$ rpki-client -vvf rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.mft File: qZhc3TeTLh02TExtddulA79yZ3w.mft (raw, json) Hash identifier: PfLPcDeeQgL8LuO0Cfwexaos3c63Q9UcagkXbH5aHPE= Subject key identifier: C1:6A:21:CE:11:48:75:2C:A6:83:3A:BA:1B:04:9D:8F:06:78:D0:71 Authority key identifier: A9:98:5C:DD:37:93:2E:1D:36:4C:4C:6D:75:DB:A5:03:BF:72:67:7C Certificate issuer: /CN=A911B12B/serialNumber=A9985CDD37932E1D364C4C6D75DBA503BF72677C Certificate serial: 019B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZhc3TeTLh02TExtddulA79yZ3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.mft Manifest number: 0191 Signing time: Sun 27 Apr 2025 02:41:09 +0000 Manifest this update: Sun 27 Apr 2025 02:41:08 +0000 Manifest next update: Sun 04 May 2025 02:41:08 +0000 Files and hashes: 1: qZhc3TeTLh02TExtddulA79yZ3w.crl (hash: AtvlYlFrdCDDM/PGjPWdE1pOG2z7WzoTEhlHzHQSvjo=) 2: 2048ADEADD5011EDA3ACE13CC4F9AE02.roa (hash: Ry5wENgivtIXCFgzf0QiO3bQmATycLuxi4WQf0WGYRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.crl rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZhc3TeTLh02TExtddulA79yZ3w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B12B, serialNumber=A9985CDD37932E1D364C4C6D75DBA503BF72677C Validity Not Before: Apr 27 02:41:08 2025 GMT Not After : May 4 02:41:08 2025 GMT Subject: CN=680d9944-eee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9d:c7:36:dd:a7:0a:04:4d:7b:94:4b:0f:68: 59:a9:5f:df:f0:ad:85:d8:21:07:a2:62:eb:a6:a3: 96:61:56:a2:39:f6:6f:f8:36:4e:64:77:ad:29:c6: ea:2b:0f:3f:e9:fb:a8:89:34:fe:47:2f:58:a1:ac: f9:33:88:fa:4d:30:b8:f9:4d:40:db:0d:dd:de:d5: fa:79:4e:df:55:83:3d:b6:6a:cf:d4:ca:a0:37:4e: 03:4a:11:cd:28:f9:6a:c3:16:c3:6e:fb:65:4d:0f: 59:c2:d9:02:23:d3:50:52:bf:55:18:e1:f5:ac:4c: cd:14:b2:f7:a6:23:b0:3d:0b:91:85:e3:43:3b:01: 0c:c2:eb:30:67:1c:92:79:d8:76:9d:77:ba:67:f2: b1:47:2d:ac:52:33:8e:69:b1:dd:13:d6:64:e0:51: 28:6c:28:d3:65:8c:67:c2:19:12:cd:ef:5f:72:4f: ee:85:2f:83:8d:ea:a2:be:08:2e:7d:5f:4a:f0:f7: 15:30:12:a7:b0:9c:a7:5f:3e:81:8c:10:43:a1:63: 12:0d:7f:9f:d4:ff:79:5c:d3:47:6b:0f:22:6e:d6: 3a:34:52:80:d0:ce:69:b1:3c:2d:a6:17:dd:3d:32: 85:0e:80:9d:c4:1f:4a:50:6b:f6:17:40:1d:fb:a7: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6A:21:CE:11:48:75:2C:A6:83:3A:BA:1B:04:9D:8F:06:78:D0:71 X509v3 Authority Key Identifier: keyid:A9:98:5C:DD:37:93:2E:1D:36:4C:4C:6D:75:DB:A5:03:BF:72:67:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZhc3TeTLh02TExtddulA79yZ3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:12:8f:7f:de:da:e3:db:81:82:fd:b1:e1:b8:c9:d2:47:14: 