$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: LKBjADSGvYHKh/44EMdlEK1XC06s/w500Yxg8mu7f/I= Subject key identifier: 5C:DD:94:EB:D5:DF:A0:71:DE:FB:6B:02:B5:C0:61:72:9D:03:EC:16 Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 34D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 34A6 Signing time: Mon 28 Apr 2025 14:23:24 +0000 Manifest this update: Mon 28 Apr 2025 14:23:23 +0000 Manifest next update: Mon 05 May 2025 14:23:23 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: 0RSojMKju3gx8eLwSIqEx1XSyGpV18Ie+/4J9HGPZ7U=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: mrU8KGa9vRKneCJ+qshobXiYhxcrHfbX93WdWbCVAW8=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: jIXmhGTsHnOLM/8Oki3QEi8c2FlMLFZ5ltRb0SYd+ig=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: qt+b79qUZeUfV9aMLkK2Vf0knDB1FC/92rGPVNLCE5Y=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: MRIxoftDwmp6WRJIoO9F8Xfh6zfeqVoYT85Plhiizjg=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: lJX0Rj0D2pXCWqSqPGBLqRXobNJsOmj1xve2tbokkqo=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: ucV0kVixfHpuy12BVYVN62sGm8utgsjQ/0NVbfikRis=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 1HeD3vEPTet+037gaAO1k2WACoSTrjT1BrLUthDQvck=) 9: 8C9959CE060A11F08CBBE511C4F9AE02.roa (hash: Y12eqR4kENble50Bxruc9jwO/MdOCmjFkivTDaJk12E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13525 (0x34d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Apr 28 14:23:23 2025 GMT Not After : May 5 14:23:23 2025 GMT Subject: CN=680f8f5c-63dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:42:21:da:e0:5c:d4:37:e1:1a:99:e6:b0:5e: 76:03:1a:60:0a:3e:e2:7c:63:e7:0c:73:5e:f6:a2: 57:c6:7a:e1:96:e1:40:1f:32:a0:c9:fa:f2:ee:fc: 73:d3:f0:86:6e:28:24:b1:fb:66:1c:7e:da:65:ab: 89:18:3c:48:ab:7c:7f:23:03:30:41:23:d1:20:ca: 56:03:a9:a5:6f:06:57:4d:4c:8b:14:5f:e9:7c:78: 8a:d8:9d:d3:46:fa:62:7b:df:88:c0:fd:f3:6c:42: 64:5d:30:14:68:b1:47:eb:52:ab:04:41:13:88:4f: 0b:1b:0e:20:b8:96:b3:5e:7a:ac:bc:d7:f0:7f:65: 79:ed:2d:08:c9:a9:58:ff:79:fe:1a:b8:f3:4a:56: c0:12:de:cc:f2:88:10:61:63:34:76:ce:70:14:a6: 0c:83:ce:a1:8a:91:e9:ab:02:66:ad:7e:7a:4d:11: 33:e0:db:c9:f7:d3:c2:de:1c:7f:1c:01:5d:00:0e: 9d:0b:49:4c:48:53:90:90:bb:f1:31:1b:1f:d2:7b: 06:6d:e3:42:15:cc:81:bf:5b:13:a1:52:4f:12:b9: b0:3d:1f:59:1d:65:96:ff:7b:10:54:b4:95:21:c0: 8c:b6:4a:a2:b5:d8:ad:d6:6e:be:eb:5d:7f:a6:5d: 17:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DD:94:EB:D5:DF:A0:71:DE:FB:6B:02:B5:C0:61:72:9D:03:EC:16 X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:1d:b9:95:94:47:e2:dc:93:0e:34:e7:ca:80:33:55:ac:ba: 16:5f:7e:36:ec:d5:2b:6d:5d:4f:d4:18:32:34:4c:ad:61:e3: 94:6b:21:a4:f9:71:93:17:0d:9e:17:e9:04:7a:49:09:60:09: 49:ec:29:88:e0:f4:1a:52:bb:f1:c6:0c:59:81:b1:82:c5:0a: 49:ed:e7:40:f2:2c:7f:e1:bf:d1:f3:bb:15:60:ac:e7:16:53: 24:ea:b9:e3:a1:5b:db:f4:a5:00:d0:f4:0d:c4:5e:d6:75:6f: 13:9f:20:ce:7f:77:da:db:89:1f:92:69:86:d0:05:65:47:85: 2c:95:db:e5:d0:f9:b5:d7:66:26:e2:3c:73:20:e0:65:01:5c: 81:ad:7d:6f:8a:df:7a:e6:53:11:b6:6d:95:d8:a4:2c:88:ae: 8a:25:98:3a:0f:05:36:90:d6:12:0d:ca:48:e1:65:6f:94:19: db:85:45:24:59:e4:21:12:69:ff:64:7e:4f:4a:6c:f4:1f:9f: b4:ad:6a:33:0b:90:7d:da:4e:43:43:f8:e1:52:ec:ae:d4:1a: 93:98:60:65:56:75:e6:87:34:17:e2:8c:72:a4:fe:d0:60:27: de:9f:cb:1c:20:d7:fe:bf:01:86:e8:41:fa:db:fd:67:4f:1f: 00:60:9e:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUwNDI4MTQyMzIzWhcNMjUwNTA1MTQyMzIzWjAYMRYwFAYD VQQDEw02ODBmOGY1Yy02M2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUIh2uBc1DfhGpnmsF52AxpgCj7ifGPnDHNe9qJXxnrhluFAHzKgyfry7vxz 0/CGbigksftmHH7aZauJGDxIq3x/IwMwQSPRIMpWA6mlbwZXTUyLFF/pfHiK2J3T Rvpie9+IwP3zbEJkXTAUaLFH61KrBEETiE8LGw4guJazXnqsvNfwf2V57S0IyalY /3n+GrjzSlbAEt7M8ogQYWM0ds5wFKYMg86hipHpqwJmrX56TREz4NvJ99PC3hx/ HAFdAA6dC0lMSFOQkLvxMRsf0nsGbeNCFcyBv1sToVJPErmwPR9ZHWWW/3sQVLSV IcCMtkqitdit1m6+611/pl0XyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzdlOvV 36Bx3vtrArXAYXKdA+wWMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBHbmVlEfi3JMONOfKgDNVrLoWX3427NUrbV1P1BgyNEytYeOUayGk +XGTFw2eF+kEekkJYAlJ7CmI4PQaUrvxxgxZgbGCxQpJ7edA8ix/4b/R87sVYKzn FlMk6rnjoVvb9KUA0PQNxF7WdW8TnyDOf3fa24kfkmmG0AVlR4Usldvl0Pm112Ym 4jxzIOBlAVyBrX1vit965lMRtm2V2KQsiK6KJZg6DwU2kNYSDcpI4WVvlBnbhUUk WeQhEmn/ZH5PSmz0H5+0rWozC5B92k5DQ/jhUuyu1BqTmGBlVnXmhzQX4oxypP7Q YCfen8scINf+vwGG6EH62/1nTx8AYJ4R -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:45 2025 by rpki-client on console.sobornost.net