$ rpki-client -vvf rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft File: w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft (raw, json) Hash identifier: MZIRYSq81yDAdibklsKX0UuQnhOpVITTUx3nARWlxgk= Subject key identifier: 5B:4B:80:99:FD:B5:B6:C7:B6:A5:FE:6C:12:BB:44:F2:7F:3F:00:C9 Authority key identifier: C3:C3:B6:A2:AB:CD:71:5D:E5:9A:30:B3:5D:FC:61:49:05:BF:E6:43 Certificate issuer: /CN=A9150080/serialNumber=C3C3B6A2ABCD715DE59A30B35DFC614905BFE643 Certificate serial: 03D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft Manifest number: 03CC Signing time: Sat 26 Apr 2025 23:47:47 +0000 Manifest this update: Sat 26 Apr 2025 23:47:46 +0000 Manifest next update: Sat 03 May 2025 23:47:46 +0000 Files and hashes: 1: w8O2oqvNcV3lmjCzXfxhSQW_5kM.crl (hash: 97uBcB4w3KnjB5xkzSj9GApXRr4nNPPEBBzfTTIHSS8=) 2: 9904EDFA857E11ECA6A4FB59C4F9AE02.roa (hash: uXNN93KPpMh1sC/GxXfk7rupN3sWo7udXfCSk3ZQb8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.crl rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150080, serialNumber=C3C3B6A2ABCD715DE59A30B35DFC614905BFE643 Validity Not Before: Apr 26 23:47:46 2025 GMT Not After : May 3 23:47:46 2025 GMT Subject: CN=680d70a3-2973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c3:2d:81:85:c4:7d:c3:df:ce:41:fe:9e:15: 5e:94:26:99:4e:70:47:71:6c:fd:16:0b:12:5b:33: f1:af:83:8f:e6:24:ec:f1:5d:12:51:7c:e3:b1:a1: bc:38:0a:bb:fe:e7:41:da:e4:b1:d8:35:8c:b4:c6: 88:bd:b1:8e:f0:35:dc:a9:81:60:56:4b:eb:e2:57: 8d:19:a5:12:21:7c:c9:95:c9:2e:b2:b6:71:2a:aa: c1:60:e2:98:eb:f9:02:df:fe:cc:bc:e6:fc:e4:29: ec:a4:74:47:1c:12:26:cd:b8:e1:bd:39:d1:7d:1e: 27:83:e9:61:c9:88:d8:8b:4a:bb:f0:43:79:bc:95: f4:9d:69:ea:6b:bb:0d:8e:a8:ba:8a:22:ab:b1:b8: 98:76:5c:1d:17:b1:fb:81:85:7c:19:0b:6b:45:e1: ea:62:34:80:01:8e:24:83:c4:5a:80:2e:6a:74:71: 7b:0b:a2:d2:3a:fd:e4:2f:43:42:f4:51:5f:51:88: e5:6d:ac:fc:f3:d6:9c:d9:a7:d7:07:e0:e2:2e:06: 5e:f9:6b:89:f6:83:01:37:75:da:08:4b:11:e6:33: 2a:36:af:af:15:dc:e3:b4:d6:5c:22:bb:4c:e5:e4: 84:ec:2e:79:e0:8e:fc:27:bd:62:00:ed:56:d5:68: 00:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:4B:80:99:FD:B5:B6:C7:B6:A5:FE:6C:12:BB:44:F2:7F:3F:00:C9 X509v3 Authority Key Identifier: keyid:C3:C3:B6:A2:AB:CD:71:5D:E5:9A:30:B3:5D:FC:61:49:05:BF:E6:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w8O2oqvNcV3lmjCzXfxhSQW_5kM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150080/185AE8A2857011EC9820E837C4F9AE02/w8O2oqvNcV3lmjCzXfxhSQW_5kM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7d:ef:31:7c:e8:e6:48:35:78:24:f6:2a:46:89:3c:fc:ba: 