$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: fyv0cOCR9iwbgqoGCJPUaHK9n/1gCMIrLZr8hU6SZCk= Subject key identifier: 4A:F7:72:72:6A:FB:C9:ED:AD:9F:10:96:D3:1F:F3:C2:30:D4:82:B4 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 39 Signing time: Sun 27 Apr 2025 06:21:58 +0000 Manifest this update: Sun 27 Apr 2025 06:21:57 +0000 Manifest next update: Sun 04 May 2025 06:21:57 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: 6xCZ59GRtcjdPZWeMiTz9HkP3x+K+SCiqUv+ddmmpX0=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Apr 27 06:21:57 2025 GMT Not After : May 4 06:21:57 2025 GMT Subject: CN=680dcd05-e7e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1f:03:62:8e:1e:11:e8:cc:7d:28:a0:fe:93: c2:c5:d5:46:6b:5f:00:7f:15:a0:95:8c:11:64:da: 5d:db:12:91:44:52:0b:f6:fb:3a:85:24:70:a2:70: 53:e1:65:41:04:0d:07:e1:fc:e7:c3:a9:e0:f3:97: c7:fa:af:66:44:0c:5a:12:dc:d9:4a:76:f7:da:bd: 81:6b:71:90:d5:8d:dc:f7:1b:22:f5:42:d8:70:f7: 89:26:f6:51:38:e7:25:2d:33:45:ca:32:fa:f5:e1: 98:2a:85:60:31:6c:8f:c7:82:90:29:cd:fa:b3:82: ff:c1:e7:3d:8f:25:7f:16:a1:ac:e5:5a:66:f8:c1: 75:f6:70:d3:f5:c2:d1:9f:52:61:d3:39:43:83:20: 45:6a:e1:92:e1:b5:e1:4b:0a:f3:4d:04:f6:d2:b1: 5a:02:25:55:ea:39:1a:9f:ba:cd:46:f8:c3:51:78: 36:7b:a9:d8:96:dc:2a:63:87:aa:76:a2:29:ba:86: 3c:7b:c6:da:b6:07:5f:8b:4c:9d:43:6e:1c:7c:a8: 35:9c:fe:fb:08:07:8a:52:7b:db:15:8e:a3:15:57: 76:62:91:59:ab:3b:39:12:93:28:de:10:4e:8a:fa: 14:22:07:fa:88:db:94:0f:d7:82:40:c4:fd:82:aa: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F7:72:72:6A:FB:C9:ED:AD:9F:10:96:D3:1F:F3:C2:30:D4:82:B4 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:cd:73:75:e2:6b:ae:fc:be:7a:8d:3f:cd:4c:e9:c8:a0:90: 37:47:52:ff:a7:a5:df:5c:74:f8:bf:57:d0:4b:b7:cf:f0:42: 7d:97:2f:31:2c:12:70:86:4c:ec:54:94:08:0a:b1:2f:c1:83: 99:c7:06:48:f1:b2:d5:3d:28:66:e7:70:ab:5b:c8:b6:f4:c9: 22:27:8b:09:85:71:7f:40:2c:e4:99:09:7d:ec:a1:21:75:f3: 5b:0e:2d:65:b9:a5:45:72:c9:be:2e:c0:7a:f8:5e:b6:d5:72: 59:57:57:c4:f4:47:3e:a2:5f:da:5f:69:10:9b:6a:1c:8d:67: 6a:cc:1b:26:7f:02:c7:c5:ba:c0:3d:85:b6:91:2d:b5:83:43: e4:88:12:1a:60:ea:f9:71:e0:f3:f4:c1:f3:1e:25:48:64:e5: 58:47:9d:6c:1a:4c:50:18:83:cb:da:9c:4c:b8:fd:3e:b2:61: 6e:30:1c:67:e1:82:aa:bc:5a:f4:6a:46:63:6c:ac:f7:06:2f: 9f:1e:4e:ed:b0:c2:66:e0:b6:07:c6:09:93:ac:2f:20:44:82: 38:ec:60:40:48:81:a1:c2:f4:e6:e8:c9:24:fd:66:d4:b5:67: d5:d5:a9:02:79:36:15:3a:a8:a3:60:46:9b:18:76:7a:00:50: 36:18:fc:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA0MjcwNjIxNTdaFw0yNTA1MDQwNjIxNTdaMBgxFjAUBgNV BAMTDTY4MGRjZDA1LWU3ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWHwNijh4R6Mx9KKD+k8LF1UZrXwB/FaCVjBFk2l3bEpFEUgv2+zqFJHCicFPh ZUEEDQfh/OfDqeDzl8f6r2ZEDFoS3NlKdvfavYFrcZDVjdz3GyL1Qthw94km9lE4 5yUtM0XKMvr14ZgqhWAxbI/HgpApzfqzgv/B5z2PJX8WoazlWmb4wXX2cNP1wtGf UmHTOUODIEVq4ZLhteFLCvNNBPbSsVoCJVXqORqfus1G+MNReDZ7qdiW3Cpjh6p2 oim6hjx7xtq2B1+LTJ1Dbhx8qDWc/vsIB4pSe9sVjqMVV3ZikVmrOzkSkyjeEE6K +hQiB/qI25QP14JAxP2CqikRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSvdycmr7 ye2tnxCW0x/zwjDUgrQwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG3Nc3Xia678vnqNP81M6cigkDdHUv+npd9cdPi/V9BLt8/wQn2XLzEs EnCGTOxUlAgKsS/Bg5nHBkjxstU9KGbncKtbyLb0ySIniwmFcX9ALOSZCX3soSF1 81sOLWW5pUVyyb4uwHr4XrbVcllXV8T0Rz6iX9pfaRCbahyNZ2rMGyZ/AsfFusA9 hbaRLbWDQ+SIEhpg6vlx4PP0wfMeJUhk5VhHnWwaTFAYg8vanEy4/T6yYW4wHGfh gqq8WvRqRmNsrPcGL58eTu2wwmbgtgfGCZOsLyBEgjjsYEBIgaHC9OboyST9ZtS1 Z9XVqQJ5NhU6qKNgRpsYdnoAUDYY/Fo= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:42 2025 by rpki-client on console.sobornost.net