$ rpki-client -vvf rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft File: xq-SXz6kP06O56MUIYIWk7Gt9qE.mft (raw, json) Hash identifier: bLdugqyq6/KJi1dH5Z4sCZekKAhvFgRqU46NNtL7C9o= Subject key identifier: D8:8E:01:73:A8:5B:EA:F3:81:85:F7:A4:92:F7:11:5C:25:15:D3:36 Authority key identifier: C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 Certificate issuer: /CN=A911E807/serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft Manifest number: 0665 Signing time: Sat 26 Apr 2025 22:02:44 +0000 Manifest this update: Sat 26 Apr 2025 22:02:43 +0000 Manifest next update: Sat 03 May 2025 22:02:43 +0000 Files and hashes: 1: xq-SXz6kP06O56MUIYIWk7Gt9qE.crl (hash: Q3QlLdj+EoJT0RxFX/teGkWx2sJeQqe+rl5fluc5Q+k=) 2: 1A20AAF27BD311EBA6617987C4F9AE02.roa (hash: ayNr4tR/Sfu0YrCAQZrJZu7BfQ9IzQFCs/VABD0dmLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E807, serialNumber=C6AF925F3EA43F4E8EE7A31421821693B1ADF6A1 Validity Not Before: Apr 26 22:02:43 2025 GMT Not After : May 3 22:02:43 2025 GMT Subject: CN=680d5804-ce53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c9:8e:62:a3:c7:7a:2f:72:0a:f4:4b:8e:7f: 21:b6:0c:b5:d3:39:b6:e8:e4:ec:b0:31:1f:51:bd: 06:37:e1:96:cc:63:ec:2a:24:af:bc:24:50:44:c8: 6e:bf:7a:cd:70:c0:07:51:1d:7a:be:00:25:c7:09: de:5c:a4:ab:c8:36:81:34:78:5f:3c:71:81:fe:c8: e5:00:52:46:65:46:a5:da:0e:13:4e:5a:16:d0:fc: 64:b9:7d:32:0e:75:3d:c6:cc:02:0c:07:af:f1:d5: 0c:24:d8:a1:a9:1e:a2:82:c3:80:51:ce:6c:e4:fd: 66:b1:62:52:ad:85:99:8c:52:92:a3:95:a8:df:98: ec:b5:10:e3:9a:0f:d2:ec:3e:1c:e8:8d:1f:ef:25: 20:42:72:ec:a4:39:76:d0:41:03:19:2f:7a:e0:ea: 3f:11:36:a7:74:8c:0e:a5:ba:18:fb:d8:04:df:34: 61:35:b6:82:54:43:33:e0:d7:58:93:81:ee:45:60: 4d:1b:0e:a6:e0:74:b7:62:b0:be:94:11:9d:21:37: b6:b1:85:77:46:55:88:87:e4:06:0d:ea:af:d2:8e: 81:a0:53:77:f1:b2:ec:65:63:ab:a3:98:5e:21:d8: a2:25:84:9f:32:ce:e0:78:76:95:d2:f8:0f:6f:00: 53:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8E:01:73:A8:5B:EA:F3:81:85:F7:A4:92:F7:11:5C:25:15:D3:36 X509v3 Authority Key Identifier: keyid:C6:AF:92:5F:3E:A4:3F:4E:8E:E7:A3:14:21:82:16:93:B1:AD:F6:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xq-SXz6kP06O56MUIYIWk7Gt9qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E807/2696F6C67B3611EBBE876461C4F9AE02/xq-SXz6kP06O56MUIYIWk7Gt9qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:83:56:6b:93:70:f9:ad:cf:ba:17:b5:d5:c8:79:2b:0c:d3: