$ rpki-client -vvf rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.mft File: goqGO92fRnXqGDzaoQT1SyN3Lkk.mft (raw, json) Hash identifier: zSaykXzXL4oHThHhTgZp3s+H1Kg175pQQDhsJwVD21w= Subject key identifier: 1A:18:5E:29:62:FE:E3:4A:CE:56:11:5A:99:E3:FB:99:81:1B:9C:0C Authority key identifier: 82:8A:86:3B:DD:9F:46:75:EA:18:3C:DA:A1:04:F5:4B:23:77:2E:49 Certificate issuer: /CN=A913D4B2/serialNumber=828A863BDD9F4675EA183CDAA104F54B23772E49 Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goqGO92fRnXqGDzaoQT1SyN3Lkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.mft Manifest number: 066A Signing time: Sat 26 Apr 2025 22:00:58 +0000 Manifest this update: Sat 26 Apr 2025 22:00:57 +0000 Manifest next update: Sat 03 May 2025 22:00:57 +0000 Files and hashes: 1: goqGO92fRnXqGDzaoQT1SyN3Lkk.crl (hash: I4Zm+HovD7X4ZjuNZ18dqAyWtjhtmV5mlyZAZ4AM/GY=) 2: C148AF5C9B4811EBB3FAE847C4F9AE02.roa (hash: ElM40kRXls4915TJFeuEiV6vcriAHquSzfVrwEFHIlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.crl rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goqGO92fRnXqGDzaoQT1SyN3Lkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D4B2, serialNumber=828A863BDD9F4675EA183CDAA104F54B23772E49 Validity Not Before: Apr 26 22:00:57 2025 GMT Not After : May 3 22:00:57 2025 GMT Subject: CN=680d5799-2f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:af:0d:22:b9:89:7b:52:d2:60:48:9a:09:c7: 7d:6f:b3:20:09:7e:30:d7:ee:82:ba:50:58:aa:20: 79:28:12:8e:4f:2b:b4:93:3e:a7:9b:b7:08:76:50: be:04:3a:8e:2e:53:73:a3:32:dd:ac:19:53:94:e5: 58:d5:c0:bd:1f:c4:3a:6c:bb:c4:61:0c:e0:0b:39: 27:d2:37:f3:8b:49:f6:31:a4:fd:62:67:c1:72:f0: f2:48:ee:ed:bc:05:2a:cf:fa:bb:db:cf:e8:a9:61: 2c:e8:fd:e0:15:03:ec:69:a9:5d:d5:72:05:66:a6: e2:ac:76:c3:77:8e:cb:e1:be:14:2b:ad:fc:73:bc: a0:1c:b1:dd:f9:60:e1:49:02:cf:1d:9c:5f:f1:b5: ea:8f:fe:6b:c9:e2:91:30:4b:06:b7:01:30:7c:e5: 34:d1:86:bb:c4:d2:88:80:d7:46:8e:61:d2:10:e3: f0:4f:d8:84:aa:11:5e:67:fc:71:01:05:d1:de:4b: 94:9e:80:b0:69:53:92:5f:66:b3:36:12:08:87:9c: b5:ab:5b:a3:79:49:b6:64:bd:35:08:f0:fe:53:6a: 36:5d:64:f5:73:41:6c:51:2c:5d:f5:38:80:df:7b: 4f:bf:f9:62:bb:36:fb:76:e2:e3:0b:63:c3:fd:39: 10:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:18:5E:29:62:FE:E3:4A:CE:56:11:5A:99:E3:FB:99:81:1B:9C:0C X509v3 Authority Key Identifier: keyid:82:8A:86:3B:DD:9F:46:75:EA:18:3C:DA:A1:04:F5:4B:23:77:2E:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goqGO92fRnXqGDzaoQT1SyN3Lkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d8:72:d6:25:c7:fd:e9:c5:51:53:3c:34:bc:14:ce:a3:14: 