$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft File: hobJK4fdXdLuKrtA7HPxePYEWjQ.mft (raw, json) Hash identifier: kVBpxDW9xd2zEwaSDye3cqBR/Gx2KcWGs8cW5FUnURo= Subject key identifier: 50:95:7D:F5:DF:B2:28:7A:B9:2B:25:14:DE:C0:F8:2F:8B:13:2A:9F Authority key identifier: 86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 Certificate issuer: /CN=A9165DB1/serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft Manifest number: 0263 Signing time: Sun 27 Apr 2025 01:22:41 +0000 Manifest this update: Sun 27 Apr 2025 01:22:40 +0000 Manifest next update: Sun 04 May 2025 01:22:40 +0000 Files and hashes: 1: hobJK4fdXdLuKrtA7HPxePYEWjQ.crl (hash: ECHglmNj/oVEvA2ayv+xCCeZ3r/WG74jsWrFFBA3QHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Validity Not Before: Apr 27 01:22:40 2025 GMT Not After : May 4 01:22:40 2025 GMT Subject: CN=680d86e1-8df1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:32:07:d0:15:b3:52:d3:8b:5a:82:23:57: 0d:5f:bc:05:8a:92:d9:8c:3d:27:80:29:35:5d:84: e1:54:d1:44:97:ff:c8:3d:c7:50:25:ce:a7:66:bc: 66:1a:6f:6e:14:7e:26:dd:d2:56:19:58:9c:a6:76: e9:04:85:6e:67:41:c5:a6:fe:47:ee:a7:2a:59:6e: 83:95:91:95:b1:a8:01:9c:e7:24:5f:4f:ee:7d:d9: 80:1d:10:50:ec:71:fd:37:a0:a8:6a:97:3c:0e:6f: 27:38:8d:fb:38:46:22:79:b8:28:5e:09:35:43:fc: fb:ea:e3:fb:34:d0:5d:09:5c:a0:9f:1b:31:f3:65: 25:92:b9:91:4e:03:58:1a:9f:24:9c:7a:13:68:55: 50:b5:38:c3:77:aa:54:f8:98:39:1e:8b:d9:45:7b: f4:67:62:86:23:8c:2d:07:21:fa:ae:9a:ce:92:55: 98:e8:59:80:6b:2e:82:ec:5d:8f:1b:6a:21:1b:ad: 7f:f3:1c:f3:f8:41:3e:8b:9f:8f:23:0e:c8:45:08: f3:27:e2:48:95:e3:50:f9:eb:15:67:7f:50:68:92: a4:cb:e4:3f:87:be:e0:08:d0:cf:7f:d8:da:b6:ba: 44:bc:13:10:ca:13:70:96:84:68:64:32:d6:a9:05: bf:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:95:7D:F5:DF:B2:28:7A:B9:2B:25:14:DE:C0:F8:2F:8B:13:2A:9F X509v3 Authority Key Identifier: keyid:86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:d3:5d:a3:68:a8:31:f8:4f:d0:4a:c6:0f:78:56:a4:b2:b3: 70:4e:e0:c2:59:0d:5c:46:47:e5:97:ee:1b:26:aa:44:85:7e: 49:1e:f0:78:e4:01:42:01:02:4c:eb:68:4d:2d:98:a1:d7:c5: 50:70:5f:8e:05:fb:ff:8c:e9:52:21:c6:41:03:f4:8b:0f:c7: ea:59:8b:96:2c:e8:62:4f:d9:45:51:2d:ae:5a:a3:9b:0f:e3: 7c:12:03:79:a7:67:6c:66:db:af:b4:28:a0:5c:6d:a5:b0:0d: ca:7d:4c:75:18:47:7c:c3:fd:7d:4a:e0:95:69:ee:d7:0a:da: b4:9f:ad:94:c1:f0:9b:cb:79:86:00:59:43:05:18:ba:ca:d5: 9e:6d:78:14:c0:4e:5f:e0:5b:4e:1a:62:ae:dd:fa:c5:0d:f9: 25:01:d9:05:0e:2f:d8:f8:0e:e2:cc:e2:a3:88:72:69:f1:0f: b5:e7:ab:08:0b:9a:30:ed:84:ca:b7:27:bf:5e:3f:8f:84:7b: 10:98:ec:84:8b:68:e6:8e:ff:29:b4:42:81:e5:29:ef:c8:83: 8a:f3:86:13:44:55:8c:78:3f:6c:75:7c:cf:bc:be:48:10:97: 66:05:72:1a:4b:f7:a9:72:22:5d:06:c2:c7:96:78:68:09:e7: 0f:73:87:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDg2ODZDOTJCODdERDVERDJFRTJBQkI0MEVDNzNGMTc4 RjYwNDVBMzQwHhcNMjUwNDI3MDEyMjQwWhcNMjUwNTA0MDEyMjQwWjAYMRYwFAYD VQQDEw02ODBkODZlMS04ZGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QsyB9AVs1LTi1qCI1cNX7wFipLZjD0ngCk1XYThVNFEl//IPcdQJc6nZrxm Gm9uFH4m3dJWGVicpnbpBIVuZ0HFpv5H7qcqWW6DlZGVsagBnOckX0/ufdmAHRBQ 7HH9N6Coapc8Dm8nOI37OEYiebgoXgk1Q/z76uP7NNBdCVygnxsx82UlkrmRTgNY Gp8knHoTaFVQtTjDd6pU+Jg5HovZRXv0Z2KGI4wtByH6rprOklWY6FmAay6C7F2P G2ohG61/8xzz+EE+i5+PIw7IRQjzJ+JIleNQ+esVZ39QaJKky+Q/h77gCNDPf9ja trpEvBMQyhNwloRoZDLWqQW/vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCVffXf sih6uSslFN7A+C+LEyqfMB8GA1UdIwQYMBaAFIaGySuH3V3S7iq7QOxz8Xj2BFo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81QTQ5NkY4ODBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhkTHVLcnRBN0hQeGVQWUVX alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvYkpLNGZkWGRMdUtydEE3SFB4ZVBZRVdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NURCMS81QTQ5NkY4ODBFMTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhk THVLcnRBN0hQeGVQWUVXalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy012jaKgx+E/QSsYPeFaksrNwTuDCWQ1cRkfll+4bJqpEhX5JHvB4 5AFCAQJM62hNLZih18VQcF+OBfv/jOlSIcZBA/SLD8fqWYuWLOhiT9lFUS2uWqOb D+N8EgN5p2dsZtuvtCigXG2lsA3KfUx1GEd8w/19SuCVae7XCtq0n62UwfCby3mG AFlDBRi6ytWebXgUwE5f4FtOGmKu3frFDfklAdkFDi/Y+A7izOKjiHJp8Q+156sI C5ow7YTKtye/Xj+PhHsQmOyEi2jmjv8ptEKB5SnvyIOK84YTRFWMeD9sdXzPvL5I EJdmBXIaS/epciJdBsLHlnhoCecPc4fn -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:57 2025 by rpki-client on console.sobornost.net