$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft File: s9da4ezu9vkr0X0MSzZRjVvndvE.mft (raw, json) Hash identifier: XyGf+JMIc018xWJSneD79ZhO5N2/Wb+az8MQQpolcPA= Subject key identifier: 5C:0B:9A:3C:2C:7B:CB:4F:92:E5:66:8B:AF:9A:0A:C8:23:2D:A0:6E Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft Manifest number: BF Signing time: Sun 27 Apr 2025 04:45:31 +0000 Manifest this update: Sun 27 Apr 2025 04:45:30 +0000 Manifest next update: Sun 04 May 2025 04:45:30 +0000 Files and hashes: 1: s9da4ezu9vkr0X0MSzZRjVvndvE.crl (hash: GTdgTWuggc3E8WMhQ5xvhyZDFRLJMjuDmfiEjHHTCiw=) 2: 7E15FE0C27B711EF8867AA49C4F9AE02.roa (hash: xJBS1rE4hyaBoQRSLDqWi8kJZTi9bOV+WLs5Y+jjSRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Apr 27 04:45:30 2025 GMT Not After : May 4 04:45:30 2025 GMT Subject: CN=680db66b-175a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1c:44:7f:35:77:30:03:e8:13:ae:5c:09:d5: 3a:a0:e1:ad:9c:6f:12:9a:96:1b:40:2b:9a:9e:60: 85:b8:90:53:5c:2f:7b:09:ad:5e:28:a3:3a:46:64: 6f:85:c7:a2:02:ae:79:dd:13:3f:66:3c:99:62:58: 05:76:96:67:e4:ab:e9:f9:4b:ef:90:39:04:ac:b5: e9:a6:8c:55:d3:fc:9c:79:b0:25:2a:62:4d:53:8d: 09:a4:3c:a9:1f:49:cd:d2:76:95:f4:00:f2:8d:3d: 1d:7c:13:2c:13:9a:c5:44:49:8d:c1:56:6c:78:16: 75:4f:b0:36:53:1d:ef:2e:4c:18:fd:49:6c:5e:f4: 08:5a:1d:85:c3:63:85:b9:28:b4:3b:82:ad:e6:b4: 6f:69:b4:ae:87:96:f6:1c:6e:57:de:a0:82:07:bb: 78:7e:70:d0:cc:b8:b3:1d:c5:3f:25:cc:63:57:a9: b5:34:ba:b4:1f:aa:ac:18:cb:e3:ef:d8:4f:f1:a1: 2a:6d:66:7e:6a:c1:34:85:45:d3:87:4e:d9:6c:f5: 3a:99:6a:e8:97:6b:e4:cc:ed:ef:45:c4:eb:42:f6: 7d:1c:b3:63:c3:85:87:a3:8f:32:5a:d2:25:40:4e: 55:ca:8e:ea:3f:2d:c7:23:21:eb:15:4c:95:b2:0c: d8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0B:9A:3C:2C:7B:CB:4F:92:E5:66:8B:AF:9A:0A:C8:23:2D:A0:6E X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e6:f7:8e:07:0d:3f:5f:42:05:73:bd:04:72:eb:5f:92:99: 4f:10:e7:d3:78:75:11:e5:eb:60:4a:4b:24:ba:f6:4c:e9:2e: e0:83:75:38:90:a4:d2:e9:3f:47:10:ff:e4:fe:d4:30:7b:4b: 5d:fb:25:a2:d1:82:8d:be:33:be:49:bc:e3:a4:ce:13:72:2d: 17:1f:44:85:2d:ee:34:16:e2:c8:4b:b6:f2:27:17:88:6c:d2: 21:5d:7d:04:bf:37:e3:17:08:9f:ff:32:fd:6e:c7:aa:e2:d9: e2:8b:71:02:1c:9e:bf:01:27:10:ab:10:91:f7:9e:45:6d:7f: ac:60:51:41:e7:f9:90:68:f6:46:99:4e:33:d2:10:4c:60:a8: 96:38:2f:5c:dd:3c:9d:b2:69:5d:49:73:4d:b5:06:fa:bd:3a: e6:19:77:27:11:25:04:c7:10:56:02:ca:74:87:97:10:78:78: 02:d7:1a:f4:0e:24:37:e1:d8:90:3d:f5:d1:3a:2c:b4:01:b1: de:0f:f9:4b:b5:96:0b:e5:fb:71:39:1a:c6:5a:29:25:aa:cf: 6f:52:74:76:b7:fd:99:9b:69:0f:3a:07:d8:71:d2:2d:0d:ce: af:f7:1e:57:b6:ab:01:1b:d5:f6:f8:0e:ab:85:1b:55:a8:f4: 09:03:2f:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwNDI3MDQ0NTMwWhcNMjUwNTA0MDQ0NTMwWjAYMRYwFAYD VQQDEw02ODBkYjY2Yi0xNzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RxEfzV3MAPoE65cCdU6oOGtnG8SmpYbQCuanmCFuJBTXC97Ca1eKKM6RmRv hceiAq553RM/ZjyZYlgFdpZn5Kvp+UvvkDkErLXppoxV0/ycebAlKmJNU40JpDyp H0nN0naV9ADyjT0dfBMsE5rFREmNwVZseBZ1T7A2Ux3vLkwY/UlsXvQIWh2Fw2OF uSi0O4Kt5rRvabSuh5b2HG5X3qCCB7t4fnDQzLizHcU/JcxjV6m1NLq0H6qsGMvj 79hP8aEqbWZ+asE0hUXTh07ZbPU6mWrol2vkzO3vRcTrQvZ9HLNjw4WHo48yWtIl QE5Vyo7qPy3HIyHrFUyVsgzYSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwLmjws e8tPkuVmi6+aCsgjLaBuMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVDQS85RTdDMkNFRTAyNEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2 a3IwWDBNU3paUmpWdm5kdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBn5veOBw0/X0IFc70EcutfkplPEOfTeHUR5etgSkskuvZM6S7gg3U4 kKTS6T9HEP/k/tQwe0td+yWi0YKNvjO+SbzjpM4Tci0XH0SFLe40FuLIS7byJxeI bNIhXX0EvzfjFwif/zL9bseq4tnii3ECHJ6/AScQqxCR955FbX+sYFFB5/mQaPZG mU4z0hBMYKiWOC9c3TydsmldSXNNtQb6vTrmGXcnESUExxBWAsp0h5cQeHgC1xr0 DiQ34diQPfXROiy0AbHeD/lLtZYL5ftxORrGWiklqs9vUnR2t/2Zm2kPOgfYcdIt Dc6v9x5XtqsBG9X2+A6rhRtVqPQJAy/g -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net