$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: 1RpRwgL6NVjuK4USl9BtsB959UVH2Q87Fio9QOEGukE= Subject key identifier: 63:FE:39:D0:C5:83:39:5E:C0:E6:AB:9E:29:7E:AC:51:04:6A:FC:29 Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 0FE2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 0FCE Signing time: Mon 28 Apr 2025 17:45:10 +0000 Manifest this update: Mon 28 Apr 2025 17:45:09 +0000 Manifest next update: Mon 05 May 2025 17:45:09 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: geAkh+x9e4ewymBGkfttEXE3qJjIJ8M7G6SB92FIQWg=) 2: 9F883BFCB33811E981BB4E6FC4F9AE02.roa (hash: 6WFoxJSX+AsPXl4iLxcXTCnP5O5xegAvjHGkQo6ULzs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4066 (0xfe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3, serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: Apr 28 17:45:09 2025 GMT Not After : May 5 17:45:09 2025 GMT Subject: CN=680fbea5-e9a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e5:ea:89:b9:17:a2:83:8e:21:09:51:a6:13: ce:92:f5:75:3a:b5:c9:c8:b8:27:f6:c4:cf:45:2b: da:76:30:c6:9b:de:a8:09:02:a9:c1:77:7d:c2:22: 8c:37:08:e6:58:67:12:91:18:d9:61:79:15:9c:da: 90:42:57:4a:bc:8f:62:74:5b:a6:d8:ce:71:59:42: 89:c5:f4:ca:37:a1:b3:e5:2b:62:84:43:22:d1:0f: ca:11:ae:f7:61:00:83:ce:d1:ed:f5:0e:c1:b6:15: 91:ba:48:41:b7:6b:a5:09:fb:35:dd:11:47:f8:08: e8:c7:1d:8c:f5:04:1c:80:04:94:53:8d:01:09:90: 5d:ce:ab:f1:eb:1d:be:f5:24:5a:02:94:08:e2:98: 16:27:60:37:e3:ba:77:1c:1f:7a:28:63:ef:92:be: 9a:7f:1e:90:6f:f6:b4:6e:b5:76:43:22:8c:72:3d: a9:f9:e5:12:19:79:39:45:3d:5f:67:e1:b0:0d:9b: 35:97:e2:93:7b:4c:57:cb:a7:05:bf:a0:65:c0:44: c8:d1:73:d9:75:83:83:9f:50:60:60:b9:af:b9:88: 17:22:9e:6e:53:e6:0c:0f:23:22:49:b7:37:6d:af: 8c:de:c8:ee:e8:03:7f:c8:fc:23:2c:2f:6e:0c:26: 76:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:FE:39:D0:C5:83:39:5E:C0:E6:AB:9E:29:7E:AC:51:04:6A:FC:29 X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:c3:51:5f:5f:49:b7:3a:78:ae:86:4b:89:de:cf:ae:5a:14: 61:04:1e:80:03:9e:58:e7:0a:c6:0b:cf:9c:d9:76:e8:e3:43: 4d:34:fb:45:94:99:50:00:48:aa:35:96:a9:9c:c6:5b:03:8a: 47:db:ae:9f:e9:44:33:5f:7e:d7:41:c5:6e:96:1e:f8:77:bd: 3a:04:13:f1:2e:74:84:5e:8d:81:19:a5:0c:79:73:4c:c7:90: 3e:e0:c7:a8:dc:85:48:d0:33:a4:b7:95:8c:f1:c9:c8:bb:9f: e8:30:8e:71:e5:70:0d:e9:2d:ec:55:93:73:9a:b7:82:f8:fd: cb:8c:19:c5:bc:32:ed:1c:2e:3e:f0:83:fd:c8:68:c9:82:45: b4:d8:a5:ad:51:1c:ee:ec:42:58:12:b9:60:65:9f:12:81:e7: 64:81:0f:47:b4:b8:cf:d9:12:f4:22:55:1b:9c:56:c8:3f:98: da:57:c4:71:3b:76:4e:a1:d2:19:4f:2c:55:16:8c:d7:40:3c: e2:78:c0:e3:63:d0:5f:33:f1:bf:9e:14:ea:65:41:d5:55:4d: 60:fb:81:23:d0:d5:b7:fc:5e:b4:fd:93:f6:0b:4c:cc:f6:8a: 3f:5c:4b:27:cc:9b:20:d6:43:86:73:7d:80:9a:1f:f9:92:0f: aa:8e:a8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjUwNDI4MTc0NTA5WhcNMjUwNTA1MTc0NTA5WjAYMRYwFAYD VQQDEw02ODBmYmVhNS1lOWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruXqibkXooOOIQlRphPOkvV1OrXJyLgn9sTPRSvadjDGm96oCQKpwXd9wiKM NwjmWGcSkRjZYXkVnNqQQldKvI9idFum2M5xWUKJxfTKN6Gz5StihEMi0Q/KEa73 YQCDztHt9Q7BthWRukhBt2ulCfs13RFH+Ajoxx2M9QQcgASUU40BCZBdzqvx6x2+ 9SRaApQI4pgWJ2A347p3HB96KGPvkr6afx6Qb/a0brV2QyKMcj2p+eUSGXk5RT1f Z+GwDZs1l+KTe0xXy6cFv6BlwETI0XPZdYODn1BgYLmvuYgXIp5uU+YMDyMiSbc3 ba+M3sju6AN/yPwjLC9uDCZ2WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGP+OdDF gzlewOarnil+rFEEavwpMB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUw1FfX0m3OniuhkuJ3s+uWhRhBB6AA55Y5wrGC8+c2Xbo40NNNPtF lJlQAEiqNZapnMZbA4pH266f6UQzX37XQcVulh74d706BBPxLnSEXo2BGaUMeXNM x5A+4Meo3IVI0DOkt5WM8cnIu5/oMI5x5XAN6S3sVZNzmreC+P3LjBnFvDLtHC4+ 8IP9yGjJgkW02KWtURzu7EJYErlgZZ8SgedkgQ9HtLjP2RL0IlUbnFbIP5jaV8Rx O3ZOodIZTyxVFozXQDzieMDjY9BfM/G/nhTqZUHVVU1g+4Ej0NW3/F60/ZP2C0zM 9oo/XEsnzJsg1kOGc32Amh/5kg+qjqjO -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:30 2025 by rpki-client on console.sobornost.net