$ rpki-client -vvf rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft File: 8p8VNXR1uHRvrXiTag_NhSbi1hM.mft (raw, json) Hash identifier: ZR7SjvIGV25ahS4Ql+ygSYxOtUQmurlGKur8auLxd/k= Subject key identifier: ED:E6:BF:8F:2B:D9:FC:E0:FA:37:D1:DD:5C:A2:39:5D:C0:38:55:30 Authority key identifier: F2:9F:15:35:74:75:B8:74:6F:AD:78:93:6A:0F:CD:85:26:E2:D6:13 Certificate issuer: /CN=A911DB66/serialNumber=F29F15357475B8746FAD78936A0FCD8526E2D613 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8p8VNXR1uHRvrXiTag_NhSbi1hM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft Manifest number: 2D Signing time: Sun 27 Apr 2025 06:30:39 +0000 Manifest this update: Sun 27 Apr 2025 06:30:39 +0000 Manifest next update: Sun 04 May 2025 06:30:39 +0000 Files and hashes: 1: 8p8VNXR1uHRvrXiTag_NhSbi1hM.crl (hash: yY0BBh0hkIYq7btDGDggow1l9ANh0x1irkC0KBiuSiI=) 2: 879CFF8EE09E11EFAB364253C4F9AE02.roa (hash: kCo0wcr5hL64P6FXIbDjXCO02F9fPfzca6P+P/sgaPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.crl rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8p8VNXR1uHRvrXiTag_NhSbi1hM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DB66, serialNumber=F29F15357475B8746FAD78936A0FCD8526E2D613 Validity Not Before: Apr 27 06:30:39 2025 GMT Not After : May 4 06:30:39 2025 GMT Subject: CN=680dcf0f-1f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:5f:80:9f:9c:fe:ef:de:8e:48:f4:72:a6: a2:5a:8c:2e:05:2f:5a:17:91:f1:09:51:aa:d8:ec: c7:af:9a:f3:2b:59:44:2d:33:8c:3b:ad:3c:c7:8c: 61:66:c2:24:f6:5f:fa:bf:15:fc:28:21:59:60:86: 04:48:cd:70:2d:b0:45:5c:25:47:22:ec:41:93:8d: 83:3f:f1:20:52:ef:c5:bc:d4:29:5c:79:44:e3:d4: 19:b3:f8:06:bb:1e:32:a1:48:ba:6c:f0:b1:1f:15: c1:e9:9c:68:f7:48:55:f5:27:dd:7c:35:d4:61:6d: 33:92:66:40:3f:95:5c:82:88:81:e2:e6:87:42:45: a3:b3:7c:59:68:5c:c3:c7:f8:97:3c:2d:a1:f6:c3: 84:f2:00:46:b5:d2:b0:08:7e:ef:a6:9b:49:a7:26: 7f:89:42:b8:4d:be:e7:16:20:55:e9:64:0c:31:53: 2f:bf:cf:57:c4:d6:ec:c2:25:4f:12:5d:ca:37:93: 81:be:60:45:6d:14:29:83:8d:e9:19:b5:30:ae:1b: 2a:a8:03:35:00:34:fd:96:33:8b:a6:17:62:d9:54: cb:7a:9d:17:5a:07:62:52:c3:47:d1:4b:44:6e:2b: a4:38:1a:8d:58:2d:f1:33:72:3e:8b:7c:b2:61:96: f3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E6:BF:8F:2B:D9:FC:E0:FA:37:D1:DD:5C:A2:39:5D:C0:38:55:30 X509v3 Authority Key Identifier: keyid:F2:9F:15:35:74:75:B8:74:6F:AD:78:93:6A:0F:CD:85:26:E2:D6:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8p8VNXR1uHRvrXiTag_NhSbi1hM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DB66/806597ACE09A11EFB63A8130C4F9AE02/8p8VNXR1uHRvrXiTag_NhSbi1hM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:b6:d2:69:3a:fd:dc:9f:ef:80:0a:3f:db:6c:71:8a:09:ce: