$ rpki-client -vvf rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.mft File: eQckJnCjuJ00jVqEHayNGC62YH4.mft (raw, json) Hash identifier: r2QNED9rfp5aznw/9Y+USyyfDctvSjSTTRW1UrUAslA= Subject key identifier: ED:1A:2A:E1:22:D0:34:8E:67:5E:1F:56:BC:1D:93:C5:50:E8:F4:58 Authority key identifier: 79:07:24:26:70:A3:B8:9D:34:8D:5A:84:1D:AC:8D:18:2E:B6:60:7E Certificate issuer: /CN=A913DC32/serialNumber=7907242670A3B89D348D5A841DAC8D182EB6607E Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eQckJnCjuJ00jVqEHayNGC62YH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.mft Manifest number: 1F Signing time: Sun 27 Apr 2025 06:45:23 +0000 Manifest this update: Sun 27 Apr 2025 06:45:23 +0000 Manifest next update: Sun 04 May 2025 06:45:23 +0000 Files and hashes: 1: eQckJnCjuJ00jVqEHayNGC62YH4.crl (hash: jI25yv5kDdRxHpA4Vf39BKjKPMEvdAGU3DScCT3AI8I=) 2: 22E5730815AC11F0BA789D40C4F9AE02.roa (hash: iWmeds3ikQddJ0zOLOMR2/nAx9kIXx/domN/vEqWgPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.crl rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eQckJnCjuJ00jVqEHayNGC62YH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DC32, serialNumber=7907242670A3B89D348D5A841DAC8D182EB6607E Validity Not Before: Apr 27 06:45:23 2025 GMT Not After : May 4 06:45:23 2025 GMT Subject: CN=680dd283-066b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:af:55:57:75:19:14:4c:0a:1e:a4:fb:18: 32:0c:63:ab:88:8f:a3:75:95:c2:eb:20:fc:63:da: 10:cb:74:7a:8b:9a:ea:75:aa:2c:89:77:35:f8:fd: 05:61:a5:90:38:8c:85:e9:9f:36:2c:a4:bc:37:f2: ee:e4:65:ad:87:70:f1:a6:9b:c9:7d:67:44:7d:49: 11:27:bf:a2:4a:e8:e7:6b:b2:cd:dc:d6:e4:ea:b7: 07:24:d1:a5:48:0a:d8:b2:c0:47:13:b4:89:49:ec: 69:f4:29:05:bb:9c:fc:c5:29:d6:c1:9e:70:d3:67: cc:71:15:b3:80:41:1b:e3:17:75:07:cf:c6:8e:c4: 2f:56:1d:68:54:38:66:ee:5f:19:89:68:a9:02:47: 03:ed:4f:af:b3:26:ce:95:34:ac:5e:3e:f0:8d:e8: 00:a6:1b:e7:c3:6b:4a:b4:06:e2:62:b7:64:ac:a5: 8f:85:b8:11:4e:7b:4f:c8:45:3a:25:ef:b5:86:3c: 8b:46:59:4d:01:21:11:a1:8e:da:12:93:df:0c:15: 35:13:69:0c:b5:c1:a1:a7:60:f5:93:b4:28:bf:81: ff:18:54:c3:d0:c4:6c:56:a8:e1:a6:8a:5b:f2:1a: 3e:3b:77:91:80:44:9c:c5:fb:6b:7e:d9:95:a1:1c: ad:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:1A:2A:E1:22:D0:34:8E:67:5E:1F:56:BC:1D:93:C5:50:E8:F4:58 X509v3 Authority Key Identifier: keyid:79:07:24:26:70:A3:B8:9D:34:8D:5A:84:1D:AC:8D:18:2E:B6:60:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eQckJnCjuJ00jVqEHayNGC62YH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:73:48:79:c0:21:53:b9:87:cc:44:be:fb:b0:a5:0f:6d:2a: 