$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: opHh8vZb5DBPqBsWAs9eZXkASDJg7ysQSdM3NYGAQ0Q= Subject key identifier: EA:C5:FC:44:26:19:7F:BF:A5:55:EB:A7:8E:C9:77:FE:15:B0:DC:23 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 073C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 0735 Signing time: Sat 26 Apr 2025 21:26:38 +0000 Manifest this update: Sat 26 Apr 2025 21:26:38 +0000 Manifest next update: Sat 03 May 2025 21:26:38 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: 4mYzz8x3A0ml8DA6KrPku/7I+n9hGji8KnWLfakmCNg=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1852 (0x73c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Apr 26 21:26:38 2025 GMT Not After : May 3 21:26:38 2025 GMT Subject: CN=680d4f8e-d148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0a:b6:e9:88:d7:0a:cd:db:84:41:b3:83:06: ee:23:82:53:08:95:82:b2:65:b8:fe:b6:49:17:d5: 11:a1:69:23:64:5a:b2:b7:38:f2:39:9a:0a:50:92: 99:bb:c9:8e:62:7f:82:90:36:42:d2:7d:c5:5c:bb: 2f:7d:cd:a1:15:3a:e9:e4:94:fc:d0:99:58:2b:b5: 9c:56:ff:62:cb:d7:18:07:71:df:ad:29:b7:5e:30: 0e:4f:0f:19:51:e1:16:26:e4:52:f5:72:c1:90:e8: fa:a8:0d:d4:88:e7:df:b7:8c:f5:2d:f9:fe:6e:1d: 66:db:4b:a4:34:87:3c:e0:c4:05:22:0c:6d:51:a1: 5b:8e:66:c8:d5:bc:60:02:24:ef:e4:72:f9:c6:e2: 79:ab:ac:4f:78:2a:50:7e:22:a6:5b:69:40:e9:58: ac:f4:b7:7f:7b:c0:2e:3c:36:9d:5a:63:c0:72:fc: 4a:28:30:6c:f0:42:60:be:2a:66:50:e2:9e:80:39: d9:1d:3c:76:26:d8:60:bf:f4:0a:45:cd:34:96:c7: b1:97:56:23:ff:c0:8a:06:89:0f:0b:9e:8d:2d:46: 72:34:f8:88:e7:7e:4d:a8:32:65:de:61:dc:fe:0c: 5b:f9:22:7e:19:5d:81:78:3c:f2:50:56:1b:c7:41: 19:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C5:FC:44:26:19:7F:BF:A5:55:EB:A7:8E:C9:77:FE:15:B0:DC:23 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:af:43:27:c9:02:17:f3:22:02:ba:96:f7:9d:c3:a5:e6:58: b9:48:b2:0a:b3:e5:d0:64:42:95:e5:d5:1c:e3:77:42:10:f2: 05:bd:be:26:17:c6:65:e9:01:4c:d3:bc:1a:4a:fa:04:26:5a: 64:c8:5d:ac:dc:2f:2d:70:86:60:5d:c4:1b:f3:d1:86:4d:3f: 04:e8:a6:36:d0:41:52:27:ab:14:e8:7b:fd:c7:3a:7a:e1:b7: d1:53:6b:49:c1:32:0b:5d:26:23:54:57:b9:03:74:4b:16:73: db:d6:68:2f:7f:3d:fc:e1:8d:b4:8e:7e:bf:a9:a2:82:74:8d: 49:47:70:c3:88:eb:16:1e:ba:4e:78:44:d6:fd:13:bb:11:07: b6:be:de:d2:a6:b5:e5:c6:84:64:bd:a1:9e:38:88:f0:f0:d6: c0:a4:34:f6:1a:e5:eb:ac:ab:d1:d8:fc:33:f5:9a:b4:f3:ee: 5b:e6:c0:b3:d1:fe:62:4e:8d:e5:40:30:52:60:d6:57:55:88: f8:23:83:eb:9d:2d:4d:d5:c2:fa:57:fa:f4:39:98:8e:14:b8: ca:fa:b7:7e:26:bd:29:a6:34:34:51:bd:51:4a:27:4f:31:09: d4:08:be:a3:05:c3:e4:86:9b:8e:69:62:45:c2:98:aa:82:92: c4:40:75:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwNDI2MjEyNjM4WhcNMjUwNTAzMjEyNjM4WjAYMRYwFAYD VQQDEw02ODBkNGY4ZS1kMTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Qq26YjXCs3bhEGzgwbuI4JTCJWCsmW4/rZJF9URoWkjZFqytzjyOZoKUJKZ u8mOYn+CkDZC0n3FXLsvfc2hFTrp5JT80JlYK7WcVv9iy9cYB3HfrSm3XjAOTw8Z UeEWJuRS9XLBkOj6qA3UiOfft4z1Lfn+bh1m20ukNIc84MQFIgxtUaFbjmbI1bxg AiTv5HL5xuJ5q6xPeCpQfiKmW2lA6Vis9Ld/e8AuPDadWmPAcvxKKDBs8EJgvipm UOKegDnZHTx2Jthgv/QKRc00lsexl1Yj/8CKBokPC56NLUZyNPiI535NqDJl3mHc /gxb+SJ+GV2BeDzyUFYbx0EZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrF/EQm GX+/pVXrp47Jd/4VsNwjMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWr0MnyQIX8yICupb3ncOl5li5SLIKs+XQZEKV5dUc43dCEPIFvb4m F8Zl6QFM07waSvoEJlpkyF2s3C8tcIZgXcQb89GGTT8E6KY20EFSJ6sU6Hv9xzp6 4bfRU2tJwTILXSYjVFe5A3RLFnPb1mgvfz384Y20jn6/qaKCdI1JR3DDiOsWHrpO eETW/RO7EQe2vt7SprXlxoRkvaGeOIjw8NbApDT2GuXrrKvR2Pwz9Zq08+5b5sCz 0f5iTo3lQDBSYNZXVYj4I4PrnS1N1cL6V/r0OZiOFLjK+rd+Jr0ppjQ0Ub1RSidP MQnUCL6jBcPkhpuOaWJFwpiqgpLEQHVX -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:56 2025 by rpki-client on console.sobornost.net