$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft File: 1NfdJccT56lVTPNS2TK_gNplLeQ.mft (raw, json) Hash identifier: Gf/sih7f+Rmlk3rg0ZWKoUVethFldK120Vk+HM+Rt4c= Subject key identifier: 4D:90:EC:87:2F:AB:C7:C7:86:88:32:8F:21:3E:36:B6:DC:09:92:0F Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 0894 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft Manifest number: 0879 Signing time: Thu 24 Apr 2025 20:31:30 +0000 Manifest this update: Thu 24 Apr 2025 20:31:30 +0000 Manifest next update: Thu 01 May 2025 20:31:30 +0000 Files and hashes: 1: 1NfdJccT56lVTPNS2TK_gNplLeQ.crl (hash: TkOrROM/wfqoBItGMxGXSVkJkSuVRZwY7tDQ2Pa2+Po=) 2: 53224C1ADDA311ECA6964F20C4F9AE02.roa (hash: MbDPgGu0QclVT9FsJP5AAT1eEmuh3d/Dz6sn+R/b6KM=) 3: F7968CA6C01411EA912AC365C4F9AE02.roa (hash: cq2+wmybE1qpMjYmMXJ1sPoAauOtHlCzziVm+2eI9Iw=) 4: 5280D466DDA311ECA6964F20C4F9AE02.roa (hash: 82RI8awYpynCWEC9v44MXxvIjgMncGXtmCbSpuF8EGw=) 5: F814A546C01411EA912AC365C4F9AE02.roa (hash: 55QHl+d6Jc6Afsomh5duijKv8tF3LE8W2FzT9OQDDqI=) 6: C21DA992E83B11EBB3231D5EC4F9AE02.roa (hash: NQcAjbSAwzYhxeooFE30slWX1sySx4pom2WdezOetYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F, serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Apr 24 20:31:30 2025 GMT Not After : May 1 20:31:30 2025 GMT Subject: CN=680a9fa2-4aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:80:bb:12:83:72:93:90:3e:f9:b6:65:26: 2a:8c:11:ff:9c:b7:57:14:0b:9c:f9:85:9c:c9:2f: cf:96:fe:bb:12:3e:71:dc:3b:c7:18:6d:0e:34:06: 45:97:32:47:05:61:34:8b:f2:0b:02:f9:07:40:59: 97:4f:b2:26:d0:f6:3d:ea:29:97:4c:38:a7:22:1d: 46:21:76:7e:d0:b7:88:b0:ce:a4:75:e2:9d:76:97: f9:0d:d4:a6:bd:cb:fc:a3:dd:84:9c:1e:88:41:22: 29:da:1f:6e:18:34:b7:e3:8f:52:a7:04:fb:66:8f: 54:3a:80:27:52:f8:03:eb:e1:5d:99:63:32:65:93: c5:50:40:c9:57:ad:ce:09:b7:be:68:f4:82:14:f8: 5f:37:19:52:87:69:58:3b:60:e7:9f:db:30:96:58: 45:80:e5:dd:b2:eb:a9:8f:74:91:16:9f:a5:8e:7c: 54:bd:fa:da:9c:d9:3b:33:af:76:23:65:13:fc:8b: ac:b6:04:0a:07:77:83:29:91:50:fc:36:62:87:4b: d3:04:2a:e4:a8:95:e0:97:b9:7e:64:66:9f:62:39: af:11:af:2d:4e:3c:78:d4:28:eb:48:02:b9:23:7a: 27:b7:8b:e6:f3:1e:23:47:c4:c0:de:56:5b:77:c8: 98:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:90:EC:87:2F:AB:C7:C7:86:88:32:8F:21:3E:36:B6:DC:09:92:0F X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:c4:9b:b2:5f:20:27:85:a7:5d:ec:30:03:37:1e:61:c5:7f: 0e:44:01:0e:cb:9e:7d:c3:88:a9:9b:7a:32:be:05:82:2d:f1: 3c:a2:fa:b3:28:a4:b5:71:3f:6e:24:db:42:fd:27:d6:f0:94: 84:76:4b:c3:d1:46:d6:44:d4:b4:3b:d4:28:a6:55:5f:96:6e: a3:9a:2f:df:6a:26:9b:62:57:59:1e:6c:42:de:d3:78:7f:fc: b4:db:cc:fc:52:e9:d2:97:a2:40:48:01:36:0c:e1:4c:b4:92: d2:e6:8c:82:e3:c0:e3:7d:1e:0d:bf:c0:71:d7:7d:0a:3e:c0: c2:ab:fc:61:f6:b8:c6:96:42:53:fe:34:9b:bc:61:46:c5:38: 29:f8:d0:2d:82:09:10:bd:2b:65:fd:7c:5b:e1:cc:4b:31:04: ba:2d:6b:1c:c7:fb:c1:70:c1:fb:90:51:b0:d0:22:33:47:22: aa:34:9b:8d:39:47:21:4d:43:29:c5:6b:17:44:ca:4b:06:16: 8f:5f:15:05:88:9f:ec:86:bd:a1:60:93:3a:c1:78:17:36:64: 60:5c:39:38:f0:01:7d:87:9a:61:60:2e:44:4b:07:53:0a:05: 47:f8:9d:a2:05:d1:f4:ae:d4:9b:8c:a9:80:47:b8:f5:4a:11: a8:00:eb:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjUwNDI0MjAzMTMwWhcNMjUwNTAxMjAzMTMwWjAYMRYwFAYD VQQDEw02ODBhOWZhMi00YWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwheAuxKDcpOQPvm2ZSYqjBH/nLdXFAuc+YWcyS/Plv67Ej5x3DvHGG0ONAZF lzJHBWE0i/ILAvkHQFmXT7Im0PY96imXTDinIh1GIXZ+0LeIsM6kdeKddpf5DdSm vcv8o92EnB6IQSIp2h9uGDS3449SpwT7Zo9UOoAnUvgD6+FdmWMyZZPFUEDJV63O Cbe+aPSCFPhfNxlSh2lYO2Dnn9swllhFgOXdsuupj3SRFp+ljnxUvfranNk7M692 I2UT/IustgQKB3eDKZFQ/DZih0vTBCrkqJXgl7l+ZGafYjmvEa8tTjx41CjrSAK5 I3ont4vm8x4jR8TA3lZbd8iYJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2Q7Icv q8fHhogyjyE+NrbcCZIPMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTY0Ri8zQzlFMkI1Q0MwMTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2 bFZUUE5TMlRLX2dOcGxMZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKxJuyXyAnhadd7DADNx5hxX8ORAEOy559w4ipm3oyvgWCLfE8ovqz KKS1cT9uJNtC/SfW8JSEdkvD0UbWRNS0O9QoplVflm6jmi/faiabYldZHmxC3tN4 f/y028z8UunSl6JASAE2DOFMtJLS5oyC48DjfR4Nv8Bx130KPsDCq/xh9rjGlkJT /jSbvGFGxTgp+NAtggkQvStl/Xxb4cxLMQS6LWscx/vBcMH7kFGw0CIzRyKqNJuN OUchTUMpxWsXRMpLBhaPXxUFiJ/shr2hYJM6wXgXNmRgXDk48AF9h5phYC5ESwdT CgVH+J2iBdH0rtSbjKmAR7j1ShGoAOuJ -----END CERTIFICATE-----Generated at Fri Apr 25 00:08:21 2025 by rpki-client on console.sobornost.net