$ rpki-client -vvf rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft File: JCq5H6fHpkrOd9m09mHijAsVuOA.mft (raw, json) Hash identifier: jiQDtKDccRZX4OUsY47P3YaJUw6/opn2LSGwPOUDTMM= Subject key identifier: 55:DA:8D:6F:4D:D8:E7:BE:F5:70:CD:02:FD:16:7F:96:2C:4B:EA:9B Authority key identifier: 24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 Certificate issuer: /CN=A911B22E/serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft Manifest number: 99 Signing time: Fri 25 Apr 2025 05:17:33 +0000 Manifest this update: Fri 25 Apr 2025 05:17:33 +0000 Manifest next update: Fri 02 May 2025 05:17:33 +0000 Files and hashes: 1: JCq5H6fHpkrOd9m09mHijAsVuOA.crl (hash: gC7U6TUQIjzCZhBDuuatv9hMJlW7h4EgK8Dyti4/3Kw=) 2: 95C79E36379611EF87CBA24DC4F9AE02.roa (hash: VSLP0SurFYr7NQK9R5lJWuMTjXBESVuwKDdrtUvBsXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B22E, serialNumber=242AB91FA7C7A64ACE77D9B4F661E28C0B15B8E0 Validity Not Before: Apr 25 05:17:33 2025 GMT Not After : May 2 05:17:33 2025 GMT Subject: CN=680b1aed-cd44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:47:4d:1d:18:eb:70:fd:51:00:2b:9e:3c:1f: 8e:da:5d:90:50:99:96:a6:b2:30:94:39:f8:ed:a8: ab:7f:75:87:18:65:86:3d:1b:f3:f2:9c:8d:3f:b4: 8d:6d:74:4c:09:92:52:7c:50:e4:47:37:b9:4a:5c: fd:b6:8a:b5:85:66:a1:1b:42:48:08:61:e1:7f:53: 91:c9:5c:11:47:12:38:47:5c:03:81:cb:37:bd:80: 7b:f3:f9:5f:42:80:bb:ad:04:62:5a:a5:90:10:97: 69:8e:f2:b6:ff:2b:73:5c:67:44:e8:26:c6:9b:3a: 7c:89:3f:31:c8:12:66:d1:26:4b:96:7c:7d:a8:32: 86:e6:01:91:69:cf:b9:a2:17:82:85:ff:73:ff:2d: 90:1d:3f:f7:d8:0b:52:d7:e0:72:7b:37:bb:62:93: a6:e3:7c:f5:40:f8:ce:00:4e:2e:91:d8:d9:2d:ea: a4:b1:12:13:b2:e7:19:2b:25:ff:08:d3:9c:a7:85: e9:f9:0e:d6:4d:8a:ed:11:85:48:57:43:b2:6d:51: 24:35:1e:85:33:7a:a0:85:f8:89:e9:cd:dc:15:c6: 36:66:75:eb:65:1f:18:80:b2:c4:df:9b:2a:5c:3e: 60:c6:1f:70:7f:2d:7d:59:c5:30:e0:db:c6:90:cd: de:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DA:8D:6F:4D:D8:E7:BE:F5:70:CD:02:FD:16:7F:96:2C:4B:EA:9B X509v3 Authority Key Identifier: keyid:24:2A:B9:1F:A7:C7:A6:4A:CE:77:D9:B4:F6:61:E2:8C:0B:15:B8:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JCq5H6fHpkrOd9m09mHijAsVuOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B22E/83415B36379511EF87CFD64BC4F9AE02/JCq5H6fHpkrOd9m09mHijAsVuOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0d:7a:37:ad:44:d5:95:66:4f:5f:40:bc:7c:75:48:17:5c: