$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: SBPbPNuuOjM6PudbYps6r6MQ27SP+cBnUFKnR32jBfw= Subject key identifier: 5E:0C:72:5F:F2:30:FC:20:59:27:D6:D6:0A:86:76:E9:98:9D:5D:1C Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 06FF Signing time: Sat 26 Apr 2025 21:37:36 +0000 Manifest this update: Sat 26 Apr 2025 21:37:35 +0000 Manifest next update: Sat 03 May 2025 21:37:35 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: oM5uprPaDlTxTKIKYinJjY/jpl9dLBp0x91nykF4iq8=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: IwbM0qanfV+e3+145YunmnHjT+laZw+y8+B4ZLa5xus=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Apr 26 21:37:35 2025 GMT Not After : May 3 21:37:35 2025 GMT Subject: CN=680d521f-bee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:42:70:c5:8f:7b:d8:4f:a4:d1:66:2c:0e:48: 41:98:15:a2:59:19:da:55:03:d8:50:20:02:5d:f8: fb:2d:0e:fc:45:23:44:2e:04:43:ea:9b:24:03:02: 12:19:dd:bb:53:48:7c:5d:23:b3:66:49:ac:1c:ef: 10:07:53:1f:14:f4:03:8f:26:4f:2f:c8:b9:c1:c2: 63:f6:33:95:58:fb:3c:cc:19:62:56:ee:70:da:9e: ed:f6:9f:1b:07:89:77:ad:fa:9c:9a:03:b5:05:8f: 87:d3:39:78:14:dc:c3:54:32:d0:95:1b:56:38:b0: 7c:4e:40:d2:ff:84:02:40:31:90:04:a6:78:7a:ae: 3c:09:eb:80:1f:b9:b0:8f:5f:22:16:39:5b:18:48: 70:0d:f4:8f:39:c4:84:4e:36:6d:1f:63:8f:ea:1a: 68:2d:43:2f:af:65:65:f5:82:29:3f:e7:b2:7b:c9: a5:1a:89:85:77:2c:da:e4:57:6c:aa:8f:65:fa:49: 62:f0:c3:c1:da:e1:cc:be:63:14:55:e8:1b:80:fc: 06:4a:c4:64:e0:c8:62:2a:89:1c:0a:4d:3a:f8:b2: a2:e6:27:d5:25:e2:ff:33:0b:b0:18:42:43:a1:0d: 08:b8:be:8d:c1:e0:13:2b:5d:09:16:54:2b:dc:4b: cc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:0C:72:5F:F2:30:FC:20:59:27:D6:D6:0A:86:76:E9:98:9D:5D:1C X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:7d:f8:aa:20:4c:43:40:76:cc:07:16:a4:b7:8f:9f:d0:e9: cf:7a:a2:2d:22:f9:b0:c3:c4:ba:c8:da:1a:ca:5f:39:52:71: 04:86:8f:99:a7:f4:ec:e9:c9:71:0f:ab:97:79:58:2b:ee:51: 92:c5:32:94:b3:8e:6b:2a:f2:b7:f3:9f:ac:fb:f9:b0:6b:85: ae:d3:93:8e:43:9c:a0:65:bf:16:35:eb:6e:ff:a0:69:01:fb: 93:a9:a9:a0:98:67:59:35:53:69:70:66:d4:1c:df:52:15:44: 0e:eb:86:de:24:22:7a:eb:4c:e0:a2:6b:13:e2:4b:41:65:da: 49:b1:f7:e1:02:a9:4f:0f:70:4c:e0:97:7b:7e:d1:f7:63:07: 74:37:0a:4b:8b:9a:06:72:75:54:82:35:54:9f:e4:9e:0c:ff: a4:33:a2:ca:4d:c5:67:9c:9f:e4:8a:39:27:8f:f0:8d:a2:e3: 5a:b8:f2:c6:a9:0f:fa:f2:80:1b:af:ec:78:14:8b:b9:e6:ec: f4:89:ab:5e:3a:12:66:65:b7:c4:f0:70:0f:9f:50:ab:7c:16: 71:a2:94:75:1d:07:7f:f9:52:40:29:eb:ae:bc:42:e1:11:19: b4:74:d4:62:49:07:60:aa:19:45:31:49:36:ea:8a:73:9c:5d: 2c:98:3c:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwNDI2MjEzNzM1WhcNMjUwNTAzMjEzNzM1WjAYMRYwFAYD VQQDEw02ODBkNTIxZi1iZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEJwxY972E+k0WYsDkhBmBWiWRnaVQPYUCACXfj7LQ78RSNELgRD6pskAwIS Gd27U0h8XSOzZkmsHO8QB1MfFPQDjyZPL8i5wcJj9jOVWPs8zBliVu5w2p7t9p8b B4l3rfqcmgO1BY+H0zl4FNzDVDLQlRtWOLB8TkDS/4QCQDGQBKZ4eq48CeuAH7mw j18iFjlbGEhwDfSPOcSETjZtH2OP6hpoLUMvr2Vl9YIpP+eye8mlGomFdyza5Fds qo9l+kli8MPB2uHMvmMUVegbgPwGSsRk4MhiKokcCk06+LKi5ifVJeL/MwuwGEJD oQ0IuL6NweATK10JFlQr3EvMJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4Mcl/y MPwgWSfW1gqGdumYnV0cMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8ffiqIExDQHbMBxakt4+f0OnPeqItIvmww8S6yNoayl85UnEEho+Z p/Ts6clxD6uXeVgr7lGSxTKUs45rKvK385+s+/mwa4Wu05OOQ5ygZb8WNetu/6Bp AfuTqamgmGdZNVNpcGbUHN9SFUQO64beJCJ660zgomsT4ktBZdpJsffhAqlPD3BM 4Jd7ftH3Ywd0NwpLi5oGcnVUgjVUn+SeDP+kM6LKTcVnnJ/kijknj/CNouNauPLG qQ/68oAbr+x4FIu55uz0iateOhJmZbfE8HAPn1CrfBZxopR1HQd/+VJAKeuuvELh ERm0dNRiSQdgqhlFMUk26opznF0smDwa -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:55 2025 by rpki-client on console.sobornost.net