$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft File: tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft (raw, json) Hash identifier: AoGFm/KsLAwS67JkiD3iQhOJ+P/GmZEUcssCJ8MWYfM= Subject key identifier: 38:60:E2:A9:36:3C:C0:69:D2:7D:19:19:F5:37:24:3F:A5:30:92:91 Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft Manifest number: F4 Signing time: Fri 25 Apr 2025 04:19:31 +0000 Manifest this update: Fri 25 Apr 2025 04:19:31 +0000 Manifest next update: Fri 02 May 2025 04:19:31 +0000 Files and hashes: 1: tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl (hash: BW5/CCaX/EOD+W2NT5uVh8uD/LHrhsWabvEuo5COo9E=) 2: 4074E5EA7B1D11EFB5696E45C4F9AE02.roa (hash: 1SdPp/miyItNAEGeBSAKuJFOP+wIUKHiHtHU72zXu1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Apr 25 04:19:31 2025 GMT Not After : May 2 04:19:31 2025 GMT Subject: CN=680b0d53-f0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2d:25:d7:69:14:02:c7:df:9b:b3:59:01:ec: a2:5d:29:dd:ba:68:0c:41:d4:92:27:38:6f:6e:5e: 1c:7f:e2:8f:22:dc:50:24:79:0a:45:49:ed:09:1a: c3:45:1f:7b:de:5c:e0:d9:48:53:51:2c:f2:e7:d3: b0:2b:52:e0:e6:d2:32:15:ed:21:f7:e1:bb:fc:42: af:84:e9:6a:02:cb:fc:f9:46:3d:e4:8b:6e:b3:41: 08:42:27:5b:8d:40:d0:85:f7:00:b3:c8:f9:e1:3e: 53:b9:57:c9:2c:4d:8e:73:d2:36:21:f7:59:3b:cb: 5e:ed:7e:32:cd:08:10:bb:51:54:36:5f:0a:28:5d: 49:71:d6:fb:83:ed:05:49:5f:74:f1:59:1f:f7:5b: 34:4d:79:12:23:d4:aa:5b:17:5c:47:6c:19:61:b8: 5e:e8:1d:cb:34:37:a0:75:35:0e:11:6c:06:e1:6b: cf:a7:c2:7e:7d:5b:58:0d:46:f9:35:fc:f2:5f:0b: 2d:66:54:25:8e:c9:cf:9b:24:82:7a:a7:e5:09:82: 2f:38:f3:64:5b:77:2d:c8:d1:83:b5:f6:63:68:18: 76:f2:3e:22:4b:34:c3:4d:78:e7:32:ab:54:04:16: c0:a9:25:9f:73:b0:bc:a6:2c:aa:b6:1e:08:5b:93: f1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:60:E2:A9:36:3C:C0:69:D2:7D:19:19:F5:37:24:3F:A5:30:92:91 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:81:b6:11:19:35:fc:eb:9a:fa:3d:c0:4c:57:a9:f0:25:95: 43:e9:12:fd:21:b2:aa:aa:1b:99:46:d4:2c:b6:09:9e:43:d4: f0:62:89:a2:db:fd:a7:e7:0c:9b:ad:a9:ff:21:80:cb:2b:b8: 18:d4:ca:e8:cf:a4:da:50:1f:18:4a:82:27:eb:25:c4:81:01: 31:33:93:7b:6b:12:14:2e:1e:3e:c4:cb:07:07:c1:5f:3d:21: d9:69:b7:5e:37:32:d0:95:a3:09:d1:b5:e0:6c:17:dd:a8:f3: df:4f:5b:3f:7e:53:db:ca:d7:ea:25:e8:08:18:46:49:55:61: 19:6d:fc:2a:21:fe:54:cc:c1:43:3b:07:f7:30:50:e0:3d:49: b1:53:17:19:d1:97:32:e3:a7:c1:c3:db:fe:5e:62:0d:c1:8f: ef:55:6a:2e:b8:87:68:be:0e:a8:9e:1b:2f:98:75:6f:5f:23: 72:6c:53:0e:c8:8f:ad:1e:89:34:92:62:bc:03:ac:14:dc:8c: 6c:e6:17:18:d5:8c:11:b4:63:0c:a8:30:5a:18:3a:52:26:cd: 6a:c1:c4:00:41:01:68:25:a3:7d:e5:82:60:2d:7e:a2:35:c1: 7f:36:9b:ab:ae:18:99:9d:ee:b3:92:92:87:c6:63:6a:59:8e: ff:d1:b2:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUwNDI1MDQxOTMxWhcNMjUwNTAyMDQxOTMxWjAYMRYwFAYD VQQDEw02ODBiMGQ1My1mMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i0l12kUAsffm7NZAeyiXSndumgMQdSSJzhvbl4cf+KPItxQJHkKRUntCRrD RR973lzg2UhTUSzy59OwK1Lg5tIyFe0h9+G7/EKvhOlqAsv8+UY95Itus0EIQidb jUDQhfcAs8j54T5TuVfJLE2Oc9I2IfdZO8te7X4yzQgQu1FUNl8KKF1Jcdb7g+0F SV908Vkf91s0TXkSI9SqWxdcR2wZYbhe6B3LNDegdTUOEWwG4WvPp8J+fVtYDUb5 NfzyXwstZlQljsnPmySCeqflCYIvOPNkW3ctyNGDtfZjaBh28j4iSzTDTXjnMqtU BBbAqSWfc7C8piyqth4IW5PxUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhg4qk2 PMBp0n0ZGfU3JD+lMJKRMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCRC8zNTcwREYyRUIxMTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFk SzVQeXcxSEtzazBWQnFyQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZgbYRGTX865r6PcBMV6nwJZVD6RL9IbKqqhuZRtQstgmeQ9TwYomi 2/2n5wybran/IYDLK7gY1Mroz6TaUB8YSoIn6yXEgQExM5N7axIULh4+xMsHB8Ff PSHZabdeNzLQlaMJ0bXgbBfdqPPfT1s/flPbytfqJegIGEZJVWEZbfwqIf5UzMFD Owf3MFDgPUmxUxcZ0Zcy46fBw9v+XmINwY/vVWouuIdovg6onhsvmHVvXyNybFMO yI+tHok0kmK8A6wU3Ixs5hcY1YwRtGMMqDBaGDpSJs1qwcQAQQFoJaN95YJgLX6i NcF/NpurrhiZne6zkpKHxmNqWY7/0bKu -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:51 2025 by rpki-client on console.sobornost.net