$ rpki-client -vvf rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft File: 86DXLWMw1yFWoA2fRuqwyfyTvIw.mft (raw, json) Hash identifier: k1uWGiopwCo4Pwfi2/+z/eRRYWToFEN/rriYVpgVctg= Subject key identifier: 71:CD:2B:90:55:1C:DC:04:13:24:C7:3E:13:69:23:BC:71:C0:39:A3 Authority key identifier: F3:A0:D7:2D:63:30:D7:21:56:A0:0D:9F:46:EA:B0:C9:FC:93:BC:8C Certificate issuer: /CN=A9135395/serialNumber=F3A0D72D6330D72156A00D9F46EAB0C9FC93BC8C Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft Manifest number: 01C7 Signing time: Sun 27 Apr 2025 01:57:46 +0000 Manifest this update: Sun 27 Apr 2025 01:57:46 +0000 Manifest next update: Sun 04 May 2025 01:57:46 +0000 Files and hashes: 1: 86DXLWMw1yFWoA2fRuqwyfyTvIw.crl (hash: 76x1+1t+I6y/O8YDMijIegMPc41hTy6NvaZMZT7avvo=) 2: C7E21B026AED11ED97121F2BC4F9AE02.roa (hash: qsaIGRiFRWstbJ88ir6bwAs/8uMjkIf/J02kliFht7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.crl rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135395, serialNumber=F3A0D72D6330D72156A00D9F46EAB0C9FC93BC8C Validity Not Before: Apr 27 01:57:46 2025 GMT Not After : May 4 01:57:46 2025 GMT Subject: CN=680d8f1a-315f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:44:fd:87:8b:2e:5e:80:7c:fc:27:7d:85:42: 4d:77:31:5d:c7:84:3c:a0:7a:be:27:67:cc:b4:9c: ca:5b:52:fc:c5:01:b3:ee:c6:cb:d1:56:c3:76:69: 34:a4:cd:c9:2e:fa:8e:d5:f8:e8:49:b9:93:1c:b8: 9d:f4:29:22:43:84:96:f2:49:24:e4:3c:00:25:d7: bc:cc:45:9f:d5:7c:3b:fb:2c:cc:ff:75:2b:e3:59: 37:87:ac:65:af:39:94:b1:01:db:ca:c1:23:6a:f3: fd:fa:3b:3b:1a:bd:b9:77:24:d6:41:6e:d3:7d:a5: e4:ab:a1:80:7d:79:66:a3:a5:9f:ce:b4:50:b0:07: a5:fb:08:04:7e:09:64:66:7e:73:d8:00:fb:36:49: 36:97:e9:08:f7:e2:d5:c8:31:00:10:9b:e6:16:41: 10:1e:d2:6e:78:41:c7:e4:61:a7:24:a9:e2:75:60: 9d:b4:c1:e7:a6:7b:4e:29:30:49:70:3c:b2:d6:bb: 00:a9:af:62:d0:39:30:63:92:7a:a5:3d:79:95:ce: 48:41:47:b6:67:af:81:51:d9:6c:ba:0d:65:e4:8e: cc:ef:ef:fb:72:06:91:b0:26:17:ca:c5:7f:90:ee: 18:e8:13:7d:c0:5a:78:ee:22:2f:ba:96:8e:56:f3: 51:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:CD:2B:90:55:1C:DC:04:13:24:C7:3E:13:69:23:BC:71:C0:39:A3 X509v3 Authority Key Identifier: keyid:F3:A0:D7:2D:63:30:D7:21:56:A0:0D:9F:46:EA:B0:C9:FC:93:BC:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2c:3a:39:b7:35:ac:b5:5f:10:ae:1f:41:db:0a:f5:0d:17: