$ rpki-client -vvf rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft File: qelaQWvM7v2G6i-gGcJeTXa46dk.mft (raw, json) Hash identifier: AklHGaWYybUDMfZWANHzxUaeTL+T3iEaBHKH8RHy5Lg= Subject key identifier: 3F:6B:E2:95:99:17:35:A8:8B:B0:FA:BF:9A:C5:93:C3:92:C6:60:FB Authority key identifier: A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 Certificate issuer: /CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Certificate serial: 1248 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft Manifest number: 122F Signing time: Sat 26 Apr 2025 17:05:07 +0000 Manifest this update: Sat 26 Apr 2025 17:05:06 +0000 Manifest next update: Sat 03 May 2025 17:05:06 +0000 Files and hashes: 1: qelaQWvM7v2G6i-gGcJeTXa46dk.crl (hash: W0v1FBbfSXQqtiRuAvOgiU2Yf/CRTMiM0OOh3M05Mnc=) 2: EFA0015E593911EFA8EAD43CC4F9AE02.roa (hash: U6ij5hk5FRfd6jZqWoSf+8Wvzol5Qvpq3+ctiHWpCug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4680 (0x1248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C676, serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Validity Not Before: Apr 26 17:05:06 2025 GMT Not After : May 3 17:05:06 2025 GMT Subject: CN=680d1243-89e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:97:f9:e8:50:8d:27:e5:da:76:b5:56:f6:a7: bb:f4:d3:87:a9:e9:bf:5d:51:28:88:f8:f1:d6:85: 77:c3:0a:81:42:50:72:ef:47:b3:de:0e:0b:ea:47: 20:62:52:b7:23:0e:b1:83:27:cd:91:f5:39:93:6b: f4:5c:1b:2e:28:95:41:8b:3a:c7:7e:d5:ac:29:fc: 99:f9:69:c4:1a:27:0c:0b:99:36:d0:28:40:d1:c6: ba:5b:b9:d7:bc:1a:2f:d1:79:36:43:b2:2b:08:ab: 4d:b0:f2:30:9c:27:98:2a:04:7f:b9:ac:1d:5d:79: 73:5f:2c:10:9d:d0:b6:f0:4c:fb:39:4a:da:29:6c: 08:ce:02:f8:e9:09:91:11:da:4f:6a:6e:fd:c6:e7: ac:07:42:6d:60:8c:54:20:00:d7:cd:45:b3:22:cb: c4:5f:58:c8:98:b1:49:2d:93:f4:44:b2:fc:04:84: 20:7b:9a:1c:99:d9:98:23:71:b6:77:3f:ea:3f:4c: 77:34:b7:bb:a5:d1:64:fe:d3:2c:47:58:08:d3:f6: 7b:a8:19:1e:ca:47:ee:6a:4f:d4:41:5d:f2:f4:96: 49:fb:3f:52:77:89:cc:52:dd:44:32:a5:d2:a5:56: 86:20:9b:66:5a:bd:0e:54:78:1d:5d:e2:23:a7:09: f8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6B:E2:95:99:17:35:A8:8B:B0:FA:BF:9A:C5:93:C3:92:C6:60:FB X509v3 Authority Key Identifier: keyid:A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:4d:dc:10:2e:3e:d4:85:1f:52:af:0b:bc:c9:6a:68:9f:f2: 95:5e:18:d8:23:1b:0c:cf:72:6f:d1:b9:be:a1:37:0e:aa:c2: