$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft File: ngVdNc8yklM1zJQMyIKLY91gcws.mft (raw, json) Hash identifier: zQPBBanp3o4N8cg/uzsym4RKCdAbdpFqjrwjSFxD+R8= Subject key identifier: 92:93:DD:5C:CB:A1:BF:36:9E:07:40:E3:50:45:DA:01:1D:E6:38:95 Authority key identifier: 9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B Certificate issuer: /CN=A915BC2A/serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Certificate serial: 0180 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft Manifest number: 017A Signing time: Fri 25 Apr 2025 02:52:31 +0000 Manifest this update: Fri 25 Apr 2025 02:52:30 +0000 Manifest next update: Fri 02 May 2025 02:52:30 +0000 Files and hashes: 1: ngVdNc8yklM1zJQMyIKLY91gcws.crl (hash: 9IwmCodArIi6oA0wGvAxdskQsCTgmQNzesn/SlEuXV0=) 2: 3A173FE4DE1C11ED8935D41DC4F9AE02.roa (hash: YAYh7VPX1+fJkNqhGMAOJAwYwHnzOloh8Ae+N/XNZQY=) 3: 398211B2DE1C11ED8935D41DC4F9AE02.roa (hash: 0dIV1BuMrGTI1eJ/F5rbagneYyyNugrEiUlk6vS+T68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC2A, serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Validity Not Before: Apr 25 02:52:30 2025 GMT Not After : May 2 02:52:30 2025 GMT Subject: CN=680af8ef-da61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e6:08:cc:ef:c2:c3:cf:d0:cb:67:c8:e2:a5: f6:65:5c:d6:0a:54:90:66:1e:1d:57:c8:21:93:ae: 84:69:3c:cc:1c:71:3c:11:05:11:44:f1:f2:0f:fe: c9:00:fb:41:22:a6:bf:15:b0:c1:c2:e2:22:5a:9a: 8e:3c:f1:04:58:08:49:4b:2b:90:7a:10:1d:b3:72: 70:0f:aa:62:00:e3:d5:25:0c:8c:c5:dd:ce:f3:d4: 65:23:18:9c:1a:bc:d5:1f:6f:e4:07:b6:c8:ac:27: 21:ab:a6:56:a5:6e:d5:1b:1a:a9:f1:0c:c3:c4:b6: 13:c8:8f:cf:47:2b:e4:07:72:fe:61:98:9e:2a:d7: 1d:87:d5:a5:c5:38:b2:c2:bd:59:cf:93:50:16:0a: f6:87:d9:68:76:8d:29:36:de:65:02:e5:3a:25:a9: a5:49:b6:39:cc:3c:23:8b:c2:29:3d:82:5f:f7:61: 44:83:d3:ac:84:f2:0f:80:75:c3:7c:0b:77:b7:43: 14:8c:5d:c9:0b:59:f7:82:9d:71:09:7d:03:ea:a9: 70:0e:7f:26:be:89:eb:20:d9:9b:7b:fb:ee:fc:36: 1c:5b:36:7e:d9:46:6d:de:fb:54:f8:62:f6:ea:5d: 87:cc:ab:e1:51:d1:4c:7a:5b:bd:8f:39:93:48:ad: dc:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:93:DD:5C:CB:A1:BF:36:9E:07:40:E3:50:45:DA:01:1D:E6:38:95 X509v3 Authority Key Identifier: keyid:9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:95:38:3e:36:cc:24:8b:1b:b6:ee:dc:fd:e0:91:07:ca:cf: