$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft File: -tfsycBc2OsgVpCdbGFHFeLFEz4.mft (raw, json) Hash identifier: 20vzwaK9T6j12CjEMPl9QA/SnxW+QP3FXTNDNmhlG1U= Subject key identifier: 1A:D3:38:30:B6:5C:62:14:7A:81:4B:B4:58:34:03:22:6F:C5:62:0D Authority key identifier: FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E Certificate issuer: /CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Certificate serial: 0402 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft Manifest number: 03EA Signing time: Fri 25 Apr 2025 00:22:09 +0000 Manifest this update: Fri 25 Apr 2025 00:22:09 +0000 Manifest next update: Fri 02 May 2025 00:22:09 +0000 Files and hashes: 1: -tfsycBc2OsgVpCdbGFHFeLFEz4.crl (hash: UwL0GGjqc8j7nJXHY2HVesXcNQTktbPcHAn4oH7Tlgs=) 2: 5FEAFF2082EB11EEB854FA63C4F9AE02.roa (hash: 1iuXJipvz24oOntaPEU1wj4mqlPSsDFfiyLqXTsQZv4=) 3: 7E4872CC507E11ED92705949C4F9AE02.roa (hash: mAHBF8HDNKFsy35CCtaeECNz5IjKYVYafJciZ5zIOHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1026 (0x402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B95, serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Validity Not Before: Apr 25 00:22:09 2025 GMT Not After : May 2 00:22:09 2025 GMT Subject: CN=680ad5b1-73c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c0:5b:84:84:cc:be:96:8a:7b:92:7a:77:47: 74:e7:f4:f9:78:e4:b0:25:dd:a8:69:1e:54:ff:ac: 86:56:b7:ac:ff:d9:2c:21:41:93:96:37:ad:d5:2f: 25:9e:e2:82:d6:d6:86:03:80:f0:96:f0:5b:31:da: 70:21:c0:c7:a5:9d:af:b8:a3:86:c1:10:5e:9a:4a: 6f:1e:65:38:5d:ed:8a:47:33:1e:f9:9d:8b:66:66: de:8b:16:04:74:25:49:45:86:49:ef:78:3d:5e:a3: ef:96:47:fe:c6:c7:51:37:0c:cf:29:f1:f6:01:aa: 2b:0f:8a:9d:d2:c3:58:e5:6f:3d:73:07:30:de:28: ba:47:ce:5e:86:24:86:b5:b5:32:68:b6:f2:1b:2f: 74:19:8f:21:cf:d9:b7:41:e7:26:44:e9:0c:bb:21: f2:0f:10:d7:a1:c1:47:76:15:84:4b:df:1b:5a:b1: d9:22:d1:7c:72:89:eb:5c:97:bc:06:cf:7b:22:3a: bb:38:13:a4:b5:00:65:80:f4:0e:d7:3d:76:54:ea: a5:05:10:8f:77:84:23:93:b7:74:e6:88:4a:f0:de: 33:59:28:58:7e:6b:f5:ae:e2:6d:09:3d:9c:18:67: 09:f1:11:06:4b:ec:1e:02:00:a2:ca:9d:fe:78:54: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D3:38:30:B6:5C:62:14:7A:81:4B:B4:58:34:03:22:6F:C5:62:0D X509v3 Authority Key Identifier: keyid:FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:c4:f3:3e:24:61:82:f7:ea:ad:cd:46:6e:5a:9b:aa:4a:92: