$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/F3DF588C80B611EBBECBF379C4F9AE02/GuuZUbWE4eIbv8UszokJQRPG_Kc.mft File: GuuZUbWE4eIbv8UszokJQRPG_Kc.mft (raw, json) Hash identifier: NTnBhPVHPcBYHLETUvrhnUb2HNE8Pf7Udv/hVe/SPus= Subject key identifier: AD:A5:00:A8:F3:69:2B:27:E7:9D:F4:AC:BA:81:0C:51:31:6B:26:0D Authority key identifier: 1A:EB:99:51:B5:84:E1:E2:1B:BF:C5:2C:CE:89:09:41:13:C6:FC:A7 Certificate issuer: /CN=A912CDC5/serialNumber=1AEB9951B584E1E21BBFC52CCE89094113C6FCA7 Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuuZUbWE4eIbv8UszokJQRPG_Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/F3DF588C80B611EBBECBF379C4F9AE02/GuuZUbWE4eIbv8UszokJQRPG_Kc.mft Manifest number: 065C Signing time: Sat 26 Apr 2025 22:08:41 +0000 Manifest this update: Sat 26 Apr 2025 22:08:41 +0000 Manifest next update: Sat 03 May 2025 22:08:41 +0000 Files and hashes: 1: GuuZUbWE4eIbv8UszokJQRPG_Kc.crl (hash: 8XguSybfubCA38MgEKIMr4f68g69IeBU1SDlBWxRB5E=) 2: 4F69940080B811EBBEE2CA7FC4F9AE02.roa (hash: LElymbbaXnwfsL0CJFDTRhRa4LQUnyfVYBKWXvLFjH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/F3DF588C80B611EBBECBF379C4F9AE02/GuuZUbWE4eIbv8UszokJQRPG_Kc.crl rsync://rpki.apnic.net/member_repository/A912CDC5/F3DF588C80B611EBBECBF379C4F9AE02/GuuZUbWE4eIbv8UszokJQRPG_Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuuZUbWE4eIbv8UszokJQRPG_Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=1AEB9951B584E1E21BBFC52CCE89094113C6FCA7 Validity Not Before: Apr 26 22:08:41 2025 GMT Not After : May 3 22:08:41 2025 GMT Subject: CN=680d5969-11a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ec:15:80:ae:c5:a0:06:88:ba:bb:ca:74:c3: 20:0a:a4:6d:e4:29:fe:9b:0f:6c:05:fc:62:68:3f: 5e:01:dc:dd:d4:3c:e2:61:e1:35:ca:78:29:97:af: de:2c:be:3e:60:92:21:10:01:02:7e:72:14:9f:eb: 8d:6f:7b:19:72:d1:ed:b3:01:a2:2e:d8:de:c1:78: 5f:c0:d9:60:a2:11:47:b8:b0:16:c5:64:ab:3e:f7: 6a:ef:ee:79:ea:be:f1:af:98:10:c2:7a:a2:12:f7: 71:0f:fa:d7:b3:9b:dd:75:91:0c:ac:85:89:43:b2: 71:07:d9:3f:c6:0d:2f:77:26:fd:6a:c7:77:e8:f3: 37:31:fe:c8:50:9a:50:e5:51:ae:08:25:b5:db:21: 02:19:41:e0:c1:12:e2:cc:a5:26:52:8c:8b:41:3d: 3c:50:dc:ca:47:e0:93:e3:4e:34:6d:9e:16:3f:5b: 9d:59:9f:a2:83:64:0c:6c:d9:d4:e7:eb:81:26:2d: 76:60:17:ad:89:2a:14:24:fe:26:3c:d3:72:27:fb: 53:8c:62:eb:8e:7c:d2:f4:4d:3d:60:c0:d7:2f:00: 5c:9a:e4:c9:8b:4f:6d:26:64:f7:c5:4d:38:45:98: 11:10:94:f9:43:3f:8b:d5:a6:2b:85:72:ee:e6:3d: 68:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:A5:00:A8:F3:69:2B:27:E7:9D:F4:AC:BA:81:0C:51:31:6B:26:0D X509v3 Authority Key Identifier: