66:17:CE:D5:6E:0F:9C:7C:B8 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:a3:90:5f:85:f5:2d:e1:bd:43:ec:fc:c4:9b:4f:fc:d1:f9: 24:3e:02:c6:a1:1e:aa:39:82:b1:63:bf:f4:26:76:67:df:04: 68:b4:f8:d5:b1:27:b1:90:d4:39:26:d4:d0:a5:36:e1:de:69: b2:1c:68:e4:68:79:53:60:fc:66:7e:ae:91:c8:9b:db:8e:e6: 8a:5c:63:bc:3e:77:e5:98:a1:5f:4c:49:60:7b:96:2a:b6:38: 3a:18:e5:4d:d3:47:59:f2:e5:88:ff:21:00:89:da:28:26:bf: 26:4d:fa:4a:e8:ba:77:4d:ad:18:7f:88:9b:aa:00:a2:cb:98: 53:1e:d1:cc:16:ad:cb:9d:77:f0:e9:ae:f1:cd:f6:72:05:be: 8f:66:34:3f:72:f9:4a:ea:dc:4a:cf:6c:a1:fe:25:b8:5d:9e: f7:ef:35:80:42:b2:b9:4d:8b:b9:99:bd:8a:78:19:5b:8a:a8: 93:c5:9b:0d:ac:37:58:61:ae:b1:28:85:61:39:32:18:66:48: 6b:02:48:b8:02:01:08:cc:10:a2:a1:98:b7:4d:63:15:a1:f6: 54:24:59:fb:b0:94:06:13:eb:78:f9:6a:d1:c0:a8:e5:a2:4d: 9b:8a:f5:1b:2a:8e:01:f5:de:f4:d4:02:68:09:4c:22:fb:8e: a4:81:14:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoNjkxOEFBNzFGMzZCMDQ2MzUzQTY1Q0MwODk3OEIxOEVG RkI5RjVDNjAeFw0yNTA0MjcwNTQ1MTlaFw0yNTA1MDQwNTQ1MTlaMBgxFjAUBgNV BAMTDTY4MGRjNDZmLWQ5MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4fdx2jsFO9bcmShCv+P3yKH/aSvSqj3bae/P3UKQNfd31+1E4hy8WTZrtkbPg l8MMwLYrSWxr82UeypgQUzjHT5ezVz2ssrKJf6F9hn0/8vlcrAZHvIMfc8F599CC lFhbUYabpej5TYWOcJCQF+8PxzdVEIBG7Bdft5Er0Hh1gaCMpNeQWZsc+OT13EBA dIS4F1IOX2YSmZXN0NBl/srUIZKPP1DGtsVoXg9XKGSfXpEbEum8yd6hdM5qDZWb TtkcCV+m1i13tD655i3v/4mCeSppTR3YdSTHTY2RmMqSIUBbZ0j/OlYkjZm5Lp7E AYeWcJEupZiRc7wkWEuphSCxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9X4Mwnlc 3PPXtSpmF87Vbg+cfLgwHwYDVR0jBBgwFoAUaRiqcfNrBGNTplzAiXixjv+59cYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzM3NDAyQURFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTlj WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVJpcWNmTnJCR05UcGx6QWlYaXhqdi01OWNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzM3NDAyQURFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyL2FSaXFjZk5yQkdO VHBsekFpWGl4anYtNTljWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJujkF+F9S3hvUPs/MSbT/zR+SQ+AsahHqo5grFjv/QmdmffBGi0+NWx J7GQ1Dkm1NClNuHeabIcaORoeVNg/GZ+rpHIm9uO5opcY7w+d+WYoV9MSWB7liq2 ODoY5U3TR1ny5Yj/IQCJ2igmvyZN+kroundNrRh/iJuqAKLLmFMe0cwWrcudd/Dp rvHN9nIFvo9mND9y+Urq3ErPbKH+JbhdnvfvNYBCsrlNi7mZvYp4GVuKqJPFmw2s N1hhrrEohWE5MhhmSGsCSLgCAQjMEKKhmLdNYxWh9lQkWfuwlAYT63j5atHAqOWi TZuK9RsqjgH13vTUAmgJTCL7jqSBFDs= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net