$ rpki-client -vvf rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.mft File: A8f_7gyvSSWEnihuwO-7DIsqjk8.mft (raw, json) Hash identifier: YaorIJkqCzhownvEo3snn5oduljc/ACVUqgHOwqTZ74= Subject key identifier: 44:67:62:26:49:B4:E3:94:C4:01:41:23:74:41:97:E1:FA:08:02:DB Authority key identifier: 03:C7:FF:EE:0C:AF:49:25:84:9E:28:6E:C0:EF:BB:0C:8B:2A:8E:4F Certificate issuer: /CN=A9156CFE/serialNumber=03C7FFEE0CAF4925849E286EC0EFBB0C8B2A8E4F Certificate serial: 09B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A8f_7gyvSSWEnihuwO-7DIsqjk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.mft Manifest number: 099D Signing time: Mon 28 Apr 2025 20:32:10 +0000 Manifest this update: Mon 28 Apr 2025 20:32:10 +0000 Manifest next update: Mon 05 May 2025 20:32:10 +0000 Files and hashes: 1: A8f_7gyvSSWEnihuwO-7DIsqjk8.crl (hash: ysa8KJut7BjUpS+np/pKmVBMA0EOHcoGnKS8ppLkpTg=) 2: E00620C0267C11EE803B2155C4F9AE02.roa (hash: 5Gk4b25F0uq7efelkFmxT/VKGia42LkwXqnCVKORjVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.crl rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A8f_7gyvSSWEnihuwO-7DIsqjk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156CFE, serialNumber=03C7FFEE0CAF4925849E286EC0EFBB0C8B2A8E4F Validity Not Before: Apr 28 20:32:10 2025 GMT Not After : May 5 20:32:10 2025 GMT Subject: CN=680fe5ca-4318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4c:90:46:28:ca:bb:e5:b3:4b:65:0e:32:04: a2:c7:b2:0c:24:c3:67:8c:4c:d4:4a:08:ec:b2:d3: 42:b1:7f:9b:c2:86:70:ab:ef:4c:70:f9:e7:fc:d4: c8:fe:da:9c:75:9a:a1:7d:97:90:35:a0:29:72:2a: 7c:4f:73:19:4a:85:b0:1a:09:a9:ab:c8:e3:67:9d: 84:41:e1:ec:ff:60:19:79:58:85:97:5a:95:03:e6: 01:a8:e2:57:f8:3d:6c:b7:08:9b:d1:7c:2b:1c:81: b6:b2:01:91:7e:70:3f:88:9e:ae:6c:24:9a:21:ee: d5:a2:11:fe:d9:cb:f6:03:fd:2d:4c:c8:4e:44:89: 2b:c3:f8:8b:b2:49:84:62:88:81:ee:b3:63:56:10: ad:cb:d2:45:0d:d3:13:94:d8:ca:8b:ff:c3:ac:c4: ee:07:f7:ce:45:54:1f:4d:98:18:f4:47:6b:3b:4c: 9b:11:36:51:2a:4e:21:d4:ed:9d:bc:79:a2:af:9b: b3:1f:0d:3f:ba:12:9a:17:d4:ad:fe:52:37:ff:b5: 58:79:7f:b8:04:b2:06:45:a4:5e:a4:b9:84:4d:86: af:23:99:32:d9:71:ac:6e:59:ae:6e:02:6f:99:d2: 17:42:d5:79:12:b4:d6:52:68:dc:fb:ab:a7:7c:85: 50:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:67:62:26:49:B4:E3:94:C4:01:41:23:74:41:97:E1:FA:08:02:DB X509v3 Authority Key Identifier: keyid:03:C7:FF:EE:0C:AF:49:25:84:9E:28:6E:C0:EF:BB:0C:8B:2A:8E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A8f_7gyvSSWEnihuwO-7DIsqjk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156CFE/B39031708AB211EAB022193CC4F9AE02/A8f_7gyvSSWEnihuwO-7DIsqjk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:74:9f:89:0a:55:c7:b4:42:7c:ca:c2:e6:b1:fe:5d:22:24: