$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft File: 2WQZRdW0z31j_JExr89yeuNtkCA.mft (raw, json) Hash identifier: FRfXgxfzF2I0Y88jDAmWvIHJies36uGi0QmAEKOEyuo= Subject key identifier: 0B:B3:39:63:DB:DF:53:F3:BD:FC:96:A0:AE:2F:26:E7:06:C8:BC:A2 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft Manifest number: 01C2 Signing time: Sun 27 Apr 2025 02:04:44 +0000 Manifest this update: Sun 27 Apr 2025 02:04:43 +0000 Manifest next update: Sun 04 May 2025 02:04:43 +0000 Files and hashes: 1: 2WQZRdW0z31j_JExr89yeuNtkCA.crl (hash: Ill5oIX4B1hzvie8/6Cshp5mSWTAg/T2RBpm2HDtw30=) 2: 15714ED2776A11ED98AF7341C4F9AE02.roa (hash: WBxu67wj7qK+1XHnF6Gm/tpT83HjDxcRJ+5R7dbCf7I=) 3: 77490C9A792F11EEBF849942C4F9AE02.roa (hash: +qSb4R4TGVMwO8UibifLnyUfy5g07BZr/1fOfOFiaKg=) 4: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (hash: TjgZvd8NTyfnTIYx+SMzczM6IMYvFc5scP1aWMMbHyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Apr 27 02:04:43 2025 GMT Not After : May 4 02:04:43 2025 GMT Subject: CN=680d90bb-4109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:29:a0:61:1d:6c:bc:c7:58:3f:03:77:5d:ce: c2:70:8f:90:fc:8c:a4:14:75:9f:6f:1f:c7:69:ff: 6d:13:75:6e:de:45:46:9d:39:f5:da:1b:aa:17:59: 48:9c:d1:65:62:67:4c:c1:e1:cc:5e:13:34:8b:25: 45:b5:4f:b0:5c:f4:31:4f:75:38:06:19:eb:56:d2: 71:fc:04:06:6a:60:5c:7b:d3:b1:cf:1f:b1:c5:50: 56:37:90:0e:94:6d:0c:7d:e5:79:17:b7:e6:5d:03: 62:77:0e:cf:6c:ed:57:52:04:e6:67:ef:20:27:57: 1f:4c:50:e8:c0:18:cf:66:c5:51:b4:6e:1a:d6:9d: 10:9e:13:69:a5:be:5b:c6:9e:5f:7c:98:61:21:2b: f7:4f:1a:94:cc:ff:f4:80:de:05:39:de:13:39:2b: 37:cc:01:33:f1:66:16:28:9c:99:d2:00:00:70:d5: 97:28:3e:cd:40:27:3d:00:06:49:3a:a7:bf:21:fd: e8:9b:ef:c3:76:64:5b:d4:76:41:77:ad:8a:a8:39: 74:6a:56:94:0c:64:12:3f:87:6e:d6:11:c5:3e:42: 07:0d:ad:ad:f4:b9:27:35:1b:f4:5a:35:ab:db:0c: f9:40:75:42:fb:2e:aa:37:a0:71:55:0c:c8:10:62: 48:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B3:39:63:DB:DF:53:F3:BD:FC:96:A0:AE:2F:26:E7:06:C8:BC:A2 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:1d:dd:02:d8:8f:3b:71:b6:4b:00:ec:92:85:f9:90:0b:f2: c1:57:9f:c2:5a:ec:6c:99:7b:f9:bc:9b:18:c6:33:e7:19:9e: 76:05:80:e2:25:02:ae:17:db:6e:f3:c6:85:9d:2e:f9:7d:82: e8:96:83:db:24:e5:b3:f2:70:d1:ab:ff:3a:7d:1b:6f:46:ce: 27:60:78:e3:71:1a:38:31:87:ec:5c:ba:62:33:5c:a9:a3:38: 78:c2:39:6a:2e:bf:ca:27:59:0e:2d:24:f7:64:c0:1d:56:07: a6:bf:18:ec:00:e3:06:a2:f1:46:d1:b1:d7:7a:aa:90:ff:2e: 69:c3:38:fd:a6:c4:b3:90:9f:7b:76:34:1b:e9:26:f4:43:8a: e8:ad:37:9c:23:fc:3b:97:cb:18:10:9c:53:c2:05:a8:48:e8: 18:82:59:3d:df:4d:48:96:ae:0d:ad:35:ed:43:97:1f:cd:c9: 1c:f2:84:52:86:8d:92:99:9d:8b:b1:41:dc:36:74:16:e7:46: 3a:36:98:58:13:a9:62:3d:1e:9d:4c:b3:32:d3:05:cb:1e:f4: 12:ed:74:c2:6d:ed:99:6c:d1:57:d6:39:3d:c3:b9:dc:7e:f1: a9:ab:09:10:84:ed:c1:ee:b2:f5:ff:49:72:34:54:60:3c:6f: d4:10:29:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwNDI3MDIwNDQzWhcNMjUwNTA0MDIwNDQzWjAYMRYwFAYD VQQDEw02ODBkOTBiYi00MTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmymgYR1svMdYPwN3Xc7CcI+Q/IykFHWfbx/Haf9tE3Vu3kVGnTn12huqF1lI nNFlYmdMweHMXhM0iyVFtU+wXPQxT3U4BhnrVtJx/AQGamBce9Oxzx+xxVBWN5AO lG0MfeV5F7fmXQNidw7PbO1XUgTmZ+8gJ1cfTFDowBjPZsVRtG4a1p0QnhNppb5b xp5ffJhhISv3TxqUzP/0gN4FOd4TOSs3zAEz8WYWKJyZ0gAAcNWXKD7NQCc9AAZJ Oqe/If3om+/DdmRb1HZBd62KqDl0alaUDGQSP4du1hHFPkIHDa2t9LknNRv0WjWr 2wz5QHVC+y6qN6BxVQzIEGJINQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuzOWPb 31PzvfyWoK4vJucGyLyiMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjMxNi9BMURGMTUyMDc3NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHoz MWpfSkV4cjg5eWV1TnRrQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcHd0C2I87cbZLAOyShfmQC/LBV5/CWuxsmXv5vJsYxjPnGZ52BYDi JQKuF9tu88aFnS75fYLoloPbJOWz8nDRq/86fRtvRs4nYHjjcRo4MYfsXLpiM1yp ozh4wjlqLr/KJ1kOLST3ZMAdVgemvxjsAOMGovFG0bHXeqqQ/y5pwzj9psSzkJ97 djQb6Sb0Q4rorTecI/w7l8sYEJxTwgWoSOgYglk9301Ilq4NrTXtQ5cfzckc8oRS ho2SmZ2LsUHcNnQW50Y6NphYE6liPR6dTLMy0wXLHvQS7XTCbe2ZbNFX1jk9w7nc fvGpqwkQhO3B7rL1/0lyNFRgPG/UECmZ -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:17 2025 by rpki-client on console.sobornost.net