$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: p8QHufILxwL7xiTl4WnUoS+I5LX0V2SYas7Y6r+pM9g= Subject key identifier: CB:56:85:58:50:FE:57:93:AC:4D:14:48:C0:9B:77:D9:81:8C:17:0D Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0BF6 Signing time: Mon 28 Apr 2025 19:08:32 +0000 Manifest this update: Mon 28 Apr 2025 19:08:31 +0000 Manifest next update: Mon 05 May 2025 19:08:31 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: Tt/t7T3akJ7nD+6VlfpLj4xoKzslqmrEtxs0M7OkoFc=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: dn3kZoWooSddDB41uptssOk+YJNXq/e4qX48GOTMtT4=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: 8Ead/6roCcIWAO/F6fTJ08XA18GUuGo77XaTq8IG4j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3091 (0xc13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Apr 28 19:08:31 2025 GMT Not After : May 5 19:08:31 2025 GMT Subject: CN=680fd22f-ccf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e4:13:a1:00:c4:e3:89:af:79:a2:96:9b:7f: 82:ea:94:77:7a:5b:41:c9:55:94:80:16:88:4a:15: 19:64:27:14:1c:fa:d6:26:03:7e:f3:22:5c:7a:90: 6a:fa:78:da:50:fd:2c:82:1b:42:88:5e:70:4f:83: 22:73:29:f5:ea:40:0d:6a:7f:cc:71:f8:ef:40:1c: a8:f3:3a:a0:8a:f6:09:fd:cc:39:39:78:5a:36:10: 92:6e:ce:94:7d:c1:45:51:0d:d0:28:64:36:a6:3c: ee:51:a7:4e:c2:34:a5:04:70:d5:f9:1c:23:38:37: 8b:2b:85:41:76:c7:37:d4:91:2d:39:c0:b7:4a:17: 52:66:20:4f:c0:53:4c:1e:25:7d:f8:43:c2:80:64: 03:7e:1f:1b:9b:8e:e7:9e:86:07:b1:de:4c:bd:8a: 15:93:a3:6c:7f:62:3c:d4:fa:76:32:12:c3:d5:1e: 18:de:35:9b:22:ee:77:5f:5a:5d:dd:5f:97:23:e6: 24:46:0a:e5:e3:f7:8d:f9:79:2b:67:25:f7:ef:cb: ac:92:0c:7f:8a:ea:80:93:6b:7c:b6:aa:e7:7f:9e: 6e:80:ba:e8:82:fe:ea:10:7a:ad:44:c3:bf:c8:a7: 26:c7:73:68:c2:91:d6:45:69:46:da:d0:7d:68:38: 14:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:56:85:58:50:FE:57:93:AC:4D:14:48:C0:9B:77:D9:81:8C:17:0D X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:f3:34:86:6e:0f:af:5b:6b:e0:c1:17:d7:e8:f7:6f:d2:82: 11:d1:89:b2:49:e6:0e:ca:1c:1e:7c:08:17:18:91:43:bd:a4: f2:82:65:59:e5:9f:a1:6b:fb:2d:06:e3:66:4a:fc:8a:a6:d3: 3d:78:84:c5:80:22:3f:c2:a1:1e:b6:d0:48:0f:25:1c:d7:58: 1e:46:c7:b2:5d:8c:26:a8:fc:ae:a2:74:06:af:57:1e:72:39: 3a:4f:45:75:df:c0:e3:1e:d7:43:40:02:68:a1:25:23:49:b3: f6:ff:dd:5e:37:c4:be:7a:9b:60:60:d7:76:1d:fc:8c:59:11: e9:d9:96:f6:85:e1:2d:c3:33:04:4a:4a:52:63:cb:fe:ee:41: 33:4a:e2:30:70:f8:9e:1e:5c:e3:1a:b9:51:5d:e8:53:e0:93: a4:a6:27:fd:40:e5:a3:48:db:75:f2:92:dd:0c:39:32:18:80: d0:b7:70:73:ee:fe:0a:3b:2f:f1:d0:98:81:f8:97:43:93:16: 98:6b:36:19:2d:07:da:54:4e:05:e1:e2:d9:c0:97:55:45:40: 07:39:43:51:4c:8d:6c:1a:ac:a5:a7:7b:98:53:ca:82:9e:83: c3:ad:24:dc:bb:34:59:24:5c:3f:9a:af:32:9e:2c:08:fa:3b: c3:22:d5:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwNDI4MTkwODMxWhcNMjUwNTA1MTkwODMxWjAYMRYwFAYD VQQDEw02ODBmZDIyZi1jY2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uQToQDE44mveaKWm3+C6pR3eltByVWUgBaIShUZZCcUHPrWJgN+8yJcepBq +njaUP0sghtCiF5wT4Micyn16kANan/McfjvQByo8zqgivYJ/cw5OXhaNhCSbs6U fcFFUQ3QKGQ2pjzuUadOwjSlBHDV+RwjODeLK4VBdsc31JEtOcC3ShdSZiBPwFNM HiV9+EPCgGQDfh8bm47nnoYHsd5MvYoVk6Nsf2I81Pp2MhLD1R4Y3jWbIu53X1pd 3V+XI+YkRgrl4/eN+XkrZyX378uskgx/iuqAk2t8tqrnf55ugLrogv7qEHqtRMO/ yKcmx3NowpHWRWlG2tB9aDgUJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtWhVhQ /leTrE0USMCbd9mBjBcNMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn8zSGbg+vW2vgwRfX6Pdv0oIR0YmySeYOyhwefAgXGJFDvaTygmVZ 5Z+ha/stBuNmSvyKptM9eITFgCI/wqEettBIDyUc11geRseyXYwmqPyuonQGr1ce cjk6T0V138DjHtdDQAJooSUjSbP2/91eN8S+eptgYNd2HfyMWRHp2Zb2heEtwzME SkpSY8v+7kEzSuIwcPieHlzjGrlRXehT4JOkpif9QOWjSNt18pLdDDkyGIDQt3Bz 7v4KOy/x0JiB+JdDkxaYazYZLQfaVE4F4eLZwJdVRUAHOUNRTI1sGqylp3uYU8qC noPDrSTcuzRZJFw/mq8yniwI+jvDItVm -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:26 2025 by rpki-client on console.sobornost.net