$ rpki-client -vvf rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.mft File: xtAGfyQoHOH0nJCBLRWx9WG5Xd4.mft (raw, json) Hash identifier: KBuDe+E+gc5W5AR7HqC4GwKA9R8Clsorr3fnP2T868A= Subject key identifier: F7:FD:CE:F6:6B:9E:4C:F6:D0:70:BE:71:DD:CA:9F:F5:C8:57:A2:77 Authority key identifier: C6:D0:06:7F:24:28:1C:E1:F4:9C:90:81:2D:15:B1:F5:61:B9:5D:DE Certificate issuer: /CN=A9118166/serialNumber=C6D0067F24281CE1F49C90812D15B1F561B95DDE Certificate serial: 07A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.mft Manifest number: 07A2 Signing time: Sat 26 Apr 2025 20:55:50 +0000 Manifest this update: Sat 26 Apr 2025 20:55:50 +0000 Manifest next update: Sat 03 May 2025 20:55:50 +0000 Files and hashes: 1: xtAGfyQoHOH0nJCBLRWx9WG5Xd4.crl (hash: oIpv7rRAZxGcV4gKMOfGEkbVgfDBzYRPrArwrHh+gwY=) 2: 6AF8F822FDAB11EAAAB1FB37C4F9AE02.roa (hash: pS3E0icAhyYawyxkXSLUFbWuAzA0NV/jlalvE1DTh1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.crl rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1959 (0x7a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118166, serialNumber=C6D0067F24281CE1F49C90812D15B1F561B95DDE Validity Not Before: Apr 26 20:55:50 2025 GMT Not After : May 3 20:55:50 2025 GMT Subject: CN=680d4856-b70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f8:a5:e2:4b:1e:9e:ab:d7:69:7b:0b:da:54: 18:d3:04:09:ac:f8:3d:c3:76:19:29:01:b9:c4:51: 64:bf:0c:e2:09:59:3a:8a:a2:4d:06:b4:3a:54:34: 41:c8:fb:86:83:1b:b9:9b:f2:9c:96:26:4d:0e:88: 98:1a:72:3c:8d:f6:30:e1:dd:4f:dd:0a:43:68:56: 87:cb:52:ba:34:55:84:1c:01:c3:5a:7c:ea:a4:12: f0:94:1c:af:d8:84:34:ea:97:f4:a3:92:da:9e:39: 05:ac:4c:b9:23:30:df:c6:54:93:59:c4:d3:29:ff: 0f:a7:6c:5f:8c:a8:04:92:45:f5:52:38:db:89:d3: 09:ef:12:6e:33:7b:67:12:a5:5c:e0:b6:e9:ae:c6: e4:f2:1c:2b:93:0b:fe:e6:db:df:0c:ef:35:7e:fd: f6:d7:13:be:b1:cb:13:7d:da:93:d3:5a:54:d2:29: 13:a1:9b:d4:91:da:a1:4e:98:37:9d:a5:1e:51:6c: 3e:62:8f:58:bf:f8:ec:37:22:44:16:a2:2b:cc:de: d3:61:fe:4c:d0:5b:1a:6c:1b:33:71:10:47:1f:99: e1:32:77:fd:dd:cc:7d:ce:d1:45:23:f7:16:ce:33: 33:71:b5:63:e0:21:42:7c:6b:d6:9e:c4:b2:1d:7d: d7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FD:CE:F6:6B:9E:4C:F6:D0:70:BE:71:DD:CA:9F:F5:C8:57:A2:77 X509v3 Authority Key Identifier: keyid:C6:D0:06:7F:24:28:1C:E1:F4:9C:90:81:2D:15:B1:F5:61:B9:5D:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118166/28C1D022FD8911EA9463B635C4F9AE02/xtAGfyQoHOH0nJCBLRWx9WG5Xd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:88:38:8f:77:ac:47:73:46:ae:ba:9b:c4:4e:08:67:d5:c6: 