3b:25:ba:58:d5:bb:a6:2c:df:c8:c5:dc:a0:04:ae:dd:5d:84: 77:02:57:b8:8f:9b:f0:7b:b3:f7:0b:f5:e1:8b:2f:a8:a5:9c: e7:96:55:f5:75:f9:19:6e:ff:4d:f5:05:a8:15:ee:27:d5:9c: 5c:fd:25:1a:1e:1f:fa:6e:37:5a:d2:16:9c:27:f2:fa:b6:fe: 5e:22:ff:87:51:5c:be:71:27:b3:ac:6c:a9:0b:45:6b:df:ed: 43:45:36:1f:18:31:f7:0e:f2:2e:31:5c:6d:3f:2c:cc:20:f0: c5:69:a7:ca:1b:5e:e9:4c:96:2f:b8:da:9e:a2:58:ce:0b:57: e5:2c:ca:99:e3:7f:68:f1:54:29:d1:e1:05:f5:c5:31:d4:95: b3:ca:a9:10:dd:2e:5a:80:5d:cb:14:a8:e9:27:e0:31:78:75: 0e:f7:59:75:7b:5d:98:5a:c4:70:20:91:03:89:6b:ba:dd:0b: 9a:93:63:ea:5f:48:96:31:77:8f:d6:9d:2a:28:dc:91:58:53: ee:fa:b4:40:77:1f:55:2b:4f:a6:8d:16:8a:e8:b6:80:8d:74: 63:cd:31:20:df:fc:43:f6:20:7c:5c:24:03:dd:09:41:4d:3e: 09:ae:55:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIxMkIxMTAvBgNVBAUTKEE5OTg1Q0REMzc5MzJFMUQzNjRDNEM2RDc1REJBNTAz QkY3MjY3N0MwHhcNMjUwNDI3MDI0MTA4WhcNMjUwNTA0MDI0MTA4WjAYMRYwFAYD VQQDEw02ODBkOTk0NC1lZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Z3HNt2nCgRNe5RLD2hZqV/f8K2F2CEHomLrpqOWYVaiOfZv+DZOZHetKcbq Kw8/6fuoiTT+Ry9Yoaz5M4j6TTC4+U1A2w3d3tX6eU7fVYM9tmrP1MqgN04DShHN KPlqwxbDbvtlTQ9ZwtkCI9NQUr9VGOH1rEzNFLL3piOwPQuRheNDOwEMwuswZxyS edh2nXe6Z/KxRy2sUjOOabHdE9Zk4FEobCjTZYxnwhkSze9fck/uhS+Djeqivggu fV9K8PcVMBKnsJynXz6BjBBDoWMSDX+f1P95XNNHaw8ibtY6NFKA0M5psTwtphfd PTKFDoCdxB9KUGv2F0Ad+6e7SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFqIc4R SHUspoM6uhsEnY8GeNBxMB8GA1UdIwQYMBaAFKmYXN03ky4dNkxMbXXbpQO/cmd8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjEyQi8wOEMyNzUzMkRC NjgxMUVEOTZDNDlDM0RDNEY5QUUwMi9xWmhjM1RlVExoMDJURXh0ZGR1bEE3OXla M3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaaGMzVGVUTGgwMlRFeHRkZHVsQTc5eVozdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjEyQi8wOEMyNzUzMkRCNjgxMUVEOTZDNDlDM0RDNEY5QUUwMi9xWmhjM1RlVExo MDJURXh0ZGR1bEE3OXlaM3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsEo9/3trj24GC/bHhuMnSRxQ7JbpY1bumLN/IxdygBK7dXYR3Ale4 j5vwe7P3C/Xhiy+opZznllX1dfkZbv9N9QWoFe4n1Zxc/SUaHh/6bjda0hacJ/L6 tv5eIv+HUVy+cSezrGypC0Vr3+1DRTYfGDH3DvIuMVxtPyzMIPDFaafKG17pTJYv uNqeoljOC1flLMqZ439o8VQp0eEF9cUx1JWzyqkQ3S5agF3LFKjpJ+AxeHUO91l1 e12YWsRwIJEDiWu63Quak2PqX0iWMXeP1p0qKNyRWFPu+rRAdx9VK0+mjRaK6LaA jXRjzTEg3/xD9iB8XCQD3QlBTT4JrlV9 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:16 2025 by rpki-client on console.sobornost.net