$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: 5rQXpvoaU7CyAdQWQjtjBVetcLpCe5yaiEQoTBJhruQ= Subject key identifier: 5E:9D:A8:2C:91:CE:FB:D8:2D:22:43:4D:16:1E:E9:F4:BF:08:65:54 Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0DEE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0DD8 Signing time: Mon 28 Apr 2025 18:06:36 +0000 Manifest this update: Mon 28 Apr 2025 18:06:36 +0000 Manifest next update: Mon 05 May 2025 18:06:36 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: j6I8yKqVacxYIeuVHvfFL/LAbbJTsMJa8DE2SkBix+E=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: QoxSmZFkmxLXEXsdlg7AEo5bS3bmundbYECPlf6m84c=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: Hd+fGLIKcj2CGWAhoQMpGvllKlGgq3bRAKOqU9WwZus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3566 (0xdee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Apr 28 18:06:36 2025 GMT Not After : May 5 18:06:36 2025 GMT Subject: CN=680fc3ac-5d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:93:ab:7a:0b:75:28:56:7f:cc:e6:74:97:4f: 83:b7:fc:91:ab:3f:27:e1:06:46:a8:09:f0:68:45: 78:c2:88:c3:b9:d0:f5:2f:b9:bd:2f:1b:5b:9f:54: 16:26:21:28:3d:e3:7b:69:13:80:f2:9d:7c:82:12: 61:03:99:47:73:a6:76:9f:47:60:7b:99:67:34:9e: b9:ce:72:bb:f4:93:3a:87:2b:55:88:fb:fe:ad:a8: 9b:bd:dc:ee:ea:3c:57:bd:13:b1:c7:61:21:45:35: f9:e0:e5:51:46:e9:e8:34:17:0c:7e:7c:44:25:44: e9:d4:21:e5:13:74:a3:2a:9b:ec:b0:1b:d3:ad:4e: 72:a2:54:01:75:21:cf:fa:44:d5:b7:07:bf:0c:94: 09:fe:f5:bd:fb:49:25:98:43:ae:41:79:0e:0b:3e: ae:29:da:14:69:3e:e6:ce:86:bd:68:28:9d:66:ec: a2:ba:6e:88:29:27:e3:da:c3:f5:c1:38:a9:d1:82: fb:a1:b7:43:27:86:e5:3d:a8:f2:78:c7:3f:75:67: e2:90:65:e6:ac:bb:f4:f4:88:64:be:a9:8d:76:78: cb:07:22:71:70:a6:a9:14:6f:59:5c:82:40:b6:f5: c6:9e:02:eb:16:a2:e1:ff:b6:5d:4e:af:51:d7:d4: 15:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:9D:A8:2C:91:CE:FB:D8:2D:22:43:4D:16:1E:E9:F4:BF:08:65:54 X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8b:60:29:ae:0f:3d:d4:b7:cb:60:00:02:ef:17:41:f0:3f: 16:df:c1:c6:62:a6:32:24:8e:24:9e:39:30:41:10:42:06:98: a9:a4:3c:0d:e1:79:13:68:89:04:60:c3:1d:c8:0e:6f:e7:e8: 5a:45:34:c6:83:2b:73:08:25:f1:12:f4:7b:41:2c:7d:28:52: d8:47:b1:2f:1f:0d:80:29:89:36:30:b7:ba:7d:8f:84:0b:13: 2a:a4:91:ce:b9:48:d7:65:c6:0a:e4:cd:53:88:3c:86:dc:fa: 67:ad:b5:a9:45:5c:e6:ca:ff:1b:05:23:7d:0f:a8:3b:6b:90: b7:2f:07:3a:7c:66:3a:ea:bb:2b:a0:38:ca:5b:50:14:10:63: e8:b2:77:36:e1:c7:b6:bb:2a:22:d9:87:66:de:68:fa:9c:5f: 27:3c:94:26:d6:4a:2f:0e:55:09:88:3c:25:fd:c8:ec:6e:d2: d1:30:43:7e:4d:29:91:a9:f3:6d:06:8a:d8:0a:ff:da:74:e4: 1b:26:e6:ad:c1:d4:54:76:36:26:73:d2:ce:a5:74:ef:65:4e: b9:c1:ea:db:bc:eb:b3:af:0d:96:6f:5e:2a:3d:80:1c:d0:e8: 65:83:45:4d:f9:ce:91:8c:cd:3a:11:b6:b2:9a:b4:71:90:66: 3d:db:03:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwNDI4MTgwNjM2WhcNMjUwNTA1MTgwNjM2WjAYMRYwFAYD VQQDEw02ODBmYzNhYy01ZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJOregt1KFZ/zOZ0l0+Dt/yRqz8n4QZGqAnwaEV4wojDudD1L7m9Lxtbn1QW JiEoPeN7aROA8p18ghJhA5lHc6Z2n0dge5lnNJ65znK79JM6hytViPv+raibvdzu 6jxXvROxx2EhRTX54OVRRunoNBcMfnxEJUTp1CHlE3SjKpvssBvTrU5yolQBdSHP +kTVtwe/DJQJ/vW9+0klmEOuQXkOCz6uKdoUaT7mzoa9aCidZuyium6IKSfj2sP1 wTip0YL7obdDJ4blPajyeMc/dWfikGXmrLv09IhkvqmNdnjLByJxcKapFG9ZXIJA tvXGngLrFqLh/7ZdTq9R19QV4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF6dqCyR zvvYLSJDTRYe6fS/CGVUMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXi2Aprg891LfLYAAC7xdB8D8W38HGYqYyJI4knjkwQRBCBpippDwN 4XkTaIkEYMMdyA5v5+haRTTGgytzCCXxEvR7QSx9KFLYR7EvHw2AKYk2MLe6fY+E CxMqpJHOuUjXZcYK5M1TiDyG3PpnrbWpRVzmyv8bBSN9D6g7a5C3Lwc6fGY66rsr oDjKW1AUEGPosnc24ce2uyoi2Ydm3mj6nF8nPJQm1kovDlUJiDwl/cjsbtLRMEN+ TSmRqfNtBorYCv/adOQbJuatwdRUdjYmc9LOpXTvZU65werbvOuzrw2Wb14qPYAc 0Ohlg0VN+c6RjM06EbaymrRxkGY92wOt -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:34 2025 by rpki-client on console.sobornost.net