$ rpki-client -vvf rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft File: MPDbgtWPWD6EiDeboA01rLNSYRA.mft (raw, json) Hash identifier: /HXwJxy6UILDn3X726qDloMiSDoJMGI9lIloKrojFrM= Subject key identifier: FE:98:0C:1A:63:27:B4:C9:F5:BC:3B:3E:AB:D8:D0:A7:C1:39:7F:6B Authority key identifier: 30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 Certificate issuer: /CN=A913C07A/serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft Manifest number: F2 Signing time: Sun 27 Apr 2025 04:16:03 +0000 Manifest this update: Sun 27 Apr 2025 04:16:02 +0000 Manifest next update: Sun 04 May 2025 04:16:02 +0000 Files and hashes: 1: MPDbgtWPWD6EiDeboA01rLNSYRA.crl (hash: p5nTYCmfNJNovTPrB4eeFqaHfcZCAkCmvK8T/vuZ7sI=) 2: A20C3500BE6811EEBFF35870C4F9AE02.roa (hash: eLvQDqgzb8pzAvtiGB3lMpGAuC1qmsTh4Dk3DLhUIRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C07A, serialNumber=30F0DB82D58F583E8488379BA00D35ACB3526110 Validity Not Before: Apr 27 04:16:02 2025 GMT Not After : May 4 04:16:02 2025 GMT Subject: CN=680daf83-d48c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dd:66:9e:56:76:df:84:49:5c:e8:31:8e:81: ea:55:bf:e1:52:9b:ec:3d:9c:ff:5a:85:74:72:51: f5:e7:d7:7d:08:7d:05:81:07:17:ca:5a:e4:93:35: ab:41:66:68:16:6e:90:9b:28:73:ec:bd:0b:f4:a0: bc:f5:9e:b9:4e:10:cb:17:19:9c:aa:4b:de:8e:70: 0b:b7:0b:be:0e:d4:ac:c9:d1:da:ce:2f:4b:d1:d5: 3a:00:1d:7d:ce:7d:86:01:33:2b:ee:c7:32:19:26: a5:84:06:0f:66:82:cc:fc:59:a5:da:47:b2:c5:11: f8:6d:76:95:21:aa:d7:ea:6c:5d:d5:6f:ea:cb:dd: b1:9f:04:7b:64:b7:86:b2:f7:8d:3b:5f:1c:c3:39: 9e:d8:c9:66:a6:9f:92:6b:12:c9:17:d4:41:9d:0e: 26:54:35:f9:93:a3:25:01:fe:90:6c:14:ea:03:9a: 50:71:98:f5:db:8e:b9:93:8a:4f:55:4b:ed:c7:52: 1e:b3:91:8c:ca:b1:c4:c5:32:36:73:d6:f3:3b:e8: c5:33:1b:dc:1d:ab:47:9e:28:4d:96:e3:1c:a4:9c: ab:c3:a2:a2:f7:31:74:58:ee:35:e6:d1:d8:58:26: 84:06:65:d4:80:1b:d7:ce:51:a8:d6:a2:9e:c3:dc: 03:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:98:0C:1A:63:27:B4:C9:F5:BC:3B:3E:AB:D8:D0:A7:C1:39:7F:6B X509v3 Authority Key Identifier: keyid:30:F0:DB:82:D5:8F:58:3E:84:88:37:9B:A0:0D:35:AC:B3:52:61:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MPDbgtWPWD6EiDeboA01rLNSYRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C07A/FB182998BE6711EEB33C6D6EC4F9AE02/MPDbgtWPWD6EiDeboA01rLNSYRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d2:8c:e0:7b:a0:45:cd:2a:69:d1:cd:3e:94:e8:86:1d:21: