$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft File: iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json) Hash identifier: e6DhdoHTCmNRxAOAIgdWDrajsfnz29Are3PavUhnYmI= Subject key identifier: F5:24:4D:DB:AB:AF:8E:0A:12:4C:C1:CD:62:6D:FB:FD:C7:3E:86:49 Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft Manifest number: 7F Signing time: Sun 27 Apr 2025 05:35:48 +0000 Manifest this update: Sun 27 Apr 2025 05:35:47 +0000 Manifest next update: Sun 04 May 2025 05:35:47 +0000 Files and hashes: 1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: BCM2aNfhj40V375QttOqSUwOhttkhAkMG4bsht3JbeE=) 2: 10435EE8740511EF93658977C4F9AE02.roa (hash: xmMmx42YHDQ1ahK54oeYt43Mx+x7gEXdRkvJnhnT9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806, serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Apr 27 05:35:47 2025 GMT Not After : May 4 05:35:47 2025 GMT Subject: CN=680dc234-6bc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fb:bf:4e:b3:57:16:0c:6e:e1:c6:8a:f8:b5: 97:f3:c2:f4:f2:f3:9f:04:ce:36:dd:f2:30:13:2b: fd:c7:a7:a6:e4:c7:14:7c:87:8b:0e:7b:09:22:6e: 3f:b6:9b:3a:2a:2b:d0:1a:a0:4c:25:8f:e9:b4:c3: 7a:54:68:06:b3:ff:f8:5c:03:85:55:58:ff:9c:49: 59:cc:95:08:01:49:76:d4:00:a8:6d:df:95:a9:63: c4:ce:33:15:2b:c9:73:4b:81:8b:ee:7c:70:3f:b5: df:69:08:64:40:78:c6:f6:6b:ba:55:e8:c5:c5:0b: 1b:8e:71:c5:e7:10:be:52:51:a1:22:84:cc:c6:79: de:21:31:86:cf:86:83:8f:f7:4f:ca:0b:f0:3c:8c: 50:74:51:ec:15:34:d6:5a:77:b9:ed:1e:a4:13:76: 2c:3b:54:f7:a9:a4:3e:1b:76:f1:ff:bb:8b:d2:ac: 1b:b2:44:00:54:ba:b9:f7:a7:80:88:cb:5f:e3:08: 24:14:59:58:25:94:91:2a:db:e1:d9:90:b4:61:3d: 9f:a0:44:4a:1b:49:42:bd:00:b4:30:98:75:39:f1: 07:4f:cf:47:f6:4a:6a:3d:3a:39:e4:3b:f8:c9:4e: 59:28:e0:28:1c:86:8b:9a:c7:ce:d4:25:3a:3d:d2: 7e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:24:4D:DB:AB:AF:8E:0A:12:4C:C1:CD:62:6D:FB:FD:C7:3E:86:49 X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:82:df:70:4d:51:cc:76:61:a9:29:0c:9a:51:60:19:91:e8: 22:cf:78:e3:ae:ed:56:43:89:fb:0f:1e:df:eb:bb:3f:06:66: ef:da:cb:df:3b:5e:39:9b:d5:fc:10:e0:ae:7e:e2:6d:ba:0d: 4f:11:dd:81:a8:6b:58:f9:62:ba:f4:9e:d1:b7:25:50:78:1b: f3:6b:fa:00:38:fb:e8:8c:d1:5f:da:b3:5a:fa:02:27:cf:a4: d1:08:92:35:e5:02:6b:a7:57:a3:d8:15:fe:34:6d:41:00:9b: 06:b1:aa:50:6b:ff:db:c9:02:a4:5d:e8:60:32:ec:e2:cb:dd: 61:c8:ff:51:9b:63:35:1d:7d:2b:0f:68:99:eb:2b:8a:3e:a6: 20:6f:f9:f3:f3:b5:ae:34:fb:4b:79:36:ea:81:ab:e0:72:1a: e4:82:7d:58:a2:54:ee:4d:81:3d:b0:43:83:9f:bb:79:80:ab: af:c3:98:25:54:5a:ec:9c:23:34:71:8d:da:db:d7:47:bb:20: cf:26:98:2f:ec:0e:4b:f3:4e:e7:5c:cb:0a:d2:04:ce:fe:b6: da:fe:a9:29:0a:72:a2:cc:90:fd:70:2e:00:d4:8f:76:e5:03: aa:be:ce:51:05:c6:fc:c7:48:cb:49:45:f8:9d:03:35:47:88: 1d:92:84:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU4MDYxMTAvBgNVBAUTKDg4N0UxMTA3QTgzRjExNzRGRjdFM0U3ODA4ODhEQjU3 MjNCNzkyNUIwHhcNMjUwNDI3MDUzNTQ3WhcNMjUwNTA0MDUzNTQ3WjAYMRYwFAYD VQQDEw02ODBkYzIzNC02YmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvu/TrNXFgxu4caK+LWX88L08vOfBM423fIwEyv9x6em5McUfIeLDnsJIm4/ tps6KivQGqBMJY/ptMN6VGgGs//4XAOFVVj/nElZzJUIAUl21ACobd+VqWPEzjMV K8lzS4GL7nxwP7XfaQhkQHjG9mu6VejFxQsbjnHF5xC+UlGhIoTMxnneITGGz4aD j/dPygvwPIxQdFHsFTTWWne57R6kE3YsO1T3qaQ+G3bx/7uL0qwbskQAVLq596eA iMtf4wgkFFlYJZSRKtvh2ZC0YT2foERKG0lCvQC0MJh1OfEHT89H9kpqPTo55Dv4 yU5ZKOAoHIaLmsfO1CU6PdJ+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUkTdur r44KEkzBzWJt+/3HPoZJMB8GA1UdIwQYMBaAFIh+EQeoPxF0/34+eAiI21cjt5Jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTgwNi9DNzM5QkFFRTZF OTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VYVF9majU0Q0lqYlZ5TzNr bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2tscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgwNi9DNzM5QkFFRTZFOTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VY VF9majU0Q0lqYlZ5TzNrbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRgt9wTVHMdmGpKQyaUWAZkegiz3jjru1WQ4n7Dx7f67s/Bmbv2svf O145m9X8EOCufuJtug1PEd2BqGtY+WK69J7RtyVQeBvza/oAOPvojNFf2rNa+gIn z6TRCJI15QJrp1ej2BX+NG1BAJsGsapQa//byQKkXehgMuziy91hyP9Rm2M1HX0r D2iZ6yuKPqYgb/nz87WuNPtLeTbqgavgchrkgn1YolTuTYE9sEODn7t5gKuvw5gl VFrsnCM0cY3a29dHuyDPJpgv7A5L807nXMsK0gTO/rba/qkpCnKizJD9cC4A1I92 5QOqvs5RBcb8x0jLSUX4nQM1R4gdkoS3 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:47 2025 by rpki-client on console.sobornost.net