$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft File: STXJCZ1YAoESreyiiRQ1_MWPuiw.mft (raw, json) Hash identifier: ueJ6RWDhvogROK7sQp4SqfJhq+z7KQr+DEo3fLKOmM4= Subject key identifier: C8:F0:68:D9:D5:B1:A5:E1:28:F7:EC:3E:EF:E6:EF:7F:2F:DE:AE:69 Authority key identifier: 49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C Certificate issuer: /CN=A9142E1E/serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft Manifest number: 6D Signing time: Sun 27 Apr 2025 05:43:57 +0000 Manifest this update: Sun 27 Apr 2025 05:43:57 +0000 Manifest next update: Sun 04 May 2025 05:43:57 +0000 Files and hashes: 1: STXJCZ1YAoESreyiiRQ1_MWPuiw.crl (hash: J8uyf7+WddRugL6KgYc0qYTbcdhEJ9sXa9b8pLpZvV4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=4935C9099D58028112ADECA2891435FCC58FBA2C Validity Not Before: Apr 27 05:43:57 2025 GMT Not After : May 4 05:43:57 2025 GMT Subject: CN=680dc41d-4355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:42:63:4b:53:78:34:4c:17:ee:18:1a:cf:94: ed:d0:55:ff:a2:42:ad:cf:7c:f3:e7:e3:a4:9c:4b: d1:17:c4:65:e4:72:1e:b2:60:5e:aa:13:87:17:a7: 41:b5:f3:e5:0d:06:34:65:3e:80:7a:a5:12:f7:c1: 4c:77:81:78:5f:a4:46:6e:4d:06:bc:1e:ef:46:ec: a4:d3:bc:20:b2:b3:6f:d3:58:d3:d3:b3:c5:90:5c: 5d:21:c6:6c:53:1c:de:f9:b7:c9:dd:f4:89:89:86: 5e:ab:11:b9:bc:c4:9e:23:e4:4b:53:14:42:66:af: ea:1d:31:9f:9e:7a:48:f2:45:3d:d3:ac:b3:c7:f1: 7d:03:8c:6c:11:ab:bc:52:fe:c7:e4:50:4f:4d:bb: 78:6b:40:47:6d:19:f9:bc:4f:bd:57:fa:8f:94:1d: 0d:18:2e:88:10:f0:71:74:5e:0c:37:f6:26:60:62: 4a:94:0d:0f:5f:dc:16:c2:0b:34:8d:50:f4:a3:43: 2a:fa:75:a7:c3:b7:d7:7f:92:8a:87:12:1d:1a:6d: 18:0b:88:d9:ac:ef:87:ba:a6:ec:16:24:90:51:64: c6:0d:d6:8d:da:21:af:87:2b:60:64:92:20:3b:75: ce:cb:5f:7d:57:e4:3d:36:8f:d7:c4:e4:27:9b:69: be:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F0:68:D9:D5:B1:A5:E1:28:F7:EC:3E:EF:E6:EF:7F:2F:DE:AE:69 X509v3 Authority Key Identifier: keyid:49:35:C9:09:9D:58:02:81:12:AD:EC:A2:89:14:35:FC:C5:8F:BA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STXJCZ1YAoESreyiiRQ1_MWPuiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/1C7CDF68824211EFAD3D8181C4F9AE02/STXJCZ1YAoESreyiiRQ1_MWPuiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:9a:0e:6b:7b:dc:97:52:1f:2f:ba:fd:8d:c5:b5:8f:63:2a: 