e9:89:88:43:64:9f:7e:90:1a:e5:7e:53:51:53:f4:a8:74:13: a3:5c:5a:f8:72:8f:28:88:be:da:d9:69:eb:58:b4:b0:c8:70: fa:68:fc:44:47:0d:6b:e0:d3:9c:fb:85:34:10:cf:f5:84:4e: 51:0b:02:3a:49:60:ec:35:c9:5e:60:54:83:ac:a1:1c:81:e8: ba:d1:c4:34:41:c0:8d:e5:6a:8a:e5:5b:08:26:53:90:7f:99: e3:fc:84:3f:7a:8b:c9:63:02:d5:fe:3e:99:4d:19:a0:74:b5: 57:16:a7:9e:c9:61:46:8e:33:86:98:fc:79:1c:18:b0:a3:1b: b5:49:98:42:49:59:58:63:9e:eb:f4:06:c8:f1:d1:db:46:96: 73:42:b9:eb:58:b5:a1:4b:b0:ee:47:75:59:1d:52:d2:86:ad: 01:7b:c7:44:cd:de:9e:fe:32:9c:90:f8:3f:48:78:0f:de:67: 13:f4:be:29:75:a2:49:c2:c1:3d:11:e6:10:50:4f:51:36:93: e7:f3:50:5f:ff:47:3e:b2:32:b7:0c:81:04:66:e5:97:fb:da: 56:db:3b:f4:73:d6:d1:9c:ee:88:7e:d6:bc:e6:08:02:48:6f: 57:c5:85:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MwN0ExMTAvBgNVBAUTKDMwRjBEQjgyRDU4RjU4M0U4NDg4Mzc5QkEwMEQzNUFD QjM1MjYxMTAwHhcNMjUwNDI3MDQxNjAyWhcNMjUwNTA0MDQxNjAyWjAYMRYwFAYD VQQDEw02ODBkYWY4My1kNDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt1mnlZ234RJXOgxjoHqVb/hUpvsPZz/WoV0clH159d9CH0FgQcXylrkkzWr QWZoFm6Qmyhz7L0L9KC89Z65ThDLFxmcqkvejnALtwu+DtSsydHazi9L0dU6AB19 zn2GATMr7scyGSalhAYPZoLM/Fml2keyxRH4bXaVIarX6mxd1W/qy92xnwR7ZLeG sveNO18cwzme2Mlmpp+SaxLJF9RBnQ4mVDX5k6MlAf6QbBTqA5pQcZj12465k4pP VUvtx1Ies5GMyrHExTI2c9bzO+jFMxvcHatHnihNluMcpJyrw6Ki9zF0WO415tHY WCaEBmXUgBvXzlGo1qKew9wDawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6YDBpj J7TJ9bw7PqvY0KfBOX9rMB8GA1UdIwQYMBaAFDDw24LVj1g+hIg3m6ANNayzUmEQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzA3QS9GQjE4Mjk5OEJF NjcxMUVFQjMzQzZENkVDNEY5QUUwMi9NUERiZ3RXUFdENkVpRGVib0EwMXJMTlNZ UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01QRGJndFdQV0Q2RWlEZWJvQTAxckxOU1lSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzA3QS9GQjE4Mjk5OEJFNjcxMUVFQjMzQzZENkVDNEY5QUUwMi9NUERiZ3RXUFdE NkVpRGVib0EwMXJMTlNZUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs0ozge6BFzSpp0c0+lOiGHSHpiYhDZJ9+kBrlflNRU/SodBOjXFr4 co8oiL7a2WnrWLSwyHD6aPxERw1r4NOc+4U0EM/1hE5RCwI6SWDsNcleYFSDrKEc gei60cQ0QcCN5WqK5VsIJlOQf5nj/IQ/eovJYwLV/j6ZTRmgdLVXFqeeyWFGjjOG mPx5HBiwoxu1SZhCSVlYY57r9AbI8dHbRpZzQrnrWLWhS7DuR3VZHVLShq0Be8dE zd6e/jKckPg/SHgP3mcT9L4pdaJJwsE9EeYQUE9RNpPn81Bf/0c+sjK3DIEEZuWX +9pW2zv0c9bRnO6Ifta85ggCSG9XxYU0 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net