$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft (raw, json) Hash identifier: +voCjC+c8TGbgQnFga5Wlh4wOOH9RIviUoa2+T4DNvs= Subject key identifier: A2:9D:E2:BE:61:C1:0D:89:44:E3:CA:D1:F4:05:38:75:7F:16:7F:14 Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft Manifest number: A2 Signing time: Sun 27 Apr 2025 05:02:32 +0000 Manifest this update: Sun 27 Apr 2025 05:02:31 +0000 Manifest next update: Sun 04 May 2025 05:02:31 +0000 Files and hashes: 1: Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl (hash: A4cjF4Dw+LrgcbhJ+NQx8dKbWsZ7ywwulT6fMzdz6H8=) 2: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (hash: sflqoJJiQSUE3/D/FoYHXfA8MjGPanF4iuCvuWOV/9c=) 3: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (hash: 3L8GR/TKBQutwByYr9Yt28Y5Yf6Lgn2PEAhMb4FmV9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Apr 27 05:02:31 2025 GMT Not After : May 4 05:02:31 2025 GMT Subject: CN=680dba68-8008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ea:73:5e:d3:44:f5:a4:67:7b:04:9c:1d:a2: b5:bc:f8:94:77:7b:8a:42:74:ca:87:13:29:dc:71: 91:d3:f7:85:db:39:64:0e:bd:a2:9e:7f:93:bf:ee: 10:d0:9b:7a:31:5b:71:86:ec:a1:66:71:4e:f1:c7: a8:5a:b3:97:3e:d0:a9:4c:c7:9b:0a:2a:a7:b6:61: c0:4d:9d:3e:e3:56:7c:37:0e:7d:dd:8f:8f:ea:95: 05:08:40:de:25:5e:0c:3b:fb:a8:3b:55:17:73:a3: b3:86:67:f7:a7:b4:ed:5d:76:38:60:00:72:c0:10: eb:06:60:72:89:91:57:3d:fa:a6:82:63:01:11:57: 45:01:38:01:ab:f1:1f:0f:83:98:08:44:06:00:10: 86:79:71:38:a0:e1:7a:9d:a3:31:8e:58:80:87:83: 38:44:9b:25:bd:bd:0b:32:d0:1b:8c:f5:d1:ad:6d: 33:e1:a2:0a:94:f4:9e:ba:ef:6d:12:7a:6a:e1:48: 75:de:d1:47:d5:1d:3a:36:6a:50:54:ba:31:65:53: 04:92:54:ac:90:51:25:bb:58:b7:1a:ac:9f:00:43: b1:c0:92:63:5e:67:6c:eb:e1:d0:00:2b:d3:48:0b: 49:95:c6:3a:df:f1:97:94:33:46:5b:76:e6:a0:6e: 12:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:9D:E2:BE:61:C1:0D:89:44:E3:CA:D1:F4:05:38:75:7F:16:7F:14 X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b4:66:b1:b8:e0:ad:96:19:6e:f0:d6:9b:6c:8b:eb:6c:1b: df:84:a4:23:33:a0:60:03:ea:5d:71:4c:92:7d:58:26:2a:1c: 5a:bc:76:14:1a:1b:3e:d5:28:74:07:ba:35:b4:2b:cd:05:65: 30:cd:af:06:45:19:d2:ac:17:19:66:39:31:27:c3:d1:45:e9: 35:62:36:10:12:fb:5b:e1:6b:a3:30:d4:4b:2e:77:ae:25:00: 67:61:eb:41:f8:59:8c:9b:19:25:16:49:40:92:41:eb:4f:99: 87:27:c1:36:a5:72:fe:d5:db:18:c8:f1:13:87:2e:b6:e7:30: d1:89:f8:f4:98:b8:e3:9f:a8:25:cb:1b:fc:ca:c2:c6:54:6d: 4a:c4:26:f5:aa:5a:42:70:0c:87:c9:96:d1:d6:ce:a8:36:77: 10:45:50:19:70:76:f0:55:4d:fa:35:81:2c:f9:06:7a:e1:21: 6e:04:44:ef:10:60:d4:2a:cf:84:ce:96:d3:61:f7:3a:77:32: 2c:b5:88:8b:fd:57:2a:6b:92:15:d0:f8:6c:ff:4d:86:62:34: 3c:e9:1a:e8:e3:1e:1f:a8:74:16:4f:e2:bd:46:77:80:db:b1: 7a:fc:25:65:c4:4b:56:c8:66:3d:a8:2a:c3:24:08:13:ac:ae: 12:4c:dd:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwNDI3MDUwMjMxWhcNMjUwNTA0MDUwMjMxWjAYMRYwFAYD VQQDEw02ODBkYmE2OC04MDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3upzXtNE9aRnewScHaK1vPiUd3uKQnTKhxMp3HGR0/eF2zlkDr2inn+Tv+4Q 0Jt6MVtxhuyhZnFO8ceoWrOXPtCpTMebCiqntmHATZ0+41Z8Nw593Y+P6pUFCEDe JV4MO/uoO1UXc6Ozhmf3p7TtXXY4YABywBDrBmByiZFXPfqmgmMBEVdFATgBq/Ef D4OYCEQGABCGeXE4oOF6naMxjliAh4M4RJslvb0LMtAbjPXRrW0z4aIKlPSeuu9t Enpq4Uh13tFH1R06NmpQVLoxZVMEklSskFElu1i3GqyfAEOxwJJjXmds6+HQACvT SAtJlcY63/GXlDNGW3bmoG4SbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKd4r5h wQ2JROPK0fQFOHV/Fn8UMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9BOTM2RTQ0MDJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3Vn bHBRRm43STk3NFVvMG1TWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwtGaxuOCtlhlu8NabbIvrbBvfhKQjM6BgA+pdcUySfVgmKhxavHYU Ghs+1Sh0B7o1tCvNBWUwza8GRRnSrBcZZjkxJ8PRRek1YjYQEvtb4WujMNRLLneu JQBnYetB+FmMmxklFklAkkHrT5mHJ8E2pXL+1dsYyPEThy625zDRifj0mLjjn6gl yxv8ysLGVG1KxCb1qlpCcAyHyZbR1s6oNncQRVAZcHbwVU36NYEs+QZ64SFuBETv EGDUKs+EzpbTYfc6dzIstYiL/Vcqa5IV0Phs/02GYjQ86Rro4x4fqHQWT+K9RneA 27F6/CVlxEtWyGY9qCrDJAgTrK4STN38 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:50 2025 by rpki-client on console.sobornost.net