$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft File: sCeV0uCeOqo-NtK1ktLg6fu3770.mft (raw, json) Hash identifier: T1rcr3unol+iVqvZ2hh6g174BCBRNsApHDxwUJ8HizE= Subject key identifier: A1:BE:E8:53:B3:A6:DD:A7:51:AD:05:DB:A5:AE:E3:E1:15:21:DA:B8 Authority key identifier: B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD Certificate issuer: /CN=A914E0FE/serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Certificate serial: 52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft Manifest number: 51 Signing time: Sun 27 Apr 2025 06:06:14 +0000 Manifest this update: Sun 27 Apr 2025 06:06:14 +0000 Manifest next update: Sun 04 May 2025 06:06:14 +0000 Files and hashes: 1: sCeV0uCeOqo-NtK1ktLg6fu3770.crl (hash: zETLIyVjUfWBgKOr1k5tCCoJh4ZA+nb1bbIyKyrpYjo=) 2: FF3178EAB14B11EFB6CD146AC4F9AE02.roa (hash: KPgMUtF2z6om6dSm7+mB/ufWiwTV8TpJVcH2+or0fgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Validity Not Before: Apr 27 06:06:14 2025 GMT Not After : May 4 06:06:14 2025 GMT Subject: CN=680dc956-e5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f5:3a:59:69:13:69:18:50:fe:dc:20:34:91: 86:d1:06:aa:b8:c3:0f:f5:e1:a1:02:11:83:b0:47: aa:c8:7d:28:e1:06:e8:91:24:d1:0b:c1:90:47:b4: 02:80:2b:93:1b:19:89:38:fa:78:6f:cf:cf:ab:5d: a4:aa:bf:c3:00:98:16:19:8c:a6:ed:25:cc:78:dd: af:a3:7c:6a:93:6a:30:af:f8:97:0d:be:78:6d:cf: 10:7b:8d:5a:5a:ab:82:46:12:ea:16:c2:a1:0a:49: 0a:09:7d:d2:13:1e:63:ad:be:a7:0a:23:6d:14:f7: e4:a0:f0:d7:26:2a:c9:2b:e6:cc:07:cb:0b:5a:8b: 0d:ab:f3:61:01:ed:5e:36:50:42:84:99:31:47:2b: f7:8f:2b:5d:d4:71:15:24:52:5f:bc:e0:6b:7b:ce: d4:9f:72:45:6b:1c:73:37:aa:df:99:bd:fb:fe:98: b7:8b:d0:cc:a0:7e:d3:9a:4e:8d:61:f3:91:1a:71: 22:02:a2:f0:c8:be:3f:a1:73:98:2d:9b:31:f5:fb: db:cc:ed:90:2b:02:6a:38:87:de:bb:b7:51:0e:be: 3e:01:fe:e2:6b:85:68:6a:9a:4c:79:a9:73:49:aa: 30:f7:45:1f:c6:0e:fd:35:d6:e5:b5:5a:04:ae:d6: 96:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BE:E8:53:B3:A6:DD:A7:51:AD:05:DB:A5:AE:E3:E1:15:21:DA:B8 X509v3 Authority Key Identifier: keyid:B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c3:39:d1:c1:59:4f:11:20:d5:3b:a0:dc:6f:36:2c:3a:93: 3b:4f:5c:ef:0d:ae:f3:3a:c1:5e:41:b3:3f:40:f4:fe:46:96: 29:02:66:71:08:4a:68:f4:3b:de:f7:73:2f:07:b4:22:0f:93: e1:ea:7f:dc:f0:13:f8:87:3d:48:74:b6:a5:cf:a8:30:cb:65: cf:98:9f:b9:88:b1:75:7c:14:b3:e2:ee:c7:b9:88:c2:fb:01: 73:b7:fa:f7:b7:7c:f6:fb:5e:00:13:ea:9f:86:99:3a:e4:0e: 88:4e:76:0d:aa:de:88:17:a3:15:6e:be:89:5e:56:55:cb:fe: e8:7e:f9:35:e4:1a:cc:b7:75:3e:7a:a6:65:d2:5d:ff:b4:e9: d4:83:9d:b6:3c:1d:06:6e:1e:6f:e7:f5:50:d8:56:64:cc:1d: e1:5b:67:79:6c:29:a0:73:8b:00:f6:fb:c3:50:97:e1:b2:b8: f0:34:56:1c:f6:ad:6e:3b:f6:be:9d:ed:3d:ea:7e:39:b1:11: 78:c2:01:2e:c7:93:50:1d:46:e4:b0:20:85:a4:01:85:f3:97: 47:f5:62:83:df:4c:a1:6e:60:32:35:5e:c3:6b:05:60:66:ed: b6:3b:34:57:59:4a:49:e4:13:4d:a9:1f:8e:6b:09:7e:9d:bb: 8d:5a:11:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoQjAyNzk1RDJFMDlFM0FBQTNFMzZEMkI1OTJEMkUwRTlG QkI3RUZCRDAeFw0yNTA0MjcwNjA2MTRaFw0yNTA1MDQwNjA2MTRaMBgxFjAUBgNV BAMTDTY4MGRjOTU2LWU1ZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDw9TpZaRNpGFD+3CA0kYbRBqq4ww/14aECEYOwR6rIfSjhBuiRJNELwZBHtAKA K5MbGYk4+nhvz8+rXaSqv8MAmBYZjKbtJcx43a+jfGqTajCv+JcNvnhtzxB7jVpa q4JGEuoWwqEKSQoJfdITHmOtvqcKI20U9+Sg8NcmKskr5swHywtaiw2r82EB7V42 UEKEmTFHK/ePK13UcRUkUl+84Gt7ztSfckVrHHM3qt+Zvfv+mLeL0MygftOaTo1h 85EacSICovDIvj+hc5gtmzH1+9vM7ZArAmo4h967t1EOvj4B/uJrhWhqmkx5qXNJ qjD3RR/GDv011uW1WgSu1pb/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUob7oU7Om 3adRrQXbpa7j4RUh2rgwHwYDVR0jBBgwFoAUsCeV0uCeOqo+NtK1ktLg6fu3770w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzM3MzM0QkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3FvLU50SzFrdExnNmZ1Mzc3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0NlVjB1Q2VPcW8tTnRLMWt0TGc2ZnUzNzcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEZFLzM3MzM0QkUyQUJDQTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3Fv LU50SzFrdExnNmZ1Mzc3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHrDOdHBWU8RINU7oNxvNiw6kztPXO8NrvM6wV5Bsz9A9P5GlikCZnEI Smj0O973cy8HtCIPk+Hqf9zwE/iHPUh0tqXPqDDLZc+Yn7mIsXV8FLPi7se5iML7 AXO3+ve3fPb7XgAT6p+GmTrkDohOdg2q3ogXoxVuvoleVlXL/uh++TXkGsy3dT56 pmXSXf+06dSDnbY8HQZuHm/n9VDYVmTMHeFbZ3lsKaBziwD2+8NQl+GyuPA0Vhz2 rW479r6d7T3qfjmxEXjCAS7Hk1AdRuSwIIWkAYXzl0f1YoPfTKFuYDI1XsNrBWBm 7bY7NFdZSknkE02pH45rCX6du41aEcI= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:44 2025 by rpki-client on console.sobornost.net