$ rpki-client -vvf rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft File: 5o7RJO9le2eb0SpY-gNQFODf6Cc.mft (raw, json) Hash identifier: /eTA2XlduXBBAVl6P1YZj88Yzm3OML+ubsmEH1AjW9Y= Subject key identifier: 44:B4:B5:18:E7:3F:36:90:B9:AE:1C:EC:0F:61:C1:DA:C3:72:D5:1F Authority key identifier: E6:8E:D1:24:EF:65:7B:67:9B:D1:2A:58:FA:03:50:14:E0:DF:E8:27 Certificate issuer: /CN=A9191A09/serialNumber=E68ED124EF657B679BD12A58FA035014E0DFE827 Certificate serial: 0DBC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft Manifest number: 0DA8 Signing time: Mon 28 Apr 2025 14:48:20 +0000 Manifest this update: Mon 28 Apr 2025 14:48:19 +0000 Manifest next update: Mon 05 May 2025 14:48:19 +0000 Files and hashes: 1: 5o7RJO9le2eb0SpY-gNQFODf6Cc.crl (hash: T3CiPBmTW4R94ahvEYaJd347W1dFA2msRfWmhpeX2Zs=) 2: 9C06E51EE37A11EA84A20810C4F9AE02.roa (hash: BIq27Hxj0ymd/MyK4xyxLJopPOW9viNW0+I2cxj8GdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.crl rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3516 (0xdbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191A09, serialNumber=E68ED124EF657B679BD12A58FA035014E0DFE827 Validity Not Before: Apr 28 14:48:19 2025 GMT Not After : May 5 14:48:19 2025 GMT Subject: CN=680f9533-24f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:ce:78:12:95:76:ea:95:79:12:cf:91:3d: 8b:7c:1a:b0:41:f5:6b:3e:b1:ee:2d:8f:9b:d3:b9: 43:8a:e3:1e:2c:b4:e0:f3:69:48:5c:1b:da:1a:12: 6e:d1:6e:cb:4d:87:af:86:e2:c8:9f:3b:d5:12:e8: 5f:46:a1:ad:1b:fd:30:4f:0a:0c:44:ba:4b:87:9e: c6:c7:b3:08:6d:da:12:43:d5:ad:2b:75:a7:75:2b: a4:97:db:d4:a6:79:71:b9:24:0d:7d:a1:06:72:54: 6a:6b:b3:d3:a4:e3:16:20:a1:91:9a:da:a0:9f:fe: 25:bf:a8:1a:92:a4:46:28:2b:c9:eb:0e:3c:4c:89: 1f:62:45:3b:6d:73:fa:9f:6f:9b:1f:06:0c:76:4c: 50:df:91:83:93:c7:6c:4b:69:fa:50:82:17:bf:05: b1:92:6b:c1:4e:1f:58:05:8e:eb:90:ec:02:89:e2: 5b:c2:fb:69:74:fe:5e:5e:1b:4b:63:74:e5:c2:eb: de:d1:c5:15:26:d8:80:45:ff:b1:e9:b5:e2:3f:57: 44:12:af:f8:0a:72:f6:41:53:84:a4:08:10:c3:a9: 62:5b:bc:3c:95:36:19:3b:38:d5:6e:73:6c:1b:d9: 49:19:9a:cf:66:12:1b:96:e1:bc:21:bc:6d:3a:e1: df:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B4:B5:18:E7:3F:36:90:B9:AE:1C:EC:0F:61:C1:DA:C3:72:D5:1F X509v3 Authority Key Identifier: keyid:E6:8E:D1:24:EF:65:7B:67:9B:D1:2A:58:FA:03:50:14:E0:DF:E8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/5o7RJO9le2eb0SpY-gNQFODf6Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191A09/3C412C36BF3911E9897D7C2EC4F9AE02/5o7RJO9le2eb0SpY-gNQFODf6Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:84:a1:2b:64:2e:37:9d:d9:d1:d2:00:c4:fe:f4:a6:0c:5a: 