cf:45:fb:7a:7f:e7:f7:ba:95:37:9b:e2:b9:87:c8:ff:e9:59: 00:d5:ae:da:27:dc:31:32:e9:66:01:87:42:da:0d:37:3f:a8: 3d:25:3c:d0:fa:08:9b:02:08:51:65:f6:f4:42:a5:c4:c7:d3: 67:c6:98:21:fe:de:cc:76:7c:d8:bf:11:02:d7:52:d7:af:14: c2:bd:79:db:ec:57:07:4e:4a:0f:40:a7:39:b0:02:a2:0e:02: 5a:32:e1:a7:a6:df:61:c1:e3:da:48:48:d9:8c:61:fd:e8:fc: 73:59:80:66:2f:98:72:ca:c6:4f:07:01:16:ee:1a:a1:20:d3: 45:b1:61:e1:ac:6d:32:66:3a:94:4a:b0:73:55:f7:e8:f2:21: d5:e0:ce:65:25:fa:a7:a8:0d:f0:14:b7:ef:db:92:af:6d:65: 32:11:3f:18:b5:5b:2a:84:c4:22:0a:c0:83:9c:b9:f9:a6:54: 78:00:7c:2d:af:4b:4b:33:d5:6c:a5:35:29:63:18:06:ed:f2: 98:52:74:92:ba:a7:35:4b:e7:a2:54:b4:9f:09:5f:4a:96:a1: 5e:3f:2c:54:30:0b:17:03:9e:a5:b2:e3:61:ba:36:60:e6:42: c5:ed:62:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REI2NjExMC8GA1UEBRMoRjI5RjE1MzU3NDc1Qjg3NDZGQUQ3ODkzNkEwRkNEODUy NkUyRDYxMzAeFw0yNTA0MjcwNjMwMzlaFw0yNTA1MDQwNjMwMzlaMBgxFjAUBgNV BAMTDTY4MGRjZjBmLTFmNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMi1+An5z+796OSPRypqJajC4FL1oXkfEJUarY7MevmvMrWUQtM4w7rTzHjGFm wiT2X/q/FfwoIVlghgRIzXAtsEVcJUci7EGTjYM/8SBS78W81ClceUTj1Bmz+Aa7 HjKhSLps8LEfFcHpnGj3SFX1J918NdRhbTOSZkA/lVyCiIHi5odCRaOzfFloXMPH +Jc8LaH2w4TyAEa10rAIfu+mm0mnJn+JQrhNvucWIFXpZAwxUy+/z1fE1uzCJU8S Xco3k4G+YEVtFCmDjekZtTCuGyqoAzUANP2WM4umF2LZVMt6nRdaB2JSw0fRS0Ru K6Q4Go1YLfEzcj6LfLJhlvNrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7ea/jyvZ /OD6N9HdXKI5XcA4VTAwHwYDVR0jBBgwFoAU8p8VNXR1uHRvrXiTag/NhSbi1hMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFEQjY2LzgwNjU5N0FDRTA5 QTExRUZCNjNBODEzMEM0RjlBRTAyLzhwOFZOWFIxdUhSdnJYaVRhZ19OaFNiaTFo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOHA4Vk5YUjF1SFJ2clhpVGFnX05oU2JpMWhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFE QjY2LzgwNjU5N0FDRTA5QTExRUZCNjNBODEzMEM0RjlBRTAyLzhwOFZOWFIxdUhS dnJYaVRhZ19OaFNiaTFoTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABO20mk6/dyf74AKP9tscYoJzs9F+3p/5/e6lTeb4rmHyP/pWQDVrton 3DEy6WYBh0LaDTc/qD0lPND6CJsCCFFl9vRCpcTH02fGmCH+3sx2fNi/EQLXUtev FMK9edvsVwdOSg9ApzmwAqIOAloy4aem32HB49pISNmMYf3o/HNZgGYvmHLKxk8H ARbuGqEg00WxYeGsbTJmOpRKsHNV9+jyIdXgzmUl+qeoDfAUt+/bkq9tZTIRPxi1 WyqExCIKwIOcufmmVHgAfC2vS0sz1WylNSljGAbt8phSdJK6pzVL56JUtJ8JX0qW oV4/LFQwCxcDnqWy42G6NmDmQsXtYpQ= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:40 2025 by rpki-client on console.sobornost.net