$ rpki-client -vvf rpki.apnic.net/member_repository/A913F6DE/87AAE74A1B3A11EAB4CDC659C4F9AE02/XUKGguien-2WK-nEQys0xF4uCck.mft File: XUKGguien-2WK-nEQys0xF4uCck.mft (raw, json) Hash identifier: DAyWH10oiKjKIxlngAKzcJIfb8aVeFucW6CGCosmiF4= Subject key identifier: C8:8C:57:69:49:25:45:C7:C8:22:BA:CE:D2:AF:3B:D2:5E:94:E7:0B Authority key identifier: 5D:42:86:82:E8:9E:9F:ED:96:2B:E9:C4:43:2B:34:C4:5E:2E:09:C9 Certificate issuer: /CN=A913F6DE/serialNumber=5D428682E89E9FED962BE9C4432B34C45E2E09C9 Certificate serial: 0BFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUKGguien-2WK-nEQys0xF4uCck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F6DE/87AAE74A1B3A11EAB4CDC659C4F9AE02/XUKGguien-2WK-nEQys0xF4uCck.mft Manifest number: 0BE2 Signing time: Mon 28 Apr 2025 19:13:59 +0000 Manifest this update: Mon 28 Apr 2025 19:13:59 +0000 Manifest next update: Mon 05 May 2025 19:13:59 +0000 Files and hashes: 1: XUKGguien-2WK-nEQys0xF4uCck.crl (hash: Pif7UPMPwi+qCMbFeN6sQDG1JV1g+KJ49HH3riWvcx0=) 2: 8C1F014E911411EF84279055C4F9AE02.roa (hash: D2p6aApYT8eTskHJ6USNYC6PGfVKL5npiA4MObrf+M8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F6DE/87AAE74A1B3A11EAB4CDC659C4F9AE02/XUKGguien-2WK-nEQys0xF4uCck.crl rsync://rpki.apnic.net/member_repository/A913F6DE/87AAE74A1B3A11EAB4CDC659C4F9AE02/XUKGguien-2WK-nEQys0xF4uCck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUKGguien-2WK-nEQys0xF4uCck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F6DE, serialNumber=5D428682E89E9FED962BE9C4432B34C45E2E09C9 Validity Not Before: Apr 28 19:13:59 2025 GMT Not After : May 5 19:13:59 2025 GMT Subject: CN=680fd377-624c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4f:4e:dc:3f:b7:9b:f4:e0:78:c8:08:c6:5c: d6:af:58:bd:12:3a:25:8b:41:38:61:14:64:6a:ed: 1d:0e:c7:29:97:5b:03:2d:6c:5d:ca:2a:05:6a:af: 64:47:b5:f3:e2:1e:bf:ed:26:1d:ae:2a:5d:c8:82: b7:63:13:57:fb:10:7b:18:0a:78:ec:99:df:72:29: 60:71:48:bb:d4:a4:60:56:38:03:d0:22:1a:d4:8a: 91:87:0c:85:a0:b2:4d:8e:d2:72:f0:16:66:93:da: 70:89:38:60:f6:ce:e4:f5:87:51:fa:1e:89:ef:77: d6:a6:4c:34:b7:bb:28:9e:7b:77:b2:ff:55:4f:f5: ae:13:12:6c:f4:52:1d:3c:29:00:17:e7:d1:c4:0a: 0b:60:ea:9f:8f:2b:b9:9c:67:81:66:3c:1e:7b:ba: 7d:33:8a:cc:7e:7a:ea:09:3b:a0:46:b9:6c:32:de: cb:5c:1a:bb:a5:3e:d0:ff:7d:4a:49:df:7f:28:ed: dc:d5:07:ea:1e:aa:5a:18:cc:28:91:b1:5b:cf:30: 78:7b:c3:42:13:0e:32:41:7a:5a:14:c6:f7:4a:2d: 3f:58:1b:da:1e:7d:fa:cd:65:7b:5c:22:ca:02:47: 5f:9f:cf:5f:bd:ea:57:c9:7f:de:17:6d:0e:10:0a: c2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8C:57:69:49:25:45:C7:C8:22:BA:CE:D2:AF:3B:D2:5E:94:E7:0B X509v3 Authority Key Identifier: