$ rpki-client -vvf rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft File: 2QhrDfk0LcKwkbrobLd5_GJZvXs.mft (raw, json) Hash identifier: pPdDVnyr8aPyBxgcFJfGxq3Y51bQTEBs4z5ng6UDLbI= Subject key identifier: 31:9A:0B:28:35:D0:9E:E8:AF:C6:2E:CD:80:D3:69:AA:BC:35:E1:85 Authority key identifier: D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B Certificate issuer: /CN=A914F2EC/serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Certificate serial: 3486 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft Manifest number: 347D Signing time: Mon 28 Apr 2025 15:05:48 +0000 Manifest this update: Mon 28 Apr 2025 15:05:48 +0000 Manifest next update: Mon 05 May 2025 15:05:48 +0000 Files and hashes: 1: 2QhrDfk0LcKwkbrobLd5_GJZvXs.crl (hash: V92H5lD38oTM7F1dmt1nGt4CjVq6YFrDRrLOmiq3DyE=) 2: 588BD7269A1211E8B97A623AC4F9AE02.roa (hash: KKbAooYir9kiM+kQeIhamjhStk+gbSQk/A73xTUucXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13446 (0x3486) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F2EC, serialNumber=D9086B0DF9342DC2B091BAE86CB779FC6259BD7B Validity Not Before: Apr 28 15:05:48 2025 GMT Not After : May 5 15:05:48 2025 GMT Subject: CN=680f994c-c8bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:95:a2:c1:e1:7a:af:bb:a3:9a:eb:31:8a:e5: 6e:02:83:ad:4c:98:43:47:0b:44:2e:28:e6:4c:0b: a1:e6:e5:31:e4:f1:40:af:79:be:c1:cd:2a:2a:5b: 96:67:37:5f:4c:ce:a8:d3:81:fe:54:5d:af:f9:58: 2f:11:ed:fe:82:b1:a2:14:bb:31:78:ac:c7:16:89: 93:e2:5b:55:23:88:4a:d7:d6:8f:85:18:cd:6e:c9: 99:a1:5a:d3:1e:8b:20:60:b9:e7:2a:cf:28:f5:05: 32:cd:23:9a:f1:0b:38:6f:68:6a:b5:03:85:c8:b2: e0:85:c2:3c:22:1d:df:49:c8:25:9e:65:1c:cb:8a: b4:38:6f:c6:bc:1c:72:cd:32:d5:e8:10:36:8b:5f: df:cf:87:ca:50:18:5d:17:91:ff:fb:e4:58:62:59: a4:32:e5:47:d2:4c:80:c8:d7:e9:4f:82:fe:5c:d0: eb:03:bf:b6:55:d6:2c:f1:63:a8:b9:d7:74:d3:c8: 20:6d:cd:c9:ea:cb:98:cd:29:f5:dd:08:37:df:95: b7:22:25:1e:fd:df:2f:56:09:0b:9e:cc:1c:95:50: 53:72:21:33:c2:60:a1:76:65:70:12:ef:a1:52:b3: 12:18:a4:a6:ae:88:d2:cc:52:4d:95:b1:fd:5b:13: 51:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:9A:0B:28:35:D0:9E:E8:AF:C6:2E:CD:80:D3:69:AA:BC:35:E1:85 X509v3 Authority Key Identifier: keyid:D9:08:6B:0D:F9:34:2D:C2:B0:91:BA:E8:6C:B7:79:FC:62:59:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhrDfk0LcKwkbrobLd5_GJZvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F2EC/D58A226C1D9C11E29BC3B28B08B02CD2/2QhrDfk0LcKwkbrobLd5_GJZvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:94:b9:bb:07:d0:b0:d3:c4:3f:e7:58:ac:b7:8d:bd:e8:ea: