$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: DJLxW3+LwYW7VQs97TzerviL51kt96Ovq9ij8r6IltM= Subject key identifier: 56:CE:7E:28:E1:58:A4:98:C6:84:60:85:45:B4:EF:78:D5:A5:7E:65 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 023F Signing time: Sun 27 Apr 2025 01:30:33 +0000 Manifest this update: Sun 27 Apr 2025 01:30:32 +0000 Manifest next update: Sun 04 May 2025 01:30:32 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: 8aTu1BZyhafBSKu9VP2UdxojOMjfFc8FhYLoS4iLPPc=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: KNUSUG9icP8Pvhz1F1p7tJVMNn5LFGkVNJkPaQqPTVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Apr 27 01:30:32 2025 GMT Not After : May 4 01:30:32 2025 GMT Subject: CN=680d88b9-026a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:06:37:56:22:8e:4c:2b:30:c4:5c:b2:72: 0c:1a:ae:56:40:1d:62:2b:97:b8:2a:10:9a:29:ad: 1d:ec:23:be:63:f9:6a:d5:5e:54:4c:a0:53:99:1f: 91:8e:56:e5:fd:c5:3a:c8:c5:35:c7:c4:72:6f:45: 8b:73:f0:c1:8b:d2:0f:7b:e7:07:f9:89:26:a4:b0: 98:32:18:8b:fc:f9:8d:03:34:8b:8b:66:0d:2d:52: fc:3d:b4:f9:b7:eb:c1:8f:b9:e0:31:20:14:28:0b: 64:bc:8d:a3:6d:6e:f4:15:5b:4a:d8:f7:77:dd:06: 95:45:18:a2:29:c5:09:d6:42:80:15:08:f9:0f:25: 6e:2e:53:06:fc:dc:98:62:74:61:ae:2e:d8:38:95: 4d:0e:8c:50:d3:38:c6:3d:c5:da:94:61:65:66:72: 8e:0a:e0:9c:59:72:c8:da:42:7c:9f:b2:93:64:0f: 2f:68:95:aa:a8:dd:5f:02:92:14:d9:07:82:b5:63: 61:3f:e4:36:73:4c:91:78:0e:8d:3a:7b:70:e1:e2: 44:5b:a4:a7:39:7a:31:75:e5:c2:78:d6:7a:8c:a6: 44:e5:f1:0e:88:b0:15:03:b0:84:b9:8d:14:18:97: 80:c8:1a:00:cf:de:77:15:e4:44:01:ac:e0:3a:2c: c0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:CE:7E:28:E1:58:A4:98:C6:84:60:85:45:B4:EF:78:D5:A5:7E:65 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:0e:29:27:4d:07:44:13:14:60:3c:8d:8b:da:44:9b:7f:fe: 84:5c:dc:d9:66:71:a1:44:fe:46:fc:5e:c7:e1:34:cc:22:a7: 15:48:81:88:bb:89:03:ee:ae:de:c9:9f:94:a6:ee:1a:16:06: c7:ee:9a:f3:ad:e8:10:d9:92:07:ad:3b:14:dd:fa:8d:a8:6a: 20:a3:84:d4:48:b9:58:10:a5:23:24:63:dc:53:6a:61:e4:4d: 15:bc:bb:b1:ae:70:cf:33:da:54:ab:73:71:33:76:89:bc:26: d1:66:da:61:6a:b2:87:7a:34:50:e5:f6:60:9a:29:e0:66:d2: 3e:30:e8:8e:02:1b:f1:68:cf:9a:cc:2a:5d:92:2b:71:e3:a5: 75:76:1a:74:65:c3:3e:d6:46:34:cf:50:0d:52:09:36:e7:50: 7d:95:11:0f:d5:c9:87:a4:f0:da:77:47:b8:30:e6:0d:fe:1f: 68:eb:03:bc:b5:f2:af:f3:8e:8e:4c:e2:dc:f3:2b:24:5f:3d: 1a:20:ba:8c:4f:9e:41:6c:97:28:2f:74:e7:66:1d:39:2c:4b: af:61:44:12:09:c1:cf:1c:76:a2:fd:11:9d:19:ee:9c:27:82: 76:28:22:ef:75:96:5a:58:18:62:81:59:f3:43:91:ca:c4:ac: 1d:f2:7f:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjUwNDI3MDEzMDMyWhcNMjUwNTA0MDEzMDMyWjAYMRYwFAYD VQQDEw02ODBkODhiOS0wMjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6wGN1YijkwrMMRcsnIMGq5WQB1iK5e4KhCaKa0d7CO+Y/lq1V5UTKBTmR+R jlbl/cU6yMU1x8Ryb0WLc/DBi9IPe+cH+YkmpLCYMhiL/PmNAzSLi2YNLVL8PbT5 t+vBj7ngMSAUKAtkvI2jbW70FVtK2Pd33QaVRRiiKcUJ1kKAFQj5DyVuLlMG/NyY YnRhri7YOJVNDoxQ0zjGPcXalGFlZnKOCuCcWXLI2kJ8n7KTZA8vaJWqqN1fApIU 2QeCtWNhP+Q2c0yReA6NOntw4eJEW6SnOXoxdeXCeNZ6jKZE5fEOiLAVA7CEuY0U GJeAyBoAz953FeREAazgOizA1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFbOfijh WKSYxoRghUW073jVpX5lMB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXDiknTQdEExRgPI2L2kSbf/6EXNzZZnGhRP5G/F7H4TTMIqcVSIGI u4kD7q7eyZ+Upu4aFgbH7przregQ2ZIHrTsU3fqNqGogo4TUSLlYEKUjJGPcU2ph 5E0VvLuxrnDPM9pUq3NxM3aJvCbRZtpharKHejRQ5fZgmingZtI+MOiOAhvxaM+a zCpdkitx46V1dhp0ZcM+1kY0z1ANUgk251B9lREP1cmHpPDad0e4MOYN/h9o6wO8 tfKv846OTOLc8yskXz0aILqMT55BbJcoL3TnZh05LEuvYUQSCcHPHHai/RGdGe6c J4J2KCLvdZZaWBhigVnzQ5HKxKwd8n87 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:32 2025 by rpki-client on console.sobornost.net