$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: Te1llCeUo8YFx2m1n0mWuPK12weK98rOnFehEUIwEZ8= Subject key identifier: D6:E4:CC:39:B8:B0:38:7E:D0:D3:95:7A:28:2D:6B:16:E7:6E:CD:AB Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: E1 Signing time: Sun 27 Apr 2025 04:20:57 +0000 Manifest this update: Sun 27 Apr 2025 04:20:56 +0000 Manifest next update: Sun 04 May 2025 04:20:56 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: z1OSJBk9tBEI27m1neLd4Z9x479FPO/P6nBLTOHB3PE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Apr 27 04:20:56 2025 GMT Not After : May 4 04:20:56 2025 GMT Subject: CN=680db0a9-fb36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:7d:33:a3:67:d9:74:aa:d5:64:db:ba:ba:7a: 7e:99:17:81:d0:33:c6:8f:ac:b9:2e:34:23:47:7d: fc:3a:0e:2c:cb:45:72:2e:8b:d0:c9:b4:8a:82:e7: f4:2e:86:7c:51:ea:8a:99:a3:f0:09:85:67:c7:2f: a4:ed:dc:b2:d7:0b:b3:16:14:37:2c:cc:7c:b6:b4: 6f:e7:c5:dc:5a:51:af:bb:56:67:a4:69:03:37:cf: 20:23:fd:b1:ad:18:e8:c0:dd:cb:9d:7f:30:b6:c7: 2c:1d:b9:75:20:bc:cc:7e:43:81:6e:93:a2:ed:b9: 69:78:8f:de:ed:5c:7c:7a:68:16:17:cd:e3:b8:0e: 5b:d7:a8:a4:f5:00:b7:87:8a:f7:03:05:9c:a3:d5: 88:e7:bf:00:a6:27:34:38:07:b6:58:b4:a4:e7:a6: db:a9:05:cd:b7:78:12:2d:40:3f:6b:c7:0e:f3:75: 0b:45:8b:b5:65:56:32:19:82:64:13:a3:49:96:bd: e1:fb:a9:c3:3d:5d:20:af:ac:a2:0a:0e:46:60:8e: b2:c1:52:d5:f4:53:88:47:3c:67:97:b9:79:67:20: fa:e0:29:b2:0b:f4:ff:ec:12:87:af:0c:1f:ac:9e: 51:bc:56:9c:47:6f:2d:d5:0c:11:28:3f:a0:24:a6: c6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E4:CC:39:B8:B0:38:7E:D0:D3:95:7A:28:2D:6B:16:E7:6E:CD:AB X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:00:ad:5a:44:f3:9d:6b:30:26:c6:55:3a:c3:bd:4c:ca:05: 64:ef:0b:ba:a9:3c:20:a7:09:b6:97:4f:a5:d3:23:00:04:12: b0:e2:9c:bb:d1:d3:2c:7f:22:53:9d:3f:f0:1f:06:ce:71:0c: 96:00:dc:8a:3d:b7:c5:88:30:2f:17:e3:55:0f:61:3a:8d:b9: 9f:d6:8e:6c:2f:ae:4a:4c:e0:58:54:8e:26:0a:dd:0e:b2:32: 54:ed:fa:63:56:3d:71:1e:48:5e:02:08:eb:37:cf:c5:40:8f: 7c:8b:06:a9:5c:39:2a:39:eb:57:31:bf:4f:d3:86:75:49:23: 16:d8:a5:a4:ab:44:04:55:82:37:03:87:7b:6d:49:07:af:fc: 6b:99:70:30:3d:8f:41:3b:d0:ea:23:76:eb:c5:f4:9a:ba:3f: 7a:76:2f:3b:7b:4b:19:4c:67:42:0e:be:ba:ee:01:bc:e4:40: f6:63:4e:c8:7e:fd:08:f9:23:a8:de:69:33:cd:6b:3b:6d:af: 03:36:72:f7:c5:82:88:57:dc:f0:b3:0c:c1:b2:9b:37:6a:b6: 1f:f3:a1:7c:de:c7:09:0a:27:25:61:07:e1:c8:65:d9:c7:2e: c4:6c:ee:b0:6f:1b:ed:ef:a3:84:db:69:6e:9f:80:34:07:9a: 78:f6:c5:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjUwNDI3MDQyMDU2WhcNMjUwNTA0MDQyMDU2WjAYMRYwFAYD VQQDEw02ODBkYjBhOS1mYjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8n0zo2fZdKrVZNu6unp+mReB0DPGj6y5LjQjR338Og4sy0VyLovQybSKguf0 LoZ8UeqKmaPwCYVnxy+k7dyy1wuzFhQ3LMx8trRv58XcWlGvu1ZnpGkDN88gI/2x rRjowN3LnX8wtscsHbl1ILzMfkOBbpOi7blpeI/e7Vx8emgWF83juA5b16ik9QC3 h4r3AwWco9WI578Apic0OAe2WLSk56bbqQXNt3gSLUA/a8cO83ULRYu1ZVYyGYJk E6NJlr3h+6nDPV0gr6yiCg5GYI6ywVLV9FOIRzxnl7l5ZyD64CmyC/T/7BKHrwwf rJ5RvFacR28t1QwRKD+gJKbGhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbkzDm4 sDh+0NOVeigtaxbnbs2rMB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiAK1aRPOdazAmxlU6w71MygVk7wu6qTwgpwm2l0+l0yMABBKw4py7 0dMsfyJTnT/wHwbOcQyWANyKPbfFiDAvF+NVD2E6jbmf1o5sL65KTOBYVI4mCt0O sjJU7fpjVj1xHkheAgjrN8/FQI98iwapXDkqOetXMb9P04Z1SSMW2KWkq0QEVYI3 A4d7bUkHr/xrmXAwPY9BO9DqI3brxfSauj96di87e0sZTGdCDr667gG85ED2Y07I fv0I+SOo3mkzzWs7ba8DNnL3xYKIV9zwswzBsps3arYf86F83scJCiclYQfhyGXZ xy7EbO6wbxvt76OE22lun4A0B5p49sUl -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:42 2025 by rpki-client on console.sobornost.net