$ rpki-client -vvf rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.mft File: UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.mft (raw, json) Hash identifier: 8zVp9sCbEWnjz1TiAMF5t4MuG3iv2Rc24Pz9fG7/yt4= Subject key identifier: 89:C1:A2:3C:5B:6D:E0:61:A5:CC:27:60:91:01:2A:F5:4A:8A:91:0A Authority key identifier: 50:FB:B4:03:64:34:73:F9:91:27:36:26:27:7A:92:2C:07:06:AC:57 Certificate issuer: /CN=A9137242/serialNumber=50FBB403643473F991273626277A922C0706AC57 Certificate serial: 0D5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.mft Manifest number: 14D2 Signing time: Mon 28 Apr 2025 18:11:54 +0000 Manifest this update: Mon 28 Apr 2025 18:11:53 +0000 Manifest next update: Mon 05 May 2025 18:11:53 +0000 Files and hashes: 1: UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.crl (hash: WPeXrufStdzPgieMlq6a2io7AcuAiSG3Gcmf2MZ37Yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.crl rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137242, serialNumber=50FBB403643473F991273626277A922C0706AC57 Validity Not Before: Apr 28 18:11:53 2025 GMT Not After : May 5 18:11:53 2025 GMT Subject: CN=680fc4e9-41d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e7:f2:7c:69:aa:72:bf:a6:d1:b2:9c:fd:c8: 40:fb:23:b5:f7:50:07:a2:6b:d0:9e:15:40:3d:99: 43:2c:8d:df:b0:ef:09:50:57:b5:c5:b5:91:9f:19: 01:e3:30:e7:e1:ff:e7:3a:b7:72:93:87:ae:ae:7c: 34:e6:6d:99:62:79:c7:d4:4b:d5:19:60:c6:c9:82: 9b:0f:eb:fc:e0:68:cc:86:48:a3:34:80:a6:14:e9: 78:b7:d7:eb:4d:c0:6e:52:1c:de:37:4f:57:7d:f8: af:2d:a7:f9:cb:15:38:e1:a6:9e:68:85:87:5e:35: d9:3a:67:c9:a4:2f:45:c8:8a:b0:1b:d3:7c:da:61: ff:67:4e:5c:10:73:66:bd:32:ac:36:98:b9:2b:d5: e8:49:6f:8c:12:ab:13:a5:ff:eb:36:a9:43:ff:96: 60:63:88:a6:47:5e:f6:c8:65:b2:45:3b:ba:93:bf: a5:19:c7:9c:43:cd:4c:84:5a:25:51:86:71:13:7a: 7e:ea:82:a6:8b:5d:57:ea:ae:24:e5:91:68:98:51: 1b:55:f1:6b:6f:6f:01:bd:01:ef:84:18:f1:54:ac: 36:ee:e8:33:67:ad:3c:3d:11:0e:93:e6:5e:ff:61: 2b:4b:1d:0b:44:62:2d:fd:60:7c:29:61:6f:26:99: 65:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C1:A2:3C:5B:6D:E0:61:A5:CC:27:60:91:01:2A:F5:4A:8A:91:0A X509v3 Authority Key Identifier: keyid:50:FB:B4:03:64:34:73:F9:91:27:36:26:27:7A:92:2C:07:06:AC:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/UPu0A2Q0c_mRJzYmJ3qSLAcGrFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:9c:72:2b:0b:1e:99:f4:4a:dc:86:9c:0b:93:f2:02:94:a8: 2f:d4:52:11:2d:d5:c2:ea:3f:56:c6:f2:a2:ae:86:d3:e4:ae: ad:82:a5:ba:4f:77:15:3d:40:ae:a3:15:7f:e3:8c:dc:3e:21: 89:1d:45:93:46:67:bb:32:ac:c1:73:3e:f2:df:ae:28:14:e2: 51:e1:cb:23:48:01:66:8f:81:26:02:f3:59:8a:c1:f5:1f:e1: 3a:3a:b7:c2:11:96:2c:4f:ba:0c:2a:5c:bb:10:ec:36:ed:59: aa:f4:a5:e4:bd:27:cc:46:71:d5:58:df:9f:e4:74:54:d5:77: 87:00:87:00:ba:94:c8:69:51:66:ee:e4:96:7b:b4:ec:dc:71: 3d:9f:a3:25:b7:16:40:01:f9:d5:d9:e2:48:97:26:46:53:69: d6:04:ba:22:08:6e:5b:04:da:56:db:2d:c3:1d:af:1c:c8:3f: 32:eb:ef:a9:f7:17:d0:f4:85:5f:29:2a:1d:a9:62:15:8e:73: 0b:58:7e:2f:29:05:d8:df:af:7d:cf:7a:10:5c:f0:82:ee:01: cb:33:a5:bf:0d:97:19:d2:54:7f:38:5a:f3:03:9e:79:ce:59: 27:55:7e:73:0c:55:a5:82:6b:a9:83:01:22:4a:36:3e:ff:5b: d7:47:5f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcyNDIxMTAvBgNVBAUTKDUwRkJCNDAzNjQzNDczRjk5MTI3MzYyNjI3N0E5MjJD MDcwNkFDNTcwHhcNMjUwNDI4MTgxMTUzWhcNMjUwNTA1MTgxMTUzWjAYMRYwFAYD VQQDEw02ODBmYzRlOS00MWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+fyfGmqcr+m0bKc/chA+yO191AHomvQnhVAPZlDLI3fsO8JUFe1xbWRnxkB 4zDn4f/nOrdyk4eurnw05m2ZYnnH1EvVGWDGyYKbD+v84GjMhkijNICmFOl4t9fr TcBuUhzeN09XffivLaf5yxU44aaeaIWHXjXZOmfJpC9FyIqwG9N82mH/Z05cEHNm vTKsNpi5K9XoSW+MEqsTpf/rNqlD/5ZgY4imR172yGWyRTu6k7+lGcecQ81MhFol UYZxE3p+6oKmi11X6q4k5ZFomFEbVfFrb28BvQHvhBjxVKw27ugzZ608PREOk+Ze /2ErSx0LRGIt/WB8KWFvJpllaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFInBojxb beBhpcwnYJEBKvVKipEKMB8GA1UdIwQYMBaAFFD7tANkNHP5kSc2Jid6kiwHBqxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzI0Mi8wQjYwODc5NkNB MzQxMUU5QkM3NjkwNTVDNEY5QUUwMi9VUHUwQTJRMGNfbVJKelltSjNxU0xBY0dy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQdTBBMlEwY19tUkp6WW1KM3FTTEFjR3JGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzI0Mi8wQjYwODc5NkNBMzQxMUU5QkM3NjkwNTVDNEY5QUUwMi9VUHUwQTJRMGNf bVJKelltSjNxU0xBY0dyRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVnHIrCx6Z9ErchpwLk/IClKgv1FIRLdXC6j9WxvKirobT5K6tgqW6 T3cVPUCuoxV/44zcPiGJHUWTRme7MqzBcz7y364oFOJR4csjSAFmj4EmAvNZisH1 H+E6OrfCEZYsT7oMKly7EOw27Vmq9KXkvSfMRnHVWN+f5HRU1XeHAIcAupTIaVFm 7uSWe7Ts3HE9n6MltxZAAfnV2eJIlyZGU2nWBLoiCG5bBNpW2y3DHa8cyD8y6++p 9xfQ9IVfKSodqWIVjnMLWH4vKQXY3699z3oQXPCC7gHLM6W/DZcZ0lR/OFrzA555 zlknVX5zDFWlgmupgwEiSjY+/1vXR182 -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:28 2025 by rpki-client on console.sobornost.net