$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft File: hn09aLZZeAOvVkZcDptTq2Z7cqg.mft (raw, json) Hash identifier: D9g7qv0RyMpjz/0kjdeB9e7DXuBwZr64ice/QeQhte8= Subject key identifier: F8:E5:72:EC:D7:93:1A:6F:C8:FB:EE:34:66:D0:05:6C:D3:88:B9:8F Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 065D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft Manifest number: 0658 Signing time: Sat 26 Apr 2025 22:08:37 +0000 Manifest this update: Sat 26 Apr 2025 22:08:36 +0000 Manifest next update: Sat 03 May 2025 22:08:36 +0000 Files and hashes: 1: hn09aLZZeAOvVkZcDptTq2Z7cqg.crl (hash: 4WH4t2unfgt+V1A4FQCmgxkL7CkikJv4MCJe7T+kPJ8=) 2: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (hash: bzwAo1vTwZtUvpqV0SE31TfJe7tyOs8AEfKtkNJnl48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:08:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1629 (0x65d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Apr 26 22:08:36 2025 GMT Not After : May 3 22:08:36 2025 GMT Subject: CN=680d5964-1431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c7:4a:d8:a5:9e:d3:74:56:01:99:c7:0a:47: dd:da:d9:9b:19:84:19:7a:ac:65:09:85:d6:29:80: 45:de:2b:d6:2e:eb:80:8c:d7:73:95:6c:2d:8b:69: 03:0e:4e:47:8d:67:ce:2d:54:b6:39:c1:60:b4:4a: 35:f4:ba:f8:85:a6:49:97:1f:07:bd:9f:d9:6f:ca: 9a:c0:83:9b:88:d5:7e:54:e5:07:eb:b6:0c:ef:fa: 9b:9d:77:20:5c:8f:69:a4:ae:eb:11:b2:a0:0d:3e: 3b:ef:da:77:e5:28:75:58:8f:ce:c5:dc:f8:0e:59: dd:1d:2d:c9:3b:d3:9f:28:17:cd:0b:d1:c7:5b:f5: ba:9f:01:cb:86:d3:b3:21:3c:0a:28:cc:25:38:7f: fe:28:6f:53:1e:c1:87:0f:f2:bc:a4:44:fe:2d:7e: 6e:e4:be:12:65:b0:65:15:d5:39:ba:44:f5:5f:dc: d1:ee:68:ed:30:7d:f1:8b:af:0d:24:87:d1:92:80: 4b:bc:f7:22:ab:3a:4d:fc:9e:b3:50:85:b8:81:01: 06:26:01:e0:4d:2a:03:4c:df:7a:4a:ca:27:0e:d2: 75:d0:9f:ba:f0:2a:d9:26:39:e6:ea:6c:2d:b8:06: c9:57:e5:f1:d4:29:ba:73:1a:a4:14:f2:e5:92:19: dc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:E5:72:EC:D7:93:1A:6F:C8:FB:EE:34:66:D0:05:6C:D3:88:B9:8F X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:55:84:ee:48:6a:2c:21:cc:d0:39:27:42:65:82:e1:b4:3b: 00:5f:47:04:a7:5b:8f:66:a0:30:ca:35:c0:c6:77:a0:ad:2d: b2:a7:fe:95:32:46:c6:f3:3e:c9:2d:51:4c:8d:f5:0c:b7:f6: 1b:6d:ef:6d:c8:dd:86:ba:ab:f9:45:dd:ca:1a:a0:b9:91:99: 4f:72:b1:e8:73:e7:2e:b2:46:eb:83:ff:b4:26:ed:df:30:2b: 91:dc:d3:28:99:f5:27:21:e0:98:69:e1:69:a1:e5:18:45:26: 51:92:f0:2e:2a:c0:8f:e8:c4:c4:c5:5a:06:ba:ae:70:29:6f: bc:ae:b0:24:5a:2b:88:a5:31:ea:ce:0c:3b:c9:6c:41:de:00: bf:af:30:58:c0:5d:1d:4e:2e:3b:39:98:e7:00:7a:7c:45:8f: fb:ed:30:6d:2b:99:12:4f:fa:f9:3d:a9:3a:ff:e8:59:12:2f: 24:11:d4:5b:22:49:48:c7:57:b2:f2:12:3a:da:7f:62:ce:2a: cc:d2:56:87:ed:e0:9d:07:7d:70:ab:fa:b2:c2:a9:25:e3:83: 06:44:7e:dc:83:df:28:6f:0b:00:14:a4:92:06:58:c6:d8:19: fc:ab:7e:82:94:38:18:cb:94:0b:b5:c0:8b:d6:a2:70:2c:26: ad:32:a3:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjUwNDI2MjIwODM2WhcNMjUwNTAzMjIwODM2WjAYMRYwFAYD VQQDEw02ODBkNTk2NC0xNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sdK2KWe03RWAZnHCkfd2tmbGYQZeqxlCYXWKYBF3ivWLuuAjNdzlWwti2kD Dk5HjWfOLVS2OcFgtEo19Lr4haZJlx8HvZ/Zb8qawIObiNV+VOUH67YM7/qbnXcg XI9ppK7rEbKgDT4779p35Sh1WI/Oxdz4DlndHS3JO9OfKBfNC9HHW/W6nwHLhtOz ITwKKMwlOH/+KG9THsGHD/K8pET+LX5u5L4SZbBlFdU5ukT1X9zR7mjtMH3xi68N JIfRkoBLvPciqzpN/J6zUIW4gQEGJgHgTSoDTN96SsonDtJ10J+68CrZJjnm6mwt uAbJV+Xx1Cm6cxqkFPLlkhncIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjlcuzX kxpvyPvuNGbQBWzTiLmPMB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9FOUYyOTJDNjgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVB T3ZWa1pjRHB0VHEyWjdjcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrVYTuSGosIczQOSdCZYLhtDsAX0cEp1uPZqAwyjXAxnegrS2yp/6V MkbG8z7JLVFMjfUMt/Ybbe9tyN2Guqv5Rd3KGqC5kZlPcrHoc+cuskbrg/+0Ju3f MCuR3NMomfUnIeCYaeFpoeUYRSZRkvAuKsCP6MTExVoGuq5wKW+8rrAkWiuIpTHq zgw7yWxB3gC/rzBYwF0dTi47OZjnAHp8RY/77TBtK5kST/r5Pak6/+hZEi8kEdRb IklIx1ey8hI62n9izirM0laH7eCdB31wq/qywqkl44MGRH7cg98obwsAFKSSBljG 2Bn8q36ClDgYy5QLtcCL1qJwLCatMqNh -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:24 2025 by rpki-client on console.sobornost.net