a6:a7:ab:25:08:46:a0:0a:ca:97:69:37:97:ed:64:6c:a6:12: ad:0d:00:9c:82:ef:a7:49:49:3f:67:30:c7:7b:69:08:bb:45: f6:8e:6e:a4:48:67:38:d3:f2:64:19:5c:44:0b:91:c4:91:a5: 8f:42:57:3d:c8:ed:4e:6f:11:63:09:05:22:b2:b0:c8:ff:3b: ea:c3:72:9b:ac:d5:3c:a9:40:b5:61:1b:95:ab:6c:4e:68:dc: 83:ce:e0:45:9e:23:4f:39:a3:64:c8:ce:fb:5d:57:45:f1:e9: 20:8d:5c:8d:ef:e9:6e:ab:84:ed:42:7f:31:c0:0c:71:c7:f5: 57:43:6f:32:e1:1c:6d:ef:35:2d:a5:b6:96:f1:90:ec:05:2c: 46:b1:ee:9c:ca:b0:e0:89:ed:40:48:10:a6:15:78:55:86:21: 93:51:a7:3c:02:a3:70:32:58:ea:93:77:28:f6:70:ca:42:e1: 1b:2e:93:d6:19:a3:a6:3e:0a:4a:17:73:5c:01:e6:77:02:b8: 70:98:a6:2b:b8:05:29:64:7e:45:b2:3a:2c:04:1e:5a:43:b4: 34:47:c6:d0:29:cd:3d:58:68:6f:b3:4a:cb:da:80:47:99:5a: bf:9d:b0:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU4MDcxMTAvBgNVBAUTKEM2QUY5MjVGM0VBNDNGNEU4RUU3QTMxNDIxODIxNjkz QjFBREY2QTEwHhcNMjUwNDI2MjIwMjQzWhcNMjUwNTAzMjIwMjQzWjAYMRYwFAYD VQQDEw02ODBkNTgwNC1jZTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcmOYqPHei9yCvRLjn8htgy10zm26OTssDEfUb0GN+GWzGPsKiSvvCRQRMhu v3rNcMAHUR16vgAlxwneXKSryDaBNHhfPHGB/sjlAFJGZUal2g4TTloW0PxkuX0y DnU9xswCDAev8dUMJNihqR6igsOAUc5s5P1msWJSrYWZjFKSo5Wo35jstRDjmg/S 7D4c6I0f7yUgQnLspDl20EEDGS964Oo/ETandIwOpboY+9gE3zRhNbaCVEMz4NdY k4HuRWBNGw6m4HS3YrC+lBGdITe2sYV3RlWIh+QGDeqv0o6BoFN38bLsZWOro5he IdiiJYSfMs7geHaV0vgPbwBTmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiOAXOo W+rzgYX3pJL3EVwlFdM2MB8GA1UdIwQYMBaAFMavkl8+pD9OjuejFCGCFpOxrfah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTgwNy8yNjk2RjZDNjdC MzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1AwNk81Nk1VSVlJV2s3R3Q5 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxLVNYejZrUDA2TzU2TVVJWUlXazdHdDlxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTgwNy8yNjk2RjZDNjdCMzYxMUVCQkU4NzY0NjFDNEY5QUUwMi94cS1TWHo2a1Aw Nk81Nk1VSVlJV2s3R3Q5cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrg1Zrk3D5rc+6F7XVyHkrDNOmp6slCEagCsqXaTeX7WRsphKtDQCc gu+nSUk/ZzDHe2kIu0X2jm6kSGc40/JkGVxEC5HEkaWPQlc9yO1ObxFjCQUisrDI /zvqw3KbrNU8qUC1YRuVq2xOaNyDzuBFniNPOaNkyM77XVdF8ekgjVyN7+luq4Tt Qn8xwAxxx/VXQ28y4Rxt7zUtpbaW8ZDsBSxGse6cyrDgie1ASBCmFXhVhiGTUac8 AqNwMljqk3co9nDKQuEbLpPWGaOmPgpKF3NcAeZ3ArhwmKYruAUpZH5FsjosBB5a Q7Q0R8bQKc09WGhvs0rL2oBHmVq/nbCh -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:17 2025 by rpki-client on console.sobornost.net