$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: gGmsuXHcqYQ/QQFWLpue4gvS0Kw390uKVSgrmHscvD8= Subject key identifier: AD:90:08:B4:4E:F0:2D:21:CF:62:36:F8:0D:76:B5:A5:F7:4E:F3:7E Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 079A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 0798 Signing time: Sat 26 Apr 2025 20:57:22 +0000 Manifest this update: Sat 26 Apr 2025 20:57:21 +0000 Manifest next update: Sat 03 May 2025 20:57:21 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: 3l2gu7vB4p7VaYoe0LmoCD/+ZqyKwEAFB+2TzvyEehg=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: 5hdkZ5DddWFl8kbLYaaqhPZLjdFJcDk309blXMyKcbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Apr 26 20:57:21 2025 GMT Not After : May 3 20:57:21 2025 GMT Subject: CN=680d48b1-76dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f1:3d:86:ea:fa:c2:93:40:8e:53:f2:ec:5a: 26:32:81:38:bc:b6:1b:9a:31:c5:f1:c2:c3:75:dc: f6:fb:c0:2c:e8:3e:68:08:ce:06:30:f2:cb:76:8a: 6a:b6:2b:a8:16:63:18:7f:bd:e7:c6:6b:83:0a:08: b2:30:51:04:25:24:da:2f:44:37:60:39:ac:c7:14: d5:ca:85:55:62:e1:76:dd:63:c4:8c:14:ea:41:c8: 22:d8:ea:e6:73:b7:f6:9f:91:ac:93:95:71:c6:62: be:d6:44:24:a8:f9:cc:73:84:9a:be:49:94:2c:8b: 1c:ab:27:3b:8a:e8:17:5a:93:96:99:e4:ae:1c:ca: ee:bd:24:33:68:d2:0b:f0:52:f5:2c:f2:21:63:06: 24:cf:57:64:25:4c:8b:4f:4c:6a:03:88:77:89:a8: b6:27:9d:dc:b5:03:ce:24:e4:b4:e7:3e:00:40:b6: 18:28:39:c4:a4:6c:da:1a:95:76:48:8c:5f:25:12: 15:58:f7:c0:7f:ec:83:b1:d3:80:b4:1b:fd:db:3b: 3e:9b:1e:6b:7a:c5:64:7d:32:d8:a7:9d:ad:1d:b0: 20:5d:86:9e:6b:05:c6:81:aa:eb:de:ea:1c:7c:21: 02:f6:9f:ba:35:b1:2e:88:7e:24:c4:b6:63:04:4a: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:90:08:B4:4E:F0:2D:21:CF:62:36:F8:0D:76:B5:A5:F7:4E:F3:7E X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:93:8f:5b:72:65:1b:ac:d2:ad:72:fd:55:ca:bc:0f:35:76: 68:ba:2d:33:82:41:cb:a8:15:97:82:2f:31:31:5d:e4:f9:42: 82:b3:72:b0:07:75:80:4e:b2:08:8d:ce:b4:66:04:5a:9e:ea: 34:99:08:81:5b:5f:b6:18:c8:ae:0d:58:20:59:0c:2d:06:33: 96:a7:47:40:02:da:b7:ac:19:d3:f1:11:d9:2c:ca:0f:6a:be: fd:7e:41:3e:d0:9a:8b:75:f6:70:e2:88:a0:8e:f5:f7:a5:a9: d9:fc:cc:6c:09:4b:5d:26:4b:e2:b6:db:cf:4f:30:60:f5:7c: b8:8f:d1:90:45:e9:18:a2:ae:d5:70:62:ab:d7:c0:5b:ac:9b: 5a:b9:7c:e4:ba:40:09:4d:c8:a0:e1:3a:1b:5a:3d:f5:b6:8b: 90:d1:11:42:1c:87:f7:aa:1c:36:31:8f:20:eb:b1:d7:f8:1b: 36:7e:90:2e:78:64:62:fb:da:bc:1d:b2:84:d2:19:08:4c:66: f8:5f:e4:8c:f9:c4:0a:d8:ad:6a:bb:89:c9:09:93:e2:bc:ce: db:59:44:8c:f9:8f:c0:b0:60:f7:39:94:6d:63:18:db:73:e9: 07:1c:98:ad:a8:93:f2:0e:d0:ec:11:d3:4a:a5:0d:9a:81:d3: ab:7b:e1:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUwNDI2MjA1NzIxWhcNMjUwNTAzMjA1NzIxWjAYMRYwFAYD VQQDEw02ODBkNDhiMS03NmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/E9hur6wpNAjlPy7FomMoE4vLYbmjHF8cLDddz2+8As6D5oCM4GMPLLdopq tiuoFmMYf73nxmuDCgiyMFEEJSTaL0Q3YDmsxxTVyoVVYuF23WPEjBTqQcgi2Orm c7f2n5Gsk5VxxmK+1kQkqPnMc4SavkmULIscqyc7iugXWpOWmeSuHMruvSQzaNIL 8FL1LPIhYwYkz1dkJUyLT0xqA4h3iai2J53ctQPOJOS05z4AQLYYKDnEpGzaGpV2 SIxfJRIVWPfAf+yDsdOAtBv92zs+mx5resVkfTLYp52tHbAgXYaeawXGgarr3uoc fCEC9p+6NbEuiH4kxLZjBEp9WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2QCLRO 8C0hz2I2+A12taX3TvN+MB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuk49bcmUbrNKtcv1VyrwPNXZoui0zgkHLqBWXgi8xMV3k+UKCs3Kw B3WATrIIjc60ZgRanuo0mQiBW1+2GMiuDVggWQwtBjOWp0dAAtq3rBnT8RHZLMoP ar79fkE+0JqLdfZw4oigjvX3panZ/MxsCUtdJkvittvPTzBg9Xy4j9GQRekYoq7V cGKr18BbrJtauXzkukAJTcig4TobWj31touQ0RFCHIf3qhw2MY8g67HX+Bs2fpAu eGRi+9q8HbKE0hkITGb4X+SM+cQK2K1qu4nJCZPivM7bWUSM+Y/AsGD3OZRtYxjb c+kHHJitqJPyDtDsEdNKpQ2agdOre+ES -----END CERTIFICATE-----Generated at Sun Apr 27 00:13:58 2025 by rpki-client on console.sobornost.net