$ rpki-client -vvf rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft File: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft (raw, json) Hash identifier: Pb24ifRxNmsOAWt5qTBl7d/mQgqcv/DhDlbj+dkkD3g= Subject key identifier: F6:1E:5E:B6:50:F9:01:F7:7B:DA:08:52:47:29:A9:F5:B2:AB:FB:F2 Authority key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 Certificate issuer: /CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Certificate serial: 0656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft Manifest number: 0650 Signing time: Sat 26 Apr 2025 22:10:04 +0000 Manifest this update: Sat 26 Apr 2025 22:10:04 +0000 Manifest next update: Sat 03 May 2025 22:10:04 +0000 Files and hashes: 1: 0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl (hash: zeA7KTSEHHihVst9U4wBVXuANS2zyd1nnIeKG6pUH3g=) 2: 436B3BEC822D11EBB19C1844C4F9AE02.roa (hash: aR8xqbFUFjm+ccG/d5FkPfm2CRqS0a29lHr1SXFGeCU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:10:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E215, serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Validity Not Before: Apr 26 22:10:04 2025 GMT Not After : May 3 22:10:04 2025 GMT Subject: CN=680d59bc-605e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:20:34:76:af:4d:6c:df:64:10:84:b8:4e:d1: db:f9:7d:62:94:49:a1:fb:a5:62:c4:b1:7f:4f:33: 94:af:d3:6f:a3:44:92:bd:f7:18:4e:9a:ea:3f:b3: ae:8b:31:71:75:66:f3:11:4d:86:2d:3a:17:5b:39: e4:38:4b:e1:cb:9d:66:cf:c0:cd:c9:06:aa:28:dc: a4:c7:2a:8c:bb:40:8f:29:2e:5e:e4:74:c5:bc:f7: 6e:49:ea:35:b0:a0:37:90:2a:bc:68:fa:c5:d8:31: b0:cf:a7:1a:3c:67:73:3d:2c:da:97:e0:27:e1:bd: 67:12:d3:78:c5:09:2c:9c:0f:b5:41:ee:97:c0:c9: ee:96:8d:f4:3e:08:6f:24:b8:d7:8d:b2:f4:2e:5e: 62:ad:77:95:b1:4c:0f:21:0c:0b:85:a4:1f:f7:70: da:f6:74:36:2f:dc:eb:99:6f:4d:5c:9a:ee:66:95: a3:5d:9d:33:9c:fd:22:16:25:f6:e0:47:10:73:67: dc:fd:1e:99:93:c0:39:41:53:36:15:a5:f6:39:ce: d9:c1:e0:8a:ed:11:c2:6d:df:31:07:a4:1c:8e:c5: a7:b9:38:1d:9b:09:1c:71:4e:3f:0b:7a:b1:37:16: 61:51:79:e0:1f:12:68:ea:c9:da:43:ca:be:66:2d: 76:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:1E:5E:B6:50:F9:01:F7:7B:DA:08:52:47:29:A9:F5:B2:AB:FB:F2 X509v3 Authority Key Identifier: keyid:D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:73:aa:20:f0:e3:0a:22:a3:91:86:df:44:4d:a8:3a:c7:a7: 98:90:7d:bd:55:c7:c1:e7:8b:01:78:03:d8:92:38:da:14:96: ad:89:62:20:d3:dd:61:27:e3:9e:10:4b:c0:40:ea:b5:fb:09: ef:a9:19:02:1c:4a:cf:6a:40:d9:0e:49:49:8b:ff:26:6f:fc: 2c:47:aa:c9:73:9c:8a:a0:b7:da:bc:ea:39:85:c4:01:46:d1: b6:72:fa:8d:13:2a:61:75:86:b7:4f:d6:45:f1:14:51:bf:77: dc:cc:97:08:93:84:58:24:5f:e2:6f:f8:5a:6d:bc:8d:7b:e5: a0:35:5f:08:43:9f:f9:fb:70:61:62:79:53:cc:94:d1:45:bf: d3:c8:25:0d:8e:46:c3:be:a3:ec:84:8b:03:01:97:c5:ba:c8: 3d:27:a5:a2:86:cd:f1:74:30:c1:60:17:7c:24:7b:5a:66:e5: a2:5f:f7:9a:69:22:88:7f:6b:5c:da:26:80:11:70:72:84:a4: b5:d0:aa:29:96:45:ac:8a:bd:dd:87:60:bf:b6:3d:00:5f:a5: ba:c9:07:0c:92:83:69:87:9d:5a:71:26:99:c2:28:83:43:24: 06:c1:83:ef:7f:3a:87:12:54:93:c7:5e:b2:b7:be:5b:5b:a4: 77:cf:fd:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyMTUxMTAvBgNVBAUTKEQyMEU1MkQwOUNFQkU2QjU3MDUwMzU4Q0EyOTMwRDg5 Mzk3NzI5MTEwHhcNMjUwNDI2MjIxMDA0WhcNMjUwNTAzMjIxMDA0WjAYMRYwFAYD VQQDEw02ODBkNTliYy02MDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlyA0dq9NbN9kEIS4TtHb+X1ilEmh+6VixLF/TzOUr9Nvo0SSvfcYTprqP7Ou izFxdWbzEU2GLToXWznkOEvhy51mz8DNyQaqKNykxyqMu0CPKS5e5HTFvPduSeo1 sKA3kCq8aPrF2DGwz6caPGdzPSzal+An4b1nEtN4xQksnA+1Qe6XwMnulo30Pghv JLjXjbL0Ll5irXeVsUwPIQwLhaQf93Da9nQ2L9zrmW9NXJruZpWjXZ0znP0iFiX2 4EcQc2fc/R6Zk8A5QVM2FaX2Oc7ZweCK7RHCbd8xB6QcjsWnuTgdmwkccU4/C3qx NxZhUXngHxJo6snaQ8q+Zi128QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYeXrZQ +QH3e9oIUkcpqfWyq/vyMB8GA1UdIwQYMBaAFNIOUtCc6+a1cFA1jKKTDYk5dykR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTIxNS85MjJEQkI5NDgy MkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVyVndVRFdNb3BNTmlUbDNL UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBnNVMwSnpyNXJWd1VEV01vcE1OaVRsM0tSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTIxNS85MjJEQkI5NDgyMkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVy VndVRFdNb3BNTmlUbDNLUkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNc6og8OMKIqORht9ETag6x6eYkH29VcfB54sBeAPYkjjaFJatiWIg 091hJ+OeEEvAQOq1+wnvqRkCHErPakDZDklJi/8mb/wsR6rJc5yKoLfavOo5hcQB RtG2cvqNEyphdYa3T9ZF8RRRv3fczJcIk4RYJF/ib/habbyNe+WgNV8IQ5/5+3Bh YnlTzJTRRb/TyCUNjkbDvqPshIsDAZfFusg9J6Wihs3xdDDBYBd8JHtaZuWiX/ea aSKIf2tc2iaAEXByhKS10KoplkWsir3dh2C/tj0AX6W6yQcMkoNph51acSaZwiiD QyQGwYPvfzqHElSTx16yt75bW6R3z/3V -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:43 2025 by rpki-client on console.sobornost.net