$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: 7hSnL/f2tzS0+hwNavn4AzczfLoeL+ldS51jr5HkBMs= Subject key identifier: 07:7F:27:3E:69:AB:9E:59:5D:89:58:B1:42:D6:9D:46:8A:80:3A:3A Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 060E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 05F6 Signing time: Sat 26 Apr 2025 22:46:15 +0000 Manifest this update: Sat 26 Apr 2025 22:46:14 +0000 Manifest next update: Sat 03 May 2025 22:46:14 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: fcEw8H7ZHuwqSJm5hkPCywU9AFTFc/cUJDi1/ONjZCA=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: 6YYJp70ovWJbV5hwBiIeegk/fbVe4hEWR6AUPM6tWHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Apr 26 22:46:14 2025 GMT Not After : May 3 22:46:14 2025 GMT Subject: CN=680d6236-d35a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:26:7c:8b:d7:33:22:0a:21:92:2c:e1:7a:d5: 29:e1:e0:39:99:60:9c:35:29:a2:c0:86:3c:40:35: 84:aa:cb:6e:ce:eb:15:3f:91:93:e6:04:25:28:b2: dd:be:af:43:78:49:a5:8e:de:1d:35:62:47:ea:92: 3c:ea:4b:c6:5d:de:d3:15:55:d2:73:0d:4c:5e:de: 02:a2:89:8d:e6:48:72:98:06:0f:f8:fb:e5:d9:af: 36:0f:1e:88:68:f6:2c:37:25:e7:1d:d4:81:1d:b7: 45:d2:29:76:15:b6:73:cc:b6:f7:cd:53:a1:fd:85: e6:26:03:6a:61:95:6a:0f:8b:ac:b6:a8:1a:eb:51: 30:56:3b:fc:d4:7c:e2:65:5e:78:9d:ad:48:62:a1: 67:56:4e:d4:4a:4e:df:c1:0e:99:c5:a6:58:bd:64: c3:be:21:6c:0c:b6:5d:06:30:e7:af:0d:e5:50:7c: d7:cb:aa:e7:79:ed:bf:ae:ad:b1:8c:68:8e:97:4c: fa:53:46:46:39:c1:34:db:7e:47:cf:eb:a4:82:81: c1:94:e2:52:15:56:54:91:7a:71:14:b6:89:55:11: 9c:20:7b:b2:86:b2:bb:47:a9:36:b1:c5:03:00:a6: ed:47:41:d1:0c:c8:c4:11:59:0a:75:46:1c:fa:c6: d4:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7F:27:3E:69:AB:9E:59:5D:89:58:B1:42:D6:9D:46:8A:80:3A:3A X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c8:7b:70:59:15:de:b5:87:b2:c5:9a:f4:d4:b6:07:de:bd: cc:51:78:0d:f5:21:89:ed:20:42:01:5e:81:27:31:d8:d7:38: 94:af:68:10:ef:08:a3:8d:58:fc:49:f8:15:80:75:47:e9:91: f5:39:79:8e:e8:53:47:58:e7:2e:49:c7:5e:ea:8f:6d:10:b3: 2a:70:35:f4:c5:c3:a7:ac:65:8f:77:0b:ed:e2:ee:0d:a3:39: 95:42:3b:5c:dd:cf:06:ce:08:7d:c9:55:96:f1:17:26:f2:0f: 3b:e4:66:58:42:48:b2:c8:2c:ff:61:89:cc:99:ec:38:90:99: 86:4a:99:e8:e3:1b:88:68:47:68:90:b9:28:ad:97:66:92:da: 5d:9c:8b:5d:2a:2a:9f:d2:33:af:9f:8f:6e:7c:a1:8a:9e:ef: ec:af:55:e8:66:da:9f:59:2a:89:71:76:63:89:83:2d:b7:41: 41:ee:1f:a6:23:49:a8:ed:96:af:20:f3:ce:9e:63:12:0d:39: e3:20:1c:24:a5:50:d1:c8:2e:3f:db:b1:71:db:db:51:25:d6: 5b:e1:2b:db:2c:14:fc:e8:8b:57:6b:f7:9e:6a:12:2b:98:61: 8d:46:92:1b:f9:38:d7:1d:59:c2:e4:9f:fb:57:d4:43:e4:13: c5:3d:05:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwNDI2MjI0NjE0WhcNMjUwNTAzMjI0NjE0WjAYMRYwFAYD VQQDEw02ODBkNjIzNi1kMzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CZ8i9czIgohkizhetUp4eA5mWCcNSmiwIY8QDWEqstuzusVP5GT5gQlKLLd vq9DeEmljt4dNWJH6pI86kvGXd7TFVXScw1MXt4CoomN5khymAYP+Pvl2a82Dx6I aPYsNyXnHdSBHbdF0il2FbZzzLb3zVOh/YXmJgNqYZVqD4ustqga61EwVjv81Hzi ZV54na1IYqFnVk7USk7fwQ6ZxaZYvWTDviFsDLZdBjDnrw3lUHzXy6rnee2/rq2x jGiOl0z6U0ZGOcE0235Hz+ukgoHBlOJSFVZUkXpxFLaJVRGcIHuyhrK7R6k2scUD AKbtR0HRDMjEEVkKdUYc+sbUdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd/Jz5p q55ZXYlYsULWnUaKgDo6MB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxyHtwWRXetYeyxZr01LYH3r3MUXgN9SGJ7SBCAV6BJzHY1ziUr2gQ 7wijjVj8SfgVgHVH6ZH1OXmO6FNHWOcuScde6o9tELMqcDX0xcOnrGWPdwvt4u4N ozmVQjtc3c8Gzgh9yVWW8Rcm8g875GZYQkiyyCz/YYnMmew4kJmGSpno4xuIaEdo kLkorZdmktpdnItdKiqf0jOvn49ufKGKnu/sr1XoZtqfWSqJcXZjiYMtt0FB7h+m I0mo7ZavIPPOnmMSDTnjIBwkpVDRyC4/27Fx29tRJdZb4SvbLBT86ItXa/eeahIr mGGNRpIb+TjXHVnC5J/7V9RD5BPFPQUA -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:16 2025 by rpki-client on console.sobornost.net