$ rpki-client -vvf rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft File: u5rRr2kxSy7y9klB8Db94PfMTwI.mft (raw, json) Hash identifier: jGBXhMk2hMfYxmzwTwy6b1fudrd5A7AV34o+si7uzYo= Subject key identifier: 73:8E:A2:28:CE:CD:38:31:7F:59:BD:83:B0:7F:F4:CD:9C:E8:FB:4A Authority key identifier: BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02 Certificate issuer: /CN=A911DA8C/serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02 Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft Manifest number: 0136 Signing time: Fri 25 Apr 2025 01:01:38 +0000 Manifest this update: Fri 25 Apr 2025 01:01:38 +0000 Manifest next update: Fri 02 May 2025 01:01:38 +0000 Files and hashes: 1: u5rRr2kxSy7y9klB8Db94PfMTwI.crl (hash: P7uCEm8ZTOySGqIRbXkrvyJQIWhk9V8igD83O4tpIuI=) 2: B6369EA2521711EE899DAC80C4F9AE02.roa (hash: HmUyjBFHI1+/W084EHPJ3tp/TeXvZpxhICsUCVrwFxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.crl rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DA8C, serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02 Validity Not Before: Apr 25 01:01:38 2025 GMT Not After : May 2 01:01:38 2025 GMT Subject: CN=680adef2-18f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5d:16:f6:98:1a:a8:b4:9d:b8:55:bb:75:67: 6c:7f:46:6f:d5:bd:54:47:05:07:3f:02:65:f4:10: 6e:fd:76:d2:74:54:0d:d1:e8:68:81:24:eb:48:3a: b1:5f:73:5a:ef:d2:f4:e6:bf:89:16:a6:d9:fc:d3: eb:f5:0c:11:43:33:44:73:93:9c:44:7d:cc:e9:00: 43:6e:00:66:80:09:cf:e9:9c:a6:68:25:6f:83:71: 08:88:a9:57:92:c9:ee:b1:6e:2e:9d:a0:fc:91:83: 65:8d:84:bc:78:2a:34:fc:a3:4e:66:37:24:ce:d3: 61:a4:4b:fc:ba:41:f5:c8:6e:38:65:a3:e9:03:a5: bf:9e:99:b5:be:43:29:b0:5e:f3:c5:11:25:f8:e9: 8c:69:7e:83:ff:75:58:cf:4e:9b:8b:e9:fd:96:de: a8:c0:7a:74:d4:02:45:d3:46:ba:a6:78:76:74:47: 4e:ca:2e:d1:4d:91:92:8e:23:92:7d:6d:c6:15:5b: 90:d3:d5:3a:59:d1:f9:5a:a9:5d:cf:6f:e8:dc:ca: 40:8d:0b:93:7d:de:26:a4:2e:98:a0:e9:7c:90:5a: f3:fb:59:14:bb:23:39:37:b8:4e:a1:92:76:0d:31: 63:eb:00:1e:a4:b3:3a:66:2f:b8:30:15:00:a7:84: e1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:8E:A2:28:CE:CD:38:31:7F:59:BD:83:B0:7F:F4:CD:9C:E8:FB:4A X509v3 Authority Key Identifier: keyid:BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:bb:0b:ad:1b:9c:65:f7:f6:98:0d:1a:81:50:33:19:9a:64: 7d:69:0e:cd:6e:61:38:a8:e3:df:e3:f8:76:8f:d5:11:0d:6b: 93:49:a3:23:11:f0:3f:f3:8f:f0:d7:2d:70:dc:9f:5d:cc:9d: 05:ab:c1:0a:81:d1:0a:2a:30:08:6f:ba:e4:80:f9:f7:18:f9: 90:6d:14:fc:76:bc:19:d0:71:b8:32:79:11:52:18:98:24:e9: a9:ad:e5:6f:e8:97:46:8e:4b:ac:32:6f:5a:d5:dc:28:98:51: 10:a2:16:5a:af:46:6c:68:77:97:0e:1d:1f:ea:b2:9d:6d:bc: 66:c1:ad:dc:8b:b3:47:f5:a5:5a:e3:52:88:86:b7:83:0b:e9: eb:73:33:3e:63:f0:65:55:a6:87:8d:d9:68:5f:8c:1c:6b:8c: 82:06:92:08:31:73:9e:8f:b2:a9:70:5f:55:a4:e0:c7:7f:8f: e0:07:6b:6b:72:6e:52:dd:86:7c:e6:cb:ab:97:39:3a:d2:6f: 98:4d:29:cf:a9:a3:a6:5f:ea:e5:c6:47:55:cd:a8:97:b8:94: d8:6c:62:7c:e0:e4:86:e0:ae:2c:5c:41:8c:79:d2:4e:a3:89: 1f:8b:f0:23:1b:0e:bf:2b:11:67:0b:df:12:24:61:a4:0d:bc: 4f:c3:69:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURBOEMxMTAvBgNVBAUTKEJCOUFEMUFGNjkzMTRCMkVGMkY2NDk0MUYwMzZGREUw RjdDQzRGMDIwHhcNMjUwNDI1MDEwMTM4WhcNMjUwNTAyMDEwMTM4WjAYMRYwFAYD VQQDEw02ODBhZGVmMi0xOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxF0W9pgaqLSduFW7dWdsf0Zv1b1URwUHPwJl9BBu/XbSdFQN0ehogSTrSDqx X3Na79L05r+JFqbZ/NPr9QwRQzNEc5OcRH3M6QBDbgBmgAnP6ZymaCVvg3EIiKlX ksnusW4unaD8kYNljYS8eCo0/KNOZjckztNhpEv8ukH1yG44ZaPpA6W/npm1vkMp sF7zxREl+OmMaX6D/3VYz06bi+n9lt6owHp01AJF00a6pnh2dEdOyi7RTZGSjiOS fW3GFVuQ09U6WdH5Wqldz2/o3MpAjQuTfd4mpC6YoOl8kFrz+1kUuyM5N7hOoZJ2 DTFj6wAepLM6Zi+4MBUAp4ThxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOOoijO zTgxf1m9g7B/9M2c6PtKMB8GA1UdIwQYMBaAFLua0a9pMUsu8vZJQfA2/eD3zE8C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREE4Qy81NDZFRjNCQTRC OTkxMUVFQkIzNjBCNTVDNEY5QUUwMi91NXJScjJreFN5N3k5a2xCOERiOTRQZk1U d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U1clJyMmt4U3k3eTlrbEI4RGI5NFBmTVR3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REE4Qy81NDZFRjNCQTRCOTkxMUVFQkIzNjBCNTVDNEY5QUUwMi91NXJScjJreFN5 N3k5a2xCOERiOTRQZk1Ud0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2uwutG5xl9/aYDRqBUDMZmmR9aQ7NbmE4qOPf4/h2j9URDWuTSaMj EfA/84/w1y1w3J9dzJ0Fq8EKgdEKKjAIb7rkgPn3GPmQbRT8drwZ0HG4MnkRUhiY JOmpreVv6JdGjkusMm9a1dwomFEQohZar0ZsaHeXDh0f6rKdbbxmwa3ci7NH9aVa 41KIhreDC+nrczM+Y/BlVaaHjdloX4wca4yCBpIIMXOej7KpcF9VpODHf4/gB2tr cm5S3YZ85surlzk60m+YTSnPqaOmX+rlxkdVzaiXuJTYbGJ84OSG4K4sXEGMedJO o4kfi/AjGw6/KxFnC98SJGGkDbxPw2kJ -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:36 2025 by rpki-client on console.sobornost.net