$ rpki-client -vvf rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.mft File: G5AiZjIh2M567rA_P1eZ8NV-phY.mft (raw, json) Hash identifier: 1QZAD7jqXlb8BgR270jya6/qRwQ8MqBbHyN8FKDu310= Subject key identifier: 95:55:A4:20:13:97:E1:85:3F:B6:1D:D3:D0:73:D6:5C:A7:A0:F2:DF Authority key identifier: 1B:90:22:66:32:21:D8:CE:7A:EE:B0:3F:3F:57:99:F0:D5:7E:A6:16 Certificate issuer: /CN=A9133E16/serialNumber=1B9022663221D8CE7AEEB03F3F5799F0D57EA616 Certificate serial: 08D6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/G5AiZjIh2M567rA_P1eZ8NV-phY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.mft Manifest number: 08D6 Signing time: Mon 28 Apr 2025 20:53:37 +0000 Manifest this update: Mon 28 Apr 2025 20:53:37 +0000 Manifest next update: Mon 05 May 2025 20:53:37 +0000 Files and hashes: 1: G5AiZjIh2M567rA_P1eZ8NV-phY.crl (hash: w8X+b76OnCubVsx37Sg+Y7rSew0ptWFMynk6vR1UkiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.crl rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/G5AiZjIh2M567rA_P1eZ8NV-phY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2262 (0x8d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133E16, serialNumber=1B9022663221D8CE7AEEB03F3F5799F0D57EA616 Validity Not Before: Apr 28 20:53:37 2025 GMT Not After : May 5 20:53:37 2025 GMT Subject: CN=680fead1-a05d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:b3:1f:6b:96:46:48:39:f8:8c:d8:36:4a: 2f:cd:14:8e:9a:57:2c:c6:4d:6b:10:11:4f:1f:31: de:13:62:9a:f6:91:5a:cc:19:4f:e1:88:81:5b:ae: 54:8a:ba:38:b4:5c:92:c6:32:ad:e8:33:24:90:fc: af:88:9d:83:7f:92:11:f7:ed:e6:52:67:68:e3:59: 59:15:65:ca:65:52:f2:a3:f3:f4:e3:d4:58:45:c0: 0a:b0:23:0e:09:0e:26:ec:aa:e3:78:11:af:18:96: d6:ab:f4:b8:c3:1c:d4:02:09:0c:f3:80:c5:a7:df: bd:06:f2:8c:9a:90:9d:4d:94:1c:8a:e5:c1:22:25: b8:0b:aa:da:3c:76:86:c1:2a:6a:f7:f8:09:d1:32: 1e:1e:2c:98:ff:e2:8f:57:10:44:86:7c:f3:58:96: 44:be:65:b0:be:2e:70:84:4f:a9:4b:2a:be:64:92: 87:2c:62:22:d5:e0:f8:d6:d2:d3:47:5b:35:d9:a4: 28:8b:80:6a:33:27:94:41:a2:49:6f:18:a7:2b:df: 29:29:ea:1b:9a:7c:c4:1f:f9:6d:71:97:46:cf:7f: 36:86:08:4b:9c:3e:90:f8:a7:02:4d:5f:40:d7:7a: 25:4a:f3:1a:2e:e7:df:ac:af:a2:6e:ca:05:d3:8f: d5:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:55:A4:20:13:97:E1:85:3F:B6:1D:D3:D0:73:D6:5C:A7:A0:F2:DF X509v3 Authority Key Identifier: keyid:1B:90:22:66:32:21:D8:CE:7A:EE:B0:3F:3F:57:99:F0:D5:7E:A6:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/G5AiZjIh2M567rA_P1eZ8NV-phY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133E16/F47B6CD4AC7411EA86EA9F48C4F9AE02/G5AiZjIh2M567rA_P1eZ8NV-phY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:a3:30:33:81:e9:f1:22:74:59:ce:db:1f:4f:bd:4c:17:10: 