$ rpki-client -vvf rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.mft File: u1dVX4KqIKUcG0j3smw1Z_Wh57s.mft (raw, json) Hash identifier: AoB2xNAsC1qv2fVa/gGw6Ep73+fBDNlAvQXJ46AEoho= Subject key identifier: C9:A1:08:71:E6:23:74:6E:88:27:B7:75:C6:FC:E1:15:80:11:1C:F2 Authority key identifier: BB:57:55:5F:82:AA:20:A5:1C:1B:48:F7:B2:6C:35:67:F5:A1:E7:BB Certificate issuer: /CN=A9152D28/serialNumber=BB57555F82AA20A51C1B48F7B26C3567F5A1E7BB Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1dVX4KqIKUcG0j3smw1Z_Wh57s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.mft Manifest number: 0158 Signing time: Sun 27 Apr 2025 03:07:24 +0000 Manifest this update: Sun 27 Apr 2025 03:07:23 +0000 Manifest next update: Sun 04 May 2025 03:07:23 +0000 Files and hashes: 1: u1dVX4KqIKUcG0j3smw1Z_Wh57s.crl (hash: e+xuFd4A5tQoPyr8pIMfVjAKUdZe2dyZ0iqiguJyaj4=) 2: E94B9DBC34EC11EE94A16565C4F9AE02.roa (hash: kUXrIsCImr57H9iIsS2NOqb5zBoEdoozllgsXyGeV7o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.crl rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1dVX4KqIKUcG0j3smw1Z_Wh57s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152D28, serialNumber=BB57555F82AA20A51C1B48F7B26C3567F5A1E7BB Validity Not Before: Apr 27 03:07:23 2025 GMT Not After : May 4 03:07:23 2025 GMT Subject: CN=680d9f6c-5f90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:39:2a:c7:ea:1a:e7:9e:f8:48:37:97:44:5b: ca:9a:6b:09:b9:20:fa:01:23:16:50:a0:dc:b4:6c: e1:cc:2d:5b:38:b0:8d:34:a6:79:0f:ca:bb:3a:ab: 43:5b:c2:1e:97:bc:ac:b4:70:54:1a:5c:aa:2a:c8: d4:fc:ea:b6:4d:4f:4d:7c:3a:47:ba:58:44:7b:85: b8:73:c4:1f:53:42:be:3b:1f:9c:10:74:6c:bf:dc: 41:60:77:6f:7d:2d:be:bc:fe:11:0c:f0:af:80:e9: 23:b0:58:a5:82:30:bb:9c:bb:7c:92:da:3d:4f:6c: f9:b6:15:9c:da:24:c2:f6:3a:c5:d6:db:79:8f:2e: b1:e9:fa:67:7e:e5:84:fe:f6:e4:49:29:12:d2:2b: 0c:ef:2f:f6:b5:3e:7e:49:30:04:f8:f0:26:0a:09: 90:ad:e3:97:08:c7:5c:9e:a4:f0:39:79:8f:1e:ea: 4d:ba:56:c3:5d:38:d6:8b:02:60:1c:25:81:8f:3a: 68:da:b8:6f:4d:6d:1f:b2:1c:98:30:87:be:d9:b3: 7a:f5:c5:62:c9:75:76:3b:7f:4a:6a:1a:27:aa:ec: d9:c4:99:d7:dd:b5:36:c4:e1:dd:c0:d5:de:6a:d4: 89:3d:c8:64:03:50:d5:af:b7:8b:c4:81:6b:87:e2: 7f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A1:08:71:E6:23:74:6E:88:27:B7:75:C6:FC:E1:15:80:11:1C:F2 X509v3 Authority Key Identifier: keyid:BB:57:55:5F:82:AA:20:A5:1C:1B:48:F7:B2:6C:35:67:F5:A1:E7:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1dVX4KqIKUcG0j3smw1Z_Wh57s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152D28/AF93D162222611EE89AE7683C4F9AE02/u1dVX4KqIKUcG0j3smw1Z_Wh57s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:30:a5:54:62:21:98:ce:3a:31:a0:c2:19:d6:c5:80:aa:25: