$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: bFRwwvm6N3PUhTuZfSUvnvjOLO9RH8SwyosNjhXMapI= Subject key identifier: 9B:85:E4:CF:92:C5:4B:6C:CD:BD:C3:09:71:CC:49:20:95:54:DB:03 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 0335 Signing time: Sun 27 Apr 2025 00:43:39 +0000 Manifest this update: Sun 27 Apr 2025 00:43:38 +0000 Manifest next update: Sun 04 May 2025 00:43:38 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: ppx8dKGyaeZa0h4NYqNxqDfdKGXINCXRJzqeY9t3msA=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: M8EeCK4wseDGRAVaayv2SdcAD2UENUp0dQWvk3BdYlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Apr 27 00:43:38 2025 GMT Not After : May 4 00:43:38 2025 GMT Subject: CN=680d7dbb-2f11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:18:8a:b2:83:8a:da:63:76:cc:cf:4e:3d:e0: 32:6a:dd:39:93:00:7b:09:e6:bc:ef:2b:8f:98:97: 21:24:27:99:5e:22:a1:57:2d:6c:39:db:ba:a5:d5: f6:1b:61:cd:fd:7c:29:33:17:11:4b:fd:f6:1e:26: 36:17:be:a5:c5:68:cc:85:16:ca:62:91:e2:c4:fc: f0:89:ef:34:9a:1a:c6:c9:b0:26:ed:33:dd:01:7e: 90:61:fa:ec:96:8f:1b:2c:12:06:3a:44:87:86:ef: 6b:ce:49:1f:ac:90:4c:99:8f:1c:89:19:e4:40:cf: b8:a6:c8:94:4b:c9:e5:bc:46:59:96:ae:ce:e2:45: 19:11:4e:6d:23:d6:ef:5d:d6:6a:0d:c9:37:da:af: f8:3b:38:08:c3:cd:26:af:d8:da:72:67:f7:97:0a: 08:0e:67:5f:11:07:49:b8:1a:4d:1c:3d:e8:6a:a5: 4c:18:ad:3c:00:3a:91:72:f2:93:8c:d1:1c:4a:e4: c6:5f:a0:df:64:0b:d5:ba:01:ac:87:ae:31:47:fb: 0b:6d:ec:50:e2:56:56:82:2a:5b:49:f3:43:79:6a: 81:b7:7a:83:fd:de:9b:3b:10:a2:2d:9d:74:7b:1c: fe:47:00:5b:fa:d9:14:b2:a8:9a:82:58:09:ae:fd: 6e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:85:E4:CF:92:C5:4B:6C:CD:BD:C3:09:71:CC:49:20:95:54:DB:03 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4e:03:52:0f:06:a3:05:85:4d:56:0b:0e:0e:80:be:17:d9: 1f:1a:ba:13:01:7b:0f:54:01:14:1f:13:25:4d:cf:bc:89:36: 7a:e9:98:ba:97:8a:5e:e9:e6:73:2d:93:e8:88:4b:42:3c:ba: c1:be:e6:74:20:8e:c5:bf:77:66:74:60:3b:14:ad:c1:4a:8a: 9c:da:18:fe:f5:eb:a0:dd:b9:17:7a:cf:a8:59:1f:3f:67:23: af:1e:99:7b:73:f8:d3:0e:8e:e3:02:9c:d7:6e:c3:57:14:7d: e3:82:e7:8f:59:fe:24:80:d2:7e:ce:38:16:23:bf:55:64:2b: 97:bb:dc:e2:28:fc:71:04:5b:d8:66:68:21:26:bd:43:a3:1a: 28:35:db:86:be:d4:c5:7f:bb:cb:fa:36:10:54:af:24:fb:c3: e7:44:a2:f8:64:9a:27:8a:65:1c:a0:08:ac:70:bd:e4:0f:ef: 5a:77:17:45:0d:b9:b0:d7:b0:ca:a3:81:a5:58:11:8e:c6:c8: af:c8:2e:9e:8c:9c:d4:83:ed:0b:29:e7:84:a0:3b:5a:fa:65: 4e:5d:74:0d:d8:7c:eb:d5:4c:f9:97:6f:cb:b9:f7:6e:4e:1c: 90:48:5e:2d:5c:52:0d:3b:c0:15:95:16:ca:b0:ec:be:b9:cb: 19:bf:e9:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNDI3MDA0MzM4WhcNMjUwNTA0MDA0MzM4WjAYMRYwFAYD VQQDEw02ODBkN2RiYi0yZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRiKsoOK2mN2zM9OPeAyat05kwB7Cea87yuPmJchJCeZXiKhVy1sOdu6pdX2 G2HN/XwpMxcRS/32HiY2F76lxWjMhRbKYpHixPzwie80mhrGybAm7TPdAX6QYfrs lo8bLBIGOkSHhu9rzkkfrJBMmY8ciRnkQM+4psiUS8nlvEZZlq7O4kUZEU5tI9bv XdZqDck32q/4OzgIw80mr9jacmf3lwoIDmdfEQdJuBpNHD3oaqVMGK08ADqRcvKT jNEcSuTGX6DfZAvVugGsh64xR/sLbexQ4lZWgipbSfNDeWqBt3qD/d6bOxCiLZ10 exz+RwBb+tkUsqiaglgJrv1u6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuF5M+S xUtszb3DCXHMSSCVVNsDMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhTgNSDwajBYVNVgsODoC+F9kfGroTAXsPVAEUHxMlTc+8iTZ66Zi6 l4pe6eZzLZPoiEtCPLrBvuZ0II7Fv3dmdGA7FK3BSoqc2hj+9eug3bkXes+oWR8/ ZyOvHpl7c/jTDo7jApzXbsNXFH3jguePWf4kgNJ+zjgWI79VZCuXu9ziKPxxBFvY ZmghJr1DoxooNduGvtTFf7vL+jYQVK8k+8PnRKL4ZJonimUcoAiscL3kD+9adxdF Dbmw17DKo4GlWBGOxsivyC6ejJzUg+0LKeeEoDta+mVOXXQN2Hzr1Uz5l2/Lufdu ThyQSF4tXFINO8AVlRbKsOy+ucsZv+no -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:39 2025 by rpki-client on console.sobornost.net