$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json) Hash identifier: AujIzO0j4vmqgsvvCFiO+7MieZw/GYyM7XZC99qpbzE= Subject key identifier: 7C:E6:31:76:1F:60:E9:F5:93:EC:4D:7F:7B:C0:92:A2:F2:F6:4F:F5 Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 0741 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft Manifest number: 0738 Signing time: Sat 26 Apr 2025 21:24:23 +0000 Manifest this update: Sat 26 Apr 2025 21:24:22 +0000 Manifest next update: Sat 03 May 2025 21:24:22 +0000 Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: yCxBQ4DjlaMhaxRvL56K+bsCaykN1jq/5BYJxqd/iv4=) 2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: By6Dq5HHVlEkvf0nTtSM0kJMMOYfz+8LI2/AK8Ixb68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1857 (0x741) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: Apr 26 21:24:22 2025 GMT Not After : May 3 21:24:22 2025 GMT Subject: CN=680d4f07-a1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:15:5b:7d:97:74:48:56:cb:8b:67:c4:ac:59: ef:16:6c:65:1d:99:6e:12:ed:0a:7f:34:1b:cc:99: ab:1c:eb:a4:c6:06:35:1a:aa:57:bf:35:01:db:35: 9f:6c:5c:97:7c:d0:ad:84:cf:fd:f6:c1:a8:37:10: 53:c1:5f:c3:ad:07:88:86:f2:7c:39:e6:61:14:a7: 7e:6e:25:b7:0f:d0:98:0c:31:1b:9a:f5:d8:84:89: 2d:3b:67:c7:d6:d0:8c:7c:cf:74:61:27:fc:41:15: 51:66:6d:68:b5:4a:33:8a:41:f7:85:61:b5:ff:02: 10:ef:a2:b3:1b:f5:1b:c1:fc:45:b4:22:b2:1c:87: de:5c:d3:c0:d7:2b:8b:ea:9e:89:b8:db:83:88:96: 80:0f:26:d7:15:76:b9:4b:f2:a0:cf:84:8a:35:9b: 42:46:61:86:52:e0:54:aa:1e:b4:21:0d:f8:90:16: 5d:48:ab:6e:9b:c6:91:d2:6f:2f:2a:83:8c:70:ba: cf:c1:20:14:08:0a:7e:d0:0e:2a:ac:1d:74:26:a0: 9d:37:a2:cc:2a:67:96:c2:7f:91:00:16:83:0b:7b: 13:d5:0c:17:57:87:eb:64:5f:50:de:81:d8:d7:7b: 6f:03:72:5c:c2:2b:37:75:7f:f2:0a:ef:f4:4b:d4: ef:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E6:31:76:1F:60:E9:F5:93:EC:4D:7F:7B:C0:92:A2:F2:F6:4F:F5 X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:2c:b0:da:fd:24:44:17:29:a2:fe:09:2d:82:ed:92:e6:d8: 5b:d9:cb:27:37:fb:3b:ac:28:f4:28:ba:3a:e5:d6:70:bb:32: e6:05:24:f8:02:02:f9:a1:bb:f5:42:03:b6:71:65:05:11:ba: 7f:08:cd:66:f2:7c:1a:87:2c:d0:55:00:0e:29:1e:a3:a3:77: 9f:f8:20:df:c3:cd:95:0c:45:44:b6:06:b9:14:7e:9d:ba:37: f0:62:4a:43:e1:22:49:ee:cb:2a:ea:98:9d:f9:cf:88:39:08: 6a:01:a4:a2:3b:fd:5d:e0:d3:14:ff:06:16:b4:df:f4:a5:d9: 43:5f:a1:a3:97:6d:c8:c0:97:d7:2a:51:cd:c6:62:8b:f2:53: 1e:ff:46:11:c1:76:3e:06:65:a3:99:c9:9b:45:92:c5:9a:b6: 68:05:84:b0:a1:08:76:0e:a3:b5:f2:5f:b8:88:86:ff:6d:ef: da:cb:c0:0c:77:d9:c7:a3:59:2f:6f:fb:d0:53:1a:37:28:e0: 2c:7d:c5:07:ee:ea:c0:dc:e1:92:ee:49:9e:41:6f:86:8f:be: 8d:f3:19:d2:9e:f6:81:3a:14:f6:c0:d6:b5:1a:19:9c:63:e7: 69:55:74:a3:11:1b:da:fc:59:a3:f1:78:04:c0:39:95:24:51: 1e:4c:01:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjUwNDI2MjEyNDIyWhcNMjUwNTAzMjEyNDIyWjAYMRYwFAYD VQQDEw02ODBkNGYwNy1hMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBVbfZd0SFbLi2fErFnvFmxlHZluEu0KfzQbzJmrHOukxgY1GqpXvzUB2zWf bFyXfNCthM/99sGoNxBTwV/DrQeIhvJ8OeZhFKd+biW3D9CYDDEbmvXYhIktO2fH 1tCMfM90YSf8QRVRZm1otUozikH3hWG1/wIQ76KzG/UbwfxFtCKyHIfeXNPA1yuL 6p6JuNuDiJaADybXFXa5S/Kgz4SKNZtCRmGGUuBUqh60IQ34kBZdSKtum8aR0m8v KoOMcLrPwSAUCAp+0A4qrB10JqCdN6LMKmeWwn+RABaDC3sT1QwXV4frZF9Q3oHY 13tvA3Jcwis3dX/yCu/0S9TvUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzmMXYf YOn1k+xNf3vAkqLy9k/1MB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTIyMC8xNUNEMUMyMjI4QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZR cnY3LWNZbS1XdkstVm8tTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGLLDa/SREFymi/gktgu2S5thb2csnN/s7rCj0KLo65dZwuzLmBST4 AgL5obv1QgO2cWUFEbp/CM1m8nwahyzQVQAOKR6jo3ef+CDfw82VDEVEtga5FH6d ujfwYkpD4SJJ7ssq6pid+c+IOQhqAaSiO/1d4NMU/wYWtN/0pdlDX6Gjl23IwJfX KlHNxmKL8lMe/0YRwXY+BmWjmcmbRZLFmrZoBYSwoQh2DqO18l+4iIb/be/ay8AM d9nHo1kvb/vQUxo3KOAsfcUH7urA3OGS7kmeQW+Gj76N8xnSnvaBOhT2wNa1Ghmc Y+dpVXSjERva/Fmj8XgEwDmVJFEeTAFm -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:56 2025 by rpki-client on console.sobornost.net