$ rpki-client -vvf rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft File: CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft (raw, json) Hash identifier: J0DT7kOH8cU0jhVkWUnIvl7ZZAK34vyK/XHM/njzFOI= Subject key identifier: FF:6B:B5:A6:2E:98:DC:CD:56:FE:6F:68:3D:FF:DB:5A:6F:94:5F:9F Authority key identifier: 08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 Certificate issuer: /CN=A9137627/serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft Manifest number: 52 Signing time: Sun 27 Apr 2025 06:04:47 +0000 Manifest this update: Sun 27 Apr 2025 06:04:46 +0000 Manifest next update: Sun 04 May 2025 06:04:46 +0000 Files and hashes: 1: CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl (hash: XaCZZODT3scRNS0wyIgyx76eBrXK5iP0ZMnzCb7h5AY=) 2: 4F148EC8A89211EFBE18B52EC4F9AE02.roa (hash: Ac/uc/BnLL5OC5L/oElWDyPEyaU4HTEnF9nDubVxykg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137627, serialNumber=080EC14A00125D914C7E6285DE9C56689C5872A4 Validity Not Before: Apr 27 06:04:46 2025 GMT Not After : May 4 06:04:46 2025 GMT Subject: CN=680dc8ff-c1e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:eb:93:90:46:ef:89:4b:e7:4d:cb:fa:91:c4: f2:67:51:fc:f2:7c:be:54:25:e3:75:47:95:4e:54: 48:72:f8:ad:9c:58:85:2f:01:6f:54:88:cf:5c:d7: bf:51:c6:55:74:e4:3d:da:fd:ef:32:00:ef:21:0a: 06:d1:02:b5:1a:72:35:e3:57:c2:a8:9d:f0:4e:54: 9a:51:86:9b:c6:cc:2c:6b:20:c9:f0:52:4f:bb:b1: a0:f3:2a:a3:c1:9a:cd:d8:8d:e7:cd:cc:50:8e:08: 60:b0:60:a4:af:4f:ef:d5:ab:2e:a4:5b:d9:d6:fa: e4:07:1f:93:a5:87:67:9b:7c:e9:44:cd:fc:bf:96: 71:36:4c:28:39:95:76:eb:c9:8b:2a:83:a3:71:42: 55:0e:53:ec:cd:ed:b7:9e:2a:95:5f:eb:a1:5b:25: 6b:c6:a3:4c:bf:20:e0:30:5b:a4:2b:09:14:f4:66: 40:53:90:ee:4e:48:11:a6:a9:bf:72:23:ee:c4:11: 26:27:a1:71:32:62:a6:72:4c:4d:47:3f:2b:0a:41: 74:0c:c2:77:0d:37:0f:c8:6c:d9:6d:4c:2a:fc:e4: 38:cc:80:70:b5:6c:41:22:b5:28:a2:c4:cf:ae:9d: 23:d4:9f:73:78:bd:f1:5f:bd:ba:78:e7:c5:e9:af: 84:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6B:B5:A6:2E:98:DC:CD:56:FE:6F:68:3D:FF:DB:5A:6F:94:5F:9F X509v3 Authority Key Identifier: keyid:08:0E:C1:4A:00:12:5D:91:4C:7E:62:85:DE:9C:56:68:9C:58:72:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CA7BSgASXZFMfmKF3pxWaJxYcqQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137627/E7D25786A89111EF92688B2BC4F9AE02/CA7BSgASXZFMfmKF3pxWaJxYcqQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ae:4b:2f:97:ea:91:dc:44:57:a2:b0:4f:1e:50:6a:96:6b: 