cc:a5:35:9d:c0:4b:4b:0d:d1:1e:c0:04:53:71:d0:8e:25:14: 59:aa:82:e2:7b:2e:ad:30:7b:67:6c:f8:83:55:24:c5:41:e0: f2:1c:a6:bd:04:00:e8:cb:1c:72:df:29:3d:86:33:65:1b:e2: 84:9f:db:0f:52:7f:22:34:da:41:28:c3:43:77:77:36:9e:fe: d7:7f:c3:04:ff:56:0a:3a:67:9d:4a:7d:a2:88:4b:2e:82:2d: 25:aa:e3:4b:bf:c5:81:24:34:95:17:2b:fb:72:cc:62:94:b2: d8:45:f7:65:69:48:fe:6c:1b:64:6f:28:ea:a4:8a:21:2d:0f: ad:ca:98:b2:48:30:43:e8:12:45:51:e4:68:fc:09:b7:60:c9: 9f:6b:1a:86:95:34:20:cc:81:70:5b:15:44:1c:89:af:29:de: 30:b5:15:27:c9:c2:c8:5a:0a:b6:8a:a4:62:89:2d:db:b4:d0: 7e:75:2f:89:52:73:9b:86:2f:42:9a:f7:da:f5:b8:64:5c:05: 6b:77:67:27:7d:9a:42:ce:1e:fe:b7:d4:16:bf:8a:97:7b:a0: bf:a3:f2:f6:69:0a:df:82:c0:50:75:ba:4b:67:8d:cb:55:ec: ba:2c:66:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJEMjgxMTAvBgNVBAUTKEJCNTc1NTVGODJBQTIwQTUxQzFCNDhGN0IyNkMzNTY3 RjVBMUU3QkIwHhcNMjUwNDI3MDMwNzIzWhcNMjUwNTA0MDMwNzIzWjAYMRYwFAYD VQQDEw02ODBkOWY2Yy01ZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jkqx+oa5574SDeXRFvKmmsJuSD6ASMWUKDctGzhzC1bOLCNNKZ5D8q7OqtD W8Iel7ystHBUGlyqKsjU/Oq2TU9NfDpHulhEe4W4c8QfU0K+Ox+cEHRsv9xBYHdv fS2+vP4RDPCvgOkjsFilgjC7nLt8kto9T2z5thWc2iTC9jrF1tt5jy6x6fpnfuWE /vbkSSkS0isM7y/2tT5+STAE+PAmCgmQreOXCMdcnqTwOXmPHupNulbDXTjWiwJg HCWBjzpo2rhvTW0fshyYMIe+2bN69cViyXV2O39KahonquzZxJnX3bU2xOHdwNXe atSJPchkA1DVr7eLxIFrh+J/twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmhCHHm I3RuiCe3dcb84RWAERzyMB8GA1UdIwQYMBaAFLtXVV+CqiClHBtI97JsNWf1oee7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkQyOC9BRjkzRDE2MjIy MjYxMUVFODlBRTc2ODNDNEY5QUUwMi91MWRWWDRLcUlLVWNHMGozc213MVpfV2g1 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxZFZYNEtxSUtVY0cwajNzbXcxWl9XaDU3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkQyOC9BRjkzRDE2MjIyMjYxMUVFODlBRTc2ODNDNEY5QUUwMi91MWRWWDRLcUlL VWNHMGozc213MVpfV2g1N3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRMKVUYiGYzjoxoMIZ1sWAqiXMpTWdwEtLDdEewARTcdCOJRRZqoLi ey6tMHtnbPiDVSTFQeDyHKa9BADoyxxy3yk9hjNlG+KEn9sPUn8iNNpBKMNDd3c2 nv7Xf8ME/1YKOmedSn2iiEsugi0lquNLv8WBJDSVFyv7csxilLLYRfdlaUj+bBtk byjqpIohLQ+typiySDBD6BJFUeRo/Am3YMmfaxqGlTQgzIFwWxVEHImvKd4wtRUn ycLIWgq2iqRiiS3btNB+dS+JUnObhi9Cmvfa9bhkXAVrd2cnfZpCzh7+t9QWv4qX e6C/o/L2aQrfgsBQdbpLZ43LVey6LGaq -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:46 2025 by rpki-client on console.sobornost.net