keyid:5D:42:86:82:E8:9E:9F:ED:96:2B:E9:C4:43:2B:34:C4:5E:2E:09:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F6DE/87AAE74A1B3A11EAB4CDC659C4F9AE02/XUKGguien-2WK-nEQys0xF4uCck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUKGguien-2WK-nEQys0xF4uCck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F6DE/87AAE74A1B3A11EAB4CDC659C4F9AE02/XUKGguien-2WK-nEQys0xF4uCck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:4d:c6:6f:d7:0f:37:52:c2:3b:47:d3:24:31:28:90:78:3b: fd:7b:38:24:e4:07:08:42:6c:a9:5b:48:76:ae:dc:d5:67:85: 9d:bc:2b:a2:e3:6f:97:d0:0f:81:dc:6b:6e:1d:c1:7a:70:f5: 9a:a2:93:96:29:a9:01:eb:a9:2d:30:bd:3a:58:47:55:33:8e: 4d:c3:c2:05:2a:d8:47:7e:2b:62:fe:cb:79:c3:f9:6a:47:f9: 9f:03:b2:81:ea:08:5c:f9:e7:07:19:f9:34:0e:ed:0c:18:96: ac:55:b4:50:c2:16:c0:61:4a:da:a0:7d:1d:1d:38:73:f5:ba: 18:12:bc:34:db:1b:d5:be:80:07:28:b8:74:19:cf:5e:91:d4: 9c:9b:45:ef:66:98:8c:52:43:69:75:1d:b1:c9:69:7f:4b:4c: 1d:4d:d2:21:91:a2:70:15:16:7f:1c:a4:8f:9e:98:c6:9e:2a: 5c:44:47:93:38:d6:ba:9e:59:7f:a6:92:bd:aa:c8:ad:34:36: ed:15:b8:dd:fc:70:dc:b8:21:94:69:31:df:7f:6f:6d:19:9b: 6a:5d:93:41:24:d6:52:32:b5:b1:19:a5:34:de:53:50:30:e8: cb:c3:74:05:94:9a:3c:77:6d:2b:6b:bf:64:c0:ef:dc:b3:ba: 45:d5:e8:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y2REUxMTAvBgNVBAUTKDVENDI4NjgyRTg5RTlGRUQ5NjJCRTlDNDQzMkIzNEM0 NUUyRTA5QzkwHhcNMjUwNDI4MTkxMzU5WhcNMjUwNTA1MTkxMzU5WjAYMRYwFAYD VQQDEw02ODBmZDM3Ny02MjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApU9O3D+3m/TgeMgIxlzWr1i9Ejoli0E4YRRkau0dDscpl1sDLWxdyioFaq9k R7Xz4h6/7SYdripdyIK3YxNX+xB7GAp47JnfcilgcUi71KRgVjgD0CIa1IqRhwyF oLJNjtJy8BZmk9pwiThg9s7k9YdR+h6J73fWpkw0t7sonnt3sv9VT/WuExJs9FId PCkAF+fRxAoLYOqfjyu5nGeBZjwee7p9M4rMfnrqCTugRrlsMt7LXBq7pT7Q/31K Sd9/KO3c1QfqHqpaGMwokbFbzzB4e8NCEw4yQXpaFMb3Si0/WBvaHn36zWV7XCLK Akdfn89fvepXyX/eF20OEArCNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiMV2lJ JUXHyCK6ztKvO9JelOcLMB8GA1UdIwQYMBaAFF1ChoLonp/tlivpxEMrNMReLgnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjZERS84N0FBRTc0QTFC M0ExMUVBQjRDREM2NTlDNEY5QUUwMi9YVUtHZ3VpZW4tMldLLW5FUXlzMHhGNHVD Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVS0dndWllbi0yV0stbkVReXMweEY0dUNjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjZERS84N0FBRTc0QTFCM0ExMUVBQjRDREM2NTlDNEY5QUUwMi9YVUtHZ3VpZW4t MldLLW5FUXlzMHhGNHVDY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFTcZv1w83UsI7R9MkMSiQeDv9ezgk5AcIQmypW0h2rtzVZ4WdvCui 42+X0A+B3GtuHcF6cPWaopOWKakB66ktML06WEdVM45Nw8IFKthHfiti/st5w/lq R/mfA7KB6ghc+ecHGfk0Du0MGJasVbRQwhbAYUraoH0dHThz9boYErw02xvVvoAH KLh0Gc9ekdScm0XvZpiMUkNpdR2xyWl/S0wdTdIhkaJwFRZ/HKSPnpjGnipcREeT ONa6nll/ppK9qsitNDbtFbjd/HDcuCGUaTHff29tGZtqXZNBJNZSMrWxGaU03lNQ MOjLw3QFlJo8d20ra79kwO/cs7pF1ej4 -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:04 2025 by rpki-client on console.sobornost.net