$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft File: qjJWJCn4lsCly95WRDFIAzm-upc.mft (raw, json) Hash identifier: 1yp0Dd1K5X4enHViAJury62IG3kn0qm+XOuNdxRtOvY= Subject key identifier: 17:6D:1D:1B:3E:D9:EF:0A:22:B9:C8:F5:72:AB:13:EA:06:A6:DE:6F Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 1A8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft Manifest number: 1A7C Signing time: Thu 24 Apr 2025 15:40:58 +0000 Manifest this update: Thu 24 Apr 2025 15:40:58 +0000 Manifest next update: Thu 01 May 2025 15:40:58 +0000 Files and hashes: 1: qjJWJCn4lsCly95WRDFIAzm-upc.crl (hash: 1NMtNds04knNuFFBDzsVhBV9Aa+N+e5NUWU1z81xUf0=) 2: 753F0A48CFB611EE83724A58C4F9AE02.roa (hash: uUlOQpzZO3P5eVMM621nQ4qWEKEyn8v2Q1jC2RCuf4E=) 3: 7A1D009C0EB611ECB5408277C4F9AE02.roa (hash: InP2ZGCygpqo7jQ5/iXnWywhtU95neHUOm+r+LrIH0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6799 (0x1a8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: Apr 24 15:40:58 2025 GMT Not After : May 1 15:40:58 2025 GMT Subject: CN=680a5b8a-4c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2f:e9:6b:07:1f:84:52:f0:5e:9c:f9:3c:5d: 28:9e:49:80:e2:78:a9:4d:22:96:18:14:e2:4d:d2: a8:ea:1d:14:cc:82:61:cc:ee:16:29:08:11:93:95: 86:1e:26:f7:13:80:77:46:d9:37:56:d2:87:b3:3b: 6f:0a:f1:89:7e:50:54:64:8e:19:d0:23:9b:f1:04: 1d:63:3b:a7:ad:4a:82:95:8e:8b:a3:02:82:cc:25: 45:25:56:02:f5:6c:bb:04:23:cb:1b:0c:59:31:10: b8:f8:fd:ae:f9:be:ee:f2:b4:94:1a:cd:40:fb:d9: fd:67:a7:e1:5d:83:8b:15:92:5f:3f:86:78:14:29: e5:e3:9b:91:fc:3c:85:85:f7:ac:26:f9:b2:01:e9: 65:f8:5a:b3:b5:5b:83:fb:ad:c9:c1:0b:7b:16:41: c1:e7:e5:3b:e3:2f:59:69:f8:c9:f1:07:37:8c:40: 6b:71:bd:53:1a:f1:8f:88:53:40:e3:0d:dd:55:b5: f3:a5:22:56:7d:30:a8:71:56:58:f2:23:e3:c1:05: 9f:42:11:87:95:b9:e2:a2:e4:c1:ea:f9:6d:6c:ba: 3a:38:ea:68:a2:cf:3f:4b:60:c7:8f:ca:98:85:c8: ab:f9:fd:09:45:75:2c:47:dc:58:34:73:2b:d5:1f: 71:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:6D:1D:1B:3E:D9:EF:0A:22:B9:C8:F5:72:AB:13:EA:06:A6:DE:6F X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:39:0b:26:65:7e:cb:d7:31:fa:76:8e:a6:4e:78:1e:fe:a8: 63:20:41:ef:cc:3b:39:f7:c0:56:2f:8f:92:3e:d1:50:08:86: 36:be:59:93:bd:ae:5a:4b:47:8e:25:c3:e4:52:38:e9:06:22: 33:bf:aa:89:91:c1:b9:19:2e:b5:be:5b:c4:0b:b0:ff:28:3f: a3:9b:17:5d:10:15:92:ed:cb:45:98:d2:b4:fb:64:3f:e9:60: 01:50:83:87:06:2e:d2:a0:ea:0c:8e:a7:b4:d6:8e:66:a5:da: 1c:a5:62:fd:e2:15:a2:64:66:45:46:ee:7f:29:1c:86:f4:5a: 07:3e:19:6a:6b:79:52:ee:64:0f:b7:a6:84:50:41:76:91:a1: 16:24:84:c8:4e:08:75:a4:cf:99:cb:83:0f:f8:0e:b4:70:41: c3:98:ae:2a:48:3d:1d:b0:e2:8e:09:2e:af:dd:c3:ca:03:24: 40:09:7b:d1:6d:ac:a6:0d:b6:fe:d9:6b:04:bd:ae:da:74:8c: be:08:2c:ec:ff:e3:ac:e0:15:07:ad:5c:d8:96:4a:f3:62:6a: 4e:dd:c3:7e:d9:67:e4:81:85:cb:20:00:0d:f3:15:db:5d:20: f4:5a:44:23:bd:8a:7f:4f:bc:8c:37:59:72:66:4a:60:cf:db: 87:ca:71:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjUwNDI0MTU0MDU4WhcNMjUwNTAxMTU0MDU4WjAYMRYwFAYD VQQDEw02ODBhNWI4YS00YzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5y/pawcfhFLwXpz5PF0onkmA4nipTSKWGBTiTdKo6h0UzIJhzO4WKQgRk5WG Hib3E4B3Rtk3VtKHsztvCvGJflBUZI4Z0COb8QQdYzunrUqClY6LowKCzCVFJVYC 9Wy7BCPLGwxZMRC4+P2u+b7u8rSUGs1A+9n9Z6fhXYOLFZJfP4Z4FCnl45uR/DyF hfesJvmyAell+FqztVuD+63JwQt7FkHB5+U74y9ZafjJ8Qc3jEBrcb1TGvGPiFNA 4w3dVbXzpSJWfTCocVZY8iPjwQWfQhGHlbniouTB6vltbLo6OOpoos8/S2DHj8qY hcir+f0JRXUsR9xYNHMr1R9xQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdtHRs+ 2e8KIrnI9XKrE+oGpt5vMB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEY2Ni8zRDk4MUNDQzNBMUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxz Q2x5OTVXUkRGSUF6bS11cGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOQsmZX7L1zH6do6mTnge/qhjIEHvzDs598BWL4+SPtFQCIY2vlmT va5aS0eOJcPkUjjpBiIzv6qJkcG5GS61vlvEC7D/KD+jmxddEBWS7ctFmNK0+2Q/ 6WABUIOHBi7SoOoMjqe01o5mpdocpWL94hWiZGZFRu5/KRyG9FoHPhlqa3lS7mQP t6aEUEF2kaEWJITITgh1pM+Zy4MP+A60cEHDmK4qSD0dsOKOCS6v3cPKAyRACXvR baymDbb+2WsEva7adIy+CCzs/+Os4BUHrVzYlkrzYmpO3cN+2WfkgYXLIAAN8xXb XSD0WkQjvYp/T7yMN1lyZkpgz9uHynF2 -----END CERTIFICATE-----Generated at Thu Apr 24 18:08:08 2025 by rpki-client on console.sobornost.net