89:06:24:32:58:bf:05:dd:d4:19:6f:f3:ef:f5:9d:7e:7e:7e: c0:d6:97:64:33:a8:aa:af:0e:5e:da:5c:ac:93:39:be:bd:3b: 8e:c1:19:09:86:37:e5:cd:6c:00:78:2a:9e:f2:43:69:55:5d: cf:81:02:b2:9f:24:de:12:6d:d1:58:84:1c:d7:89:ef:21:ce: f9:7b:3d:e1:9c:36:ec:99:26:5c:9b:a6:e7:d5:fa:04:47:cf: fa:a5:f4:13:8c:b8:1f:b7:dc:f5:e7:99:63:5f:42:7e:44:8c: 9b:52:63:66:88:9c:81:ee:aa:04:7f:a3:65:2d:e5:39:40:6b: 1e:17:f3:e4:eb:6d:4d:51:1b:53:c6:57:aa:5a:cd:4d:e4:69: 35:57:a4:b1:b6:fc:73:3f:8e:58:01:b9:37:a9:27:0c:4b:21: 56:74:94:59:b0:b7:4f:e2:67:ad:77:98:d0:79:93:b9:ee:5a: 56:7d:2d:7f:5e:64:67:9d:53:42:d4:1b:ba:bd:0e:ce:cc:5e: 29:b0:57:9a:03:ec:d7:fd:c0:d5:d4:d4:0b:12:7c:63:19:cc: ac:51:27:c4:c9:ad:42:ca:5e:48:77:6a:25:89:52:91:44:4e: e2:bb:42:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NzYyNzExMC8GA1UEBRMoMDgwRUMxNEEwMDEyNUQ5MTRDN0U2Mjg1REU5QzU2Njg5 QzU4NzJBNDAeFw0yNTA0MjcwNjA0NDZaFw0yNTA1MDQwNjA0NDZaMBgxFjAUBgNV BAMTDTY4MGRjOGZmLWMxZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx65OQRu+JS+dNy/qRxPJnUfzyfL5UJeN1R5VOVEhy+K2cWIUvAW9UiM9c179R xlV05D3a/e8yAO8hCgbRArUacjXjV8KonfBOVJpRhpvGzCxrIMnwUk+7saDzKqPB ms3YjefNzFCOCGCwYKSvT+/Vqy6kW9nW+uQHH5Olh2ebfOlEzfy/lnE2TCg5lXbr yYsqg6NxQlUOU+zN7beeKpVf66FbJWvGo0y/IOAwW6QrCRT0ZkBTkO5OSBGmqb9y I+7EESYnoXEyYqZyTE1HPysKQXQMwncNNw/IbNltTCr85DjMgHC1bEEitSiixM+u nSPUn3N4vfFfvbp458Xpr4S1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/2u1pi6Y 3M1W/m9oPf/bWm+UX58wHwYDVR0jBBgwFoAUCA7BSgASXZFMfmKF3pxWaJxYcqQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3NjI3L0U3RDI1Nzg2QTg5 MTExRUY5MjY4OEIyQkM0RjlBRTAyL0NBN0JTZ0FTWFpGTWZtS0YzcHhXYUp4WWNx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0E3QlNnQVNYWkZNZm1LRjNweFdhSnhZY3FRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3 NjI3L0U3RDI1Nzg2QTg5MTExRUY5MjY4OEIyQkM0RjlBRTAyL0NBN0JTZ0FTWFpG TWZtS0YzcHhXYUp4WWNxUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEuuSy+X6pHcRFeisE8eUGqWa4kGJDJYvwXd1Blv8+/1nX5+fsDWl2Qz qKqvDl7aXKyTOb69O47BGQmGN+XNbAB4Kp7yQ2lVXc+BArKfJN4SbdFYhBzXie8h zvl7PeGcNuyZJlybpufV+gRHz/ql9BOMuB+33PXnmWNfQn5EjJtSY2aInIHuqgR/ o2Ut5TlAax4X8+TrbU1RG1PGV6pazU3kaTVXpLG2/HM/jlgBuTepJwxLIVZ0lFmw t0/iZ613mNB5k7nuWlZ9LX9eZGedU0LUG7q9Ds7MXimwV5oD7Nf9wNXU1AsSfGMZ zKxRJ8TJrULKXkh3aiWJUpFETuK7QvA= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:42 2025 by rpki-client on console.sobornost.net