cf:3f:e0:13:04:75:be:88:df:3a:6e:40:47:d2:10:54:c5:04: 13:7c:fa:ce:c7:64:ae:62:9d:a9:7b:d4:e5:a3:de:3a:bf:ae: 26:39:3e:1c:4b:91:63:09:f6:98:5e:54:60:99:83:3f:3d:36: d6:1d:73:9d:a5:d1:f7:d8:7a:7e:dd:a1:66:75:a0:80:13:8a: 91:f7:23:7a:70:b2:24:16:9f:84:72:d8:d1:65:89:02:01:20: ea:ee:6d:7d:f0:8b:15:15:b3:b0:a8:9e:a3:a8:e5:57:ce:fa: a0:3b:c3:e3:c8:a4:55:89:15:41:5b:ab:49:2a:6d:68:26:4d: ae:d0:d6:c6:af:2e:86:2c:18:d6:2d:56:75:75:d3:28:5f:f5: ac:9b:91:4b:31:3f:e8:0e:0c:61:c1:a0:1d:2c:5a:c9:0d:1d: df:c8:4b:65:68:62:32:1f:a2:ba:6c:d0:c9:59:c5:1e:80:2a: 90:f7:a2:4b:47:13:60:ac:19:d2:29:d7:1d:e8:45:71:7c:d8: 47:91:e6:64:4e:3c:78:19:fe:83:18:3f:55:d2:d0:1c:69:f9: 2b:43:47:29:c0:dd:a6:b0:10:1b:fb:7b:01:37:08:30:6a:b2: c6:ab:1a:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZDRkUxMTAvBgNVBAUTKDAzQzdGRkVFMENBRjQ5MjU4NDlFMjg2RUMwRUZCQjBD OEIyQThFNEYwHhcNMjUwNDI4MjAzMjEwWhcNMjUwNTA1MjAzMjEwWjAYMRYwFAYD VQQDEw02ODBmZTVjYS00MzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0yQRijKu+WzS2UOMgSix7IMJMNnjEzUSgjsstNCsX+bwoZwq+9McPnn/NTI /tqcdZqhfZeQNaApcip8T3MZSoWwGgmpq8jjZ52EQeHs/2AZeViFl1qVA+YBqOJX +D1stwib0XwrHIG2sgGRfnA/iJ6ubCSaIe7VohH+2cv2A/0tTMhORIkrw/iLskmE YoiB7rNjVhCty9JFDdMTlNjKi//DrMTuB/fORVQfTZgY9EdrO0ybETZRKk4h1O2d vHmir5uzHw0/uhKaF9St/lI3/7VYeX+4BLIGRaRepLmETYavI5ky2XGsblmubgJv mdIXQtV5ErTWUmjc+6unfIVQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERnYiZJ tOOUxAFBI3RBl+H6CALbMB8GA1UdIwQYMBaAFAPH/+4Mr0klhJ4obsDvuwyLKo5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkNGRS9CMzkwMzE3MDhB QjIxMUVBQjAyMjE5M0NDNEY5QUUwMi9BOGZfN2d5dlNTV0VuaWh1d08tN0RJc3Fq azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E4Zl83Z3l2U1NXRW5paHV3Ty03RElzcWprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkNGRS9CMzkwMzE3MDhBQjIxMUVBQjAyMjE5M0NDNEY5QUUwMi9BOGZfN2d5dlNT V0VuaWh1d08tN0RJc3FqazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWdJ+JClXHtEJ8ysLmsf5dIiTPP+ATBHW+iN86bkBH0hBUxQQTfPrO x2SuYp2pe9Tlo946v64mOT4cS5FjCfaYXlRgmYM/PTbWHXOdpdH32Hp+3aFmdaCA E4qR9yN6cLIkFp+EctjRZYkCASDq7m198IsVFbOwqJ6jqOVXzvqgO8PjyKRViRVB W6tJKm1oJk2u0NbGry6GLBjWLVZ1ddMoX/Wsm5FLMT/oDgxhwaAdLFrJDR3fyEtl aGIyH6K6bNDJWcUegCqQ96JLRxNgrBnSKdcd6EVxfNhHkeZkTjx4Gf6DGD9V0tAc afkrQ0cpwN2msBAb+3sBNwgwarLGqxrP -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:12 2025 by rpki-client on console.sobornost.net