6e:db:11:a5:83:62:db:98:dd:00:b6:0b:36:a0:e9:27:61:b0: 60:a2:c8:03:29:d3:1a:b0:1d:77:3c:83:c9:ee:5b:49:4b:f8: b0:35:5b:eb:1c:dc:a3:4c:15:d1:d9:bd:11:f6:e3:a9:ea:05: bd:e3:e9:75:a6:d5:4b:a1:d3:fd:28:e9:20:10:c0:33:e7:1e: 9c:66:44:7c:b0:cd:7a:99:b3:17:25:80:6c:5a:f2:bb:7e:d2: db:b4:1f:e8:85:e2:88:00:f3:b7:f7:97:f1:a5:38:3b:27:b8: 26:06:0e:04:98:5f:a6:cc:34:45:d9:1b:26:06:8a:70:c3:8f: 11:76:39:aa:eb:89:5f:7b:59:28:85:70:b8:f2:ec:75:96:b5: bc:8b:42:e3:fc:aa:ec:d2:6f:d9:7d:ff:46:78:0a:a8:d7:0e: 9e:52:48:a1:06:77:eb:27:6a:e4:21:e2:b1:9f:6f:ee:dd:93: c9:61:b2:2d:60:0d:19:15:8c:ed:72:ee:d1:df:5e:90:7b:40: fe:0c:76:2a:38:60:af:b5:0b:19:0b:f0:60:39:0a:4c:c2:e2: 5a:80:ef:35:e4:d3:15:66:aa:35:36:dd:71:dd:39:b6:d2:5a: 11:f8:f6:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAwODAxMTAvBgNVBAUTKEMzQzNCNkEyQUJDRDcxNURFNTlBMzBCMzVERkM2MTQ5 MDVCRkU2NDMwHhcNMjUwNDI2MjM0NzQ2WhcNMjUwNTAzMjM0NzQ2WjAYMRYwFAYD VQQDEw02ODBkNzBhMy0yOTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cMtgYXEfcPfzkH+nhVelCaZTnBHcWz9FgsSWzPxr4OP5iTs8V0SUXzjsaG8 OAq7/udB2uSx2DWMtMaIvbGO8DXcqYFgVkvr4leNGaUSIXzJlckusrZxKqrBYOKY 6/kC3/7MvOb85CnspHRHHBImzbjhvTnRfR4ng+lhyYjYi0q78EN5vJX0nWnqa7sN jqi6iiKrsbiYdlwdF7H7gYV8GQtrReHqYjSAAY4kg8RagC5qdHF7C6LSOv3kL0NC 9FFfUYjlbaz889ac2afXB+DiLgZe+WuJ9oMBN3XaCEsR5jMqNq+vFdzjtNZcIrtM 5eSE7C554I78J71iAO1W1WgA+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtLgJn9 tbbHtqX+bBK7RPJ/PwDJMB8GA1UdIwQYMBaAFMPDtqKrzXFd5Zows138YUkFv+ZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDA4MC8xODVBRThBMjg1 NzAxMUVDOTgyMEU4MzdDNEY5QUUwMi93OE8yb3F2TmNWM2xtakN6WGZ4aFNRV181 a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3c4TzJvcXZOY1YzbG1qQ3pYZnhoU1FXXzVrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDA4MC8xODVBRThBMjg1NzAxMUVDOTgyMEU4MzdDNEY5QUUwMi93OE8yb3F2TmNW M2xtakN6WGZ4aFNRV181a00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAfe8xfOjmSDV4JPYqRok8/Lpu2xGlg2LbmN0Atgs2oOknYbBgosgD KdMasB13PIPJ7ltJS/iwNVvrHNyjTBXR2b0R9uOp6gW94+l1ptVLodP9KOkgEMAz 5x6cZkR8sM16mbMXJYBsWvK7ftLbtB/oheKIAPO395fxpTg7J7gmBg4EmF+mzDRF 2RsmBopww48Rdjmq64lfe1kohXC48ux1lrW8i0Lj/Krs0m/Zff9GeAqo1w6eUkih BnfrJ2rkIeKxn2/u3ZPJYbItYA0ZFYztcu7R316Qe0D+DHYqOGCvtQsZC/BgOQpM wuJagO815NMVZqo1Nt1x3Tm20loR+PZa -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:44 2025 by rpki-client on console.sobornost.net