42:3a:5c:8a:aa:6e:d8:db:28:a3:60:d6:80:9b:7f:f4:47:6f: 51:7a:1f:1f:a1:7a:26:f3:ed:02:bc:a5:a8:e4:8c:c8:5e:7f: a5:2a:c6:60:be:37:3a:30:64:27:c7:af:f1:d5:88:dc:86:d6: e9:fa:53:9e:a0:79:e6:a6:6b:83:d8:4c:dc:39:72:c6:7d:ad: 6d:c2:d2:9c:3e:31:e8:54:91:f2:62:2a:2c:d1:ba:2e:a4:9d: f6:a1:0a:7b:f8:a8:0f:6f:be:8a:cf:b7:d0:5b:bb:7c:47:4a: 9d:33:29:d6:50:46:c5:d7:88:ae:c5:ec:cd:06:b5:a2:f2:f6: f1:40:40:2b:92:d1:8e:61:a9:a9:b9:33:30:78:80:58:5a:49: 2d:7b:b7:70:14:cd:78:e8:dc:70:7b:a4:f7:31:5f:98:8c:04: 67:1d:1f:10:bb:ba:c3:9b:30:e9:e5:67:fc:9a:0d:75:0d:67: 98:1b:88:b5:5c:85:cc:f1:38:cd:5e:fd:71:fa:c4:53:81:6f: 39:b9:e3:99:c7:82:17:1f:f8:21:87:59:f2:f2:96:9c:67:0b: 29:ef:53:9f:21:aa:82:11:b3:8b:2d:80:f0:0e:a6:76:bc:7f: 49:a4:bc:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0QjIxMTAvBgNVBAUTKDgyOEE4NjNCREQ5RjQ2NzVFQTE4M0NEQUExMDRGNTRC MjM3NzJFNDkwHhcNMjUwNDI2MjIwMDU3WhcNMjUwNTAzMjIwMDU3WjAYMRYwFAYD VQQDEw02ODBkNTc5OS0yZjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvK8NIrmJe1LSYEiaCcd9b7MgCX4w1+6CulBYqiB5KBKOTyu0kz6nm7cIdlC+ BDqOLlNzozLdrBlTlOVY1cC9H8Q6bLvEYQzgCzkn0jfzi0n2MaT9YmfBcvDySO7t vAUqz/q728/oqWEs6P3gFQPsaald1XIFZqbirHbDd47L4b4UK638c7ygHLHd+WDh SQLPHZxf8bXqj/5ryeKRMEsGtwEwfOU00Ya7xNKIgNdGjmHSEOPwT9iEqhFeZ/xx AQXR3kuUnoCwaVOSX2azNhIIh5y1q1ujeUm2ZL01CPD+U2o2XWT1c0FsUSxd9TiA 33tPv/liuzb7duLjC2PD/TkQywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoYXili /uNKzlYRWpnj+5mBG5wMMB8GA1UdIwQYMBaAFIKKhjvdn0Z16hg82qEE9Usjdy5J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDRCMi9CNEIyMENBRTc4 NDExMUVCQjM0ODA5NjFDNEY5QUUwMi9nb3FHTzkyZlJuWHFHRHphb1FUMVN5TjNM a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dvcUdPOTJmUm5YcUdEemFvUVQxU3lOM0xray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDRCMi9CNEIyMENBRTc4NDExMUVCQjM0ODA5NjFDNEY5QUUwMi9nb3FHTzkyZlJu WHFHRHphb1FUMVN5TjNMa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC2HLWJcf96cVRUzw0vBTOoxRCOlyKqm7Y2yijYNaAm3/0R29Reh8f oXom8+0CvKWo5IzIXn+lKsZgvjc6MGQnx6/x1Yjchtbp+lOeoHnmpmuD2EzcOXLG fa1twtKcPjHoVJHyYios0boupJ32oQp7+KgPb76Kz7fQW7t8R0qdMynWUEbF14iu xezNBrWi8vbxQEArktGOYampuTMweIBYWkkte7dwFM146Nxwe6T3MV+YjARnHR8Q u7rDmzDp5Wf8mg11DWeYG4i1XIXM8TjNXv1x+sRTgW85ueOZx4IXH/ghh1ny8pac Zwsp71OfIaqCEbOLLYDwDqZ2vH9JpLyn -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:34 2025 by rpki-client on console.sobornost.net