$ rpki-client -vvf rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.mft File: 4JyfckW5hJiukjOxmA17T0xzjQ8.mft (raw, json) Hash identifier: ha2kCeus7agpsjkTi2EgDWnRjgyT30FuiZriSfNEf9g= Subject key identifier: C4:00:27:09:1C:8E:97:8F:60:D0:5F:1A:D3:A7:F9:5A:EF:DF:31:BE Authority key identifier: E0:9C:9F:72:45:B9:84:98:AE:92:33:B1:98:0D:7B:4F:4C:73:8D:0F Certificate issuer: /CN=A914287F/serialNumber=E09C9F7245B98498AE9233B1980D7B4F4C738D0F Certificate serial: 0738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JyfckW5hJiukjOxmA17T0xzjQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.mft Manifest number: 0732 Signing time: Sat 26 Apr 2025 21:27:29 +0000 Manifest this update: Sat 26 Apr 2025 21:27:29 +0000 Manifest next update: Sat 03 May 2025 21:27:29 +0000 Files and hashes: 1: 4JyfckW5hJiukjOxmA17T0xzjQ8.crl (hash: 8B7p1Y0xS7a2EuVIT3Lt57FsKb536FxLxkYsalwfMtI=) 2: 45CED05E2D2511EBAA63DE82C4F9AE02.roa (hash: MMDW5GKNwb6UBpTQg+bN7/Wer/8y34uE+hwA4JCHhWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.crl rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JyfckW5hJiukjOxmA17T0xzjQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914287F, serialNumber=E09C9F7245B98498AE9233B1980D7B4F4C738D0F Validity Not Before: Apr 26 21:27:29 2025 GMT Not After : May 3 21:27:29 2025 GMT Subject: CN=680d4fc1-bd39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:ee:89:76:4c:16:50:8c:95:5b:21:e0:e6: e7:20:cf:6c:80:4a:b1:de:f1:e8:c0:d4:bc:1b:c8: 1c:b7:3d:48:f8:b7:d4:81:f7:dc:63:9c:44:03:a6: ee:fe:9d:7b:68:ac:8b:87:aa:f3:7c:08:18:71:cd: e6:c6:f1:08:e2:f9:d8:38:ab:5c:08:77:56:9e:b4: e3:61:30:8a:bc:72:4a:29:96:b0:57:9d:23:a3:c4: 27:01:2c:04:13:df:1c:f8:c8:a6:b5:36:07:f0:9c: 50:77:bd:80:1e:65:62:de:20:73:2c:e3:92:42:aa: 41:82:fd:87:1c:7c:70:82:22:c3:83:fe:be:99:e4: 2f:4b:cc:cc:09:3e:e4:80:fd:23:ac:cf:0e:94:0c: 7a:a8:e4:4d:da:27:15:0e:92:8e:4e:b5:3f:ce:e2: 29:78:f1:93:49:44:c1:e5:d1:10:d2:a1:c4:0e:b3: c0:42:df:fa:53:26:1f:35:34:c6:6b:d5:bc:70:90: a1:ac:a0:1f:9c:7f:0f:a6:21:ac:8d:b1:19:a8:a6: 27:a8:35:f3:4e:aa:a4:51:96:12:be:e1:0d:20:fd: cd:ac:1f:1b:22:2c:de:db:3f:37:5a:39:78:99:bf: 37:65:b2:e1:f4:c1:54:e6:17:36:dc:bf:55:b9:ef: d4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:00:27:09:1C:8E:97:8F:60:D0:5F:1A:D3:A7:F9:5A:EF:DF:31:BE X509v3 Authority Key Identifier: keyid:E0:9C:9F:72:45:B9:84:98:AE:92:33:B1:98:0D:7B:4F:4C:73:8D:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JyfckW5hJiukjOxmA17T0xzjQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914287F/64489EE02D2311EB91918480C4F9AE02/4JyfckW5hJiukjOxmA17T0xzjQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:ff:9c:ca:92:38:ba:de:39:75:af:0a:93:1b:92:1d:a3:d0: 