$ rpki-client -vvf rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft File: OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft (raw, json) Hash identifier: 5F+uj6KRll5XRiZJMcifxhdy/3EMIE6tl4mt2F0r0u4= Subject key identifier: 41:36:0C:9B:EE:35:B7:F5:02:E5:36:72:D0:E4:C4:E9:D4:8A:45:D2 Authority key identifier: 38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 Certificate issuer: /CN=A9151638/serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Certificate serial: 0468 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft Manifest number: 0463 Signing time: Sat 26 Apr 2025 23:48:10 +0000 Manifest this update: Sat 26 Apr 2025 23:48:10 +0000 Manifest next update: Sat 03 May 2025 23:48:09 +0000 Files and hashes: 1: OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl (hash: /0cPRzWk3wxyNcKmFhfjy26cP6e78h07NdJB2IKI7QQ=) 2: 2404BA68477011EC8A31B762C4F9AE02.roa (hash: w9FaGj3sY61MFEZzIunRrfWZ3OYXoXaJ/HX3XZ5M44M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1128 (0x468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151638, serialNumber=38592F056F83CCD40A62AE1160292694285A2CF4 Validity Not Before: Apr 26 23:48:10 2025 GMT Not After : May 3 23:48:09 2025 GMT Subject: CN=680d70ba-bcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:39:76:e7:19:dc:f2:0d:97:06:dc:1f:f6:91: 2d:71:9f:b6:65:ab:9b:14:80:b6:c6:8e:1e:44:a8: f2:c8:c1:e4:39:cc:fb:71:97:97:d9:fa:9e:ef:ac: 34:0b:80:d2:71:17:2d:6d:16:44:ce:a2:71:d9:b0: f7:5a:8a:9d:95:cb:59:58:37:05:16:1d:6a:28:66: 73:9f:7d:d3:c1:82:80:46:41:81:f4:43:fb:eb:c5: 47:30:38:c1:14:d9:1b:a5:ef:a3:03:e5:4e:a6:c5: 86:59:93:f2:04:e3:c0:84:72:18:60:c9:9a:88:a2: 01:ea:12:eb:a8:cb:43:d0:0d:75:dd:83:97:b1:f2: a2:a0:ef:49:9d:c5:35:fa:65:9f:2d:92:61:0d:53: ea:39:32:7a:71:32:7c:69:5e:95:48:d3:26:bd:52: 56:ba:d8:27:ef:a5:d2:e4:f3:21:cb:1a:6b:8a:0e: bc:ff:1c:2a:89:b5:15:d0:1d:21:af:58:09:34:d2: a8:30:0a:28:d4:f0:e0:73:fe:76:9f:4e:1e:15:3b: 65:76:c4:b3:63:c0:29:4f:33:bc:bc:8e:08:65:a4: 5e:05:84:33:7c:d6:d4:2a:24:42:2b:67:67:da:46: 09:3a:11:da:19:c9:82:c4:a2:09:a2:2c:dd:70:d0: 26:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:36:0C:9B:EE:35:B7:F5:02:E5:36:72:D0:E4:C4:E9:D4:8A:45:D2 X509v3 Authority Key Identifier: keyid:38:59:2F:05:6F:83:CC:D4:0A:62:AE:11:60:29:26:94:28:5A:2C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OFkvBW-DzNQKYq4RYCkmlChaLPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151638/12711732476C11EC89EF6239C4F9AE02/OFkvBW-DzNQKYq4RYCkmlChaLPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:53:47:22:84:06:0b:68:ee:14:79:e0:83:a3:34:2e:a6:d2: 