$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: u50lXd0fQ8LhwH6mm0sdazqEYsvX7iHQO7y1eFya5eY= Subject key identifier: A6:B1:68:86:AD:B1:06:E5:C6:84:7E:42:71:01:A7:05:4D:A3:15:71 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 09D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 09B5 Signing time: Mon 28 Apr 2025 20:29:00 +0000 Manifest this update: Mon 28 Apr 2025 20:29:00 +0000 Manifest next update: Mon 05 May 2025 20:29:00 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: kvqXVVUt25mkx94PyxCHnkFyoACjzk49Gz3arJsj3q0=) 2: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: cv1XOQDllKYXcpEWN6EDo+84rWYyoCQRLW84g8KQ5ZA=) 3: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: 19peW13UIPklgma9IsoYtyIgEi8rvSKuXv+9ezxIut4=) 4: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: VqWzdPFCvuqUEShaf6/toPwLspmfOG4EJ7lP9CUoJW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2519 (0x9d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Apr 28 20:29:00 2025 GMT Not After : May 5 20:29:00 2025 GMT Subject: CN=680fe50c-15b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e5:24:ba:7f:48:37:e5:7a:d4:31:b2:51:e8: cb:72:22:27:e8:97:ba:cc:31:d5:4d:ae:54:2c:6e: 48:30:ca:e5:18:8f:67:97:ff:78:31:25:47:28:e9: 78:e8:2f:a9:3b:40:7a:4e:c2:e6:cf:5f:fa:61:1e: c3:bc:90:a9:f8:dd:5a:68:f4:5e:c3:73:a5:79:c5: 8f:b7:6a:3c:96:22:0c:a4:48:d2:45:2f:f1:c9:d0: bd:b5:c5:f4:99:08:5a:e1:45:7e:73:65:9a:9b:0d: a6:33:0a:eb:45:fe:e7:85:27:a3:1e:da:f6:ae:09: f1:4b:cf:84:ec:f8:54:c4:20:2d:4c:69:93:24:da: 00:f3:15:a9:0b:88:2d:92:e5:44:2b:90:34:27:1e: 9a:35:05:a1:14:89:f3:46:df:91:cc:9d:8f:3b:db: b2:e8:0f:8f:83:f5:70:0a:3e:21:fd:17:dc:ef:db: 25:df:c6:93:df:f8:a3:a7:17:05:b3:69:82:60:69: 77:e5:89:ba:9c:cb:af:d8:2e:ad:df:34:88:9e:a9: f6:dd:62:e8:95:1f:52:e7:39:fc:55:13:26:e9:84: 28:d7:5a:f2:8f:f0:68:b3:0b:aa:e8:57:56:b4:84: 7a:2a:d0:52:c5:1d:11:e2:b9:7c:7c:04:76:ee:52: 2c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B1:68:86:AD:B1:06:E5:C6:84:7E:42:71:01:A7:05:4D:A3:15:71 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:27:d2:37:a0:80:19:fd:31:6e:d7:47:e9:40:f2:91:6d:f5: a1:db:4a:c6:ac:bc:74:3f:46:f5:a6:17:77:12:58:cf:56:9e: d7:eb:38:3c:3a:ac:c4:7f:15:a7:d1:e3:0f:67:96:ef:86:fc: ff:5f:6e:ed:9a:7c:84:6e:9a:ef:7b:06:f0:37:9d:6a:d4:9c: 89:2c:b7:60:ba:3a:e4:5e:e7:06:6d:23:07:6e:5f:07:79:a5: cf:8e:82:c4:df:af:7c:5b:60:58:17:4b:8b:fe:e1:c1:9c:a6: 0a:30:4b:46:5f:02:d9:ec:a0:09:2a:4c:9b:f9:b5:ee:54:5e: 89:55:3a:17:84:ff:bd:58:d3:ed:31:6c:86:7a:7e:a5:e7:4a: e0:de:f4:1b:fa:0b:26:ac:c4:20:84:d9:16:e2:0a:0d:a1:e1: af:bb:33:77:5e:1f:e3:d5:73:a1:fc:35:34:db:18:c2:42:84: 5d:c1:70:81:85:1a:10:17:71:ea:35:6c:34:70:37:19:28:77: f3:ef:18:67:a0:3c:17:2f:37:30:77:68:e4:76:8a:dd:0b:0c: e9:c1:51:b4:43:7e:a8:ce:a7:3e:41:86:13:fb:8e:ae:bf:3c: 8c:4c:63:a4:d3:c9:53:1c:31:98:ca:05:f0:3c:41:72:36:44: 8a:0b:c9:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUwNDI4MjAyOTAwWhcNMjUwNTA1MjAyOTAwWjAYMRYwFAYD VQQDEw02ODBmZTUwYy0xNWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquUkun9IN+V61DGyUejLciIn6Je6zDHVTa5ULG5IMMrlGI9nl/94MSVHKOl4 6C+pO0B6TsLmz1/6YR7DvJCp+N1aaPRew3OlecWPt2o8liIMpEjSRS/xydC9tcX0 mQha4UV+c2Wamw2mMwrrRf7nhSejHtr2rgnxS8+E7PhUxCAtTGmTJNoA8xWpC4gt kuVEK5A0Jx6aNQWhFInzRt+RzJ2PO9uy6A+Pg/VwCj4h/Rfc79sl38aT3/ijpxcF s2mCYGl35Ym6nMuv2C6t3zSInqn23WLolR9S5zn8VRMm6YQo11ryj/Boswuq6FdW tIR6KtBSxR0R4rl8fAR27lIsCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKaxaIat sQblxoR+QnEBpwVNoxVxMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpJ9I3oIAZ/TFu10fpQPKRbfWh20rGrLx0P0b1phd3EljPVp7X6zg8 OqzEfxWn0eMPZ5bvhvz/X27tmnyEbprvewbwN51q1JyJLLdgujrkXucGbSMHbl8H eaXPjoLE3698W2BYF0uL/uHBnKYKMEtGXwLZ7KAJKkyb+bXuVF6JVToXhP+9WNPt MWyGen6l50rg3vQb+gsmrMQghNkW4goNoeGvuzN3Xh/j1XOh/DU02xjCQoRdwXCB hRoQF3HqNWw0cDcZKHfz7xhnoDwXLzcwd2jkdordCwzpwVG0Q36ozqc+QYYT+46u vzyMTGOk08lTHDGYygXwPEFyNkSKC8mI -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:48 2025 by rpki-client on console.sobornost.net