bc:ad:52:5a:cd:92:ae:82:2e:44:a4:cc:8b:30:5b:91:2d:3b: e6:7f:9d:a1:b4:ec:5b:ab:62:ce:f4:80:d7:12:34:f5:63:5f: 5c:80:b3:3f:00:33:81:2b:cf:26:55:98:df:36:e3:aa:54:ac: 89:76:db:5e:8c:f3:76:3c:68:5e:2d:6f:8e:e0:da:9e:af:a5: a9:a7:ba:a7:42:f5:5b:e8:99:5b:7e:cc:d5:b5:c3:8d:fe:ac: eb:87:de:4d:e2:2c:32:71:56:5b:ff:2b:00:0a:1a:8e:c3:86: 95:42:f3:d7:07:7a:ce:13:14:4c:71:77:08:14:c6:9f:c9:93: 90:be:31:f7:ae:6f:ef:42:c5:47:f2:6e:f2:c3:1e:3a:25:30: 54:2f:f2:44:64:2d:b2:96:19:68:ec:3d:1a:28:b8:8b:52:b7: c3:3a:b8:98:f9:38:8c:38:66:84:f3:c1:c6:c6:d0:b2:df:1b: 21:8a:b7:21:8d:76:66:e6:9f:b8:e2:9b:6e:1a:4f:53:f4:75: b8:02:9b:aa:72:6c:78:4b:1a:31:05:19:80:33:d2:57:80:b3: 3b:0f:0b:13:7b:3b:37:77:82:ee:c4:6c:2a:62:72:12:17:d3: fe:bf:fc:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDMkExMTAvBgNVBAUTKDlFMDU1RDM1Q0YzMjkyNTMzNUNDOTQwQ0M4ODI4QjYz REQ2MDczMEIwHhcNMjUwNDI1MDI1MjMwWhcNMjUwNTAyMDI1MjMwWjAYMRYwFAYD VQQDEw02ODBhZjhlZi1kYTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+YIzO/Cw8/Qy2fI4qX2ZVzWClSQZh4dV8ghk66EaTzMHHE8EQURRPHyD/7J APtBIqa/FbDBwuIiWpqOPPEEWAhJSyuQehAds3JwD6piAOPVJQyMxd3O89RlIxic GrzVH2/kB7bIrCchq6ZWpW7VGxqp8QzDxLYTyI/PRyvkB3L+YZieKtcdh9WlxTiy wr1Zz5NQFgr2h9lodo0pNt5lAuU6JamlSbY5zDwji8IpPYJf92FEg9OshPIPgHXD fAt3t0MUjF3JC1n3gp1xCX0D6qlwDn8mvonrINmbe/vu/DYcWzZ+2UZt3vtU+GL2 6l2HzKvhUdFMelu9jzmTSK3cSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKT3VzL ob82ngdA41BF2gEd5jiVMB8GA1UdIwQYMBaAFJ4FXTXPMpJTNcyUDMiCi2PdYHML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkMyQS9FRDlGOERCQURF MTExMUVEODVFQzBBNDlDNEY5QUUwMi9uZ1ZkTmM4eWtsTTF6SlFNeUlLTFk5MWdj d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25nVmROYzh5a2xNMXpKUU15SUtMWTkxZ2N3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkMyQS9FRDlGOERCQURFMTExMUVEODVFQzBBNDlDNEY5QUUwMi9uZ1ZkTmM4eWts TTF6SlFNeUlLTFk5MWdjd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBElTg+Nswkixu27tz94JEHys+8rVJazZKugi5EpMyLMFuRLTvmf52h tOxbq2LO9IDXEjT1Y19cgLM/ADOBK88mVZjfNuOqVKyJdttejPN2PGheLW+O4Nqe r6Wpp7qnQvVb6JlbfszVtcON/qzrh95N4iwycVZb/ysAChqOw4aVQvPXB3rOExRM cXcIFMafyZOQvjH3rm/vQsVH8m7ywx46JTBUL/JEZC2ylhlo7D0aKLiLUrfDOriY +TiMOGaE88HGxtCy3xshirchjXZm5p+44ptuGk9T9HW4Apuqcmx4SxoxBRmAM9JX gLM7DwsTezs3d4LuxGwqYnISF9P+v/y4 -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:53 2025 by rpki-client on console.sobornost.net