51:dc:0a:69:b2:52:f2:f8:5f:6a:a1:8e:6d:78:4b:4e:fd:2f: a7:3b:a8:9b:d1:12:a2:07:fe:17:b8:e1:07:8f:0b:9a:74:e5: 4a:e9:47:fe:73:34:5f:c1:ac:cb:89:c8:2f:24:02:1c:03:20: ab:e7:f0:5b:7d:59:c1:69:81:96:91:73:fa:d8:1a:84:2e:e9: f3:4e:6f:4f:93:65:5a:cd:83:d3:31:22:66:71:ff:ee:bf:80: c4:0e:34:13:c0:81:c7:22:c2:50:b2:17:8e:f0:95:2b:a3:f4: c3:fc:c8:e2:0a:90:2d:3e:5b:16:71:76:3a:2f:4e:bf:51:3d: d3:a8:34:6e:32:c8:e1:ad:da:42:89:1d:40:e8:a0:fa:70:63: 4d:0d:5a:31:5e:c7:20:08:08:cf:c3:16:26:d4:66:eb:b6:fd: 86:e9:1f:f1:c1:0c:53:ee:e1:d3:ed:72:61:f1:6f:3f:93:94: ca:ae:4e:94:df:5c:2f:9a:93:da:e1:12:85:68:cb:04:96:7c: 31:d0:6c:ce:cb:04:d3:55:f7:cf:a8:4a:19:10:c3:93:46:b6: 84:a7:82:b1:2e:9e:b8:63:9d:48:1d:c1:8d:51:bf:9f:a5:47: c0:81:86:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNFMTYxMTAvBgNVBAUTKDFCOTAyMjY2MzIyMUQ4Q0U3QUVFQjAzRjNGNTc5OUYw RDU3RUE2MTYwHhcNMjUwNDI4MjA1MzM3WhcNMjUwNTA1MjA1MzM3WjAYMRYwFAYD VQQDEw02ODBmZWFkMS1hMDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumizH2uWRkg5+IzYNkovzRSOmlcsxk1rEBFPHzHeE2Ka9pFazBlP4YiBW65U iro4tFySxjKt6DMkkPyviJ2Df5IR9+3mUmdo41lZFWXKZVLyo/P049RYRcAKsCMO CQ4m7KrjeBGvGJbWq/S4wxzUAgkM84DFp9+9BvKMmpCdTZQciuXBIiW4C6raPHaG wSpq9/gJ0TIeHiyY/+KPVxBEhnzzWJZEvmWwvi5whE+pSyq+ZJKHLGIi1eD41tLT R1s12aQoi4BqMyeUQaJJbxinK98pKeobmnzEH/ltcZdGz382hghLnD6Q+KcCTV9A 13olSvMaLuffrK+ibsoF04/VzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVVpCAT l+GFP7Yd09Bz1lynoPLfMB8GA1UdIwQYMBaAFBuQImYyIdjOeu6wPz9XmfDVfqYW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0UxNi9GNDdCNkNENEFD NzQxMUVBODZFQTlGNDhDNEY5QUUwMi9HNUFpWmpJaDJNNTY3ckFfUDFlWjhOVi1w aFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0c1QWlaakloMk01NjdyQV9QMWVaOE5WLXBoWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0UxNi9GNDdCNkNENEFDNzQxMUVBODZFQTlGNDhDNEY5QUUwMi9HNUFpWmpJaDJN NTY3ckFfUDFlWjhOVi1waFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ozAzgenxInRZztsfT71MFxBR3AppslLy+F9qoY5teEtO/S+nO6ib 0RKiB/4XuOEHjwuadOVK6Uf+czRfwazLicgvJAIcAyCr5/BbfVnBaYGWkXP62BqE LunzTm9Pk2VazYPTMSJmcf/uv4DEDjQTwIHHIsJQsheO8JUro/TD/MjiCpAtPlsW cXY6L06/UT3TqDRuMsjhrdpCiR1A6KD6cGNNDVoxXscgCAjPwxYm1Gbrtv2G6R/x wQxT7uHT7XJh8W8/k5TKrk6U31wvmpPa4RKFaMsElnwx0GzOywTTVffPqEoZEMOT RraEp4KxLp64Y51IHcGNUb+fpUfAgYaM -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:01 2025 by rpki-client on console.sobornost.net