$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: pP4lO0kFjR2J4U52ni8XZRGOBfso7yNBPpZGNrzvvuo= Subject key identifier: 43:E8:CD:1E:18:27:37:59:64:A4:07:08:E6:C3:86:75:4A:68:31:04 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 2221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 21E1 Signing time: Mon 28 Apr 2025 16:00:17 +0000 Manifest this update: Mon 28 Apr 2025 16:00:16 +0000 Manifest next update: Mon 05 May 2025 16:00:16 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: prXerBTPrrZ9UXG0ob0uin9/KJS6098LgzsLD2PJx38=) 2: 3EEE50E6A36B11EF9E46987EC4F9AE02.roa (hash: f7G+JecOso1tq/2DrQIIrvlSbJcZUWeFUA+OwYgWNPo=) 3: B937CBBA6DD411EF977CA52AC4F9AE02.roa (hash: DNPEZoiqquqZXGfdK28t7zQLFNY8ea/+gAa4O/ZRs1s=) 4: E6EA5626B3A311EF9D9F7429C4F9AE02.roa (hash: 5MZ9veHGyaXeOyXtrCjxvwY/A+cD12Cktg7B3S+6l+A=) 5: 235019148A3911EF864D8512C4F9AE02.roa (hash: hnfY3HHIXsd6wmd3BY/eNxymbtFAwmDiWZ9khlttIH8=) 6: FD2941A0BBC311EEBE58430EC4F9AE02.roa (hash: X2aoTMKWDO3O+NQTnXw87sQERWlGRf5FlK95mjGB8r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8737 (0x2221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Apr 28 16:00:16 2025 GMT Not After : May 5 16:00:16 2025 GMT Subject: CN=680fa611-222f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cb:0e:b5:ff:24:25:7e:59:9d:89:cc:3b:d2: ce:5d:d0:7c:68:f3:18:42:89:e5:0d:1a:71:5f:5e: 99:d0:8a:62:0b:b9:69:80:47:08:ee:01:3d:11:be: b1:4a:16:eb:80:91:fb:6a:c3:13:2d:f0:ea:06:b8: f3:62:19:7d:63:ff:4a:73:45:0f:97:9b:d6:66:a4: e6:ea:d2:77:3c:4e:a0:03:13:99:dc:e6:1c:d5:e9: 69:bd:8f:f1:a2:2e:ec:40:48:4a:64:69:77:9d:7e: 24:66:90:fd:ab:08:c2:ad:08:7d:22:10:f9:66:fd: 5c:fd:70:f5:e4:b4:4c:a5:96:a1:4a:e5:48:8c:26: dd:9c:97:c6:51:1b:0c:7e:28:13:1b:66:29:f7:15: 5a:ba:61:27:a3:d5:63:92:aa:a3:ed:b2:00:53:df: 4d:b3:b7:ea:12:df:93:f0:3c:d3:a5:d1:79:fa:9b: d8:4b:1d:e8:7d:cb:b2:b0:30:33:e5:5b:ec:ab:a4: 31:3c:5b:bc:81:1a:d8:ed:df:15:a4:68:c4:88:d7: 6d:b3:f0:5e:8c:b7:01:a5:79:43:ff:c6:d8:d6:f0: 6a:58:5b:35:cd:fa:11:a9:6d:b2:85:ac:e7:73:1c: 13:03:5a:70:41:32:39:f2:dc:f9:55:23:49:5a:b6: 42:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E8:CD:1E:18:27:37:59:64:A4:07:08:E6:C3:86:75:4A:68:31:04 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:25:13:58:c8:35:ce:d1:fe:b8:53:2b:53:54:7b:37:ea:67: 11:80:be:42:f6:f7:81:55:a6:29:67:5c:2c:55:b8:8b:35:60: e3:c4:7d:35:30:be:63:38:37:d7:ec:1d:01:5c:09:b4:86:3e: e2:9b:57:e2:fb:a9:25:5d:46:7c:f2:bb:e3:9b:dc:98:2f:b6: 88:aa:85:20:a4:a3:fb:86:9e:94:a2:6b:d4:28:eb:a8:0d:c4: 59:17:1e:fc:d8:92:9f:3f:ba:2f:1e:68:a5:ea:85:f2:30:80: d3:2d:43:80:fb:c7:87:2a:8b:3d:df:de:64:6c:a2:86:0e:a5: 78:68:dd:fc:53:3c:a2:61:9d:47:29:22:b3:4a:3f:c0:5a:c5: f9:5d:3c:0c:16:3e:a1:03:36:03:b2:d2:ad:26:74:c1:ef:46: 62:ff:6d:31:1a:8d:0a:ae:c6:44:e4:f8:07:85:4c:27:77:4c: 4b:84:c8:66:d9:c0:db:e4:a9:18:39:32:31:2b:b5:26:47:a6: a4:e9:f7:57:2c:5a:cc:4c:21:66:51:67:9a:81:08:f4:96:fa: d8:3f:8c:40:72:68:c2:1c:23:1b:e4:50:23:b3:dc:7e:bf:c1: c8:8f:b8:d6:22:c6:d5:1f:15:0c:b4:0a:7b:42:38:b0:a3:d6: fa:95:a1:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwNDI4MTYwMDE2WhcNMjUwNTA1MTYwMDE2WjAYMRYwFAYD VQQDEw02ODBmYTYxMS0yMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscsOtf8kJX5ZnYnMO9LOXdB8aPMYQonlDRpxX16Z0IpiC7lpgEcI7gE9Eb6x ShbrgJH7asMTLfDqBrjzYhl9Y/9Kc0UPl5vWZqTm6tJ3PE6gAxOZ3OYc1elpvY/x oi7sQEhKZGl3nX4kZpD9qwjCrQh9IhD5Zv1c/XD15LRMpZahSuVIjCbdnJfGURsM figTG2Yp9xVaumEno9Vjkqqj7bIAU99Ns7fqEt+T8DzTpdF5+pvYSx3ofcuysDAz 5Vvsq6QxPFu8gRrY7d8VpGjEiNdts/BejLcBpXlD/8bY1vBqWFs1zfoRqW2yhazn cxwTA1pwQTI58tz5VSNJWrZC1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPozR4Y JzdZZKQHCObDhnVKaDEEMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0JRNYyDXO0f64UytTVHs36mcRgL5C9veBVaYpZ1wsVbiLNWDjxH01 ML5jODfX7B0BXAm0hj7im1fi+6klXUZ88rvjm9yYL7aIqoUgpKP7hp6UomvUKOuo DcRZFx782JKfP7ovHmil6oXyMIDTLUOA+8eHKos9395kbKKGDqV4aN38UzyiYZ1H KSKzSj/AWsX5XTwMFj6hAzYDstKtJnTB70Zi/20xGo0KrsZE5PgHhUwnd0xLhMhm 2cDb5KkYOTIxK7UmR6ak6fdXLFrMTCFmUWeagQj0lvrYP4xAcmjCHCMb5FAjs9x+ v8HIj7jWIsbVHxUMtAp7Qjiwo9b6laGH -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:47 2025 by rpki-client on console.sobornost.net