47:5f:dd:b9:31:2e:18:70:3c:20:55:97:75:4c:39:d0:26:9e: d7:e1:68:78:04:ef:c3:1d:07:b9:ef:72:92:53:77:6c:dd:73: 1d:d5:1d:87:15:ba:24:93:13:99:2c:70:d6:fc:98:16:43:3f: 2f:f3:00:e3:78:29:5c:7c:20:7f:7e:33:47:fd:f9:a0:9c:60: b4:6a:c4:9f:cb:1a:e3:40:94:95:12:9e:2c:54:76:ab:25:6c: 41:fb:ab:a5:dc:49:c3:df:18:d9:26:1f:5a:72:0e:0e:89:45: 54:8b:78:ab:57:fc:42:16:f3:3f:1d:e0:7f:98:8e:5d:45:ec: 36:69:97:cf:49:9f:42:b7:f1:d5:d5:b7:c0:e4:9f:97:42:32: 7f:11:01:98:d1:ea:03:ee:aa:8e:d6:22:0e:2e:1e:88:78:34: b4:3c:22:05:26:b5:c8:a6:d3:04:c9:60:de:5e:0e:dc:9c:2f: 2f:6b:a8:46:3f:ec:11:e1:35:07:91:70:c3:97:52:3b:f3:57: 18:2c:5f:82:d6:1b:33:75:e3:a8:97:eb:fc:a0:f3:10:78:d7: 71:43:42:d0:6f:78:ee:86:48:6e:9c:f5:28:17:58:e6:4b:2e: 90:67:ff:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz REMzMjExMC8GA1UEBRMoNzkwNzI0MjY3MEEzQjg5RDM0OEQ1QTg0MURBQzhEMTgy RUI2NjA3RTAeFw0yNTA0MjcwNjQ1MjNaFw0yNTA1MDQwNjQ1MjNaMBgxFjAUBgNV BAMTDTY4MGRkMjgzLTA2NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGAa9VV3UZFEwKHqT7GDIMY6uIj6N1lcLrIPxj2hDLdHqLmup1qiyJdzX4/QVh pZA4jIXpnzYspLw38u7kZa2HcPGmm8l9Z0R9SREnv6JK6Odrss3c1uTqtwck0aVI CtiywEcTtIlJ7Gn0KQW7nPzFKdbBnnDTZ8xxFbOAQRvjF3UHz8aOxC9WHWhUOGbu XxmJaKkCRwPtT6+zJs6VNKxePvCN6ACmG+fDa0q0BuJit2SspY+FuBFOe0/IRTol 77WGPItGWU0BIRGhjtoSk98MFTUTaQy1waGnYPWTtCi/gf8YVMPQxGxWqOGmilvy Gj47d5GARJzF+2t+2ZWhHK3fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7Roq4SLQ NI5nXh9WvB2TxVDo9FgwHwYDVR0jBBgwFoAUeQckJnCjuJ00jVqEHayNGC62YH4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEQzMyLzdCNzUwQkZFRkNG RDExRUZBREI4NjExNUM0RjlBRTAyL2VRY2tKbkNqdUowMGpWcUVIYXlOR0M2MllI NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZVFja0puQ2p1SjAwalZxRUhheU5HQzYyWUg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE QzMyLzdCNzUwQkZFRkNGRDExRUZBREI4NjExNUM0RjlBRTAyL2VRY2tKbkNqdUow MGpWcUVIYXlOR0M2MllINC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF5zSHnAIVO5h8xEvvuwpQ9tKkdf3bkxLhhwPCBVl3VMOdAmntfhaHgE 78MdB7nvcpJTd2zdcx3VHYcVuiSTE5kscNb8mBZDPy/zAON4KVx8IH9+M0f9+aCc YLRqxJ/LGuNAlJUSnixUdqslbEH7q6XcScPfGNkmH1pyDg6JRVSLeKtX/EIW8z8d 4H+Yjl1F7DZpl89Jn0K38dXVt8Dkn5dCMn8RAZjR6gPuqo7WIg4uHoh4NLQ8IgUm tcim0wTJYN5eDtycLy9rqEY/7BHhNQeRcMOXUjvzVxgsX4LWGzN146iX6/yg8xB4 13FDQtBveO6GSG6c9SgXWOZLLpBn/3U= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net