$ rpki-client -vvf rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft File: N2EhKhZwpXGatx-iA7kuxobyEXc.mft (raw, json) Hash identifier: oOD85dmQGCBC73+2pa5OnqJhWw6gIN7DHAL+w6XX+BM= Subject key identifier: C8:E1:48:7E:16:AC:B4:B1:30:D6:32:71:BB:C2:DD:AF:97:39:CC:AE Authority key identifier: 37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 Certificate issuer: /CN=A9142037/serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft Manifest number: 2C Signing time: Sun 27 Apr 2025 06:31:49 +0000 Manifest this update: Sun 27 Apr 2025 06:31:48 +0000 Manifest next update: Sun 04 May 2025 06:31:48 +0000 Files and hashes: 1: N2EhKhZwpXGatx-iA7kuxobyEXc.crl (hash: KRLghzJ1EdCYcSsyJepMeoPI3kiH3GObrqWXXWDcd/A=) 2: 191B6DA2E41811EF8E3F233AC4F9AE02.roa (hash: vcq+JOCdxjFG1D5wGuVH3+pI9poPc4zyyjKKMXsqhWE=) 3: FAEA8E38E41911EFA96DA35FC4F9AE02.roa (hash: RxRZ1dH5JkRHUJw1N/ksvTcKPSxp60O8KTnJFH3sluU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142037, serialNumber=3761212A1670A5719AB71FA203B92EC686F21177 Validity Not Before: Apr 27 06:31:48 2025 GMT Not After : May 4 06:31:48 2025 GMT Subject: CN=680dcf54-eb5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3c:ca:b1:2f:08:37:fa:aa:69:b7:35:52:43: 40:ca:aa:7a:f9:28:8e:52:42:4c:c3:08:07:e3:ef: 47:87:d9:1a:83:df:cc:01:1a:0a:8d:08:7b:2d:b3: 27:96:9a:57:c5:d1:f0:1c:9a:00:1a:62:e4:b8:5f: d7:67:e6:55:bf:60:c9:4b:ae:7a:ac:0f:9a:b9:d3: c9:3f:c8:51:ab:4f:7c:c1:04:45:bd:52:4b:a7:e8: 66:77:c4:7f:72:99:f8:7b:5a:09:21:9d:04:22:41: 48:74:93:6d:47:40:41:e0:16:9c:29:32:d8:98:8d: 46:db:f3:da:87:ea:1e:79:15:9a:5e:0e:13:5b:2e: fb:29:7d:58:67:bb:81:7c:bb:6f:ec:eb:f5:3e:a5: e6:d8:eb:69:94:ae:b6:31:1a:a3:01:91:7d:10:e7: 7e:59:a3:56:5a:71:31:93:b2:18:c9:f1:55:df:ce: 06:19:6f:b5:75:07:a2:a3:c0:f9:b6:ff:7c:9b:86: 7d:c5:1b:a2:10:9c:fe:7b:99:09:09:25:88:01:d2: a4:a6:8d:d9:b2:70:1e:89:83:9b:60:1e:2e:f5:14: 01:19:02:54:a1:e7:e4:8e:ac:37:ea:fa:28:b1:08: 84:c4:94:76:d8:87:74:84:e0:30:02:61:26:8e:44: 5c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E1:48:7E:16:AC:B4:B1:30:D6:32:71:BB:C2:DD:AF:97:39:CC:AE X509v3 Authority Key Identifier: keyid:37:61:21:2A:16:70:A5:71:9A:B7:1F:A2:03:B9:2E:C6:86:F2:11:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N2EhKhZwpXGatx-iA7kuxobyEXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142037/5C05C0C8E41711EF96E2FF38C4F9AE02/N2EhKhZwpXGatx-iA7kuxobyEXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:56:66:93:e1:76:72:cc:ca:57:93:ce:a4:b9:88:83:30:41: