$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: GLiVx/ovZ9mf+uY9nbJ78igWPnmlyX1wXuj5ixAZj20= Subject key identifier: FC:6C:EE:44:08:AE:A5:12:53:84:0C:44:BC:4A:92:56:4A:15:50:5F Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 09EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 09C5 Signing time: Mon 28 Apr 2025 20:25:36 +0000 Manifest this update: Mon 28 Apr 2025 20:25:36 +0000 Manifest next update: Mon 05 May 2025 20:25:36 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: t75fGlI/UFn+Ufl26Z/hlRVIEHg7AWXjPsPu2nu2z+c=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 0mOETl/OdBfCNtX5dYvxJWUGYIrmCCO9qdnaVBCdeGw=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: /SND4cbujhT7TqEgt/0aWxeQoWtrbzsjgSVcPJIkIEo=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: 6v3m90vLYNtp4AY7tUO3B6KEXg7uMMxAcXi3ddcOJ74=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2543 (0x9ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Apr 28 20:25:36 2025 GMT Not After : May 5 20:25:36 2025 GMT Subject: CN=680fe440-1b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a7:99:28:46:b3:74:30:84:54:9f:c0:c5:5c: 92:13:ee:64:dd:35:be:7e:20:ba:c8:b5:67:b5:c3: ce:78:aa:4a:9b:50:ad:9a:99:e9:48:a5:97:a6:03: 80:2f:e5:9c:00:94:c9:cd:03:46:fe:16:90:ad:51: 30:09:01:e7:b7:a1:b7:62:1f:14:60:bc:22:d7:82: 4a:22:f6:52:2d:8a:05:e2:fc:12:88:57:46:d5:a9: ea:0d:72:0e:1d:07:15:6c:3d:df:7f:14:f5:3f:45: 26:c3:c8:7d:5b:ca:23:de:cd:47:6e:6d:0c:7d:00: f5:09:b0:5e:87:37:c3:75:fc:d3:18:9e:f5:66:04: 07:fc:da:c4:c4:56:d0:11:11:b4:32:2a:5f:59:c8: 32:14:9b:a8:18:87:4c:7c:20:aa:a9:a2:df:34:42: 3e:08:b4:84:0c:d9:e7:3f:4d:40:60:fc:79:bd:c2: a7:21:f0:44:c1:45:c2:40:24:29:b6:66:e5:de:a1: 42:be:43:cc:f1:5e:cd:7d:23:72:e4:a8:5d:97:3a: 2a:0e:cb:c6:f1:3e:90:8a:d7:fe:b5:2d:b4:ea:99: 81:9e:69:a2:31:b9:e4:46:8a:cd:87:be:e3:e2:48: 66:4a:cd:10:62:e1:30:84:9d:85:fa:b5:7e:55:17: 9e:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:6C:EE:44:08:AE:A5:12:53:84:0C:44:BC:4A:92:56:4A:15:50:5F X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:bd:51:37:8f:fc:cb:d0:34:07:dd:49:6b:da:af:36:bf:d9: 94:1c:49:52:eb:55:b3:21:10:af:c3:be:74:b9:33:40:c1:2c: a5:77:26:00:f8:5e:37:c9:ce:49:9f:12:08:46:fa:e5:c6:ad: 0b:a9:59:74:9e:e4:eb:a0:d1:bf:78:26:23:e1:b0:e1:88:3b: 34:6c:57:c3:e4:ec:e3:1d:36:df:f6:f0:c3:f3:3d:9d:24:50: 0c:79:d7:cb:cc:03:1c:a0:8d:26:9c:9b:97:46:6d:ee:88:35: 34:3a:20:49:30:45:8e:12:ec:75:be:82:ec:0f:e6:89:64:8d: de:b4:05:0f:7f:62:40:df:dd:a6:25:5a:28:e0:00:a9:48:54: 32:16:d1:b7:21:1f:b9:f6:b2:3d:4c:9b:76:99:06:6d:b1:89: 40:5d:73:24:fa:fc:af:dc:ef:30:19:d0:7e:cb:57:e9:34:be: 87:a3:f4:02:96:b1:12:23:2c:52:33:ef:51:e6:64:9b:aa:31: b6:18:c6:3e:14:bf:99:67:8d:98:22:ca:eb:cb:ec:3f:77:9d: af:08:99:77:0c:31:5f:dc:3c:8d:2c:13:55:e4:7f:b4:d1:a2: 27:fd:ee:f3:34:cd:d7:b3:b1:bf:d5:25:8b:28:84:fd:81:39: d4:ab:ea:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUwNDI4MjAyNTM2WhcNMjUwNTA1MjAyNTM2WjAYMRYwFAYD VQQDEw02ODBmZTQ0MC0xYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aeZKEazdDCEVJ/AxVySE+5k3TW+fiC6yLVntcPOeKpKm1CtmpnpSKWXpgOA L+WcAJTJzQNG/haQrVEwCQHnt6G3Yh8UYLwi14JKIvZSLYoF4vwSiFdG1anqDXIO HQcVbD3ffxT1P0Umw8h9W8oj3s1Hbm0MfQD1CbBehzfDdfzTGJ71ZgQH/NrExFbQ ERG0MipfWcgyFJuoGIdMfCCqqaLfNEI+CLSEDNnnP01AYPx5vcKnIfBEwUXCQCQp tmbl3qFCvkPM8V7NfSNy5KhdlzoqDsvG8T6Qitf+tS206pmBnmmiMbnkRorNh77j 4khmSs0QYuEwhJ2F+rV+VReeRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxs7kQI rqUSU4QMRLxKklZKFVBfMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAavVE3j/zL0DQH3Ulr2q82v9mUHElS61WzIRCvw750uTNAwSyldyYA +F43yc5JnxIIRvrlxq0LqVl0nuTroNG/eCYj4bDhiDs0bFfD5OzjHTbf9vDD8z2d JFAMedfLzAMcoI0mnJuXRm3uiDU0OiBJMEWOEux1voLsD+aJZI3etAUPf2JA392m JVoo4ACpSFQyFtG3IR+59rI9TJt2mQZtsYlAXXMk+vyv3O8wGdB+y1fpNL6Ho/QC lrESIyxSM+9R5mSbqjG2GMY+FL+ZZ42YIsrry+w/d52vCJl3DDFf3DyNLBNV5H+0 0aIn/e7zNM3Xs7G/1SWLKIT9gTnUq+oT -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:28 2025 by rpki-client on console.sobornost.net