$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: lSdpmJ3z38Y8IOSPotTaUCQ0rt/DzlDeWGO7y1yaZIQ= Subject key identifier: BF:71:4C:13:E0:0A:D4:5E:57:64:F3:A0:9F:3F:E9:EF:55:37:A4:47 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: 0120 Signing time: Fri 25 Apr 2025 03:49:52 +0000 Manifest this update: Fri 25 Apr 2025 03:49:51 +0000 Manifest next update: Fri 02 May 2025 03:49:51 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: C3VXuAPMkC+hYb105/da+D43X6zFKFGJih14LoZtcG0=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: YEagGQfd4UV4nz53l/WybeYAt4w6+zm6QyFgV48pGBc=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: zzpFcIYATvvz+ehYyoXcGsAYVOBFYBXyZDv/oX18Mx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Apr 25 03:49:51 2025 GMT Not After : May 2 03:49:51 2025 GMT Subject: CN=680b065f-aced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:71:08:33:65:8d:c6:2b:5b:03:57:aa:6e:f1: 82:e6:98:75:7f:5c:5b:da:07:fe:20:20:bf:64:ad: fc:fb:93:29:f8:c6:19:38:60:52:49:e7:75:bc:1d: 92:5b:80:20:bf:c2:4b:9e:69:2f:6f:e2:4b:43:55: e4:be:36:b0:4e:8c:19:a2:9f:02:3d:e0:29:4b:80: 08:6d:31:b4:af:d3:cc:f5:69:c5:c7:a9:4c:0e:20: 31:e3:7b:12:21:08:d1:6e:2c:71:6e:66:2b:97:12: b8:22:78:ed:fe:f0:ee:3d:0d:7f:2d:b9:f3:e7:75: a4:f9:7c:ae:d3:11:81:26:d9:c6:57:94:67:1c:53: 80:64:16:cb:8e:de:10:68:0c:91:ed:53:53:dd:50: 4f:9a:6e:09:f9:3f:fa:a6:63:1d:c5:33:6f:b2:b9: 26:61:f1:99:75:2b:0e:ce:19:5e:d8:b3:1a:21:51: c6:07:51:89:4e:55:41:25:3f:3e:1e:3d:d3:2d:07: ab:a3:02:ae:5c:40:61:f7:e6:53:89:2d:8c:7e:eb: 40:7b:e7:7b:e6:26:98:61:85:70:9b:f5:3f:ac:45: 79:f5:cb:ea:1a:34:98:73:05:68:30:25:d6:61:35: aa:38:0d:a4:dd:19:69:47:80:05:59:2d:10:95:d5: c6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:71:4C:13:E0:0A:D4:5E:57:64:F3:A0:9F:3F:E9:EF:55:37:A4:47 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:7f:04:cf:0e:62:a8:64:32:c3:fd:b9:90:a3:ae:06:2f:e0: cb:b1:e1:04:14:b0:ff:32:ed:04:48:0d:2b:ee:31:60:ac:e5: 34:de:fc:21:c0:9e:82:07:81:21:68:29:0d:9a:3d:e6:d4:70: 72:f0:19:e6:4c:7b:2d:6a:6c:79:42:d9:7f:de:a1:44:87:13: 7c:68:30:e1:57:06:ef:b6:2f:d6:1f:d1:86:20:ed:60:a2:7a: d0:36:27:c3:cf:cb:78:21:e8:16:82:df:a6:67:02:db:f5:bf: 92:2b:b5:45:e2:9d:8b:ab:2a:31:24:2a:95:37:51:5c:c8:26: 92:cc:de:42:74:a0:20:eb:ef:27:55:e3:95:a1:b3:c2:08:1a: 26:34:3a:55:21:54:5f:96:2b:11:b5:cc:09:4c:ca:ed:31:5b: d3:a4:d9:ca:d8:41:fd:17:ff:22:38:ff:61:08:b6:2e:29:9e: 82:39:6b:49:0d:eb:e2:1b:36:dd:05:71:95:d3:f3:79:9e:c0: 06:e0:6d:43:8b:36:f1:93:8d:25:69:87:f5:44:b0:b3:c0:48: df:62:05:2a:00:84:f7:1e:a9:ee:d7:d5:c1:51:d7:23:55:f8: fc:df:91:f6:27:ba:fd:b3:0b:51:11:35:4a:0e:e2:7f:48:9a: 12:df:0c:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjUwNDI1MDM0OTUxWhcNMjUwNTAyMDM0OTUxWjAYMRYwFAYD VQQDEw02ODBiMDY1Zi1hY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynEIM2WNxitbA1eqbvGC5ph1f1xb2gf+ICC/ZK38+5Mp+MYZOGBSSed1vB2S W4Agv8JLnmkvb+JLQ1XkvjawTowZop8CPeApS4AIbTG0r9PM9WnFx6lMDiAx43sS IQjRbixxbmYrlxK4Injt/vDuPQ1/Lbnz53Wk+Xyu0xGBJtnGV5RnHFOAZBbLjt4Q aAyR7VNT3VBPmm4J+T/6pmMdxTNvsrkmYfGZdSsOzhle2LMaIVHGB1GJTlVBJT8+ Hj3TLQerowKuXEBh9+ZTiS2MfutAe+d75iaYYYVwm/U/rEV59cvqGjSYcwVoMCXW YTWqOA2k3RlpR4AFWS0QldXG9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL9xTBPg CtReV2TzoJ8/6e9VN6RHMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbfwTPDmKoZDLD/bmQo64GL+DLseEEFLD/Mu0ESA0r7jFgrOU03vwh wJ6CB4EhaCkNmj3m1HBy8BnmTHstamx5Qtl/3qFEhxN8aDDhVwbvti/WH9GGIO1g onrQNifDz8t4IegWgt+mZwLb9b+SK7VF4p2LqyoxJCqVN1FcyCaSzN5CdKAg6+8n VeOVobPCCBomNDpVIVRflisRtcwJTMrtMVvTpNnK2EH9F/8iOP9hCLYuKZ6COWtJ DeviGzbdBXGV0/N5nsAG4G1Dizbxk40laYf1RLCzwEjfYgUqAIT3Hqnu19XBUdcj Vfj835H2J7r9swtRETVKDuJ/SJoS3wy5 -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:00 2025 by rpki-client on console.sobornost.net