$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: wuMLTq83pGjD/tcTC0wE5jNUSrloon7CQQjkftWZuOI= Subject key identifier: 1C:1B:12:17:55:4D:10:34:BE:46:29:FD:B3:E5:DB:AF:F2:5E:0E:6F Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 039F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 037B Signing time: Sun 27 Apr 2025 00:37:08 +0000 Manifest this update: Sun 27 Apr 2025 00:37:07 +0000 Manifest next update: Sun 04 May 2025 00:37:07 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: jJecN3uw+MQez+l8SCNuF2LeUD5GNC6ADF/iSDW3gMc=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 927 (0x39f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Apr 27 00:37:07 2025 GMT Not After : May 4 00:37:07 2025 GMT Subject: CN=680d7c34-a5e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:03:ed:c3:e8:6f:ea:0b:59:f7:a2:f4:53:01: 30:ed:23:22:73:18:84:b8:f1:b5:93:49:52:29:33: f9:f1:0e:19:6e:70:30:54:d2:64:98:e4:25:e8:d1: 12:96:d6:31:f7:53:cb:ac:7b:4b:db:8f:8d:45:71: b1:50:bc:05:01:d7:38:9e:63:4e:63:ab:9b:34:ff: 35:fe:52:c3:ed:a1:ef:3e:e6:9b:22:99:01:ec:88: 37:90:da:b2:e9:14:e9:a7:b5:d9:08:07:be:02:f2: 0a:36:35:23:ba:2f:b3:03:27:76:fa:de:35:b7:94: 90:4a:51:ea:93:5d:07:e2:d9:d8:55:bb:15:3a:61: 0e:0c:ae:78:b1:17:c4:17:73:ea:e9:cc:be:c7:a5: 20:b4:e2:b3:16:ab:84:ae:d2:68:52:63:a0:ca:8c: 56:b1:ad:5b:db:9a:76:9e:3b:8c:b0:a0:47:bd:36: 51:cf:b1:5d:16:23:1c:50:1d:08:2b:e9:de:16:4d: b4:ea:ad:53:6a:e9:4c:cc:e6:83:40:54:54:fa:b3: 70:be:e8:ba:e0:a5:55:81:1d:f4:35:76:c2:92:6b: 96:0e:be:43:c4:28:98:91:d6:78:77:50:f0:a5:b8: d5:a1:e0:e5:21:58:96:ef:9d:09:1a:a3:e9:2c:b5: f9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:1B:12:17:55:4D:10:34:BE:46:29:FD:B3:E5:DB:AF:F2:5E:0E:6F X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:45:16:07:68:26:b1:58:62:16:ed:13:4e:2e:c1:c5:3b:75: 77:69:86:8b:fa:4f:26:02:18:87:28:47:b5:50:c9:67:02:7b: a6:50:25:d9:1e:d7:fe:7f:df:53:68:cc:b5:91:b0:3e:b5:fe: b0:3e:d0:0c:e7:a6:44:a5:33:44:fa:fb:ee:a5:83:b2:57:0e: 96:4e:82:af:63:52:b9:34:20:12:d8:d7:97:3f:6e:fa:ce:bb: 78:86:1c:42:70:b6:19:43:77:4b:cf:40:5f:c9:f2:a9:1f:d7: 93:05:f6:d7:99:35:d4:93:98:c3:aa:e1:40:f8:e5:3f:c2:9b: d9:4e:4c:7a:da:3d:47:f2:8c:e9:11:8a:99:4a:1c:d9:1c:a5: 3a:0a:ba:78:ee:1d:5a:65:6b:24:ac:35:89:35:1a:bc:84:e6: b6:4c:e3:13:de:40:8d:b6:1b:31:19:b2:f9:d8:14:57:a5:cd: 34:e0:23:92:5a:97:71:56:23:ac:fa:49:e1:4c:43:f0:af:62: 73:f9:bd:b6:44:36:a3:20:6c:4c:7d:d2:ee:aa:27:63:45:02: f3:2d:eb:f2:9b:be:b3:52:3e:68:eb:63:b4:88:b1:da:a4:fb: 38:e1:80:ea:8f:4b:5c:61:6b:41:90:16:45:62:d1:96:b9:86: a3:8e:8b:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUwNDI3MDAzNzA3WhcNMjUwNTA0MDAzNzA3WjAYMRYwFAYD VQQDEw02ODBkN2MzNC1hNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7APtw+hv6gtZ96L0UwEw7SMicxiEuPG1k0lSKTP58Q4ZbnAwVNJkmOQl6NES ltYx91PLrHtL24+NRXGxULwFAdc4nmNOY6ubNP81/lLD7aHvPuabIpkB7Ig3kNqy 6RTpp7XZCAe+AvIKNjUjui+zAyd2+t41t5SQSlHqk10H4tnYVbsVOmEODK54sRfE F3Pq6cy+x6UgtOKzFquErtJoUmOgyoxWsa1b25p2njuMsKBHvTZRz7FdFiMcUB0I K+neFk206q1TaulMzOaDQFRU+rNwvui64KVVgR30NXbCkmuWDr5DxCiYkdZ4d1Dw pbjVoeDlIViW750JGqPpLLX5rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwbEhdV TRA0vkYp/bPl26/yXg5vMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1RRYHaCaxWGIW7RNOLsHFO3V3aYaL+k8mAhiHKEe1UMlnAnumUCXZ Htf+f99TaMy1kbA+tf6wPtAM56ZEpTNE+vvupYOyVw6WToKvY1K5NCAS2NeXP276 zrt4hhxCcLYZQ3dLz0BfyfKpH9eTBfbXmTXUk5jDquFA+OU/wpvZTkx62j1H8ozp EYqZShzZHKU6Crp47h1aZWskrDWJNRq8hOa2TOMT3kCNthsxGbL52BRXpc004COS WpdxViOs+knhTEPwr2Jz+b22RDajIGxMfdLuqidjRQLzLevym76zUj5o62O0iLHa pPs44YDqj0tcYWtBkBZFYtGWuYajjouw -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:49 2025 by rpki-client on console.sobornost.net