$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft File: 5muokllQFHlLtkUdFCgchAAgYgM.mft (raw, json) Hash identifier: 0CxtkAQzZbPRcXy2nH3qTSW1L1NS32f6QcpYnRUIAd4= Subject key identifier: 79:0C:22:9C:EC:25:BE:78:06:D4:9B:78:9A:27:09:33:B5:77:18:82 Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 145D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft Manifest number: 145B Signing time: Mon 28 Apr 2025 17:07:56 +0000 Manifest this update: Mon 28 Apr 2025 17:07:55 +0000 Manifest next update: Mon 05 May 2025 17:07:55 +0000 Files and hashes: 1: 5muokllQFHlLtkUdFCgchAAgYgM.crl (hash: PEuB/6kRtsfF5hi1EdbryB4okjLw3WEP49Y47SIrU5k=) 2: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (hash: h/4RQkDOLBBPlrQUpebdiQb7wWMHpGVL3kG7tSUKXbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5213 (0x145d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4, serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Apr 28 17:07:55 2025 GMT Not After : May 5 17:07:55 2025 GMT Subject: CN=680fb5eb-a06f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:08:46:04:54:c7:c9:6f:9a:1b:bc:61:b1:2c: a2:2e:de:a3:1a:f2:c7:7b:ee:56:c8:c3:83:83:a7: 9a:71:61:77:b1:ff:d4:4a:d0:46:7a:f9:ff:d7:1b: a0:b0:aa:bd:40:29:61:d4:78:3a:96:95:95:bc:19: 1c:0d:b0:60:e6:61:68:4b:5e:f2:17:03:ea:68:0e: 17:3f:65:14:0f:39:56:43:4d:c7:8c:ed:20:20:5b: a4:3e:be:a1:2b:50:98:b2:56:4e:8d:40:58:e2:94: 06:6f:2f:60:94:63:bc:11:08:e8:2b:88:31:91:6c: 6c:18:49:d2:07:09:23:38:27:f1:e5:ea:03:6b:ed: 53:50:77:72:98:23:72:5d:75:ce:29:39:ae:0b:08: c8:1e:35:51:52:16:5a:83:ba:6a:d9:de:d9:3f:41: e2:10:8d:95:03:84:d1:23:74:b3:89:f4:fe:ed:2d: 66:4c:0c:05:7f:80:83:c7:57:96:bb:fb:62:14:38: 37:ec:d4:e4:0b:67:e4:de:5b:eb:43:eb:93:61:45: 70:27:72:f0:86:55:d8:d9:cd:96:72:a4:59:37:00: e1:1c:a9:75:7d:03:64:a3:1e:9e:47:a1:f6:2a:ce: d2:4f:cc:e8:5b:1e:db:9e:40:fd:ff:c7:c2:39:22: 43:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:0C:22:9C:EC:25:BE:78:06:D4:9B:78:9A:27:09:33:B5:77:18:82 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:96:0c:37:c3:f0:ce:cb:b1:5a:ce:c3:1e:41:3f:70:29:0c: 8e:90:31:0c:17:f2:c8:7f:e7:f0:aa:c0:c1:79:31:6d:b0:9c: 9b:18:16:08:4a:18:17:5c:d8:fa:f6:44:ff:d5:0e:b4:35:08: 60:3e:67:5a:3b:37:c4:27:44:16:58:b9:6a:dc:c1:87:c8:0b: af:3f:bc:a2:ce:91:a3:95:ba:f4:78:fd:c4:41:a6:8f:8e:a2: 04:fe:de:81:61:ea:0a:df:ce:d7:b7:fd:69:08:06:ae:95:af: 3b:ec:47:01:29:be:f0:bc:51:50:b6:39:f0:a4:0c:5b:2b:dd: 7b:94:ca:6e:b0:43:3b:99:b8:95:aa:30:69:ac:15:c6:a7:a1: b6:89:d5:50:aa:29:6c:1d:c3:0d:18:eb:0b:37:c5:5c:b1:b1: c1:9f:f8:ec:3a:58:08:73:df:f0:3e:a2:d9:a5:c0:90:4d:75: 55:dc:e1:58:84:de:3b:50:ff:60:4f:91:46:48:16:9b:f7:28: 13:f0:10:20:e5:4f:37:20:c6:b3:22:f5:91:f5:b0:e3:af:76: f5:b4:d3:c9:d5:24:37:f3:7f:3a:d8:81:ae:c3:fe:7c:e2:82: 12:98:d3:a4:4f:43:d4:72:b4:7e:38:3a:b1:c4:0b:21:44:02: cc:8a:9b:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUwNDI4MTcwNzU1WhcNMjUwNTA1MTcwNzU1WjAYMRYwFAYD VQQDEw02ODBmYjVlYi1hMDZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyghGBFTHyW+aG7xhsSyiLt6jGvLHe+5WyMODg6eacWF3sf/UStBGevn/1xug sKq9QClh1Hg6lpWVvBkcDbBg5mFoS17yFwPqaA4XP2UUDzlWQ03HjO0gIFukPr6h K1CYslZOjUBY4pQGby9glGO8EQjoK4gxkWxsGEnSBwkjOCfx5eoDa+1TUHdymCNy XXXOKTmuCwjIHjVRUhZag7pq2d7ZP0HiEI2VA4TRI3SzifT+7S1mTAwFf4CDx1eW u/tiFDg37NTkC2fk3lvrQ+uTYUVwJ3LwhlXY2c2WcqRZNwDhHKl1fQNkox6eR6H2 Ks7ST8zoWx7bnkD9/8fCOSJDqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkMIpzs Jb54BtSbeJonCTO1dxiCMB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJBNC80N0U5MjY4NjY4RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZI bEx0a1VkRkNnY2hBQWdZZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAplgw3w/DOy7FazsMeQT9wKQyOkDEMF/LIf+fwqsDBeTFtsJybGBYI ShgXXNj69kT/1Q60NQhgPmdaOzfEJ0QWWLlq3MGHyAuvP7yizpGjlbr0eP3EQaaP jqIE/t6BYeoK387Xt/1pCAaula877EcBKb7wvFFQtjnwpAxbK917lMpusEM7mbiV qjBprBXGp6G2idVQqilsHcMNGOsLN8VcsbHBn/jsOlgIc9/wPqLZpcCQTXVV3OFY hN47UP9gT5FGSBab9ygT8BAg5U83IMazIvWR9bDjr3b1tNPJ1SQ383862IGuw/58 4oISmNOkT0PUcrR+ODqxxAshRALMiptg -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:30 2025 by rpki-client on console.sobornost.net