fd:f7:65:30:64:0b:43:cb:a9:c2:05:a3:29:b1:67:9c:61:46: 2a:f4:38:06:9c:1f:98:65:c1:b6:b2:92:13:52:94:27:e1:ba: 23:fe:be:bb:17:ae:3f:a7:71:2a:21:da:cd:a0:9f:a7:34:18: 8b:43:80:42:b5:34:9a:c4:de:22:22:c9:57:d2:bc:c3:6a:ca: ae:a1:f3:3f:04:5a:a1:c1:b1:ee:3f:cc:2e:f6:f8:54:e6:5c: f3:58:ad:19:0a:cc:65:b1:07:2f:7e:86:a1:5c:f8:64:70:07: 2d:c2:45:8b:ac:92:1a:ff:c8:9f:7f:ec:ed:44:9e:db:c6:07: 02:49:8f:2c:08:66:b5:17:7d:af:9e:df:76:77:74:43:a0:4a: 6f:0e:90:a0:42:57:9b:3c:16:7f:ac:1b:7a:e2:21:7d:1e:3c: 81:8d:e3:1a:26:fa:1c:41:d4:fa:3f:48:ed:f2:8c:19:18:0c: 36:09:0c:18:d1:99:0d:da:8f:8b:36:19:a7:01:44:55:a6:1e: a5:b0:bf:f7:3d:1d:e7:5f:a3:17:1c:f9:f5:34:40:26:a3:4c: f6:09:8c:5b:ce:1e:71:3f:50:54:90:10:f6:fd:a4:fd:f3:73: 32:4c:c3:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIyMkUxMTAvBgNVBAUTKDI0MkFCOTFGQTdDN0E2NEFDRTc3RDlCNEY2NjFFMjhD MEIxNUI4RTAwHhcNMjUwNDI1MDUxNzMzWhcNMjUwNTAyMDUxNzMzWjAYMRYwFAYD VQQDEw02ODBiMWFlZC1jZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0dNHRjrcP1RACuePB+O2l2QUJmWprIwlDn47airf3WHGGWGPRvz8pyNP7SN bXRMCZJSfFDkRze5Slz9toq1hWahG0JICGHhf1ORyVwRRxI4R1wDgcs3vYB78/lf QoC7rQRiWqWQEJdpjvK2/ytzXGdE6CbGmzp8iT8xyBJm0SZLlnx9qDKG5gGRac+5 oheChf9z/y2QHT/32AtS1+Byeze7YpOm43z1QPjOAE4ukdjZLeqksRITsucZKyX/ CNOcp4Xp+Q7WTYrtEYVIV0OybVEkNR6FM3qghfiJ6c3cFcY2ZnXrZR8YgLLE35sq XD5gxh9wfy19WcUw4NvGkM3eHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXajW9N 2Oe+9XDNAv0Wf5YsS+qbMB8GA1UdIwQYMBaAFCQquR+nx6ZKznfZtPZh4owLFbjg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjIyRS84MzQxNUIzNjM3 OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBrck9kOW0wOW1IaWpBc1Z1 T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pDcTVINmZIcGtyT2Q5bTA5bUhpakFzVnVPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjIyRS84MzQxNUIzNjM3OTUxMUVGODdDRkQ2NEJDNEY5QUUwMi9KQ3E1SDZmSHBr ck9kOW0wOW1IaWpBc1Z1T0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlDXo3rUTVlWZPX0C8fHVIF1z992UwZAtDy6nCBaMpsWecYUYq9DgG nB+YZcG2spITUpQn4boj/r67F64/p3EqIdrNoJ+nNBiLQ4BCtTSaxN4iIslX0rzD asquofM/BFqhwbHuP8wu9vhU5lzzWK0ZCsxlsQcvfoahXPhkcActwkWLrJIa/8if f+ztRJ7bxgcCSY8sCGa1F32vnt92d3RDoEpvDpCgQlebPBZ/rBt64iF9HjyBjeMa JvocQdT6P0jt8owZGAw2CQwY0ZkN2o+LNhmnAURVph6lsL/3PR3nX6MXHPn1NEAm o0z2CYxbzh5xP1BUkBD2/aT983MyTMNY -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:35 2025 by rpki-client on console.sobornost.net