$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: V0UlqYAh0fvYCMI3mdm92rf+U/TiatuTVChucqqToHw= Subject key identifier: 37:7E:9A:F5:50:6D:8C:6E:4C:33:25:BF:E9:80:1C:8A:EC:7F:54:84 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: F9 Signing time: Sun 27 Apr 2025 04:07:26 +0000 Manifest this update: Sun 27 Apr 2025 04:07:26 +0000 Manifest next update: Sun 04 May 2025 04:07:26 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: QNIcTOVhCS47j06jTskgViRJvD3s5ruAGdjhzmNjkwc=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Apr 27 04:07:26 2025 GMT Not After : May 4 04:07:26 2025 GMT Subject: CN=680dad7e-e441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:dd:d2:29:8a:fe:d2:39:76:96:8a:10:5d: 11:c0:bd:45:74:30:b9:66:22:e9:e2:46:4b:35:37: 63:1a:8d:5d:08:85:75:30:8f:8e:92:71:8d:48:bf: b7:64:eb:a7:bb:eb:27:f8:94:de:aa:2c:6e:73:7d: 0d:14:4a:16:27:18:ac:47:9a:fb:87:18:ae:7d:f3: 04:2a:0a:b5:9b:e9:84:86:4a:81:d2:3d:c5:f3:bd: ad:f8:89:50:93:1c:4c:7e:fc:69:79:2e:8a:5e:ca: 33:99:ec:f8:68:1c:18:f6:5d:f7:fc:9e:b9:90:72: d4:2a:fa:b4:7d:88:d7:27:77:6a:44:27:07:77:a1: 5f:a0:5a:fb:6b:74:8f:1b:20:17:16:2d:5f:aa:1b: 40:19:d7:18:88:7f:9e:09:a4:5b:8d:e7:79:5d:64: 0f:8f:0c:5b:69:08:50:7c:18:95:34:9b:b8:b5:a1: 1a:6f:dd:68:16:a3:48:e1:ab:79:0f:9f:ff:20:76: d5:c0:b5:73:03:32:e3:3b:45:21:6f:01:d5:a7:e1: bf:e2:74:34:d4:b8:de:98:7d:7a:1a:70:30:4d:2c: c1:47:97:14:c3:6f:14:a0:11:f2:b4:f0:8a:2a:fc: 64:c4:c4:d5:43:ad:00:8c:cf:02:f4:e0:53:28:3b: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7E:9A:F5:50:6D:8C:6E:4C:33:25:BF:E9:80:1C:8A:EC:7F:54:84 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:ae:14:bf:c6:c9:ae:72:31:22:6f:e0:09:7b:29:a6:52:e0: 24:43:9b:03:51:16:fd:33:e3:92:9d:33:49:13:72:25:b8:9a: 3e:cb:15:bb:63:e8:8a:72:21:e8:a9:9b:e7:5e:03:78:9c:18: 5c:68:ed:89:f3:be:a5:d7:db:b1:4f:63:96:61:a1:af:a6:49: 19:e6:74:b7:ff:0f:df:b3:a7:6e:d7:76:4f:43:c7:aa:e0:36: f9:ca:02:8b:d0:e9:d1:35:98:58:e4:e2:76:b7:e5:1d:83:fe: c3:1e:22:0d:42:b0:1b:38:7f:d9:20:4e:ac:fd:55:f9:7d:16: 51:03:28:cf:30:d9:8f:8b:55:9a:04:00:f1:5e:51:f0:09:b2: 16:a5:76:fd:62:08:0b:d8:ef:fe:39:01:d8:7e:28:aa:74:00: dd:4d:d8:8b:ca:e2:45:27:b2:41:f4:67:e8:a5:58:17:e5:c4: 84:47:58:4f:e8:de:5f:ca:c0:ad:3f:3f:32:df:c4:d4:f4:0e: 60:a4:c0:4d:1a:b6:5b:e3:67:ea:72:35:49:b8:1e:1c:e2:70: e2:0f:bf:d5:1b:98:e1:d8:9c:3c:47:9b:4b:07:b2:9b:82:27: b7:83:17:f4:5d:a9:9c:91:f6:8d:33:43:74:07:82:ef:a7:cd: 48:93:72:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUwNDI3MDQwNzI2WhcNMjUwNTA0MDQwNzI2WjAYMRYwFAYD VQQDEw02ODBkYWQ3ZS1lNDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTXd0imK/tI5dpaKEF0RwL1FdDC5ZiLp4kZLNTdjGo1dCIV1MI+OknGNSL+3 ZOunu+sn+JTeqixuc30NFEoWJxisR5r7hxiuffMEKgq1m+mEhkqB0j3F872t+IlQ kxxMfvxpeS6KXsozmez4aBwY9l33/J65kHLUKvq0fYjXJ3dqRCcHd6FfoFr7a3SP GyAXFi1fqhtAGdcYiH+eCaRbjed5XWQPjwxbaQhQfBiVNJu4taEab91oFqNI4at5 D5//IHbVwLVzAzLjO0UhbwHVp+G/4nQ01LjemH16GnAwTSzBR5cUw28UoBHytPCK KvxkxMTVQ60AjM8C9OBTKDuu6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDd+mvVQ bYxuTDMlv+mAHIrsf1SEMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASrhS/xsmucjEib+AJeymmUuAkQ5sDURb9M+OSnTNJE3IluJo+yxW7 Y+iKciHoqZvnXgN4nBhcaO2J876l19uxT2OWYaGvpkkZ5nS3/w/fs6du13ZPQ8eq 4Db5ygKL0OnRNZhY5OJ2t+Udg/7DHiINQrAbOH/ZIE6s/VX5fRZRAyjPMNmPi1Wa BADxXlHwCbIWpXb9YggL2O/+OQHYfiiqdADdTdiLyuJFJ7JB9GfopVgX5cSER1hP 6N5fysCtPz8y38TU9A5gpMBNGrZb42fqcjVJuB4c4nDiD7/VG5jh2Jw8R5tLB7Kb gie3gxf0XamckfaNM0N0B4Lvp81Ik3Lt -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net