$ rpki-client -vvf rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.mft File: jTeJSwlB7P1NawXh4UyrhWmHsF0.mft (raw, json) Hash identifier: RUkebGPVKPhV0lF/LyGOX77qj7oMia2Tz6M8Vug0Rcw= Subject key identifier: 60:73:35:03:82:C4:FA:43:8E:6D:BE:26:76:9F:65:7C:C0:84:0A:2C Authority key identifier: 8D:37:89:4B:09:41:EC:FD:4D:6B:05:E1:E1:4C:AB:85:69:87:B0:5D Certificate issuer: /CN=A915890D/serialNumber=8D37894B0941ECFD4D6B05E1E14CAB856987B05D Certificate serial: 20B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jTeJSwlB7P1NawXh4UyrhWmHsF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.mft Manifest number: 20AC Signing time: Mon 28 Apr 2025 16:04:15 +0000 Manifest this update: Mon 28 Apr 2025 16:04:15 +0000 Manifest next update: Mon 05 May 2025 16:04:15 +0000 Files and hashes: 1: jTeJSwlB7P1NawXh4UyrhWmHsF0.crl (hash: DtGeM0Kx7G4127V4h0PFLz5LHAF/9Sec2cn6xmbFqyw=) 2: B492147E047B11EBBA181F4FC4F9AE02.roa (hash: KDA9/GHhy0rjdE5GkXBH2Mt48KB9YjSR7eGXIC67yec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.crl rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jTeJSwlB7P1NawXh4UyrhWmHsF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8371 (0x20b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915890D, serialNumber=8D37894B0941ECFD4D6B05E1E14CAB856987B05D Validity Not Before: Apr 28 16:04:15 2025 GMT Not After : May 5 16:04:15 2025 GMT Subject: CN=680fa6ff-8e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b1:c6:1b:69:80:cc:78:14:20:92:75:d3:49: eb:f7:6e:2e:69:35:ab:b9:5e:c2:3f:28:d0:96:c6: bf:af:be:f7:45:ee:e3:be:a5:58:16:56:94:d4:f9: ba:e9:f5:d7:5e:82:a0:c1:c9:6b:cc:6c:25:4d:5d: e5:37:f9:41:77:57:bd:1e:cb:90:b2:fd:da:b7:39: 62:27:52:69:cb:39:37:17:60:f1:6d:b1:e2:06:34: 95:70:9c:a8:2d:c4:9e:0b:c3:fe:99:c3:75:f0:e7: c5:72:ac:36:ab:d0:a9:63:11:93:57:c3:32:e0:4d: 37:d5:6c:45:df:49:a4:a2:64:3d:07:cf:03:f4:eb: f8:b6:d7:b2:5c:d3:e5:20:34:09:e9:d9:2c:56:ec: cb:46:fc:f6:a2:a7:69:91:7a:d7:3a:06:29:41:a4: 44:6d:c4:de:d0:1f:61:a6:19:01:ca:31:b2:10:56: db:58:86:5f:f4:4b:0d:fa:b2:ca:a5:18:3b:09:89: 07:5a:f5:fd:e9:2c:dc:15:d4:8b:16:0a:18:e6:97: 8a:11:8d:01:32:02:cd:53:a7:f8:76:28:a9:a2:50: 0d:90:94:15:0e:b9:a4:19:82:d4:ec:55:bc:9e:e4: d0:34:fa:f2:81:68:51:3e:0b:40:da:e3:d4:12:ca: 2d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:73:35:03:82:C4:FA:43:8E:6D:BE:26:76:9F:65:7C:C0:84:0A:2C X509v3 Authority Key Identifier: