$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft File: MsAhMRti_kUAvI5OD0hSxkvF2ss.mft (raw, json) Hash identifier: BmL0evG2HwL1sBtIAFUcTT6fTLwDeUZsvDoMYzuPhSU= Subject key identifier: E2:CB:5A:0B:ED:A3:BE:63:8C:85:2C:15:A2:AC:9F:12:58:B4:5F:03 Authority key identifier: 32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB Certificate issuer: /CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft Manifest number: 5E Signing time: Sun 27 Apr 2025 04:32:38 +0000 Manifest this update: Sun 27 Apr 2025 04:32:38 +0000 Manifest next update: Sun 04 May 2025 04:32:38 +0000 Files and hashes: 1: MsAhMRti_kUAvI5OD0hSxkvF2ss.crl (hash: /d0OzvPsR+viQJvU2t3E7CideHlT/nzYTsPT75Fme2s=) 2: 37DEC83C9DEC11EFB004850FC4F9AE02.roa (hash: AzFl0RFcs8OJznRZfBYgmDybc5F7V12CS5camGFMWxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3, serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Validity Not Before: Apr 27 04:32:38 2025 GMT Not After : May 4 04:32:38 2025 GMT Subject: CN=680db366-8024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:41:be:7d:26:68:2c:8b:b1:91:32:e9:a7:6c: 23:9f:30:63:e2:05:01:1d:a4:c8:03:ce:0d:6d:9b: 9a:d6:0b:6c:e4:dc:5e:50:9b:62:e3:32:69:b3:98: 3a:8f:3b:f7:1a:5a:0f:ff:cf:b7:bb:73:3b:a0:89: 68:eb:24:3c:7f:0d:f8:66:32:50:ec:e0:53:f8:ad: 69:ce:95:b2:78:8a:b0:f7:23:d0:e1:f0:09:5e:dc: cf:0b:e3:d8:da:81:a0:51:2b:ad:fb:9b:c2:49:9d: 2e:40:c6:bc:5a:e6:92:ee:c0:2b:f0:9e:a7:ee:4b: 37:5d:31:d4:87:d8:92:91:4b:4a:10:f2:d1:53:cc: 31:45:54:3f:f9:06:99:41:44:24:3a:49:8f:91:05: ef:33:c7:0f:b1:e2:25:d5:76:a7:2c:38:15:a4:f0: ea:13:5a:a8:4e:36:57:5b:af:80:a2:bf:e5:a6:82: 87:86:f2:21:d4:b3:ad:d6:87:a2:8c:42:cf:73:4c: 35:f8:80:ca:16:ce:81:31:03:09:f4:c4:5e:b2:95: da:b2:6a:00:e2:30:5b:cd:a9:ab:a5:9a:a7:d6:d8: e6:2b:ad:bc:74:7e:50:ba:db:75:3c:c7:32:0b:ae: b3:51:c0:77:e5:b6:c7:f0:45:66:14:a0:5b:87:b8: c2:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CB:5A:0B:ED:A3:BE:63:8C:85:2C:15:A2:AC:9F:12:58:B4:5F:03 X509v3 Authority Key Identifier: keyid:32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:c3:bc:63:2c:2c:d2:2e:e5:7f:ec:9b:9e:bd:f7:7d:40:65: ad:d8:e5:5e:59:88:46:72:6a:d5:72:7f:49:0e:78:c2:64:bd: fc:ee:b5:7f:c3:6e:16:70:cf:43:eb:1f:5f:53:83:5b:1a:31: b0:df:02:22:cf:f9:c8:47:21:dc:a6:c1:72:d6:31:4d:0a:12: 49:73:c4:2e:9c:92:3e:fe:46:f1:98:95:b6:d0:95:4d:7d:e3: 0f:63:8e:4e:36:27:f9:e6:e5:8e:d2:9a:52:e2:2d:e1:c0:68: eb:ba:eb:81:30:49:79:e4:4d:85:88:2f:ff:6c:af:00:be:9b: 98:0c:93:4c:70:c0:29:4a:c3:4f:14:38:4f:06:a7:5b:d7:56: 7f:53:22:8c:a1:48:98:77:9c:88:e5:c4:3e:03:f9:7b:bf:e4: 64:5e:ee:c9:82:fa:39:75:f6:2c:aa:b9:35:b1:cb:8a:46:9c: 44:6d:ca:91:bc:6b:17:b7:dd:38:59:b3:d4:80:42:02:65:76: b5:99:96:0b:1f:16:a9:1a:d4:58:9e:eb:40:cb:ab:f0:8e:9b: 51:a7:35:b2:b6:05:23:30:b9:29:d0:b0:34:b4:61:3e:78:03: a6:1b:e4:93:c0:16:f6:50:22:67:91:a8:06:bf:fa:50:81:86: 44:95:2f:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RDhGMzExMC8GA1UEBRMoMzJDMDIxMzExQjYyRkU0NTAwQkM4RTRFMEY0ODUyQzY0 QkM1REFDQjAeFw0yNTA0MjcwNDMyMzhaFw0yNTA1MDQwNDMyMzhaMBgxFjAUBgNV BAMTDTY4MGRiMzY2LTgwMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaQb59Jmgsi7GRMumnbCOfMGPiBQEdpMgDzg1tm5rWC2zk3F5Qm2LjMmmzmDqP O/caWg//z7e7czugiWjrJDx/DfhmMlDs4FP4rWnOlbJ4irD3I9Dh8Ale3M8L49ja gaBRK637m8JJnS5Axrxa5pLuwCvwnqfuSzddMdSH2JKRS0oQ8tFTzDFFVD/5BplB RCQ6SY+RBe8zxw+x4iXVdqcsOBWk8OoTWqhONldbr4Civ+WmgoeG8iHUs63Wh6KM Qs9zTDX4gMoWzoExAwn0xF6yldqyagDiMFvNqaulmqfW2OYrrbx0flC623U8xzIL rrNRwHfltsfwRWYUoFuHuMKHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4staC+2j vmOMhSwVoqyfEli0XwMwHwYDVR0jBBgwFoAUMsAhMRti/kUAvI5OD0hSxkvF2ssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVEOEYzL0M1N0YyM0FFOUIw NzExRUY4MzdFQTAxMkM0RjlBRTAyL01zQWhNUnRpX2tVQXZJNU9EMGhTeGt2RjJz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTXNBaE1SdGlfa1VBdkk1T0QwaFN4a3ZGMnNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVE OEYzL0M1N0YyM0FFOUIwNzExRUY4MzdFQTAxMkM0RjlBRTAyL01zQWhNUnRpX2tV QXZJNU9EMGhTeGt2RjJzcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKrDvGMsLNIu5X/sm569931AZa3Y5V5ZiEZyatVyf0kOeMJkvfzutX/D bhZwz0PrH19Tg1saMbDfAiLP+chHIdymwXLWMU0KEklzxC6ckj7+RvGYlbbQlU19 4w9jjk42J/nm5Y7SmlLiLeHAaOu664EwSXnkTYWIL/9srwC+m5gMk0xwwClKw08U OE8Gp1vXVn9TIoyhSJh3nIjlxD4D+Xu/5GRe7smC+jl19iyquTWxy4pGnERtypG8 axe33ThZs9SAQgJldrWZlgsfFqka1Fie60DLq/COm1GnNbK2BSMwuSnQsDS0YT54 A6Yb5JPAFvZQImeRqAa/+lCBhkSVLwo= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:47 2025 by rpki-client on console.sobornost.net