$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: o238arHc2YSCQlRjbt59t7dfbdaGddhy9VZuq1MJbz4= Subject key identifier: 86:6B:DC:CB:93:F9:32:75:7D:48:BE:0B:FF:C4:6F:7C:80:BC:40:F5 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 09B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 09AA Signing time: Mon 28 Apr 2025 20:26:57 +0000 Manifest this update: Mon 28 Apr 2025 20:26:56 +0000 Manifest next update: Mon 05 May 2025 20:26:56 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: LcQGN7dPWMmDObWk11822N/jRa3CEtNd0uNJeGSOUWk=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2486 (0x9b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Apr 28 20:26:56 2025 GMT Not After : May 5 20:26:56 2025 GMT Subject: CN=680fe491-c055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7e:2f:0f:3f:9f:31:57:43:d8:a5:ef:95:6f: b3:0c:bc:72:4f:07:2b:07:87:d5:c0:fb:65:59:ec: 16:10:e4:96:df:a7:61:97:9c:67:93:19:0f:b5:88: b0:22:ed:27:d3:57:89:aa:a3:65:2e:64:b1:43:32: 99:73:4b:7c:14:8f:9f:96:bc:c3:04:9d:22:c3:47: 15:46:db:29:c3:73:ee:24:3f:e0:96:53:dd:fe:38: cc:a0:37:02:db:3e:9c:67:47:fa:b9:f1:e5:16:6a: 43:07:ea:5c:ef:cf:66:ee:9b:65:da:90:b2:2e:11: 77:49:fc:35:1c:ea:cf:6f:ec:56:7f:50:ce:c6:0a: 61:fd:05:b4:aa:a9:76:66:08:ea:55:2b:0f:de:8b: be:d4:b8:ff:73:3a:38:c1:98:a6:60:2c:aa:dc:67: c3:d4:b3:ec:ec:70:7a:57:71:fb:ea:a1:a5:5c:5e: 39:e8:f4:c7:43:b4:01:c5:27:53:0d:e0:54:62:f3: 1a:bb:0b:fa:f5:4a:42:3e:ed:4d:02:2c:8c:f6:4c: dd:b7:3b:5a:fe:0e:ee:0f:53:a0:af:e1:94:0d:ba: ce:2b:9d:9b:e5:25:81:81:00:48:0e:7b:6e:41:1d: e1:6e:4d:b2:09:7d:eb:8c:33:b0:24:85:43:d8:d1: 03:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6B:DC:CB:93:F9:32:75:7D:48:BE:0B:FF:C4:6F:7C:80:BC:40:F5 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:d1:58:b9:a5:ef:6a:6c:f1:2d:cd:57:a6:ac:78:67:1b:17: 6e:0b:33:ef:3c:ac:b5:df:64:11:bb:ee:70:72:37:3a:c6:92: d6:dc:20:bb:2c:95:b5:d5:49:28:1e:74:d1:e1:d7:d7:23:e6: 42:fd:c7:49:ab:a0:0d:4a:c4:c1:19:1b:91:9e:fb:89:f6:39: b6:58:6c:95:5a:7f:06:98:c5:47:13:da:6e:a5:72:eb:49:5e: dd:32:a0:6d:9f:65:fa:d6:82:f6:2e:e5:88:34:87:75:f6:fd: 09:32:2f:82:f2:9f:88:85:bb:a6:17:ef:e9:f8:a9:fc:09:94: ad:fc:fb:20:7d:45:91:57:72:58:1b:b9:41:9e:48:13:eb:e1: 59:d4:1d:d8:4c:b5:ad:f7:23:c7:dc:ad:f2:51:ce:6d:21:a6: 56:d5:2d:62:35:6b:5f:45:0a:1d:9d:fd:59:89:af:22:90:ce: 61:5e:6f:ab:37:5b:54:bf:55:5b:f9:36:48:37:d6:69:d6:d8: 08:90:0d:3b:18:09:47:a1:0a:d4:b5:f9:af:cc:11:7e:e9:b2: 70:8f:cc:cf:37:a8:78:02:70:87:52:29:8d:f3:c6:94:2a:6d: 7d:c2:32:6a:21:65:03:92:eb:3c:1c:a8:c4:98:f6:e8:3f:e0: 82:71:94:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUwNDI4MjAyNjU2WhcNMjUwNTA1MjAyNjU2WjAYMRYwFAYD VQQDEw02ODBmZTQ5MS1jMDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8H4vDz+fMVdD2KXvlW+zDLxyTwcrB4fVwPtlWewWEOSW36dhl5xnkxkPtYiw Iu0n01eJqqNlLmSxQzKZc0t8FI+flrzDBJ0iw0cVRtspw3PuJD/gllPd/jjMoDcC 2z6cZ0f6ufHlFmpDB+pc789m7ptl2pCyLhF3Sfw1HOrPb+xWf1DOxgph/QW0qql2 ZgjqVSsP3ou+1Lj/czo4wZimYCyq3GfD1LPs7HB6V3H76qGlXF456PTHQ7QBxSdT DeBUYvMauwv69UpCPu1NAiyM9kzdtzta/g7uD1Ogr+GUDbrOK52b5SWBgQBIDntu QR3hbk2yCX3rjDOwJIVD2NEDfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZr3MuT +TJ1fUi+C//Eb3yAvED1MB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX0Vi5pe9qbPEtzVemrHhnGxduCzPvPKy132QRu+5wcjc6xpLW3CC7 LJW11UkoHnTR4dfXI+ZC/cdJq6ANSsTBGRuRnvuJ9jm2WGyVWn8GmMVHE9pupXLr SV7dMqBtn2X61oL2LuWINId19v0JMi+C8p+IhbumF+/p+Kn8CZSt/PsgfUWRV3JY G7lBnkgT6+FZ1B3YTLWt9yPH3K3yUc5tIaZW1S1iNWtfRQodnf1Zia8ikM5hXm+r N1tUv1Vb+TZIN9Zp1tgIkA07GAlHoQrUtfmvzBF+6bJwj8zPN6h4AnCHUimN88aU Km19wjJqIWUDkus8HKjEmPboP+CCcZQy -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:40 2025 by rpki-client on console.sobornost.net