9c:1a:a3:a3:bb:70:c4:9b:a5:e2:d8:db:30:eb:68:d6:bc:1f: 8d:d5:60:8a:e6:40:c9:9c:b2:96:8b:88:82:f9:bb:18:a6:aa: 6d:c4:94:d1:82:f7:52:38:f9:c3:5c:30:92:1b:7e:f3:ac:3a: b3:36:5c:00:c1:98:c0:c9:35:d3:ba:30:54:43:70:63:fe:84: ee:20:29:b9:99:23:7b:02:2a:b7:03:39:30:1e:4c:d6:ec:fd: ba:42:0e:0a:18:99:bd:96:ea:e8:d3:9f:3d:1d:59:53:25:0f: e7:9d:16:e8:e5:5f:79:60:a6:8e:24:9f:c4:e6:9e:1d:e2:f8: 04:b9:80:b6:74:5f:ee:cd:81:79:fd:e0:aa:bb:c4:bd:a7:bb: d0:85:80:41:38:09:70:f8:3a:a8:3d:b9:74:2e:69:e7:c4:a0: ff:98:11:e2:91:e0:ae:57:40:d9:3c:ba:c6:3d:15:73:dc:49: 96:0e:22:66:ed:11:9d:31:ad:1c:c7:bc:53:a4:87:84:52:f0: a0:63:d4:3b:c8:72:c3:61:97:52:08:a6:b1:e7:02:56:8a:4e: 56:07:01:4e:5e:b4:b5:08:c2:3e:d6:6e:0f:5d:71:89:ce:f7: 95:39:c9:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgxNjYxMTAvBgNVBAUTKEM2RDAwNjdGMjQyODFDRTFGNDlDOTA4MTJEMTVCMUY1 NjFCOTVEREUwHhcNMjUwNDI2MjA1NTUwWhcNMjUwNTAzMjA1NTUwWjAYMRYwFAYD VQQDEw02ODBkNDg1Ni1iNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Pil4ksenqvXaXsL2lQY0wQJrPg9w3YZKQG5xFFkvwziCVk6iqJNBrQ6VDRB yPuGgxu5m/KcliZNDoiYGnI8jfYw4d1P3QpDaFaHy1K6NFWEHAHDWnzqpBLwlByv 2IQ06pf0o5LanjkFrEy5IzDfxlSTWcTTKf8Pp2xfjKgEkkX1UjjbidMJ7xJuM3tn EqVc4Lbprsbk8hwrkwv+5tvfDO81fv321xO+scsTfdqT01pU0ikToZvUkdqhTpg3 naUeUWw+Yo9Yv/jsNyJEFqIrzN7TYf5M0FsabBszcRBHH5nhMnf93cx9ztFFI/cW zjMzcbVj4CFCfGvWnsSyHX3XNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPf9zvZr nkz20HC+cd3Kn/XIV6J3MB8GA1UdIwQYMBaAFMbQBn8kKBzh9JyQgS0VsfVhuV3e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODE2Ni8yOEMxRDAyMkZE ODkxMUVBOTQ2M0I2MzVDNEY5QUUwMi94dEFHZnlRb0hPSDBuSkNCTFJXeDlXRzVY ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h0QUdmeVFvSE9IMG5KQ0JMUld4OVdHNVhkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODE2Ni8yOEMxRDAyMkZEODkxMUVBOTQ2M0I2MzVDNEY5QUUwMi94dEFHZnlRb0hP SDBuSkNCTFJXeDlXRzVYZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmiDiPd6xHc0auupvETghn1cacGqOju3DEm6Xi2Nsw62jWvB+N1WCK 5kDJnLKWi4iC+bsYpqptxJTRgvdSOPnDXDCSG37zrDqzNlwAwZjAyTXTujBUQ3Bj /oTuICm5mSN7Aiq3AzkwHkzW7P26Qg4KGJm9luro0589HVlTJQ/nnRbo5V95YKaO JJ/E5p4d4vgEuYC2dF/uzYF5/eCqu8S9p7vQhYBBOAlw+DqoPbl0LmnnxKD/mBHi keCuV0DZPLrGPRVz3EmWDiJm7RGdMa0cx7xTpIeEUvCgY9Q7yHLDYZdSCKax5wJW ik5WBwFOXrS1CMI+1m4PXXGJzveVOckT -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:54 2025 by rpki-client on console.sobornost.net