$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: WBjThntfB+CBhEsAuOQL19x5pHEoMIyy0fgPO3kjfEw= Subject key identifier: 2D:58:D3:0E:08:7B:96:0B:04:CA:39:A0:24:23:92:BE:04:F6:37:A5 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C02 Signing time: Mon 28 Apr 2025 19:07:22 +0000 Manifest this update: Mon 28 Apr 2025 19:07:22 +0000 Manifest next update: Mon 05 May 2025 19:07:22 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: myolNx1oadDfa6iAZkaNc2nKQdio+qvHLZyBDknJito=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: 140E693613BF11ECA64D821AC4F9AE02.roa (hash: BLN1lKtFOEI4I4kMREMJqKNdevJbMvO6FDfATzwYDjw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Apr 28 19:07:22 2025 GMT Not After : May 5 19:07:22 2025 GMT Subject: CN=680fd1ea-b8b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:76:d1:eb:ff:29:0f:4f:a5:8c:cc:e4:9b:3a: 42:7f:96:82:59:6d:9d:dd:cd:f9:1e:95:ef:00:d6: d2:12:0a:ba:41:61:b2:71:6f:20:01:82:25:a0:5f: ce:d5:68:f8:b9:d0:df:d9:08:f0:c4:81:74:15:84: d1:28:2b:2c:ba:f5:62:aa:e4:ce:69:ae:85:96:7e: 1a:81:ac:ef:fb:56:62:79:b5:af:d1:a7:07:40:69: bb:87:03:f2:57:7f:a5:58:7f:8f:96:a8:71:69:ef: ca:53:19:2c:2f:f6:2f:cd:ad:48:24:29:cd:57:12: 9c:31:de:e8:c9:5a:4f:02:63:64:cc:63:bc:b3:f8: 8d:d5:9d:93:5e:1b:b9:65:11:7d:38:bf:1e:af:48: dc:8c:90:9e:8e:40:31:e4:14:dc:9b:7e:c8:29:e8: a8:6d:85:21:96:21:b7:23:93:f2:9b:c5:5f:e6:bd: 14:1b:51:50:e1:c8:8a:13:6d:09:bf:fe:ed:f1:f1: 61:22:82:62:ef:c3:ce:dd:f0:71:34:7e:21:e4:f6: 79:6b:50:69:bb:12:0b:33:ff:1a:81:23:30:70:44: b2:fd:f6:7c:37:b6:97:b4:2c:bb:48:44:9c:d2:78: 5e:d3:a7:47:74:97:36:03:5b:78:db:ef:32:c1:f4: b0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:58:D3:0E:08:7B:96:0B:04:CA:39:A0:24:23:92:BE:04:F6:37:A5 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f4:19:3e:fd:4b:f9:98:c5:2d:9b:ff:36:d2:ac:ab:8d:54: 69:da:15:cb:84:3c:4e:d2:f4:de:0b:e4:92:58:ef:ca:11:e0: da:a8:a4:5d:de:5a:e5:83:6b:61:84:40:b9:50:4a:bc:13:07: bf:fc:c6:34:ff:a9:3c:2d:92:bc:bf:8f:32:80:90:7e:e3:8e: 18:4a:a3:92:e9:25:9c:fe:d3:c1:10:c6:55:1e:83:eb:6c:6e: 90:8a:11:a3:1c:c4:08:3a:2c:cf:5f:49:da:82:f7:9f:56:a5: 93:53:a8:a1:41:89:17:5d:33:1f:a6:49:34:8f:43:38:2c:0f: 41:95:b3:97:d0:3a:a3:1c:3f:37:04:de:07:d9:1f:a5:e2:f9: 10:b9:25:f2:e4:0c:24:57:a1:93:41:ca:d2:90:ca:2e:d3:a0: 9f:21:ae:87:7a:fa:d3:09:0e:c4:51:20:99:89:e9:37:2f:0c: 24:9c:61:4b:80:e7:c9:0e:cb:98:51:4b:0e:82:b2:ca:01:a7: f1:c0:dc:65:94:1c:2d:3a:6c:6a:e5:65:54:99:f4:a9:88:e8: 30:3d:51:5d:82:58:59:58:d7:a9:05:6e:5e:60:20:5e:5a:50: 58:29:ff:9b:23:92:be:56:14:7c:fe:5d:8f:27:df:a0:52:a8: 84:41:79:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwNDI4MTkwNzIyWhcNMjUwNTA1MTkwNzIyWjAYMRYwFAYD VQQDEw02ODBmZDFlYS1iOGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnbR6/8pD0+ljMzkmzpCf5aCWW2d3c35HpXvANbSEgq6QWGycW8gAYIloF/O 1Wj4udDf2QjwxIF0FYTRKCssuvViquTOaa6Fln4agazv+1ZiebWv0acHQGm7hwPy V3+lWH+Plqhxae/KUxksL/Yvza1IJCnNVxKcMd7oyVpPAmNkzGO8s/iN1Z2TXhu5 ZRF9OL8er0jcjJCejkAx5BTcm37IKeiobYUhliG3I5Pym8Vf5r0UG1FQ4ciKE20J v/7t8fFhIoJi78PO3fBxNH4h5PZ5a1BpuxILM/8agSMwcESy/fZ8N7aXtCy7SESc 0nhe06dHdJc2A1t42+8ywfSwDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1Y0w4I e5YLBMo5oCQjkr4E9jelMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa9Bk+/Uv5mMUtm/820qyrjVRp2hXLhDxO0vTeC+SSWO/KEeDaqKRd 3lrlg2thhEC5UEq8Ewe//MY0/6k8LZK8v48ygJB+444YSqOS6SWc/tPBEMZVHoPr bG6QihGjHMQIOizPX0nagvefVqWTU6ihQYkXXTMfpkk0j0M4LA9BlbOX0DqjHD83 BN4H2R+l4vkQuSXy5AwkV6GTQcrSkMou06CfIa6HevrTCQ7EUSCZiek3LwwknGFL gOfJDsuYUUsOgrLKAafxwNxllBwtOmxq5WVUmfSpiOgwPVFdglhZWNepBW5eYCBe WlBYKf+bI5K+VhR8/l2PJ9+gUqiEQXm8 -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:08 2025 by rpki-client on console.sobornost.net