$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: z+jHCVxv3VJIgpYKuFgr5zvohEdqA9QW3bIJN8yVkak= Subject key identifier: 0E:59:A0:07:98:BB:37:1E:88:7B:CB:07:B0:DC:6D:85:AC:2E:C0:5C Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 37 Signing time: Sun 27 Apr 2025 06:24:30 +0000 Manifest this update: Sun 27 Apr 2025 06:24:30 +0000 Manifest next update: Sun 04 May 2025 06:24:29 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: bugxXM7J20/q26Pd7AuiV0XjiW8Uy9rNKVkI1HJ9iE0=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Apr 27 06:24:30 2025 GMT Not After : May 4 06:24:29 2025 GMT Subject: CN=680dcd9e-6636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8a:45:fa:d8:54:aa:01:f5:6c:77:fb:cd:6c: 87:21:1c:fe:8a:68:bd:19:75:48:26:c5:ca:36:72: 0d:b9:b2:94:fd:67:32:3c:aa:da:4e:9f:04:5d:83: 4a:74:e6:39:3a:de:12:dd:4b:54:85:2f:e8:34:a4: 50:37:4b:10:84:3b:8c:01:fc:28:2b:d1:2f:76:f4: be:8b:04:4c:cb:2b:35:16:2b:9f:83:e8:5d:78:3f: d1:2b:ba:d7:4b:3b:b6:5e:b8:85:cd:9c:dd:30:33: f3:76:f1:e2:d1:0c:6f:69:a2:db:84:56:1c:7f:8b: 20:d8:44:79:5c:34:c6:65:52:9b:4d:28:79:a4:45: 26:2a:04:f0:ec:e5:34:f0:18:6f:f3:25:01:f2:6a: 92:eb:3c:21:5f:30:cd:b5:6f:71:f6:03:9f:0f:f2: d5:4a:6f:bb:d3:b2:b9:b6:41:1d:22:38:15:28:74: c5:05:bf:a9:73:64:c6:5b:3c:4b:a9:6b:90:74:88: c1:de:04:d7:08:b8:8c:06:5c:3c:e4:35:52:83:b4: 42:f3:1c:17:3e:59:05:84:bf:93:ec:80:52:d6:ee: e9:f4:f6:42:8d:c0:bd:ef:2c:eb:6f:45:41:02:cc: ee:c8:2c:47:67:81:3c:9e:79:f9:2b:37:7d:31:de: 46:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:59:A0:07:98:BB:37:1E:88:7B:CB:07:B0:DC:6D:85:AC:2E:C0:5C X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:bf:53:f1:0d:f3:f9:70:db:cc:91:84:57:d8:f5:88:55:f1: 43:80:84:87:43:e1:b2:4d:9d:3e:bc:c2:71:2e:9c:82:84:15: 3a:70:fc:06:b7:a5:6c:3e:b7:f4:5f:a6:9d:68:a5:c6:80:2c: e0:43:8a:8b:c6:8a:b2:10:ea:fb:6c:4f:ea:3c:bc:2b:65:c0: 0e:fb:b1:1a:aa:62:1a:a4:8b:93:68:aa:9c:f0:44:f2:14:aa: ff:4d:97:31:c9:b0:d8:34:42:e5:b4:71:c5:9e:40:85:35:a9: 0f:fc:56:da:7d:1e:61:57:9a:c6:c5:d5:51:51:50:95:56:11: d1:11:15:8c:31:9a:15:19:18:f8:e4:7e:2b:fc:ef:39:fd:ff: 6b:bf:5e:00:2c:9e:5f:5c:cd:86:35:bc:ab:82:d2:2c:1c:99: e3:0b:e0:bd:80:13:b5:59:dc:89:16:58:2c:1d:29:30:db:f7: 3e:07:eb:8d:2d:4c:8f:51:e2:c0:12:2f:7d:8d:eb:21:70:25: 31:ea:39:32:b9:9c:87:47:47:2f:8d:75:24:a1:d8:35:e7:f9: 1e:79:ae:cb:81:ff:66:51:8e:c2:cd:2e:99:57:59:db:8a:cd: da:d2:ca:74:02:d2:9d:17:9b:35:c3:d6:10:17:37:f4:35:54: 5c:d4:c2:f5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA0MjcwNjI0MzBaFw0yNTA1MDQwNjI0MjlaMBgxFjAUBgNV BAMTDTY4MGRjZDllLTY2MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuikX62FSqAfVsd/vNbIchHP6KaL0ZdUgmxco2cg25spT9ZzI8qtpOnwRdg0p0 5jk63hLdS1SFL+g0pFA3SxCEO4wB/Cgr0S929L6LBEzLKzUWK5+D6F14P9ErutdL O7ZeuIXNnN0wM/N28eLRDG9potuEVhx/iyDYRHlcNMZlUptNKHmkRSYqBPDs5TTw GG/zJQHyapLrPCFfMM21b3H2A58P8tVKb7vTsrm2QR0iOBUodMUFv6lzZMZbPEup a5B0iMHeBNcIuIwGXDzkNVKDtELzHBc+WQWEv5PsgFLW7un09kKNwL3vLOtvRUEC zO7ILEdngTyeefkrN30x3ka3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDlmgB5i7 Nx6Ie8sHsNxthawuwFwwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKy/U/EN8/lw28yRhFfY9YhV8UOAhIdD4bJNnT68wnEunIKEFTpw/Aa3 pWw+t/Rfpp1opcaALOBDiovGirIQ6vtsT+o8vCtlwA77sRqqYhqki5NoqpzwRPIU qv9NlzHJsNg0QuW0ccWeQIU1qQ/8Vtp9HmFXmsbF1VFRUJVWEdERFYwxmhUZGPjk fiv87zn9/2u/XgAsnl9czYY1vKuC0iwcmeML4L2AE7VZ3IkWWCwdKTDb9z4H640t TI9R4sASL32N6yFwJTHqOTK5nIdHRy+NdSSh2DXn+R55rsuB/2ZRjsLNLplXWduK zdrSynQC0p0XmzXD1hAXN/Q1VFzUwvU= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net