$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: S94sfgnLPR/of7YhSUDAAdPtSn/oop74xKjot9vJ5UA= Subject key identifier: FC:D7:A1:3A:92:8B:06:20:2E:51:71:6B:36:9B:66:D6:86:4D:B8:3B Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 05B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 05AD Signing time: Sat 26 Apr 2025 22:49:19 +0000 Manifest this update: Sat 26 Apr 2025 22:49:18 +0000 Manifest next update: Sat 03 May 2025 22:49:18 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: Lc7a27rdFJkoyAIKla9LWOA4BJvLInf9UQv+TmmnVI0=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: 3Rc3j+d1O8Ewr6XgYdHpoNd/omQ6+BrlDickanhKcdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1463 (0x5b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Apr 26 22:49:18 2025 GMT Not After : May 3 22:49:18 2025 GMT Subject: CN=680d62ee-611b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:18:18:fd:42:4c:8c:c6:ad:86:b5:df:4a: 48:7e:4d:f7:37:30:62:18:3f:29:39:ac:c3:92:a3: 4b:8a:05:df:1b:18:18:43:f8:06:11:cd:b7:d2:5e: 27:29:c6:34:83:ad:79:06:df:8c:a4:cc:33:99:ed: d9:12:ac:f3:a8:d7:9b:e4:18:d2:1f:df:a0:a5:9a: 60:37:fe:75:4b:1c:56:28:be:f3:8a:66:c6:4f:58: 87:a5:61:bd:0e:5b:2c:68:67:c9:9e:c9:01:b2:7c: 9c:df:c8:6c:08:82:a0:b9:1a:d3:5f:61:66:88:c0: 49:a6:47:2f:73:e9:29:bb:77:8c:f6:76:5f:d0:34: 68:c1:b2:76:8c:4c:4e:56:ae:9a:3d:df:c0:f9:28: 9d:32:a5:54:33:02:6f:f7:62:17:27:aa:dd:94:79: 53:60:b2:9b:fe:4a:42:a4:1b:2b:00:f8:b8:e6:03: 1b:c4:ac:65:e7:b6:34:a7:fb:56:fa:6c:df:4c:e8: 8f:41:a7:93:5a:4e:56:ec:6d:6b:92:a6:c9:1c:9c: 36:4c:2b:a1:74:6c:04:b2:14:20:53:21:7c:f4:a7: 4b:af:cb:63:7c:48:ca:49:40:bc:1d:50:2a:c4:73: 8a:39:53:e8:95:0a:37:c4:0c:2d:b7:34:6e:14:ca: 5f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D7:A1:3A:92:8B:06:20:2E:51:71:6B:36:9B:66:D6:86:4D:B8:3B X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:a4:46:fe:67:53:58:b7:41:c2:71:f0:77:c2:27:f0:68:21: c9:3b:9f:49:90:76:26:eb:f6:ce:bd:10:60:46:97:39:54:09: 83:9a:f3:7b:c4:0f:c1:9b:4b:21:c3:04:c2:31:74:98:12:81: cf:b6:50:21:a6:6a:f4:c7:aa:8b:1d:d4:c3:22:ab:29:9d:5e: 37:a4:c0:47:de:f8:61:94:6d:48:41:81:e9:4c:74:04:b8:9b: 03:7f:40:21:56:b3:db:72:5f:5b:b6:1b:36:90:2e:1a:ab:fd: fd:ca:98:fd:cd:9b:a9:0a:d0:3a:97:38:49:d0:79:ee:1c:72: a8:07:a2:38:77:47:e8:1e:69:3c:82:32:58:73:72:cf:4b:05: 6a:ad:9b:85:29:72:e6:f3:56:15:92:df:9c:07:79:ea:f7:bd: 00:18:04:eb:5f:49:19:e7:97:65:4d:54:bc:72:3d:10:71:99: 50:1f:dd:19:5d:7e:24:c5:6e:f6:dd:19:6c:34:0a:5c:46:1c: aa:b2:6a:87:5b:f2:67:d2:5e:1f:29:ba:bd:22:95:f4:0f:9d: e2:92:5a:15:ae:75:13:a4:cf:d8:ed:0e:ae:eb:66:7f:77:c9: 53:ca:bf:6f:d3:5e:81:92:7e:91:c2:27:7c:ff:9c:18:4d:18: bf:1d:4a:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUwNDI2MjI0OTE4WhcNMjUwNTAzMjI0OTE4WjAYMRYwFAYD VQQDEw02ODBkNjJlZS02MTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXgYGP1CTIzGrYa130pIfk33NzBiGD8pOazDkqNLigXfGxgYQ/gGEc230l4n KcY0g615Bt+MpMwzme3ZEqzzqNeb5BjSH9+gpZpgN/51SxxWKL7zimbGT1iHpWG9 DlssaGfJnskBsnyc38hsCIKguRrTX2FmiMBJpkcvc+kpu3eM9nZf0DRowbJ2jExO Vq6aPd/A+SidMqVUMwJv92IXJ6rdlHlTYLKb/kpCpBsrAPi45gMbxKxl57Y0p/tW +mzfTOiPQaeTWk5W7G1rkqbJHJw2TCuhdGwEshQgUyF89KdLr8tjfEjKSUC8HVAq xHOKOVPolQo3xAwttzRuFMpfyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzXoTqS iwYgLlFxazabZtaGTbg7MB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCypEb+Z1NYt0HCcfB3wifwaCHJO59JkHYm6/bOvRBgRpc5VAmDmvN7 xA/Bm0shwwTCMXSYEoHPtlAhpmr0x6qLHdTDIqspnV43pMBH3vhhlG1IQYHpTHQE uJsDf0AhVrPbcl9bths2kC4aq/39ypj9zZupCtA6lzhJ0HnuHHKoB6I4d0foHmk8 gjJYc3LPSwVqrZuFKXLm81YVkt+cB3nq970AGATrX0kZ55dlTVS8cj0QcZlQH90Z XX4kxW723RlsNApcRhyqsmqHW/Jn0l4fKbq9IpX0D53ikloVrnUTpM/Y7Q6u62Z/ d8lTyr9v016Bkn6Rwid8/5wYTRi/HUqp -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:38 2025 by rpki-client on console.sobornost.net