fa:69:95:e2:fd:20:70:da:ca:fa:ae:b9:5e:62:e0:fd:3c:33: 8e:e3:69:e4:02:ac:1a:09:34:9f:ab:00:81:9d:c5:01:f9:1b: 05:fd:f3:78:77:0e:15:1f:82:f4:4f:4d:d6:37:30:a0:fa:88: cb:a1:49:b6:44:f6:2f:74:19:a3:70:d0:10:df:61:1d:3c:55: 73:90:16:aa:70:29:93:f9:8a:dd:4f:18:3e:83:bd:56:ea:6a: 84:3b:bc:ec:36:cc:b8:94:21:6d:96:d1:77:f3:67:3c:2b:3c: 1f:10:bf:80:be:9b:0f:e5:fd:8e:f2:8d:39:2d:19:fb:90:a0: 76:0b:fc:1d:61:07:5d:09:ca:7e:99:2a:36:0a:96:d4:16:1b: 21:06:1f:81:a2:f0:79:3e:34:75:e7:1b:e6:bb:0d:77:cf:03: 75:39:42:f3:ff:40:e4:4d:41:6e:e8:d6:78:f5:20:59:83:f7: 77:42:01:f2:61:17:bd:0c:a2:1c:6e:8e:45:9b:89:57:cd:bf: 8c:a1:d9:79:9c:85:0d:b1:50:26:fb:dc:f1:51:eb:aa:e5:3e: 17:50:6e:b5:54:a9:5f:ef:fe:67:d0:36:f1:73:0d:cd:b2:27: 2d:0e:28:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjAzNzExMC8GA1UEBRMoMzc2MTIxMkExNjcwQTU3MTlBQjcxRkEyMDNCOTJFQzY4 NkYyMTE3NzAeFw0yNTA0MjcwNjMxNDhaFw0yNTA1MDQwNjMxNDhaMBgxFjAUBgNV BAMTDTY4MGRjZjU0LWViNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgPMqxLwg3+qpptzVSQ0DKqnr5KI5SQkzDCAfj70eH2RqD38wBGgqNCHstsyeW mlfF0fAcmgAaYuS4X9dn5lW/YMlLrnqsD5q508k/yFGrT3zBBEW9Ukun6GZ3xH9y mfh7WgkhnQQiQUh0k21HQEHgFpwpMtiYjUbb89qH6h55FZpeDhNbLvspfVhnu4F8 u2/s6/U+pebY62mUrrYxGqMBkX0Q535Zo1ZacTGTshjJ8VXfzgYZb7V1B6KjwPm2 /3ybhn3FG6IQnP57mQkJJYgB0qSmjdmycB6Jg5tgHi71FAEZAlSh5+SOrDfq+iix CITElHbYh3SE4DACYSaORFzTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyOFIfhas tLEw1jJxu8Ldr5c5zK4wHwYDVR0jBBgwFoAUN2EhKhZwpXGatx+iA7kuxobyEXcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyMDM3LzVDMDVDMEM4RTQx NzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhHYXR4LWlBN2t1eG9ieUVY Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjJFaEtoWndwWEdhdHgtaUE3a3V4b2J5RVhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy MDM3LzVDMDVDMEM4RTQxNzExRUY5NkUyRkYzOEM0RjlBRTAyL04yRWhLaFp3cFhH YXR4LWlBN2t1eG9ieUVYYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAABWZpPhdnLMyleTzqS5iIMwQfppleL9IHDayvquuV5i4P08M47jaeQC rBoJNJ+rAIGdxQH5GwX983h3DhUfgvRPTdY3MKD6iMuhSbZE9i90GaNw0BDfYR08 VXOQFqpwKZP5it1PGD6DvVbqaoQ7vOw2zLiUIW2W0XfzZzwrPB8Qv4C+mw/l/Y7y jTktGfuQoHYL/B1hB10Jyn6ZKjYKltQWGyEGH4Gi8Hk+NHXnG+a7DXfPA3U5QvP/ QORNQW7o1nj1IFmD93dCAfJhF70MohxujkWbiVfNv4yh2XmchQ2xUCb73PFR66rl PhdQbrVUqV/v/mfQNvFzDc2yJy0OKN4= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net