$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft File: hgOgrKcgSw7-1k23DeUcdboDk1U.mft (raw, json) Hash identifier: KEm3ewjSvbbytjODc6oTc+3ElI+mz5i18Wv+VfHIqRk= Subject key identifier: 06:09:0B:6D:01:36:FB:9E:B6:35:79:A1:35:E4:F8:BD:DF:97:01:CE Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft Manifest number: 0290 Signing time: Sun 27 Apr 2025 01:17:00 +0000 Manifest this update: Sun 27 Apr 2025 01:16:59 +0000 Manifest next update: Sun 04 May 2025 01:16:59 +0000 Files and hashes: 1: hgOgrKcgSw7-1k23DeUcdboDk1U.crl (hash: Lol8EyMIb51U9RRfmSxBXTh4fyhtVUX/vhvnHNa3rrY=) 2: 208C7D2E066C11EDB31C2239C4F9AE02.roa (hash: JpDBusAldNWd+IJVkNhhqJJDrViCPn/caif2F0IdJAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2, serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Apr 27 01:16:59 2025 GMT Not After : May 4 01:16:59 2025 GMT Subject: CN=680d858b-4831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:01:07:40:75:19:64:b6:c9:32:3a:77:d8:5c: a6:41:de:08:bb:3a:77:52:27:7c:ce:ef:4b:4c:a3: 80:00:3a:f1:30:34:1a:07:3c:b8:fb:80:c5:9f:df: 1b:94:af:3a:e8:01:06:fd:78:9e:8a:b4:a8:9a:f3: 6e:e8:b2:b8:3b:47:68:33:3b:88:53:10:42:9e:f3: 56:d6:69:fe:86:9b:e2:a5:00:9c:3f:8f:1f:fa:87: 7d:ce:c7:2e:92:98:54:31:3d:08:13:d5:d6:36:d7: de:24:f9:8f:cc:e1:ba:e4:fa:3e:6f:85:02:77:c2: 74:cd:b6:28:fe:7b:a7:e1:d4:1d:a5:aa:a3:86:02: 6b:de:c9:dc:f0:d5:23:48:8f:e2:c6:ac:7b:c0:24: 24:3b:43:2a:14:69:d9:e2:45:0c:8a:91:f5:c7:e7: 38:98:ec:82:ed:ae:59:53:67:85:de:3f:c0:40:b6: 2a:49:c5:67:dd:98:a9:e3:7a:91:0b:5d:57:4b:2c: 83:b3:ab:ae:e4:74:d2:84:78:98:bd:04:21:61:bb: 4a:45:35:72:37:74:7d:4a:4b:03:a4:bb:35:5e:25: 69:b1:53:14:6a:4e:88:21:14:a8:4a:05:b0:5b:e6: 8d:73:2e:e3:24:a4:b4:f9:f1:76:9b:9d:a9:17:5f: d9:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:09:0B:6D:01:36:FB:9E:B6:35:79:A1:35:E4:F8:BD:DF:97:01:CE X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:cd:52:f2:ed:32:01:23:f5:00:97:f7:3c:8b:12:b7:5b:83: cc:fe:3c:9d:04:ae:f4:52:62:c7:6e:38:75:9d:03:0a:14:d3: 5c:03:01:f3:03:f4:e5:a3:40:0d:fe:ec:65:1a:bc:e9:4b:a5: 6b:10:2d:c8:4c:fc:19:26:01:ca:86:04:3b:b7:76:bd:d2:9e: 41:31:cc:06:27:93:3c:3f:18:13:a7:0b:fd:da:62:94:30:df: 4d:a2:41:69:91:d3:44:91:a7:3a:f8:dc:c5:93:ad:a7:9d:73: 48:bd:96:0f:b6:9a:4b:bd:36:e7:85:70:67:29:0c:72:e1:da: 2b:b2:f1:8b:cb:b9:98:16:92:8d:c6:de:c5:d7:b8:40:2d:24: 66:ae:6e:1c:e9:d0:3b:0a:ca:d5:ea:69:4b:93:40:ab:69:e1: 36:0d:98:93:dd:93:47:84:3e:f8:7b:78:9c:3f:27:c1:77:aa: 1d:b0:72:d8:96:a2:ef:19:84:98:e3:6a:74:74:7c:bd:03:17: d7:3e:eb:7f:61:21:af:a6:b7:ac:ad:45:a4:1e:08:32:1c:e2: 26:08:e1:a5:e5:6f:9b:23:b3:13:39:4a:05:31:33:73:70:21: 9a:50:dd:87:0b:2f:bf:3e:58:23:63:33:0a:67:cd:bf:0f:92: a2:ce:0a:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjUwNDI3MDExNjU5WhcNMjUwNTA0MDExNjU5WjAYMRYwFAYD VQQDEw02ODBkODU4Yi00ODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gEHQHUZZLbJMjp32FymQd4Iuzp3Uid8zu9LTKOAADrxMDQaBzy4+4DFn98b lK866AEG/XieirSomvNu6LK4O0doMzuIUxBCnvNW1mn+hpvipQCcP48f+od9zscu kphUMT0IE9XWNtfeJPmPzOG65Po+b4UCd8J0zbYo/nun4dQdpaqjhgJr3snc8NUj SI/ixqx7wCQkO0MqFGnZ4kUMipH1x+c4mOyC7a5ZU2eF3j/AQLYqScVn3Zip43qR C11XSyyDs6uu5HTShHiYvQQhYbtKRTVyN3R9SksDpLs1XiVpsVMUak6IIRSoSgWw W+aNcy7jJKS0+fF2m52pF1/ZiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYJC20B NvuetjV5oTXk+L3flwHOMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVCMi83QUM3NjdERTA2NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3 Ny0xazIzRGVVY2Rib0RrMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6zVLy7TIBI/UAl/c8ixK3W4PM/jydBK70UmLHbjh1nQMKFNNcAwHz A/Tlo0AN/uxlGrzpS6VrEC3ITPwZJgHKhgQ7t3a90p5BMcwGJ5M8PxgTpwv92mKU MN9NokFpkdNEkac6+NzFk62nnXNIvZYPtppLvTbnhXBnKQxy4dorsvGLy7mYFpKN xt7F17hALSRmrm4c6dA7CsrV6mlLk0CraeE2DZiT3ZNHhD74e3icPyfBd6odsHLY lqLvGYSY42p0dHy9AxfXPut/YSGvpresrUWkHggyHOImCOGl5W+bI7MTOUoFMTNz cCGaUN2HCy+/PlgjYzMKZ82/D5Kizgon -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:15 2025 by rpki-client on console.sobornost.net