$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: 3dn0sxERRqmioTdctQigSZYHguX5G0GshoblkEoVkbU= Subject key identifier: 6A:33:48:B8:B4:5E:57:F2:C1:81:D6:C3:6F:73:AB:40:BC:45:AA:70 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 018F Signing time: Sun 27 Apr 2025 02:35:16 +0000 Manifest this update: Sun 27 Apr 2025 02:35:15 +0000 Manifest next update: Sun 04 May 2025 02:35:15 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: R1ggsuxA+Ehz88K+xnWzTjtviSnThpYdaTAVear9ecY=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Apr 27 02:35:15 2025 GMT Not After : May 4 02:35:15 2025 GMT Subject: CN=680d97e3-4849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f2:0d:b1:63:dd:e2:b1:a0:f1:d5:50:a7:97: fa:51:d3:3b:b3:ec:bd:d9:d0:79:83:b5:2a:39:97: e9:77:b2:05:32:9c:56:5c:f6:b0:bf:8c:b5:3c:30: 3f:c1:8e:20:fb:50:9e:61:84:96:2b:7f:e6:dc:a7: 3c:36:21:ea:2b:5f:69:74:9d:68:e6:e3:12:7c:1a: e0:87:8b:12:29:b6:97:f6:8d:a2:57:e8:b5:7e:8e: 52:34:5e:fe:23:54:46:80:66:2a:8c:42:d7:ca:b8: 26:f5:f8:36:35:c0:52:22:2f:07:8b:ff:23:85:f7: 4b:0f:84:b6:80:be:e0:80:e5:44:57:27:9f:b3:b3: 22:6d:55:ce:b2:df:a9:4c:41:34:c5:ca:90:71:e2: d5:86:a6:77:0e:16:2c:df:75:1a:2d:d9:27:f7:60: 77:7b:21:37:18:96:04:89:31:81:44:ba:10:dd:2b: 5f:79:de:92:eb:d5:b0:42:2b:e8:77:5f:e9:db:ae: 4a:34:09:49:49:1a:92:38:fd:83:0d:56:db:c6:06: 4e:dd:38:e5:30:72:02:88:58:e1:b0:4f:c0:03:0d: 9d:22:eb:7e:1f:f1:77:f7:e1:56:41:50:00:a2:0f: 04:56:e3:d4:6c:8c:1d:81:06:ed:97:b3:dd:e4:66: 76:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:33:48:B8:B4:5E:57:F2:C1:81:D6:C3:6F:73:AB:40:BC:45:AA:70 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:cd:37:90:95:3c:d3:f7:86:95:86:65:7c:77:30:27:8f:c9: ba:d1:84:d0:2c:a8:7b:56:20:8c:04:bf:f3:99:65:3b:3a:46: ad:89:4a:f5:bb:c5:c8:13:41:cd:92:c9:3b:e6:2d:8a:fe:8c: c0:27:57:16:6e:5e:60:d9:93:03:13:a2:2e:6a:c8:b5:ce:f9: 8a:4d:51:de:f0:76:22:90:a4:50:d6:cb:d7:2d:ce:8e:7f:ea: ee:5e:75:8d:51:19:e7:8c:ff:77:2b:e3:22:e6:33:45:c2:f7: b4:6d:f2:62:70:fd:be:c6:2b:e7:9d:91:4f:cd:2e:c2:78:34: 3f:ff:94:59:df:a9:43:eb:94:ff:26:96:07:1a:a5:28:7c:0b: 2a:71:1f:5d:96:c6:82:7a:78:dc:ec:e4:eb:e6:8b:ef:a3:48: 0b:4f:97:5e:a2:79:9d:95:54:d1:8e:46:f3:7a:99:61:54:39: 32:24:18:c8:47:08:b7:ef:4d:02:3f:92:8c:58:80:13:6f:05: ce:e8:19:a5:10:2c:0e:d9:a8:ae:ba:db:0e:3f:c7:f5:fc:e3: fa:6b:12:55:41:0d:5f:5e:30:ed:df:1a:da:c4:16:c2:36:b5: 34:0c:2c:57:49:35:fd:ab:fb:6f:58:97:dd:4e:db:0a:32:09: 07:69:23:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwNDI3MDIzNTE1WhcNMjUwNTA0MDIzNTE1WjAYMRYwFAYD VQQDEw02ODBkOTdlMy00ODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPINsWPd4rGg8dVQp5f6UdM7s+y92dB5g7UqOZfpd7IFMpxWXPawv4y1PDA/ wY4g+1CeYYSWK3/m3Kc8NiHqK19pdJ1o5uMSfBrgh4sSKbaX9o2iV+i1fo5SNF7+ I1RGgGYqjELXyrgm9fg2NcBSIi8Hi/8jhfdLD4S2gL7ggOVEVyefs7MibVXOst+p TEE0xcqQceLVhqZ3DhYs33UaLdkn92B3eyE3GJYEiTGBRLoQ3Stfed6S69WwQivo d1/p265KNAlJSRqSOP2DDVbbxgZO3TjlMHICiFjhsE/AAw2dIut+H/F39+FWQVAA og8EVuPUbIwdgQbtl7Pd5GZ2SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGozSLi0 XlfywYHWw29zq0C8RapwMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6zTeQlTzT94aVhmV8dzAnj8m60YTQLKh7ViCMBL/zmWU7OkatiUr1 u8XIE0HNksk75i2K/ozAJ1cWbl5g2ZMDE6Iuasi1zvmKTVHe8HYikKRQ1svXLc6O f+ruXnWNURnnjP93K+Mi5jNFwve0bfJicP2+xivnnZFPzS7CeDQ//5RZ36lD65T/ JpYHGqUofAsqcR9dlsaCenjc7OTr5ovvo0gLT5deonmdlVTRjkbzeplhVDkyJBjI Rwi3700CP5KMWIATbwXO6BmlECwO2aiuutsOP8f1/OP6axJVQQ1fXjDt3xraxBbC NrU0DCxXSTX9q/tvWJfdTtsKMgkHaSMG -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:25 2025 by rpki-client on console.sobornost.net