keyid:8D:37:89:4B:09:41:EC:FD:4D:6B:05:E1:E1:4C:AB:85:69:87:B0:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jTeJSwlB7P1NawXh4UyrhWmHsF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915890D/21B7A80EFFFC11E586B4D964C4F9AE02/jTeJSwlB7P1NawXh4UyrhWmHsF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:0a:07:f4:fc:08:0e:8f:75:50:5a:e0:81:b0:80:ab:99:d3: 63:52:5c:3c:ac:f4:f4:b3:97:8b:8e:91:af:1a:8b:49:48:8f: c1:da:87:09:8d:f7:99:93:f7:e3:52:7a:34:f4:45:06:d1:35: 6a:ce:d5:60:8a:0f:4e:30:37:bd:46:3f:e3:66:36:26:78:ac: 15:93:f3:c0:7b:71:b7:32:0e:b6:a0:01:8a:2f:10:5e:88:4c: af:1f:63:95:fd:3a:10:f4:cd:45:05:18:c7:15:a2:4b:90:65: 89:ac:77:40:58:4d:cd:f8:a9:17:49:c8:af:ff:4f:a6:20:b1: 61:3b:43:43:f7:98:2a:10:74:cb:2c:43:67:c6:0f:21:fb:a8: 3b:bf:23:6a:dd:be:8e:24:fe:10:ec:60:cb:e5:b6:1d:a2:2c: 53:39:17:48:6b:67:e6:3f:de:d8:a5:34:dc:33:45:10:09:d7: 4a:6d:9f:55:ed:93:81:b6:ef:55:79:86:43:a3:b0:3b:4d:8a: 49:4c:da:f0:b0:1a:33:03:f6:db:b2:db:d4:f7:1a:fe:b7:18: ea:43:a4:0d:67:b1:fe:1f:4e:d9:36:5a:a0:96:96:cf:e5:1f: 4c:44:50:3d:35:07:29:0a:7a:7a:8d:16:68:04:a5:37:b0:43: 1f:22:98:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICILMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5MEQxMTAvBgNVBAUTKDhEMzc4OTRCMDk0MUVDRkQ0RDZCMDVFMUUxNENBQjg1 Njk4N0IwNUQwHhcNMjUwNDI4MTYwNDE1WhcNMjUwNTA1MTYwNDE1WjAYMRYwFAYD VQQDEw02ODBmYTZmZi04ZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLHGG2mAzHgUIJJ100nr924uaTWruV7CPyjQlsa/r773Re7jvqVYFlaU1Pm6 6fXXXoKgwclrzGwlTV3lN/lBd1e9HsuQsv3atzliJ1Jpyzk3F2DxbbHiBjSVcJyo LcSeC8P+mcN18OfFcqw2q9CpYxGTV8My4E031WxF30mkomQ9B88D9Ov4tteyXNPl IDQJ6dksVuzLRvz2oqdpkXrXOgYpQaREbcTe0B9hphkByjGyEFbbWIZf9EsN+rLK pRg7CYkHWvX96SzcFdSLFgoY5peKEY0BMgLNU6f4diipolANkJQVDrmkGYLU7FW8 nuTQNPrygWhRPgtA2uPUEsotLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBzNQOC xPpDjm2+JnafZXzAhAosMB8GA1UdIwQYMBaAFI03iUsJQez9TWsF4eFMq4Vph7Bd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODkwRC8yMUI3QTgwRUZG RkMxMUU1ODZCNEQ5NjRDNEY5QUUwMi9qVGVKU3dsQjdQMU5hd1hoNFV5cmhXbUhz RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pUZUpTd2xCN1AxTmF3WGg0VXlyaFdtSHNGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODkwRC8yMUI3QTgwRUZGRkMxMUU1ODZCNEQ5NjRDNEY5QUUwMi9qVGVKU3dsQjdQ MU5hd1hoNFV5cmhXbUhzRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCICgf0/AgOj3VQWuCBsICrmdNjUlw8rPT0s5eLjpGvGotJSI/B2ocJ jfeZk/fjUno09EUG0TVqztVgig9OMDe9Rj/jZjYmeKwVk/PAe3G3Mg62oAGKLxBe iEyvH2OV/ToQ9M1FBRjHFaJLkGWJrHdAWE3N+KkXSciv/0+mILFhO0ND95gqEHTL LENnxg8h+6g7vyNq3b6OJP4Q7GDL5bYdoixTORdIa2fmP97YpTTcM0UQCddKbZ9V 7ZOBtu9VeYZDo7A7TYpJTNrwsBozA/bbstvU9xr+txjqQ6QNZ7H+H07ZNlqglpbP 5R9MRFA9NQcpCnp6jRZoBKU3sEMfIph5 -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:06 2025 by rpki-client on console.sobornost.net