$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft File: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft (raw, json) Hash identifier: NPo6S2e2SwDm0r/hy5qwJmwQ9Mu2+XlHyh4fTbhKvug= Subject key identifier: 14:CC:F0:74:05:43:1A:B7:79:ED:E3:51:DC:96:6F:35:9D:EC:7F:40 Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft Manifest number: 0BDB Signing time: Mon 28 Apr 2025 19:10:53 +0000 Manifest this update: Mon 28 Apr 2025 19:10:52 +0000 Manifest next update: Mon 05 May 2025 19:10:52 +0000 Files and hashes: 1: 3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl (hash: YLFunrEpAbLYmlW9jfAwl5xBtywdPlgr1lh9RgsICp0=) 2: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (hash: QTmQ+b0TWigH3ktAvPS5L4JGC6TmpCstJJc/am/VnB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:10:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7, serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Validity Not Before: Apr 28 19:10:52 2025 GMT Not After : May 5 19:10:52 2025 GMT Subject: CN=680fd2bd-e4dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:71:8b:75:95:ac:a0:0f:aa:df:4d:f5:7c:b4: cc:f3:76:ba:76:22:fb:ad:4c:45:15:e5:fe:39:e6: 16:47:5c:aa:47:38:21:f5:d6:79:ef:81:21:84:1c: 7b:2a:71:b9:8d:95:d1:7a:09:11:91:36:9b:05:b8: 29:24:fc:c3:2e:0b:3e:96:a2:aa:e8:e5:2f:2a:e4: 9c:a2:1b:05:7c:0f:e0:90:6e:c1:ee:f4:05:35:9f: eb:4b:91:49:0a:eb:e6:2c:46:3a:42:67:4a:5e:29: a7:12:e0:bd:f1:c0:8c:31:30:aa:87:5a:c9:3a:45: 52:9c:90:9e:5d:ed:2e:27:01:eb:5f:45:8e:ca:fe: b0:57:0b:c5:d5:27:68:72:51:52:51:3b:73:1c:ed: ae:3c:bf:45:98:82:3b:51:ca:10:eb:d5:0d:ca:1b: f1:aa:fa:a5:e1:ec:2f:3d:8b:51:d3:68:e3:0c:ba: 4a:22:d9:5c:81:f4:0f:33:4c:b1:d4:c6:21:2c:c5: 98:99:95:dc:28:33:84:92:38:88:29:f2:c9:2d:f9: f7:9e:8b:3e:65:ad:c5:e2:84:28:e6:ec:98:ec:e3: 62:d7:d8:03:18:4a:06:4d:ef:e8:d7:9d:7c:dd:2d: e8:ad:19:f6:f4:43:64:dc:e8:0e:01:ca:db:13:1a: dd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CC:F0:74:05:43:1A:B7:79:ED:E3:51:DC:96:6F:35:9D:EC:7F:40 X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:13:94:b8:08:f1:a6:f4:07:f0:7e:03:7d:b0:92:8d:d4:54: 5b:57:0c:84:9a:b6:68:1c:66:15:a5:d7:17:ad:c8:6a:a4:27: b7:7a:59:f1:cb:bc:a0:d0:bb:49:f5:ef:a1:a6:de:10:bd:48: 3b:2b:6b:36:88:61:c2:54:f3:cc:4f:87:e0:9d:0c:32:82:06: 00:12:02:9b:dc:ac:73:33:d5:a2:70:1e:ab:71:d9:cd:b0:ff: 4b:b0:be:b2:4c:5a:b1:75:ea:e3:9c:8b:51:e4:d8:18:8d:28: f3:c6:b8:7e:2a:91:70:6a:88:00:84:a6:b2:b7:01:d6:5f:24: d8:f7:ab:79:17:63:56:f7:05:04:48:bd:f6:42:4d:6c:6e:fb: d2:52:11:3a:7c:05:fd:6c:db:5a:be:d8:be:18:a1:68:bf:62: 82:cf:fb:29:ff:cc:8a:66:f7:a1:3b:46:ca:c5:02:f6:cc:7d: 35:83:b3:d8:5f:38:06:47:7b:c7:d8:08:e3:34:c3:54:47:98: 7d:04:a8:45:5c:97:43:91:8d:40:ff:31:ab:36:d3:58:c7:43: 79:f5:64:ca:89:76:41:17:85:a5:56:0b:e3:c5:79:b2:63:c5: ce:db:84:3d:38:ab:90:b9:83:3e:66:84:f4:7d:2e:b7:e5:f8: 1e:db:87:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjUwNDI4MTkxMDUyWhcNMjUwNTA1MTkxMDUyWjAYMRYwFAYD VQQDEw02ODBmZDJiZC1lNGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHGLdZWsoA+q3031fLTM83a6diL7rUxFFeX+OeYWR1yqRzgh9dZ574EhhBx7 KnG5jZXRegkRkTabBbgpJPzDLgs+lqKq6OUvKuScohsFfA/gkG7B7vQFNZ/rS5FJ CuvmLEY6QmdKXimnEuC98cCMMTCqh1rJOkVSnJCeXe0uJwHrX0WOyv6wVwvF1Sdo clFSUTtzHO2uPL9FmII7UcoQ69UNyhvxqvql4ewvPYtR02jjDLpKItlcgfQPM0yx 1MYhLMWYmZXcKDOEkjiIKfLJLfn3nos+Za3F4oQo5uyY7ONi19gDGEoGTe/o1518 3S3orRn29ENk3OgOAcrbExrdRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTM8HQF Qxq3ee3jUdyWbzWd7H9AMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzhCNy82NjlCNDU1MjE3NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdU Nk40cWNRLXlhQmlwVnpRbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzE5S4CPGm9AfwfgN9sJKN1FRbVwyEmrZoHGYVpdcXrchqpCe3elnx y7yg0LtJ9e+hpt4QvUg7K2s2iGHCVPPMT4fgnQwyggYAEgKb3KxzM9WicB6rcdnN sP9LsL6yTFqxderjnItR5NgYjSjzxrh+KpFwaogAhKaytwHWXyTY96t5F2NW9wUE SL32Qk1sbvvSUhE6fAX9bNtavti+GKFov2KCz/sp/8yKZvehO0bKxQL2zH01g7PY XzgGR3vH2AjjNMNUR5h9BKhFXJdDkY1A/zGrNtNYx0N59WTKiXZBF4WlVgvjxXmy Y8XO24Q9OKuQuYM+ZoT0fS635fge24eJ -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:52 2025 by rpki-client on console.sobornost.net