a2:33:ae:b4:5d:cb:19:79:f4:ac:e3:fb:5b:1c:63:41:30:a5: 56:8a:5b:2f:30:e9:74:be:91:f6:16:97:22:21:c5:17:9a:80: 39:27:49:59:d2:2e:80:42:82:87:af:36:37:53:d3:71:33:be: 5c:3f:ea:9a:e0:b7:b3:56:96:3c:0a:95:36:bb:8a:10:87:e9: 82:0f:76:4c:ca:7e:ea:b7:97:62:57:c6:73:2a:81:b0:81:3f: 8c:7c:27:c9:de:06:b4:83:27:1e:cc:9f:b0:04:9c:09:f8:43: 9e:65:a3:d8:50:c3:97:84:8c:3a:0c:ad:9e:61:48:d3:ab:e5: 1f:f2:de:f3:87:f8:bd:e3:6c:d5:c4:78:70:15:af:9f:ec:2f: 03:a5:71:21:48:8c:62:5c:8c:be:de:6d:2f:73:56:80:7a:cc: 99:d4:9d:a0:41:89:4c:5b:1a:82:e5:60:52:87:f2:fe:f2:8f: 7a:e1:8f:72:54:72:ab:aa:9c:72:17:e7:4a:4a:fe:03:7c:3a: b6:cc:49:75:a2:ae:ab:66:5b:ed:87:2a:ae:b2:79:99:46:30: 80:58:28:c5:42:ca:e4:e5:2b:9e:b4:7e:9d:bf:de:43:eb:c4: 10:b5:b9:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUzOTUxMTAvBgNVBAUTKEYzQTBENzJENjMzMEQ3MjE1NkEwMEQ5RjQ2RUFCMEM5 RkM5M0JDOEMwHhcNMjUwNDI3MDE1NzQ2WhcNMjUwNTA0MDE1NzQ2WjAYMRYwFAYD VQQDEw02ODBkOGYxYS0zMTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA30T9h4suXoB8/Cd9hUJNdzFdx4Q8oHq+J2fMtJzKW1L8xQGz7sbL0VbDdmk0 pM3JLvqO1fjoSbmTHLid9CkiQ4SW8kkk5DwAJde8zEWf1Xw7+yzM/3Ur41k3h6xl rzmUsQHbysEjavP9+js7Gr25dyTWQW7TfaXkq6GAfXlmo6WfzrRQsAel+wgEfglk Zn5z2AD7Nkk2l+kI9+LVyDEAEJvmFkEQHtJueEHH5GGnJKnidWCdtMHnpntOKTBJ cDyy1rsAqa9i0DkwY5J6pT15lc5IQUe2Z6+BUdlsug1l5I7M7+/7cgaRsCYXysV/ kO4Y6BN9wFp47iIvupaOVvNRbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHNK5BV HNwEEyTHPhNpI7xxwDmjMB8GA1UdIwQYMBaAFPOg1y1jMNchVqANn0bqsMn8k7yM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTM5NS81N0UxRDE4NDZB RTkxMUVEQkNEQUFFMjJDNEY5QUUwMi84NkRYTFdNdzF5RldvQTJmUnVxd3lmeVR2 SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg2RFhMV013MXlGV29BMmZSdXF3eWZ5VHZJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTM5NS81N0UxRDE4NDZBRTkxMUVEQkNEQUFFMjJDNEY5QUUwMi84NkRYTFdNdzF5 RldvQTJmUnVxd3lmeVR2SXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0LDo5tzWstV8Qrh9B2wr1DReiM660XcsZefSs4/tbHGNBMKVWilsv MOl0vpH2FpciIcUXmoA5J0lZ0i6AQoKHrzY3U9NxM75cP+qa4LezVpY8CpU2u4oQ h+mCD3ZMyn7qt5diV8ZzKoGwgT+MfCfJ3ga0gycezJ+wBJwJ+EOeZaPYUMOXhIw6 DK2eYUjTq+Uf8t7zh/i942zVxHhwFa+f7C8DpXEhSIxiXIy+3m0vc1aAesyZ1J2g QYlMWxqC5WBSh/L+8o964Y9yVHKrqpxyF+dKSv4DfDq2zEl1oq6rZlvthyqusnmZ RjCAWCjFQsrk5SuetH6dv95D68QQtbkF -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:29 2025 by rpki-client on console.sobornost.net