20:2a:cf:9d:45:99:c3:dc:37:c3:43:86:8d:b3:a9:8b:d6:5f: 5d:8c:b9:bd:b4:b7:2a:13:17:b4:94:53:61:3a:99:6b:f5:88: 47:86:ad:9c:09:ae:7a:8e:61:69:73:d6:79:02:57:30:7b:26: b1:b4:14:5f:ed:7d:1a:34:2f:48:51:e9:2f:cf:3a:9f:f1:56: f2:40:99:8c:6d:46:ef:a2:bc:43:20:9e:b8:47:3d:25:31:90: df:b2:5f:bd:40:9b:1d:4d:b7:cf:40:56:9a:65:67:ef:e2:8d: a8:7e:be:1d:c6:21:d4:03:18:ff:77:20:0e:1b:c8:6a:fe:0b: e2:39:5b:b1:ff:42:24:9e:3f:78:bf:e2:87:f5:f6:93:14:7c: 87:51:43:c7:af:a5:97:5d:c9:7c:38:2d:c3:32:ab:bc:b1:57: fd:77:76:87:54:ca:ff:49:2b:fc:f8:f5:6a:74:34:5a:58:ad: 7b:5b:62:50:2c:db:bf:79:09:f0:92:ac:d0:d4:26:6b:02:66: 5c:74:10:89:23:38:1b:bb:46:e6:a6:b1:a1:32:28:ba:72:36: b7:55:e0:ae:7d:7e:c6:fc:40:66:36:92:83:16:c7:2c:e6:1a: d0:16:24:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFBMDkxMTAvBgNVBAUTKEU2OEVEMTI0RUY2NTdCNjc5QkQxMkE1OEZBMDM1MDE0 RTBERkU4MjcwHhcNMjUwNDI4MTQ0ODE5WhcNMjUwNTA1MTQ0ODE5WjAYMRYwFAYD VQQDEw02ODBmOTUzMy0yNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiDOeBKVduqVeRLPkT2LfBqwQfVrPrHuLY+b07lDiuMeLLTg82lIXBvaGhJu 0W7LTYevhuLInzvVEuhfRqGtG/0wTwoMRLpLh57Gx7MIbdoSQ9WtK3WndSukl9vU pnlxuSQNfaEGclRqa7PTpOMWIKGRmtqgn/4lv6gakqRGKCvJ6w48TIkfYkU7bXP6 n2+bHwYMdkxQ35GDk8dsS2n6UIIXvwWxkmvBTh9YBY7rkOwCieJbwvtpdP5eXhtL Y3Tlwuve0cUVJtiARf+x6bXiP1dEEq/4CnL2QVOEpAgQw6liW7w8lTYZOzjVbnNs G9lJGZrPZhIbluG8IbxtOuHfLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFES0tRjn PzaQua4c7A9hwdrDctUfMB8GA1UdIwQYMBaAFOaO0STvZXtnm9EqWPoDUBTg3+gn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUEwOS8zQzQxMkMzNkJG MzkxMUU5ODk3RDdDMkVDNEY5QUUwMi81bzdSSk85bGUyZWIwU3BZLWdOUUZPRGY2 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzVvN1JKTzlsZTJlYjBTcFktZ05RRk9EZjZDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUEwOS8zQzQxMkMzNkJGMzkxMUU5ODk3RDdDMkVDNEY5QUUwMi81bzdSSk85bGUy ZWIwU3BZLWdOUUZPRGY2Q2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4hKErZC43ndnR0gDE/vSmDFogKs+dRZnD3DfDQ4aNs6mL1l9djLm9 tLcqExe0lFNhOplr9YhHhq2cCa56jmFpc9Z5AlcweyaxtBRf7X0aNC9IUekvzzqf 8VbyQJmMbUbvorxDIJ64Rz0lMZDfsl+9QJsdTbfPQFaaZWfv4o2ofr4dxiHUAxj/ dyAOG8hq/gviOVux/0Iknj94v+KH9faTFHyHUUPHr6WXXcl8OC3DMqu8sVf9d3aH VMr/SSv8+PVqdDRaWK17W2JQLNu/eQnwkqzQ1CZrAmZcdBCJIzgbu0bmprGhMii6 cja3VeCufX7G/EBmNpKDFscs5hrQFiQm -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:59 2025 by rpki-client on console.sobornost.net