$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft File: hPqw1oT6rxaVCqyjjm1lOszyWLw.mft (raw, json) Hash identifier: UyIYcoili++rHs8orC9OAgXfv4yBAU/LILdSqKGhePc= Subject key identifier: 8B:60:33:BA:F2:C7:ED:1A:72:82:B5:39:82:C9:03:C4:3B:C0:18:79 Authority key identifier: 84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC Certificate issuer: /CN=A914247C/serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft Manifest number: 0AF3 Signing time: Mon 28 Apr 2025 19:43:57 +0000 Manifest this update: Mon 28 Apr 2025 19:43:56 +0000 Manifest next update: Mon 05 May 2025 19:43:56 +0000 Files and hashes: 1: hPqw1oT6rxaVCqyjjm1lOszyWLw.crl (hash: 9/owyxcqtPApxK2CrXtjyfe6G0SZMFDTDfsJ2TeYMCg=) 2: E1AB1F92430F11EAA60DB885C4F9AE02.roa (hash: Y5ilqY3EX1YlNkwmQC54jat5s6RkhEqIyQvx25IhbvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.crl rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C, serialNumber=84FAB0D684FAAF16950AACA38E6D653ACCF258BC Validity Not Before: Apr 28 19:43:56 2025 GMT Not After : May 5 19:43:56 2025 GMT Subject: CN=680fda7d-f41f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:30:8e:b4:dc:0e:3a:c3:62:e7:d1:65:c9:e5: 1c:5e:14:cd:ec:83:86:d0:da:0b:9f:cd:01:77:1f: 0b:16:3b:e4:31:ba:fd:86:eb:f4:37:c9:df:b3:88: 56:35:3d:70:6c:cb:fd:03:c4:6e:e8:95:fd:a2:1a: 5f:75:06:5b:38:ae:a4:98:1e:66:22:c1:bb:53:39: e7:98:5c:a0:c2:f0:b5:23:ed:b1:3d:43:98:39:2e: 75:f4:d9:a6:2d:a7:81:e8:f7:f0:7b:e1:14:99:ce: 74:54:40:48:54:5d:6c:19:ee:af:45:86:48:b1:62: 2d:82:0d:45:b0:93:d0:5c:25:d5:10:02:f7:2c:8c: 3c:92:a5:2a:55:c6:6b:a2:a9:9d:d2:4e:d9:82:84: ae:61:9e:d8:ae:4f:79:97:89:60:5f:6f:66:fc:41: 59:48:76:e6:11:43:6f:cb:d9:b9:57:95:c0:6e:03: 2a:d6:83:62:b6:24:42:26:89:f9:2e:00:f6:ea:c3: 67:e6:52:25:1f:e3:b2:e0:3c:b4:74:de:d9:05:80: fa:53:5f:c6:84:09:49:88:26:5e:15:80:4f:70:15: 1e:ab:e8:96:ac:9d:fd:31:94:73:74:00:c9:59:53: bc:63:d7:f5:ea:0e:3f:0a:a8:e9:47:77:35:fe:52: 31:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:60:33:BA:F2:C7:ED:1A:72:82:B5:39:82:C9:03:C4:3B:C0:18:79 X509v3 Authority Key Identifier: keyid:84:FA:B0:D6:84:FA:AF:16:95:0A:AC:A3:8E:6D:65:3A:CC:F2:58:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hPqw1oT6rxaVCqyjjm1lOszyWLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/90F632DA430A11EA858CDC76C4F9AE02/hPqw1oT6rxaVCqyjjm1lOszyWLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:3e:d0:e5:1d:b4:1b:92:d5:2d:46:d1:56:25:c6:29:5c:45: 