c9:40:d9:11:22:1f:96:be:d9:07:94:a7:4c:d9:d7:c7:3a:72: 52:67:4e:9d:c7:48:e6:85:6e:2c:d9:c8:f4:01:d8:26:2c:93: 46:ce:23:f8:93:9d:78:b8:2a:3b:db:6c:52:c2:c6:70:62:a4: 33:d9:3b:01:81:74:81:e0:37:e1:c9:2d:34:1e:19:ce:c1:6c: c1:83:60:8f:0d:e1:39:11:a5:36:af:87:d0:6b:e6:21:38:f1: 7c:7d:32:ba:96:1e:3d:98:7b:15:9b:01:d8:63:0d:8e:54:a1: c0:64:a5:57:c0:79:f8:26:23:13:8a:9d:c0:0b:e1:fa:d0:2f: af:6a:65:ad:86:05:03:e5:95:1a:e5:74:c1:88:d1:9d:a0:7e: f6:02:b8:fd:0d:bb:cd:ec:7f:a9:09:91:f8:d7:c7:b1:fa:3c: 20:1a:0d:ac:da:7e:5f:43:fc:9f:3b:46:c1:76:75:e2:ea:a8: 50:ac:c1:87:10:8c:ed:e1:fa:3c:73:49:ca:23:ef:08:88:6d: 6f:fe:cc:5e:e3:fc:99:75:16:80:88:51:09:03:c6:67:cb:1a: 9a:b9:3d:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2NzYxMTAvBgNVBAUTKEE5RTk1QTQxNkJDQ0VFRkQ4NkVBMkZBMDE5QzI1RTRE NzZCOEU5RDkwHhcNMjUwNDI2MTcwNTA2WhcNMjUwNTAzMTcwNTA2WjAYMRYwFAYD VQQDEw02ODBkMTI0My04OWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Jf56FCNJ+XadrVW9qe79NOHqem/XVEoiPjx1oV3wwqBQlBy70ez3g4L6kcg YlK3Iw6xgyfNkfU5k2v0XBsuKJVBizrHftWsKfyZ+WnEGicMC5k20ChA0ca6W7nX vBov0Xk2Q7IrCKtNsPIwnCeYKgR/uawdXXlzXywQndC28Ez7OUraKWwIzgL46QmR EdpPam79xuesB0JtYIxUIADXzUWzIsvEX1jImLFJLZP0RLL8BIQge5ocmdmYI3G2 dz/qP0x3NLe7pdFk/tMsR1gI0/Z7qBkeykfuak/UQV3y9JZJ+z9Sd4nMUt1EMqXS pVaGIJtmWr0OVHgdXeIjpwn4VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9r4pWZ FzWoi7D6v5rFk8OSxmD7MB8GA1UdIwQYMBaAFKnpWkFrzO79huovoBnCXk12uOnZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzY3Ni9DRDM4QUIxNkRE RDkxMUU4QUY0NTFGMEFDNEY5QUUwMi9xZWxhUVd2TTd2Mkc2aS1nR2NKZVRYYTQ2 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlbGFRV3ZNN3YyRzZpLWdHY0plVFhhNDZkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzY3Ni9DRDM4QUIxNkRERDkxMUU4QUY0NTFGMEFDNEY5QUUwMi9xZWxhUVd2TTd2 Mkc2aS1nR2NKZVRYYTQ2ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeTdwQLj7UhR9Srwu8yWpon/KVXhjYIxsMz3Jv0bm+oTcOqsLJQNkR Ih+WvtkHlKdM2dfHOnJSZ06dx0jmhW4s2cj0AdgmLJNGziP4k514uCo722xSwsZw YqQz2TsBgXSB4DfhyS00HhnOwWzBg2CPDeE5EaU2r4fQa+YhOPF8fTK6lh49mHsV mwHYYw2OVKHAZKVXwHn4JiMTip3AC+H60C+vamWthgUD5ZUa5XTBiNGdoH72Arj9 DbvN7H+pCZH418ex+jwgGg2s2n5fQ/yfO0bBdnXi6qhQrMGHEIzt4fo8c0nKI+8I iG1v/sxe4/yZdRaAiFEJA8ZnyxqauT3S -----END CERTIFICATE-----Generated at Sat Apr 26 21:01:48 2025 by rpki-client on console.sobornost.net