$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: ilTlytLodnaO6bAUOAo+pp9cfq2f1JrmI76XcrtnQ4I= Subject key identifier: 62:21:0C:0F:22:65:40:B7:C0:68:39:58:A5:CD:24:29:D4:89:0D:5E Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 3B Signing time: Sun 27 Apr 2025 06:20:30 +0000 Manifest this update: Sun 27 Apr 2025 06:20:30 +0000 Manifest next update: Sun 04 May 2025 06:20:30 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: EhcEpoZ1tg/KkNY4Rr0ckQGpjv5zMuVgUHKMwYopTKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: Apr 27 06:20:30 2025 GMT Not After : May 4 06:20:30 2025 GMT Subject: CN=680dccae-5798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a7:b6:7c:15:a0:25:b1:42:e1:ee:34:54:4a: f1:83:bb:9f:ac:4a:cd:b1:2e:5d:ad:c6:a1:38:cb: 74:c4:33:bc:04:57:1e:d2:ee:05:65:98:b1:85:80: 9c:b9:6f:69:21:bb:ef:b6:27:a0:5a:52:e2:3e:b6: 4c:94:be:ab:7d:25:03:c8:bd:1a:e2:8c:cc:85:b0: 59:a7:9d:51:eb:df:7e:47:03:11:94:55:73:12:3c: 2e:af:7d:da:5a:4e:c4:2d:2c:94:80:26:f0:8f:24: e3:f6:14:ff:69:6d:b9:8c:77:75:33:99:8c:d5:83: b5:14:19:cf:00:66:86:df:2e:03:35:d7:d0:77:84: 52:8e:eb:1b:0a:65:7b:b7:93:e4:d6:b0:12:6c:9a: 8d:3a:8b:bd:e7:f0:aa:d2:3e:85:f6:3a:65:0c:6f: 01:d3:de:99:07:46:cf:4b:13:76:e3:d0:44:a1:6f: 98:9c:cb:54:36:48:d2:b1:e5:52:92:95:f8:05:1d: a3:77:5d:4a:6c:56:cf:4e:c1:34:87:9f:83:1c:41: 14:22:b8:e7:e9:04:84:45:e3:ff:9f:78:67:00:53: 83:e8:5e:7f:54:d5:e5:47:09:04:bc:ff:aa:6d:0f: 53:3d:a7:da:17:fc:fe:61:8b:a0:03:dc:25:c4:6b: d4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:21:0C:0F:22:65:40:B7:C0:68:39:58:A5:CD:24:29:D4:89:0D:5E X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:3a:cd:4b:9f:1a:b2:00:58:7c:fa:e9:db:a4:bc:5e:cf:43: 23:0f:e2:4a:12:88:b2:7d:0f:ed:80:ca:26:ee:2a:57:6f:fc: 05:df:ff:ae:32:1e:e3:ad:01:71:b8:b0:b8:bd:4d:db:62:c9: 24:35:71:86:d8:7b:56:d1:4e:82:e6:93:c8:e5:ee:f0:39:04: cc:1d:d1:4d:b8:3c:e2:b2:f5:51:8d:49:66:cb:97:38:ca:99: bf:e1:55:e2:4d:5f:b5:f4:82:2e:93:67:b1:94:d7:d9:0d:0c: 1a:d8:b4:23:60:a9:36:65:92:eb:bd:a5:bf:1b:2e:0b:6a:c2: 4a:16:28:85:71:9a:04:e3:6c:a8:08:d6:ab:d7:8f:0b:92:1c: 8a:ef:2b:c4:dc:5d:c4:ae:62:ea:23:54:2e:37:7f:86:99:7f: 85:95:3e:be:3a:a8:74:f1:bb:84:fc:56:ec:f1:66:bd:34:5b: 40:03:be:46:19:29:e8:93:e2:fe:9b:fd:6f:32:55:5c:c0:c0: 3c:56:7e:f5:39:0c:5e:de:9f:53:a3:f3:a0:19:76:03:92:78: 81:0d:d9:2f:5f:49:16:9e:49:3c:02:9c:82:49:5a:62:73:cb: c4:50:07:34:f9:54:06:0f:29:df:69:0f:c6:61:37:3a:35:d1: 6a:7d:a8:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoMDFFRDg0MUZCOTUxQUFGQTI1OTE4MEVGOTI5OUU0RDM2 RkRGN0MzRDAeFw0yNTA0MjcwNjIwMzBaFw0yNTA1MDQwNjIwMzBaMBgxFjAUBgNV BAMTDTY4MGRjY2FlLTU3OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCep7Z8FaAlsULh7jRUSvGDu5+sSs2xLl2txqE4y3TEM7wEVx7S7gVlmLGFgJy5 b2khu++2J6BaUuI+tkyUvqt9JQPIvRrijMyFsFmnnVHr335HAxGUVXMSPC6vfdpa TsQtLJSAJvCPJOP2FP9pbbmMd3UzmYzVg7UUGc8AZobfLgM119B3hFKO6xsKZXu3 k+TWsBJsmo06i73n8KrSPoX2OmUMbwHT3pkHRs9LE3bj0EShb5icy1Q2SNKx5VKS lfgFHaN3XUpsVs9OwTSHn4McQRQiuOfpBIRF4/+feGcAU4PoXn9U1eVHCQS8/6pt D1M9p9oX/P5hi6AD3CXEa9QxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYiEMDyJl QLfAaDlYpc0kKdSJDV4wHwYDVR0jBBgwFoAUAe2EH7lRqvolkYDvkpnk02/ffD0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0ZFNzc4RUM4Q0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZE MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWUyRUg3bFJxdm9sa1lEdmtwbmswMl9mZkQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MTI1L0ZFNzc4RUM4Q0MxMDExRUY4NzM5NkE2RUM0RjlBRTAyL0FlMkVIN2xScXZv bGtZRHZrcG5rMDJfZmZEMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALc6zUufGrIAWHz66dukvF7PQyMP4koSiLJ9D+2AyibuKldv/AXf/64y HuOtAXG4sLi9TdtiySQ1cYbYe1bRToLmk8jl7vA5BMwd0U24POKy9VGNSWbLlzjK mb/hVeJNX7X0gi6TZ7GU19kNDBrYtCNgqTZlkuu9pb8bLgtqwkoWKIVxmgTjbKgI 1qvXjwuSHIrvK8TcXcSuYuojVC43f4aZf4WVPr46qHTxu4T8VuzxZr00W0ADvkYZ KeiT4v6b/W8yVVzAwDxWfvU5DF7en1Oj86AZdgOSeIEN2S9fSRaeSTwCnIJJWmJz y8RQBzT5VAYPKd9pD8ZhNzo10Wp9qKU= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net