$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.mft File: cNLQaRmVfGqmdxz1Xblvx-_niaA.mft (raw, json) Hash identifier: T7ZNo+fWp70VMXnYsuFsXF8yCrXrpi0wjL6vmfEOUpQ= Subject key identifier: 92:59:4D:C7:EA:72:BC:3D:D4:7A:C9:AF:6F:F4:9A:1A:1D:3A:8D:9B Authority key identifier: 70:D2:D0:69:19:95:7C:6A:A6:77:1C:F5:5D:B9:6F:C7:EF:E7:89:A0 Certificate issuer: /CN=A9148B19/serialNumber=70D2D06919957C6AA6771CF55DB96FC7EFE789A0 Certificate serial: 03CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNLQaRmVfGqmdxz1Xblvx-_niaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.mft Manifest number: 03C3 Signing time: Sun 27 Apr 2025 00:18:11 +0000 Manifest this update: Sun 27 Apr 2025 00:18:11 +0000 Manifest next update: Sun 04 May 2025 00:18:11 +0000 Files and hashes: 1: cNLQaRmVfGqmdxz1Xblvx-_niaA.crl (hash: TlHbdZHLE+pme6B/POMjApGf5iljwQ4f2dZyEnYSf9I=) 2: 5E6AFDFC855A11ECA39EB244C4F9AE02.roa (hash: adNJYD8ddR86Y2y0YjrK71PiHKfM9/CpER0jXjblQGI=) 3: 93A5581E549211EFB6D69465C4F9AE02.roa (hash: /XKYDQbxV7RTuAFLQ60S0WHAEqIIW0Ex8kIJdQHSD/g=) 4: 927AA46C549211EFB6D69465C4F9AE02.roa (hash: gGjbQrgM08otmBBevw5wvzpRfB5KnX1ffhZnJEh71ug=) 5: 92F68C4E549211EFB6D69465C4F9AE02.roa (hash: sY83/cQy3tzz5zdxbwkdhze9u62EpJ6EfapgidWQ+QI=) 6: 920D7BD0549211EFB6D69465C4F9AE02.roa (hash: aK64LFa4M0NMRqfKHBnnSKArLKJYhxOJFHjuf4xjW94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.crl rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNLQaRmVfGqmdxz1Xblvx-_niaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B19, serialNumber=70D2D06919957C6AA6771CF55DB96FC7EFE789A0 Validity Not Before: Apr 27 00:18:11 2025 GMT Not After : May 4 00:18:11 2025 GMT Subject: CN=680d77c3-a33f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c8:e8:61:85:6f:a7:af:78:b0:48:1d:37:00: cc:f3:a0:10:b8:36:0d:58:b1:74:2c:d1:15:98:5c: 12:5f:7a:db:d2:cf:14:a7:62:3e:ad:c9:f2:2d:86: a0:1b:65:6a:bc:92:77:43:82:e3:38:fc:20:ee:cf: 6f:7c:1d:eb:d8:54:3c:0d:98:92:59:73:ee:08:dd: d1:6d:e0:d7:41:09:84:61:a6:67:aa:e1:0d:a9:ea: 8e:68:92:be:5e:68:be:84:44:01:e6:5e:93:4f:c9: 7c:a1:52:b4:16:4e:76:67:94:64:85:b3:7c:c6:63: 31:aa:12:9a:20:71:50:03:af:5e:6f:73:4e:b9:51: 6d:4f:70:88:99:90:fe:78:40:72:f0:f4:5b:f1:a3: da:dc:25:b2:7c:bc:a8:c8:74:29:d4:42:89:bc:d2: 4d:c8:2f:f8:42:68:65:b0:d8:fb:65:0e:7d:a9:13: 99:72:a1:2a:46:b0:40:ee:6b:7b:b6:ab:6c:9d:65: 69:a5:3d:ea:5b:93:c2:57:91:e9:74:cf:66:59:98: 9d:5d:be:5f:cc:71:77:28:ba:66:ff:3a:68:a0:df: e8:82:f9:97:84:41:dc:ca:54:61:e7:ab:04:02:15: df:6d:0d:d3:ed:5a:7d:f8:30:d1:6e:a3:c3:8b:d2: 25:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:59:4D:C7:EA:72:BC:3D:D4:7A:C9:AF:6F:F4:9A:1A:1D:3A:8D:9B