keyid:1A:EB:99:51:B5:84:E1:E2:1B:BF:C5:2C:CE:89:09:41:13:C6:FC:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/F3DF588C80B611EBBECBF379C4F9AE02/GuuZUbWE4eIbv8UszokJQRPG_Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GuuZUbWE4eIbv8UszokJQRPG_Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/F3DF588C80B611EBBECBF379C4F9AE02/GuuZUbWE4eIbv8UszokJQRPG_Kc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:b0:b9:5f:28:80:e5:2f:aa:2a:fb:9e:b0:07:1c:b8:9f:04: dc:35:90:5c:ec:53:54:ed:58:e3:37:eb:e0:5f:e9:45:da:21: 7e:38:f2:a5:4f:8a:cc:b6:84:f6:cd:6e:75:7c:55:82:b5:78: 5b:99:f4:6a:e3:d2:ac:3c:7d:ff:2e:cc:8d:a7:d1:8e:82:be: 91:bf:52:89:3a:6c:39:f2:20:e4:23:77:67:f3:ea:0a:bd:59: 0c:90:d5:ee:0d:e9:f6:f8:c9:e4:b9:8e:92:fb:83:7f:4e:33: d7:16:7f:e0:39:a6:fc:29:c0:6a:7b:75:bf:f3:2d:3b:86:69: d0:2d:92:59:71:2b:26:ae:f8:09:c7:1f:74:b1:ef:da:bd:b1: a1:63:8e:a2:e6:cc:df:2f:3f:29:ae:1f:6f:3c:38:ca:47:8d: bd:0d:97:48:6e:40:cb:31:ea:2f:73:1c:77:75:be:7e:ec:ab: ea:be:36:be:02:ad:c0:fb:78:12:05:fa:ef:5e:38:23:cf:3f: 48:86:00:47:ca:f0:47:7c:b5:10:2a:79:96:6d:dc:58:21:2f: f6:95:d1:df:37:a0:5f:31:33:71:bf:58:d0:4c:20:2c:28:31: 0c:9c:58:aa:45:91:10:fc:1a:2d:f8:6c:43:b7:2d:a8:7d:8f: 54:13:4c:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDFBRUI5OTUxQjU4NEUxRTIxQkJGQzUyQ0NFODkwOTQx MTNDNkZDQTcwHhcNMjUwNDI2MjIwODQxWhcNMjUwNTAzMjIwODQxWjAYMRYwFAYD VQQDEw02ODBkNTk2OS0xMWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ewVgK7FoAaIurvKdMMgCqRt5Cn+mw9sBfxiaD9eAdzd1DziYeE1yngpl6/e LL4+YJIhEAECfnIUn+uNb3sZctHtswGiLtjewXhfwNlgohFHuLAWxWSrPvdq7+55 6r7xr5gQwnqiEvdxD/rXs5vddZEMrIWJQ7JxB9k/xg0vdyb9asd36PM3Mf7IUJpQ 5VGuCCW12yECGUHgwRLizKUmUoyLQT08UNzKR+CT4040bZ4WP1udWZ+ig2QMbNnU 5+uBJi12YBetiSoUJP4mPNNyJ/tTjGLrjnzS9E09YMDXLwBcmuTJi09tJmT3xU04 RZgREJT5Qz+L1aYrhXLu5j1oUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2lAKjz aSsn5530rLqBDFExayYNMB8GA1UdIwQYMBaAFBrrmVG1hOHiG7/FLM6JCUETxvyn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9GM0RGNTg4Qzgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9HdXVaVWJXRTRlSWJ2OFVzem9rSlFSUEdf S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1dVpVYldFNGVJYnY4VXN6b2tKUVJQR19LYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0RDNS9GM0RGNTg4QzgwQjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9HdXVaVWJXRTRl SWJ2OFVzem9rSlFSUEdfS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAsLlfKIDlL6oq+56wBxy4nwTcNZBc7FNU7VjjN+vgX+lF2iF+OPKl T4rMtoT2zW51fFWCtXhbmfRq49KsPH3/LsyNp9GOgr6Rv1KJOmw58iDkI3dn8+oK vVkMkNXuDen2+MnkuY6S+4N/TjPXFn/gOab8KcBqe3W/8y07hmnQLZJZcSsmrvgJ xx90se/avbGhY46i5szfLz8prh9vPDjKR429DZdIbkDLMeovcxx3db5+7Kvqvja+ Aq3A+3gSBfrvXjgjzz9IhgBHyvBHfLUQKnmWbdxYIS/2ldHfN6BfMTNxv1jQTCAs KDEMnFiqRZEQ/Bot+GxDty2ofY9UE0xB -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:24 2025 by rpki-client on console.sobornost.net