$ rpki-client -vvf rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.mft File: QQ8P6Xvp2e0HVs1Ndja5P48jizE.mft (raw, json) Hash identifier: XWQp/DanjqFdy8MzYcRHiRY3n2wszhRTtdO+TH4eTaA= Subject key identifier: 5C:A1:8F:AB:98:E9:9E:95:CC:FC:23:69:15:DD:4B:96:7C:F4:54:51 Authority key identifier: 41:0F:0F:E9:7B:E9:D9:ED:07:56:CD:4D:76:36:B9:3F:8F:23:8B:31 Certificate issuer: /CN=A912D306/serialNumber=410F0FE97BE9D9ED0756CD4D7636B93F8F238B31 Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.mft Manifest number: 3481 Signing time: Mon 28 Apr 2025 14:44:53 +0000 Manifest this update: Mon 28 Apr 2025 14:44:53 +0000 Manifest next update: Mon 05 May 2025 14:44:53 +0000 Files and hashes: 1: QQ8P6Xvp2e0HVs1Ndja5P48jizE.crl (hash: WPWofKaNwfMiJoUhORVsXv09ToPx9urATeOFrS75JUQ=) 2: ABE8518A18DA11F08FC68386C4F9AE02.roa (hash: 1QZz1HDQ1jRfLspLePE9D1zwt8zFnYwF7eP5N5O/9vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.crl rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D306, serialNumber=410F0FE97BE9D9ED0756CD4D7636B93F8F238B31 Validity Not Before: Apr 28 14:44:53 2025 GMT Not After : May 5 14:44:53 2025 GMT Subject: CN=680f9465-e184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d7:84:ee:ad:dc:d2:87:a4:f5:21:47:f0:18: df:97:3a:8a:ca:f8:cc:4d:6f:44:e6:1d:25:b5:fc: 29:8f:fe:4f:dd:e2:7b:27:c4:32:bd:c5:38:f8:45: 76:3c:66:98:1c:60:57:f4:8a:e5:bc:ca:0b:f2:f5: a8:5d:b1:e5:52:94:bc:ec:b4:bb:1c:67:ba:19:46: b1:cc:06:78:c5:2e:9d:de:1c:57:17:b0:1d:3a:bc: f6:21:bb:0a:e7:cd:1b:93:48:c7:41:ca:a8:b4:8d: ca:a9:55:5b:ee:92:b6:ef:17:32:31:01:56:10:ee: 87:c1:82:5e:d2:1c:0a:99:70:a3:d7:a8:94:d2:17: ce:44:a3:a6:1a:c9:88:b1:a3:ac:23:98:81:7d:03: 97:1f:47:72:cd:ba:0d:4e:45:26:74:ae:ac:3a:35: 5c:51:98:ac:f6:81:6e:a2:ca:24:0e:1f:cb:d7:76: 0b:50:30:33:80:78:dc:e8:37:e0:04:78:a7:8d:7e: e2:12:7b:c7:58:e6:ac:99:6c:ab:01:b0:f1:74:9c: 3b:35:1a:55:d9:f5:a1:13:64:58:91:1f:2f:dd:69: d4:24:73:c5:a6:89:9b:b2:48:80:ce:82:e5:96:87: ab:61:71:b9:b3:2a:37:1e:1c:37:ef:0c:43:c6:79: 54:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A1:8F:AB:98:E9:9E:95:CC:FC:23:69:15:DD:4B:96:7C:F4:54:51 X509v3 Authority Key Identifier: keyid:41:0F:0F:E9:7B:E9:D9:ED:07:56:CD:4D:76:36:B9:3F:8F:23:8B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D306/BCBD801C1D8D11E2B429B7EB08B02CD2/QQ8P6Xvp2e0HVs1Ndja5P48jizE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:17:76:25:21:a1:a5:72:7a:26:3b:77:b6:7c:17:59:35:4e: d9:52:24:66:93:45:ac:d6:a1:3f:4c:42:0c:69:12:b6:03:9d: d3:e4:9f:82:48:3c:2a:07:9a:60:07:ab:73:fc:cd:5d:6b:8e: bd:54:48:7a:3b:4a:0e:c1:b6:ff:a2:7d:5f:88:4a:f0:0e:a1: 1a:d3:de:1f:44:59:00:66:93:7b:df:be:93:ec:6d:a3:7e:ca: 43:22:64:a2:33:0b:72:79:50:ef:b8:cf:84:96:d3:87:4e:6b: 74:ab:f5:7f:22:5b:f4:21:d9:6e:d2:f4:db:94:d0:ec:3a:18: 8c:72:9e:98:b6:eb:3a:5e:ab:55:b5:07:87:bd:e0:67:04:68: 19:3b:83:1f:7e:00:ed:9d:80:ec:11:2a:6b:39:c7:e2:0f:43: ac:11:ec:7b:0b:26:e0:d0:87:a0:89:59:c4:bc:ec:06:1a:40: 4a:43:15:cf:99:e6:30:95:e2:62:a5:fc:3e:ef:44:01:d5:3d: 22:55:58:9f:5f:ae:e8:8d:78:de:24:da:43:be:55:87:00:9e: a6:5d:54:76:66:b9:6f:c4:ea:5d:92:c9:70:1e:a9:ba:a4:c1: 74:d1:bf:bb:38:f3:6e:da:11:7c:6c:35:99:37:62:82:ca:81: 17:f7:4c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzMDYxMTAvBgNVBAUTKDQxMEYwRkU5N0JFOUQ5RUQwNzU2Q0Q0RDc2MzZCOTNG OEYyMzhCMzEwHhcNMjUwNDI4MTQ0NDUzWhcNMjUwNTA1MTQ0NDUzWjAYMRYwFAYD VQQDEw02ODBmOTQ2NS1lMTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NeE7q3c0oek9SFH8BjflzqKyvjMTW9E5h0ltfwpj/5P3eJ7J8QyvcU4+EV2 PGaYHGBX9IrlvMoL8vWoXbHlUpS87LS7HGe6GUaxzAZ4xS6d3hxXF7AdOrz2IbsK 580bk0jHQcqotI3KqVVb7pK27xcyMQFWEO6HwYJe0hwKmXCj16iU0hfORKOmGsmI saOsI5iBfQOXH0dyzboNTkUmdK6sOjVcUZis9oFuosokDh/L13YLUDAzgHjc6Dfg BHinjX7iEnvHWOasmWyrAbDxdJw7NRpV2fWhE2RYkR8v3WnUJHPFpombskiAzoLl loerYXG5syo3Hhw37wxDxnlUvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyhj6uY 6Z6VzPwjaRXdS5Z89FRRMB8GA1UdIwQYMBaAFEEPD+l76dntB1bNTXY2uT+PI4sx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDMwNi9CQ0JEODAxQzFE OEQxMUUyQjQyOUI3RUIwOEIwMkNEMi9RUThQNlh2cDJlMEhWczFOZGphNVA0OGpp ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FROFA2WHZwMmUwSFZzMU5kamE1UDQ4aml6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDMwNi9CQ0JEODAxQzFEOEQxMUUyQjQyOUI3RUIwOEIwMkNEMi9RUThQNlh2cDJl MEhWczFOZGphNVA0OGppekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5F3YlIaGlcnomO3e2fBdZNU7ZUiRmk0Ws1qE/TEIMaRK2A53T5J+C SDwqB5pgB6tz/M1da469VEh6O0oOwbb/on1fiErwDqEa094fRFkAZpN7376T7G2j fspDImSiMwtyeVDvuM+EltOHTmt0q/V/Ilv0Idlu0vTblNDsOhiMcp6Ytus6XqtV tQeHveBnBGgZO4MffgDtnYDsESprOcfiD0OsEex7Cybg0IegiVnEvOwGGkBKQxXP meYwleJipfw+70QB1T0iVVifX67ojXjeJNpDvlWHAJ6mXVR2ZrlvxOpdkslwHqm6 pMF00b+7OPNu2hF8bDWZN2KCyoEX90xl -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:47 2025 by rpki-client on console.sobornost.net