41:de:69:48:77:a4:54:a6:c9:70:30:fc:d1:a6:fa:7e:0e:e3: f3:15:f7:31:88:3e:29:fd:35:ca:91:c0:30:0f:b5:4f:a4:21: 98:f0:50:9c:99:66:78:cc:3b:77:23:f0:14:d9:b1:c9:41:c2: d5:09:17:a9:45:b5:2d:27:ff:02:c2:f9:d2:cd:69:e0:87:f4: 22:f3:88:92:c4:ed:fa:b5:3a:44:09:76:15:91:f3:9f:a2:fb: 19:34:12:8b:b1:76:d7:d6:cb:00:96:b7:d1:b1:a4:2b:e5:ad: ee:ec:b0:20:aa:64:ce:88:bf:41:26:4f:04:b5:cc:32:b1:00: 9c:fc:90:52:89:ac:4c:d3:05:ea:59:3e:96:df:f7:32:ae:c2: d4:61:ea:89:a6:d2:9d:1f:17:f1:bf:42:eb:77:0c:7f:a4:e7: e1:32:29:f7:b4:8c:ee:88:a8:c5:b6:ef:f6:41:e8:71:6a:ee: a7:95:ce:f6:2a:d0:ba:69:8b:b6:7d:45:3e:1e:3a:fb:72:fa: 23:73:72:5c:27:28:f9:09:e2:2f:69:7d:9f:5e:26:0f:3e:8d: f2:a3:67:2d:87:ec:1c:a0:e5:71:94:22:a7:3b:8a:11:4e:12: d9:81:8f:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKDg0RkFCMEQ2ODRGQUFGMTY5NTBBQUNBMzhFNkQ2NTNB Q0NGMjU4QkMwHhcNMjUwNDI4MTk0MzU2WhcNMjUwNTA1MTk0MzU2WjAYMRYwFAYD VQQDEw02ODBmZGE3ZC1mNDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnDCOtNwOOsNi59FlyeUcXhTN7IOG0NoLn80Bdx8LFjvkMbr9huv0N8nfs4hW NT1wbMv9A8Ru6JX9ohpfdQZbOK6kmB5mIsG7UznnmFygwvC1I+2xPUOYOS519Nmm LaeB6Pfwe+EUmc50VEBIVF1sGe6vRYZIsWItgg1FsJPQXCXVEAL3LIw8kqUqVcZr oqmd0k7ZgoSuYZ7Yrk95l4lgX29m/EFZSHbmEUNvy9m5V5XAbgMq1oNitiRCJon5 LgD26sNn5lIlH+Oy4Dy0dN7ZBYD6U1/GhAlJiCZeFYBPcBUeq+iWrJ39MZRzdADJ WVO8Y9f16g4/CqjpR3c1/lIxqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItgM7ry x+0acoK1OYLJA8Q7wBh5MB8GA1UdIwQYMBaAFIT6sNaE+q8WlQqso45tZTrM8li8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy85MEY2MzJEQTQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9UNnJ4YVZDcXlqam0xbE9zenlX THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hQcXcxb1Q2cnhhVkNxeWpqbTFsT3N6eVdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy85MEY2MzJEQTQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi9oUHF3MW9UNnJ4 YVZDcXlqam0xbE9zenlXTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjPtDlHbQbktUtRtFWJcYpXEVB3mlId6RUpslwMPzRpvp+DuPzFfcx iD4p/TXKkcAwD7VPpCGY8FCcmWZ4zDt3I/AU2bHJQcLVCRepRbUtJ/8CwvnSzWng h/Qi84iSxO36tTpECXYVkfOfovsZNBKLsXbX1ssAlrfRsaQr5a3u7LAgqmTOiL9B Jk8EtcwysQCc/JBSiaxM0wXqWT6W3/cyrsLUYeqJptKdHxfxv0Lrdwx/pOfhMin3 tIzuiKjFtu/2Qehxau6nlc72KtC6aYu2fUU+Hjr7cvojc3JcJyj5CeIvaX2fXiYP Po3yo2cth+wcoOVxlCKnO4oRThLZgY8d -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:05 2025 by rpki-client on console.sobornost.net