bd:28:ae:c1:16:00:21:94:4b:61:5e:7f:21:86:b9:eb:83:aa: eb:94:61:ea:35:01:10:76:80:52:3d:41:a9:42:4e:89:fd:ee: bd:f2:80:87:82:e1:fc:9d:0e:19:b9:bb:5c:b8:40:dc:3d:8d: 3f:13:0a:b9:e8:2e:72:4a:f9:c3:9a:8d:9c:d4:6f:18:bd:60: 52:7d:0b:fe:ee:13:de:2f:12:ea:1c:57:c7:6f:94:18:af:fc: fa:c6:04:24:e7:09:d0:f5:a9:3c:f6:75:c6:13:9e:e1:5e:c9: c0:3a:bc:2b:2c:34:2c:16:2e:76:5c:58:c9:bb:40:d3:14:fd: 01:d0:a1:d6:e6:4b:15:ad:75:26:4a:a5:77:c6:0d:c4:49:cc: 1f:70:47:9f:5f:4e:99:c2:34:3a:ec:f4:e7:9e:e5:62:09:25: b3:1a:0b:39:89:26:8d:85:63:66:b2:6f:e9:94:a6:4b:2f:a7: 6c:cf:6a:fc:6f:5d:2e:d8:69:c8:0b:01:bb:32:3b:f8:81:bd: 0c:08:5a:d7:6a:9b:ec:f0:97:e3:5f:49:b7:b2:3f:0f:9f:ca: c9:8d:61:28:bd:fa:73:ff:66:98:ef:35:71:3b:a3:d9:a3:8b: c6:3e:bb:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyRUMxMTAvBgNVBAUTKEQ5MDg2QjBERjkzNDJEQzJCMDkxQkFFODZDQjc3OUZD NjI1OUJEN0IwHhcNMjUwNDI4MTUwNTQ4WhcNMjUwNTA1MTUwNTQ4WjAYMRYwFAYD VQQDEw02ODBmOTk0Yy1jOGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJWiweF6r7ujmusxiuVuAoOtTJhDRwtELijmTAuh5uUx5PFAr3m+wc0qKluW ZzdfTM6o04H+VF2v+VgvEe3+grGiFLsxeKzHFomT4ltVI4hK19aPhRjNbsmZoVrT HosgYLnnKs8o9QUyzSOa8Qs4b2hqtQOFyLLghcI8Ih3fScglnmUcy4q0OG/GvBxy zTLV6BA2i1/fz4fKUBhdF5H/++RYYlmkMuVH0kyAyNfpT4L+XNDrA7+2VdYs8WOo udd008ggbc3J6suYzSn13Qg335W3IiUe/d8vVgkLnswclVBTciEzwmChdmVwEu+h UrMSGKSmrojSzFJNlbH9WxNR7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGaCyg1 0J7or8YuzYDTaaq8NeGFMB8GA1UdIwQYMBaAFNkIaw35NC3CsJG66Gy3efxiWb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjJFQy9ENThBMjI2QzFE OUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExjS3drYnJvYkxkNV9HSlp2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaHJEZmswTGNLd2ticm9iTGQ1X0dKWnZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjJFQy9ENThBMjI2QzFEOUMxMUUyOUJDM0IyOEIwOEIwMkNEMi8yUWhyRGZrMExj S3drYnJvYkxkNV9HSlp2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/lLm7B9Cw08Q/51ist4296Oq9KK7BFgAhlEthXn8hhrnrg6rrlGHq NQEQdoBSPUGpQk6J/e698oCHguH8nQ4ZubtcuEDcPY0/Ewq56C5ySvnDmo2c1G8Y vWBSfQv+7hPeLxLqHFfHb5QYr/z6xgQk5wnQ9ak89nXGE57hXsnAOrwrLDQsFi52 XFjJu0DTFP0B0KHW5ksVrXUmSqV3xg3EScwfcEefX06ZwjQ67PTnnuViCSWzGgs5 iSaNhWNmsm/plKZLL6dsz2r8b10u2GnICwG7Mjv4gb0MCFrXapvs8JfjX0m3sj8P n8rJjWEovfpz/2aY7zVxO6PZo4vGPruj -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:52 2025 by rpki-client on console.sobornost.net