$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft File: GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft (raw, json) Hash identifier: QLxbVtchNHHLg5oHdXpBaPBJ6NkIl6Zjx5a1yHR6q9g= Subject key identifier: 91:8A:1B:1F:C3:C0:D5:E7:AF:4D:98:5A:60:7D:2B:86:D9:B3:2F:1B Authority key identifier: 18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77 Certificate issuer: /CN=A912A5D4/serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft Manifest number: 23 Signing time: Sun 27 Apr 2025 06:39:04 +0000 Manifest this update: Sun 27 Apr 2025 06:39:04 +0000 Manifest next update: Sun 04 May 2025 06:39:04 +0000 Files and hashes: 1: GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl (hash: /lYNnXlY95vQIzAK5U1Bn/4FoTk0POh4Xk6IH6FmNb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=183A9867F2E3B373162BEFA6B86E81BD8C868877 Validity Not Before: Apr 27 06:39:04 2025 GMT Not After : May 4 06:39:04 2025 GMT Subject: CN=680dd108-5187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:62:81:77:7f:69:00:99:fd:97:5b:78:fb:3a: c2:80:dc:b0:5b:8e:fa:fd:04:f9:04:7c:7b:56:43: 13:52:2e:0b:01:02:fd:f8:1b:0b:7a:da:9d:32:8d: 50:dd:49:9e:cb:65:cb:eb:55:ad:03:ba:5c:b6:b9: a7:a4:95:4a:a0:a5:02:0e:4b:88:b1:38:7d:c2:40: 70:b4:c2:c0:55:e1:3f:33:61:24:4d:85:65:a4:04: b2:99:1b:39:5c:6f:55:c3:22:a5:9d:c3:79:19:1d: 94:86:75:f5:46:07:91:5a:60:4a:69:9b:37:d1:08: 0a:d7:c1:ff:47:c1:7c:97:77:ba:45:1d:a0:65:17: 7e:9e:bd:ec:0b:30:33:65:e8:06:75:6f:15:6e:fc: 0b:5c:0f:7d:4a:12:ef:67:e8:f1:21:ba:68:25:16: a1:55:96:f5:59:3e:4a:7a:6c:6e:b6:28:9e:a9:9a: 35:20:3e:4c:0a:22:d9:f7:83:c4:a5:37:47:08:a9: 4e:0f:d3:c9:c2:f4:2f:e1:90:bd:f2:e0:3e:42:ed: cd:d3:97:9f:f4:2d:b4:00:b7:70:d8:91:61:63:16: 7c:88:52:e5:9c:59:e4:1c:47:7b:b8:ed:c3:65:20: 8b:9e:00:d5:d8:90:73:cc:4a:f0:eb:33:ed:92:bc: 80:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:8A:1B:1F:C3:C0:D5:E7:AF:4D:98:5A:60:7D:2B:86:D9:B3:2F:1B X509v3 Authority Key Identifier: keyid:18:3A:98:67:F2:E3:B3:73:16:2B:EF:A6:B8:6E:81:BD:8C:86:88:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GDqYZ_Ljs3MWK--muG6BvYyGiHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/6E0F2EA0F3CE11EF914EF644C4F9AE02/GDqYZ_Ljs3MWK--muG6BvYyGiHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:92:08:dc:ac:41:f6:d0:55:bc:28:91:9e:ab:83:d2:93:45: fd:72:1e:ea:7a:54:f7:2e:5b:6a:5e:44:f4:6f:30:8b:3b:2f: ac:c6:2c:35:94:d6:90:1d:59:b2:3d:2d:b4:58:e6:48:93:ae: a1:77:e3:f6:c7:87:17:50:71:68:94:bc:0e:13:50:2f:3a:2b: f5:0f:5e:8d:fc:6b:e7:94:58:51:9f:31:eb:81:a4:f0:48:4e: 24:6e:56:46:6e:59:5a:62:30:be:b6:f5:97:af:37:2e:22:69: 1a:38:e9:6b:4c:74:b8:f3:b7:7f:c6:4d:ca:46:cb:31:1c:c9: 1e:aa:88:d0:50:48:42:3d:b2:49:6b:87:f8:02:9f:eb:47:61: 5d:15:03:1d:db:46:ac:bb:ba:2c:11:d3:3b:e8:aa:e6:2c:a3: 41:6c:3b:f0:68:c3:b5:d4:93:0b:30:5a:ca:e1:7b:8c:3f:65: 94:57:cc:da:a6:99:29:03:67:ae:78:03:ab:40:66:24:27:62: 1a:d1:cf:a9:cc:4a:d2:2c:75:5a:e1:ba:22:77:f6:e4:c3:2d: 1e:b6:30:62:30:38:e7:55:ea:7d:99:c4:fa:ab:be:90:c0:f6: 4e:6d:97:ca:62:51:e9:63:e7:39:de:93:eb:b6:99:d2:db:dc: 0b:4a:e2:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTVENDExMC8GA1UEBRMoMTgzQTk4NjdGMkUzQjM3MzE2MkJFRkE2Qjg2RTgxQkQ4 Qzg2ODg3NzAeFw0yNTA0MjcwNjM5MDRaFw0yNTA1MDQwNjM5MDRaMBgxFjAUBgNV BAMTDTY4MGRkMTA4LTUxODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkYoF3f2kAmf2XW3j7OsKA3LBbjvr9BPkEfHtWQxNSLgsBAv34Gwt62p0yjVDd SZ7LZcvrVa0Duly2uaeklUqgpQIOS4ixOH3CQHC0wsBV4T8zYSRNhWWkBLKZGzlc b1XDIqWdw3kZHZSGdfVGB5FaYEppmzfRCArXwf9HwXyXd7pFHaBlF36evewLMDNl 6AZ1bxVu/AtcD31KEu9n6PEhumglFqFVlvVZPkp6bG62KJ6pmjUgPkwKItn3g8Sl N0cIqU4P08nC9C/hkL3y4D5C7c3Tl5/0LbQAt3DYkWFjFnyIUuWcWeQcR3u47cNl IIueANXYkHPMSvDrM+2SvICdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkYobH8PA 1eevTZhaYH0rhtmzLxswHwYDVR0jBBgwFoAUGDqYZ/Ljs3MWK++muG6BvYyGiHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBNUQ0LzZFMEYyRUEwRjND RTExRUY5MTRFRjY0NEM0RjlBRTAyL0dEcVlaX0xqczNNV0stLW11RzZCdll5R2lI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0RxWVpfTGpzM01XSy0tbXVHNkJ2WXlHaUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJB NUQ0LzZFMEYyRUEwRjNDRTExRUY5MTRFRjY0NEM0RjlBRTAyL0dEcVlaX0xqczNN V0stLW11RzZCdll5R2lIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAiSCNysQfbQVbwokZ6rg9KTRf1yHup6VPcuW2peRPRvMIs7L6zGLDWU 1pAdWbI9LbRY5kiTrqF34/bHhxdQcWiUvA4TUC86K/UPXo38a+eUWFGfMeuBpPBI TiRuVkZuWVpiML629ZevNy4iaRo46WtMdLjzt3/GTcpGyzEcyR6qiNBQSEI9sklr h/gCn+tHYV0VAx3bRqy7uiwR0zvoquYso0FsO/Bow7XUkwswWsrhe4w/ZZRXzNqm mSkDZ654A6tAZiQnYhrRz6nMStIsdVrhuiJ39uTDLR62MGIwOOdV6n2ZxPqrvpDA 9k5tl8piUelj5znek+u2mdLb3AtK4p8= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net