03:6a:a8:f4:45:9d:9f:bf:9b:2f:de:10:13:77:d6:14:9f:9b: 79:27:a6:90:13:b9:8d:25:47:d7:3b:b7:92:56:8e:a3:94:54: 85:77:5c:04:ac:40:1d:20:d0:70:44:63:bc:54:2e:71:c0:9e: 05:81:7c:e4:d9:12:54:f2:84:37:18:97:c1:99:ec:30:c3:8c: 6d:94:c1:88:d7:3f:4b:d0:9b:63:62:e3:f2:81:6d:22:85:3b: 42:5e:91:7d:c6:38:15:e4:7c:d8:34:26:1b:7a:6f:b4:97:79: 5f:e5:bb:d1:55:59:5f:59:44:00:06:e3:ff:92:d7:b3:47:96: b7:c5:e7:65:e1:1f:a8:75:e2:f0:50:5b:c4:0d:57:8d:87:64: 2f:7b:41:4d:ba:94:cb:a8:5b:a0:87:c2:01:eb:3a:1b:9c:70: 44:53:38:f4:5b:88:2d:5a:95:3c:7d:96:28:ab:99:c8:37:03: fc:4c:8f:91:8d:88:d8:f5:36:d3:99:f2:45:a0:0d:40:8b:26: 13:3c:8a:d1:78:e2:cf:a7:36:4d:0a:df:28:2e:85:4b:2f:29: 40:f3:a0:04:09:3c:b0:35:f1:c6:eb:37:5e:4d:ac:73:96:80: f3:25:06:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI4N0YxMTAvBgNVBAUTKEUwOUM5RjcyNDVCOTg0OThBRTkyMzNCMTk4MEQ3QjRG NEM3MzhEMEYwHhcNMjUwNDI2MjEyNzI5WhcNMjUwNTAzMjEyNzI5WjAYMRYwFAYD VQQDEw02ODBkNGZjMS1iZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNvuiXZMFlCMlVsh4ObnIM9sgEqx3vHowNS8G8gctz1I+LfUgffcY5xEA6bu /p17aKyLh6rzfAgYcc3mxvEI4vnYOKtcCHdWnrTjYTCKvHJKKZawV50jo8QnASwE E98c+MimtTYH8JxQd72AHmVi3iBzLOOSQqpBgv2HHHxwgiLDg/6+meQvS8zMCT7k gP0jrM8OlAx6qORN2icVDpKOTrU/zuIpePGTSUTB5dEQ0qHEDrPAQt/6UyYfNTTG a9W8cJChrKAfnH8PpiGsjbEZqKYnqDXzTqqkUZYSvuENIP3NrB8bIize2z83Wjl4 mb83ZbLh9MFU5hc23L9Vue/UmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMQAJwkc jpePYNBfGtOn+Vrv3zG+MB8GA1UdIwQYMBaAFOCcn3JFuYSYrpIzsZgNe09Mc40P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjg3Ri82NDQ4OUVFMDJE MjMxMUVCOTE5MTg0ODBDNEY5QUUwMi80SnlmY2tXNWhKaXVrak94bUExN1QweHpq UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKeWZja1c1aEppdWtqT3htQTE3VDB4empROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Mjg3Ri82NDQ4OUVFMDJEMjMxMUVCOTE5MTg0ODBDNEY5QUUwMi80SnlmY2tXNWhK aXVrak94bUExN1QweHpqUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk/5zKkji63jl1rwqTG5Ido9ADaqj0RZ2fv5sv3hATd9YUn5t5J6aQ E7mNJUfXO7eSVo6jlFSFd1wErEAdINBwRGO8VC5xwJ4FgXzk2RJU8oQ3GJfBmeww w4xtlMGI1z9L0JtjYuPygW0ihTtCXpF9xjgV5HzYNCYbem+0l3lf5bvRVVlfWUQA BuP/ktezR5a3xedl4R+odeLwUFvEDVeNh2Qve0FNupTLqFugh8IB6zobnHBEUzj0 W4gtWpU8fZYoq5nINwP8TI+RjYjY9TbTmfJFoA1AiyYTPIrReOLPpzZNCt8oLoVL LylA86AECTywNfHG6zdeTaxzloDzJQYA -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:57 2025 by rpki-client on console.sobornost.net