$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft File: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft (raw, json) Hash identifier: qep3CGrPFcX7SDU+k1ejL1b0gI9YnAUtqVxY4tNXjzU= Subject key identifier: 11:A0:81:4E:92:4C:01:98:51:35:97:B1:B2:72:F6:B3:9D:ED:06:67 Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft Manifest number: 44 Signing time: Sun 27 Apr 2025 06:15:09 +0000 Manifest this update: Sun 27 Apr 2025 06:15:09 +0000 Manifest next update: Sun 04 May 2025 06:15:09 +0000 Files and hashes: 1: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl (hash: NS/VYnV1EQgbr7SlnzOe8SaGSk2ynMRRhhzopZstJhw=) 2: AA14EED2BDE911EFB07EE682C4F9AE02.roa (hash: 8Lz3SihiRlFf9NOxeybLJutdQF61khJ8l8jmKMF421Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34, serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Validity Not Before: Apr 27 06:15:09 2025 GMT Not After : May 4 06:15:09 2025 GMT Subject: CN=680dcb6d-546e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4b:1e:2e:9a:9f:3e:ab:06:ec:d4:45:60:31: b3:bc:70:00:9d:ed:be:61:61:1a:f5:b1:1a:97:a9: b8:80:c4:d5:0b:d8:50:4e:34:96:60:0f:4e:ea:d2: 22:d1:bb:a7:d1:5c:86:89:fe:6e:18:f7:b7:64:f1: 66:5d:cf:3e:a5:c4:0e:d9:ec:32:fd:b1:19:04:64: 36:7a:a6:c1:7c:11:59:e6:74:9e:5e:6a:d6:a5:7c: 7e:da:03:69:4c:c1:50:ad:74:dc:91:b5:48:eb:2e: 6e:28:e9:e5:e8:c9:d2:3d:ed:b2:16:eb:45:f3:20: 29:7e:06:ca:9a:16:9b:4f:ca:76:c6:0b:43:6f:a0: 01:2e:8b:c5:07:a3:94:40:44:ac:d8:8d:53:15:e7: b2:89:34:d7:4a:46:92:e9:e4:7b:db:b7:28:3e:eb: 80:0b:83:f5:93:cd:57:0d:d4:e0:86:f7:85:e2:fe: 88:ab:80:ac:6e:e2:89:c8:41:05:aa:db:a2:2a:a3: 20:b9:c6:c8:bf:ae:d7:d8:54:fa:7e:b1:13:89:8f: 2f:40:9f:7c:42:8f:8f:9a:3f:c1:39:98:6b:0a:02: 40:c0:f0:1a:c9:e5:aa:70:41:d8:fe:49:48:e4:d2: 16:5b:6e:5d:81:0c:59:3d:1b:7b:32:6c:70:4c:c2: d7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A0:81:4E:92:4C:01:98:51:35:97:B1:B2:72:F6:B3:9D:ED:06:67 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:54:e5:d9:c3:ff:d8:b5:1a:64:0f:f2:9a:59:12:96:c3:75: 07:b6:07:74:fa:f2:35:a8:ff:98:9a:e0:63:23:58:82:30:ea: 56:d0:56:14:c4:3b:9c:d7:5d:93:5a:d7:95:bd:c9:a5:e7:b7: 26:91:c5:d7:31:f6:dc:57:6b:22:72:98:7a:49:9e:8d:c0:dc: 61:c8:62:b3:f8:78:83:91:14:57:bf:de:33:7b:c8:82:2c:93: da:c6:83:88:cf:58:6c:62:7f:96:95:7f:e9:63:0c:19:ac:b2: 60:c9:f6:ec:03:c2:1e:ee:c2:44:d7:27:e1:06:0a:34:4f:76: 65:85:01:12:72:3a:d5:38:f2:af:26:2c:9c:b6:6d:50:e6:f1: 79:28:bf:a7:f1:47:91:b6:1b:5f:6b:ab:92:1c:29:8a:c2:70: ff:df:9a:80:02:d1:da:c4:d4:c1:2b:f2:a1:1c:a6:0f:29:76: fe:bd:74:69:2d:30:18:4f:16:0c:48:0b:cb:36:5f:2f:bb:aa: b8:57:c7:7e:8f:10:01:b3:2c:12:55:d5:fd:bc:9b:b5:54:eb: 40:94:1c:c9:40:33:a8:3e:03:c2:00:4c:a3:64:b1:b3:41:51: 21:43:38:37:64:bc:ab:48:7c:fc:f0:42:59:89:92:ae:b6:61: 94:94:87:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEYzNDExMC8GA1UEBRMoNEIzMTA4QkM1NzU4ODQzRDYzREZGNkZDNjQwOTdGMkIx NjQ0Q0I4QTAeFw0yNTA0MjcwNjE1MDlaFw0yNTA1MDQwNjE1MDlaMBgxFjAUBgNV BAMTDTY4MGRjYjZkLTU0NmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoSx4ump8+qwbs1EVgMbO8cACd7b5hYRr1sRqXqbiAxNUL2FBONJZgD07q0iLR u6fRXIaJ/m4Y97dk8WZdzz6lxA7Z7DL9sRkEZDZ6psF8EVnmdJ5eatalfH7aA2lM wVCtdNyRtUjrLm4o6eXoydI97bIW60XzICl+BsqaFptPynbGC0NvoAEui8UHo5RA RKzYjVMV57KJNNdKRpLp5Hvbtyg+64ALg/WTzVcN1OCG94Xi/oirgKxu4onIQQWq 26IqoyC5xsi/rtfYVPp+sROJjy9An3xCj4+aP8E5mGsKAkDA8BrJ5apwQdj+SUjk 0hZbbl2BDFk9G3sybHBMwtcDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEaCBTpJM AZhRNZexsnL2s53tBmcwHwYDVR0jBBgwFoAUSzEIvFdYhD1j3/b8ZAl/KxZEy4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0RjM0LzREMjJFRUUwQkRF OTExRUZCRkQ1Mzg4MkM0RjlBRTAyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvU3pFSXZGZFloRDFqM19iOFpBbF9LeFpFeTRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 RjM0LzREMjJFRUUwQkRFOTExRUZCRkQ1Mzg4MkM0RjlBRTAyL1N6RUl2RmRZaEQx ajNfYjhaQWxfS3haRXk0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ5U5dnD/9i1GmQP8ppZEpbDdQe2B3T68jWo/5ia4GMjWIIw6lbQVhTE O5zXXZNa15W9yaXntyaRxdcx9txXayJymHpJno3A3GHIYrP4eIORFFe/3jN7yIIs k9rGg4jPWGxif5aVf+ljDBmssmDJ9uwDwh7uwkTXJ+EGCjRPdmWFARJyOtU48q8m LJy2bVDm8Xkov6fxR5G2G19rq5IcKYrCcP/fmoAC0drE1MEr8qEcpg8pdv69dGkt MBhPFgxIC8s2Xy+7qrhXx36PEAGzLBJV1f28m7VU60CUHMlAM6g+A8IATKNksbNB USFDODdkvKtIfPzwQlmJkq62YZSUh60= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net