ba:67:2d:9d:ca:72:8d:fc:f8:25:c0:a9:7b:16:00:60:af:13: c9:1a:91:93:aa:d7:25:8a:53:ee:04:6e:bb:54:cf:06:d3:ab: f6:4e:ed:05:54:d9:de:46:cd:79:d7:19:84:cf:35:62:fc:ef: c8:40:77:5b:c2:d3:e7:0d:14:4d:f9:7f:cb:f1:04:91:4c:be: 0b:8c:2d:d6:11:88:14:6c:59:7a:ce:19:29:da:19:fa:5c:bf: 0b:ce:c6:cd:84:9e:21:f2:05:4c:6c:a2:bd:35:0a:da:2f:a1: f5:8f:20:9f:a5:8e:5c:02:51:bf:7e:2f:9f:1f:fd:c7:e1:4c: d9:f8:df:a8:ae:e4:dc:32:9d:65:cf:42:4d:ba:36:b7:1c:be: 01:e2:1b:55:14:c1:80:d4:d0:b3:90:2c:34:0f:23:f4:6a:47: 06:5a:66:e8:33:6e:fc:81:80:b2:e0:d3:0b:3d:ff:ee:15:42: e2:0e:be:fa:f6:b0:9b:d6:42:8b:42:13:97:25:a3:1a:a8:e4: 66:74:5e:f6:0d:73:6e:69:28:a4:da:17:67:43:e1:32:3c:6e: 60:06:03:d5:7c:ba:87:03:2a:84:c4:57:56:f7:5e:fb:09:44: a3:22:7a:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCOTUxMTAvBgNVBAUTKEZBRDdFQ0M5QzA1Q0Q4RUIyMDU2OTA5RDZDNjE0NzE1 RTJDNTEzM0UwHhcNMjUwNDI1MDAyMjA5WhcNMjUwNTAyMDAyMjA5WjAYMRYwFAYD VQQDEw02ODBhZDViMS03M2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcBbhITMvpaKe5J6d0d05/T5eOSwJd2oaR5U/6yGVres/9ksIUGTljet1S8l nuKC1taGA4DwlvBbMdpwIcDHpZ2vuKOGwRBemkpvHmU4Xe2KRzMe+Z2LZmbeixYE dCVJRYZJ73g9XqPvlkf+xsdRNwzPKfH2AaorD4qd0sNY5W89cwcw3ii6R85ehiSG tbUyaLbyGy90GY8hz9m3QecmROkMuyHyDxDXocFHdhWES98bWrHZItF8conrXJe8 Bs97Ijq7OBOktQBlgPQO1z12VOqlBRCPd4Qjk7d05ohK8N4zWShYfmv1ruJtCT2c GGcJ8REGS+weAgCiyp3+eFRcVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrTODC2 XGIUeoFLtFg0AyJvxWINMB8GA1UdIwQYMBaAFPrX7MnAXNjrIFaQnWxhRxXixRM+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0I5NS9CNTRBM0MzNDgw MzUxMUVDOUFEREE1NEZDNEY5QUUwMi8tdGZzeWNCYzJPc2dWcENkYkdGSEZlTEZF ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10ZnN5Y0JjMk9zZ1ZwQ2RiR0ZIRmVMRkV6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0I5NS9CNTRBM0MzNDgwMzUxMUVDOUFEREE1NEZDNEY5QUUwMi8tdGZzeWNCYzJP c2dWcENkYkdGSEZlTEZFejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFxPM+JGGC9+qtzUZuWpuqSpK6Zy2dynKN/PglwKl7FgBgrxPJGpGT qtclilPuBG67VM8G06v2Tu0FVNneRs151xmEzzVi/O/IQHdbwtPnDRRN+X/L8QSR TL4LjC3WEYgUbFl6zhkp2hn6XL8LzsbNhJ4h8gVMbKK9NQraL6H1jyCfpY5cAlG/ fi+fH/3H4UzZ+N+oruTcMp1lz0JNuja3HL4B4htVFMGA1NCzkCw0DyP0akcGWmbo M278gYCy4NMLPf/uFULiDr769rCb1kKLQhOXJaMaqORmdF72DXNuaSik2hdnQ+Ey PG5gBgPVfLqHAyqExFdW9177CUSjInrm -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:03 2025 by rpki-client on console.sobornost.net