0d:61:33:c4:20:56:68:72:f9:8f:24:3f:74:71:10:e3:48:e6: 9e:98:c5:ce:ca:5f:73:c6:4d:1e:0f:17:99:8f:d9:02:1c:46: 64:37:6f:1e:8b:2b:f3:9d:a3:bb:a0:fc:e8:5e:ad:db:29:ff: 85:bb:f8:a8:0f:a5:2d:f0:e9:6f:7c:ef:26:7b:55:12:83:48: b7:f2:79:da:23:da:92:56:bf:2b:c1:31:ab:1d:5f:0d:7e:a0: b6:1c:69:56:cc:55:f9:6b:3f:82:4d:0c:91:b0:9b:f0:b1:11: 14:3a:10:a9:30:21:0e:f3:32:5f:d0:32:a9:d4:ec:42:f8:2b: b2:a6:c1:c0:3b:38:26:ae:6a:ea:b6:29:fe:6c:e7:1d:85:1b: a8:68:c9:cd:8f:7e:bb:2f:46:24:5f:75:c8:5f:2b:94:b1:24: ee:e4:c3:71:9f:51:ac:6e:b4:d1:de:79:c6:53:a1:5f:98:06: 42:b6:3a:6d:b0:63:37:a9:4a:b5:1a:fa:0f:0b:e2:54:90:bd: 27:2b:c2:5c:3e:e1:c1:55:05:98:1e:0d:30:b4:7d:df:1a:ef: 89:d4:07:e7:c6:f1:5a:cb:30:c5:b5:51:ef:94:71:af:a3:d7: d6:cd:08:03 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoNDkzNUM5MDk5RDU4MDI4MTEyQURFQ0EyODkxNDM1RkND NThGQkEyQzAeFw0yNTA0MjcwNTQzNTdaFw0yNTA1MDQwNTQzNTdaMBgxFjAUBgNV BAMTDTY4MGRjNDFkLTQzNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsQmNLU3g0TBfuGBrPlO3QVf+iQq3PfPPn46ScS9EXxGXkch6yYF6qE4cXp0G1 8+UNBjRlPoB6pRL3wUx3gXhfpEZuTQa8Hu9G7KTTvCCys2/TWNPTs8WQXF0hxmxT HN75t8nd9ImJhl6rEbm8xJ4j5EtTFEJmr+odMZ+eekjyRT3TrLPH8X0DjGwRq7xS /sfkUE9Nu3hrQEdtGfm8T71X+o+UHQ0YLogQ8HF0Xgw39iZgYkqUDQ9f3BbCCzSN UPSjQyr6dafDt9d/koqHEh0abRgLiNms74e6puwWJJBRZMYN1o3aIa+HK2BkkiA7 dc7LX31X5D02j9fE5Cebab5xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyPBo2dWx peEo9+w+7+bvfy/ermkwHwYDVR0jBBgwFoAUSTXJCZ1YAoESreyiiRQ1/MWPuiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFLzFDN0NERjY4ODI0 MjExRUZBRDNEODE4MUM0RjlBRTAyL1NUWEpDWjFZQW9FU3JleWlpUlExX01XUHVp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1RYSkNaMVlBb0VTcmV5aWlSUTFfTVdQdWl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFLzFDN0NERjY4ODI0MjExRUZBRDNEODE4MUM0RjlBRTAyL1NUWEpDWjFZQW9F U3JleWlpUlExX01XUHVpdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWaDmt73JdSHy+6/Y3FtY9jKg1hM8QgVmhy+Y8kP3RxEONI5p6Yxc7K X3PGTR4PF5mP2QIcRmQ3bx6LK/Odo7ug/Oherdsp/4W7+KgPpS3w6W987yZ7VRKD SLfyedoj2pJWvyvBMasdXw1+oLYcaVbMVflrP4JNDJGwm/CxERQ6EKkwIQ7zMl/Q MqnU7EL4K7KmwcA7OCauauq2Kf5s5x2FG6hoyc2PfrsvRiRfdchfK5SxJO7kw3Gf UaxutNHeecZToV+YBkK2Om2wYzepSrUa+g8L4lSQvScrwlw+4cFVBZgeDTC0fd8a 74nUB+fG8VrLMMW1Ue+Uca+j19bNCAM= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net