X509v3 Authority Key Identifier: keyid:70:D2:D0:69:19:95:7C:6A:A6:77:1C:F5:5D:B9:6F:C7:EF:E7:89:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNLQaRmVfGqmdxz1Xblvx-_niaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:aa:bf:bc:fa:12:fa:d5:e9:7d:f6:97:a2:df:34:c5:da:c1: a5:95:0c:23:9f:22:19:02:23:2a:3f:df:6b:cb:a4:87:09:c4: 4d:fd:fd:69:ac:0d:c5:20:09:16:50:d3:69:35:2e:6a:82:b1: cb:bd:bc:0a:6d:6c:60:a7:0e:b2:57:c4:5f:98:75:2e:aa:f4: ab:4f:7b:12:4e:99:9c:f4:81:a5:63:94:47:2e:6c:a0:57:76: ba:71:87:84:39:fa:35:7e:e4:ca:31:66:3d:d6:ba:53:cc:e0: 01:ec:12:61:78:ae:74:61:ee:b3:27:8b:a6:28:d0:e0:45:98: 49:a8:e3:b2:52:ef:15:41:24:21:83:d3:01:fb:c4:fc:91:94: 51:9b:53:b4:9d:8f:7e:5d:3a:83:ca:2a:77:56:d9:09:22:2d: 38:cc:d3:cd:3f:0d:09:c2:6e:d3:6f:63:d7:b5:a1:d7:31:8b: e9:43:80:de:12:4d:14:91:92:80:e8:f7:64:9c:51:8a:01:9a: 96:8f:10:d5:a4:94:c7:eb:e0:61:31:2c:f3:0a:38:24:d7:f0: d7:5d:e6:57:43:65:ae:aa:e6:2b:fd:d9:60:d5:32:31:dd:a8: cd:57:15:3e:77:04:39:24:73:04:0c:fd:ef:9e:4a:95:10:17: 9c:01:53:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCMTkxMTAvBgNVBAUTKDcwRDJEMDY5MTk5NTdDNkFBNjc3MUNGNTVEQjk2RkM3 RUZFNzg5QTAwHhcNMjUwNDI3MDAxODExWhcNMjUwNTA0MDAxODExWjAYMRYwFAYD VQQDEw02ODBkNzdjMy1hMzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsjoYYVvp694sEgdNwDM86AQuDYNWLF0LNEVmFwSX3rb0s8Up2I+rcnyLYag G2VqvJJ3Q4LjOPwg7s9vfB3r2FQ8DZiSWXPuCN3RbeDXQQmEYaZnquENqeqOaJK+ Xmi+hEQB5l6TT8l8oVK0Fk52Z5RkhbN8xmMxqhKaIHFQA69eb3NOuVFtT3CImZD+ eEBy8PRb8aPa3CWyfLyoyHQp1EKJvNJNyC/4QmhlsNj7ZQ59qROZcqEqRrBA7mt7 tqtsnWVppT3qW5PCV5HpdM9mWZidXb5fzHF3KLpm/zpooN/ogvmXhEHcylRh56sE AhXfbQ3T7Vp9+DDRbqPDi9IlsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJJZTcfq crw91HrJr2/0mhodOo2bMB8GA1UdIwQYMBaAFHDS0GkZlXxqpncc9V25b8fv54mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEIxOS8xMTAzMEFGNDg1 NTYxMUVDOUFCODJFMjFDNEY5QUUwMi9jTkxRYVJtVmZHcW1keHoxWGJsdngtX25p YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOTFFhUm1WZkdxbWR4ejFYYmx2eC1fbmlhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEIxOS8xMTAzMEFGNDg1NTYxMUVDOUFCODJFMjFDNEY5QUUwMi9jTkxRYVJtVmZH cW1keHoxWGJsdngtX25pYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzqr+8+hL61el99pei3zTF2sGllQwjnyIZAiMqP99ry6SHCcRN/f1p rA3FIAkWUNNpNS5qgrHLvbwKbWxgpw6yV8RfmHUuqvSrT3sSTpmc9IGlY5RHLmyg V3a6cYeEOfo1fuTKMWY91rpTzOAB7BJheK50Ye6zJ4umKNDgRZhJqOOyUu8VQSQh g9MB+8T8kZRRm1O0nY9+XTqDyip3VtkJIi04zNPNPw0Jwm7Tb2PXtaHXMYvpQ4De Ek0UkZKA6PdknFGKAZqWjxDVpJTH6+BhMSzzCjgk1/DXXeZXQ2WuquYr/dlg1TIx 3ajNVxU+dwQ5JHMEDP3vnkqVEBecAVOP -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:40 2025 by rpki-client on console.sobornost.net