$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: /tL5wVNp+331RpfdvA9QZIfUJhhiipl5rf4FY5JtYh8= Subject key identifier: 7D:74:C5:2A:C8:D2:51:1A:DB:24:ED:22:5E:19:C2:50:F5:24:CC:4B Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: C8 Signing time: Sun 27 Apr 2025 04:37:57 +0000 Manifest this update: Sun 27 Apr 2025 04:37:57 +0000 Manifest next update: Sun 04 May 2025 04:37:57 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: xvggtuv3r57n3hq1Sq5eSIv2ZShMA2Lyg5sco8ZlYcw=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Apr 27 04:37:57 2025 GMT Not After : May 4 04:37:57 2025 GMT Subject: CN=680db4a5-6458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9f:8a:90:ce:97:3e:d0:11:97:db:d5:17:5a: 5c:47:09:f8:dd:5b:a3:1f:fc:89:d0:07:b6:e3:04: fb:0f:70:e4:ce:67:52:af:f6:e5:0a:82:ee:0d:88: c4:fa:0d:99:78:b4:b6:9e:86:67:d4:7c:f5:a4:44: 29:38:5f:4d:54:14:db:5b:64:1a:ff:48:4c:3c:6a: 4a:b7:bb:89:bd:4a:3b:30:85:57:a0:49:0f:ef:48: 15:26:01:30:51:0d:ce:76:4e:43:57:e2:c6:41:ed: 33:43:74:3d:f7:92:f3:48:6e:d9:cb:b8:3b:a6:f6: 88:3f:22:e8:d5:ac:31:45:b0:d8:8b:32:4b:92:c0: a7:d6:1b:d0:ac:0b:ad:e7:b2:57:24:5d:70:10:56: ed:ef:a4:86:61:c4:15:c8:42:d1:1c:52:bf:de:80: 10:f9:0b:cd:5a:9b:d6:9f:01:e7:96:5a:45:0a:0b: 2e:7b:6c:ec:2c:fb:4c:24:cc:8d:e9:f5:7c:38:f8: 2f:a5:d1:5e:34:ef:ca:c6:c8:1a:09:ca:81:a5:9c: 65:a5:7e:33:fc:2e:18:29:c0:f6:3c:1e:91:ea:c6: 81:06:86:73:29:40:a7:c3:cb:bc:61:89:00:65:c0: 1e:80:67:6a:dc:d0:31:d7:ae:94:eb:b8:98:2f:de: aa:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:74:C5:2A:C8:D2:51:1A:DB:24:ED:22:5E:19:C2:50:F5:24:CC:4B X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1f:f7:cb:0e:03:70:dc:f1:c8:96:b0:46:79:d3:b8:da:93: c2:f6:cc:a7:db:95:a3:71:5a:e3:f9:65:17:6d:58:cc:85:5e: 34:e6:2b:a3:8b:e5:53:f3:f0:38:26:f5:1a:2a:7d:f7:c1:31: ed:de:4e:00:21:69:3e:03:75:4b:e3:5e:35:49:a6:c3:fe:07: c4:10:63:98:01:46:dc:ea:7c:e6:ef:27:11:25:89:c0:a1:47: 46:13:51:8c:d0:66:83:d8:30:36:fc:0d:38:c2:04:0f:a0:33: f0:2a:f0:1e:51:6f:32:47:76:b3:56:dc:69:cd:6b:c2:a5:84: b9:0c:86:64:05:ea:13:99:c9:cf:19:26:c1:f2:d8:b5:d8:02: 73:ea:08:44:29:bd:8c:8f:a6:a2:e1:49:24:33:ac:49:83:3a: ac:0f:ba:62:7c:13:78:a1:95:a0:eb:b6:0d:86:77:3e:7e:bd: 9c:63:0f:1f:df:f5:c7:d7:27:2a:78:d7:2e:fb:60:ec:10:8f: 21:00:8c:d7:b1:44:99:3d:d8:22:bf:03:e3:28:be:79:91:28: ce:1a:95:df:cd:dd:28:7f:8a:60:0b:8f:cb:98:cc:83:fb:a4: 52:b0:cc:13:0e:03:f6:da:ed:6a:54:65:22:c8:4c:25:c0:99: 67:5b:c6:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwNDI3MDQzNzU3WhcNMjUwNTA0MDQzNzU3WjAYMRYwFAYD VQQDEw02ODBkYjRhNS02NDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxp+KkM6XPtARl9vVF1pcRwn43VujH/yJ0Ae24wT7D3DkzmdSr/blCoLuDYjE +g2ZeLS2noZn1Hz1pEQpOF9NVBTbW2Qa/0hMPGpKt7uJvUo7MIVXoEkP70gVJgEw UQ3Odk5DV+LGQe0zQ3Q995LzSG7Zy7g7pvaIPyLo1awxRbDYizJLksCn1hvQrAut 57JXJF1wEFbt76SGYcQVyELRHFK/3oAQ+QvNWpvWnwHnllpFCgsue2zsLPtMJMyN 6fV8OPgvpdFeNO/KxsgaCcqBpZxlpX4z/C4YKcD2PB6R6saBBoZzKUCnw8u8YYkA ZcAegGdq3NAx166U67iYL96q9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH10xSrI 0lEa2yTtIl4ZwlD1JMxLMB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9CMjM4QTE4NEYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBckly WU9NUFJsRzRLdW1aXzNUSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrH/fLDgNw3PHIlrBGedO42pPC9syn25WjcVrj+WUXbVjMhV405iuj i+VT8/A4JvUaKn33wTHt3k4AIWk+A3VL4141SabD/gfEEGOYAUbc6nzm7ycRJYnA oUdGE1GM0GaD2DA2/A04wgQPoDPwKvAeUW8yR3azVtxpzWvCpYS5DIZkBeoTmcnP GSbB8ti12AJz6ghEKb2Mj6ai4UkkM6xJgzqsD7pifBN4oZWg67YNhnc+fr2cYw8f 3/XH1ycqeNcu+2DsEI8hAIzXsUSZPdgivwPjKL55kSjOGpXfzd0of4pgC4/LmMyD +6RSsMwTDgP22u1qVGUiyEwlwJlnW8aI -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net