4e:a8:3c:ea:f2:2d:2c:4d:07:85:eb:61:42:93:ca:b6:0a:09: 17:59:39:4d:b6:df:5d:c2:c8:7c:16:e8:f2:6f:bf:60:a1:29: fc:15:91:1b:12:33:75:8c:f6:ff:15:14:95:f0:9c:85:f7:7f: a9:50:d7:13:90:45:37:de:28:33:75:67:8c:55:e3:74:5e:8c: e4:fb:e9:50:c1:c2:37:a5:d4:bf:21:00:54:2b:04:54:0d:50: 76:16:db:37:2a:84:04:2d:4a:be:33:9e:cc:73:47:73:46:d5: e0:56:79:2a:be:f9:db:b6:9d:18:84:d4:00:34:78:6a:88:c1: 99:5b:10:dc:62:74:93:c0:b6:cf:5a:a2:b0:51:b4:3e:15:0b: af:73:d1:9a:11:78:23:64:32:52:84:97:8d:61:12:3c:87:9a: 56:3e:b0:88:f5:78:21:bb:76:91:b2:21:9e:03:15:69:d2:f2: 40:3c:fa:a6:a9:53:eb:82:bf:d4:4e:97:3c:6e:95:2f:88:4f: 49:92:30:05:d4:31:1d:4e:ca:93:c6:85:e3:0a:43:2e:de:67: d4:27:f0:a1:b2:32:b8:30:c7:bd:b2:48:21:6d:20:43:9d:87: 48:77:4c:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2MzgxMTAvBgNVBAUTKDM4NTkyRjA1NkY4M0NDRDQwQTYyQUUxMTYwMjkyNjk0 Mjg1QTJDRjQwHhcNMjUwNDI2MjM0ODEwWhcNMjUwNTAzMjM0ODA5WjAYMRYwFAYD VQQDEw02ODBkNzBiYS1iY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zl25xnc8g2XBtwf9pEtcZ+2ZaubFIC2xo4eRKjyyMHkOcz7cZeX2fqe76w0 C4DScRctbRZEzqJx2bD3WoqdlctZWDcFFh1qKGZzn33TwYKARkGB9EP768VHMDjB FNkbpe+jA+VOpsWGWZPyBOPAhHIYYMmaiKIB6hLrqMtD0A113YOXsfKioO9JncU1 +mWfLZJhDVPqOTJ6cTJ8aV6VSNMmvVJWutgn76XS5PMhyxprig68/xwqibUV0B0h r1gJNNKoMAoo1PDgc/52n04eFTtldsSzY8ApTzO8vI4IZaReBYQzfNbUKiRCK2dn 2kYJOhHaGcmCxKIJoizdcNAmEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEE2DJvu Nbf1AuU2ctDkxOnUikXSMB8GA1UdIwQYMBaAFDhZLwVvg8zUCmKuEWApJpQoWiz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTYzOC8xMjcxMTczMjQ3 NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpOUUtZcTRSWUNrbWxDaGFM UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Ga3ZCVy1Eek5RS1lxNFJZQ2ttbENoYUxQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTYzOC8xMjcxMTczMjQ3NkMxMUVDODlFRjYyMzlDNEY5QUUwMi9PRmt2QlctRHpO UUtZcTRSWUNrbWxDaGFMUFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlU0cihAYLaO4UeeCDozQuptJOqDzq8i0sTQeF62FCk8q2CgkXWTlN tt9dwsh8Fujyb79goSn8FZEbEjN1jPb/FRSV8JyF93+pUNcTkEU33igzdWeMVeN0 Xozk++lQwcI3pdS/IQBUKwRUDVB2Fts3KoQELUq+M57Mc0dzRtXgVnkqvvnbtp0Y hNQANHhqiMGZWxDcYnSTwLbPWqKwUbQ+FQuvc9GaEXgjZDJShJeNYRI8h5pWPrCI 9Xghu3aRsiGeAxVp0vJAPPqmqVPrgr/UTpc8bpUviE9JkjAF1DEdTsqTxoXjCkMu 3mfUJ/ChsjK4MMe9skghbSBDnYdId0wp -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:45 2025 by rpki-client on console.sobornost.net