$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: fJJ49rpZ061a2iWrMK0+L3B44AP/ec3PbDXM+NEKlc0= Subject key identifier: 97:4D:66:5E:5D:8F:1F:AE:74:21:E8:72:C6:9E:D7:32:FE:11:0A:AC Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: A8 Signing time: Sun 27 Apr 2025 04:58:21 +0000 Manifest this update: Sun 27 Apr 2025 04:58:20 +0000 Manifest next update: Sun 04 May 2025 04:58:20 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: 5nqyGfGT5ElUa6vEXv+u11I+UKy55vv3SzO7zM1cGY0=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: 8wJfVmwicvQp5ybkXyvh/U8tiFP/mOR8lTRB18DXQ0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Apr 27 04:58:20 2025 GMT Not After : May 4 04:58:20 2025 GMT Subject: CN=680db96d-f394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:43:c9:66:a6:fd:3a:6a:f3:15:d3:45:d7:8d: 30:a1:9d:81:3f:c2:4a:9f:d6:41:df:77:d3:05:fd: 40:47:bd:29:cf:4a:1f:13:a5:a8:f4:5c:10:e9:78: 89:56:9f:67:be:4c:fe:62:16:b2:25:7a:4b:c4:83: cd:e1:99:7b:e2:f0:76:5d:22:35:97:49:5b:13:f6: 5a:57:b0:a3:4b:75:cc:fa:e4:92:8f:a6:ad:73:91: 61:c6:dc:eb:47:13:62:e6:81:c6:01:f5:a8:e1:b0: c1:11:d1:29:8e:1f:2a:34:9a:f8:fd:99:34:a8:40: ad:27:8a:8a:bd:3b:c1:b3:d8:e3:f6:7a:1c:5f:7e: 6b:85:93:57:8d:06:db:76:8f:a9:fb:bf:c5:88:4e: 91:2d:be:24:5b:e7:3c:ce:a6:9b:b5:50:8f:26:9b: 7a:2b:38:bb:a2:6f:0f:12:a2:ce:0d:ec:98:2e:1c: cb:92:63:35:c7:c5:5c:33:93:13:b0:a3:6f:71:2d: a4:08:56:89:0b:5d:7a:13:55:f2:a0:27:7b:c7:1e: 71:ba:f8:e5:90:40:35:66:63:7e:12:31:19:13:ae: 90:79:ba:82:be:17:fb:bf:63:bd:cb:e6:5e:2e:36: 8b:74:d2:5c:83:ea:ed:fa:c4:4b:56:9a:74:1a:ca: f1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:4D:66:5E:5D:8F:1F:AE:74:21:E8:72:C6:9E:D7:32:FE:11:0A:AC X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:aa:0b:18:96:69:bb:6f:bc:33:7a:3c:1d:f4:de:af:f8:05: 92:2a:be:53:94:f3:13:33:36:24:ff:23:84:4f:a8:e6:c3:a1: 94:47:44:41:28:d4:cb:29:17:fb:6d:a2:93:9e:d7:92:90:30: 73:e2:e4:ef:ae:3c:c6:b2:49:ad:35:98:61:9a:f1:e4:b6:a9: ee:57:17:d3:62:a9:27:4b:10:93:67:50:59:49:f0:9a:b4:0d: 3c:bb:34:a0:2e:05:7e:e5:ae:c4:6c:42:97:44:fb:0e:20:e1: e9:f9:73:9a:1d:13:2e:c9:55:45:50:05:4b:b5:58:14:42:d2: d9:e2:cf:bb:a3:2d:90:1c:df:cb:91:e9:d1:68:5f:32:10:4f: 82:bb:f5:51:d3:77:ff:e0:4c:5e:f5:49:c1:52:6d:fe:0e:73: 0e:a1:24:61:15:8f:c5:6e:bc:6d:46:4e:64:b4:97:5d:2e:80: a2:7e:7d:d2:44:8a:8e:aa:95:22:ca:9c:56:b9:16:21:0a:d8: 6a:50:da:5e:eb:ed:b0:87:bd:8d:f0:db:f1:4c:48:fe:f6:c0: 97:fd:b3:66:49:30:5d:db:60:8c:13:a2:c8:76:1c:4b:2c:8d: b8:49:31:59:22:b3:d6:e0:b3:30:cc:e7:01:f6:b6:a5:61:1a: 4e:a0:19:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUwNDI3MDQ1ODIwWhcNMjUwNTA0MDQ1ODIwWjAYMRYwFAYD VQQDEw02ODBkYjk2ZC1mMzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUPJZqb9OmrzFdNF140woZ2BP8JKn9ZB33fTBf1AR70pz0ofE6Wo9FwQ6XiJ Vp9nvkz+YhayJXpLxIPN4Zl74vB2XSI1l0lbE/ZaV7CjS3XM+uSSj6atc5Fhxtzr RxNi5oHGAfWo4bDBEdEpjh8qNJr4/Zk0qECtJ4qKvTvBs9jj9nocX35rhZNXjQbb do+p+7/FiE6RLb4kW+c8zqabtVCPJpt6Kzi7om8PEqLODeyYLhzLkmM1x8VcM5MT sKNvcS2kCFaJC116E1XyoCd7xx5xuvjlkEA1ZmN+EjEZE66QebqCvhf7v2O9y+Ze LjaLdNJcg+rt+sRLVpp0GsrxqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdNZl5d jx+udCHocsae1zL+EQqsMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbqgsYlmm7b7wzejwd9N6v+AWSKr5TlPMTMzYk/yOET6jmw6GUR0RB KNTLKRf7baKTnteSkDBz4uTvrjzGskmtNZhhmvHktqnuVxfTYqknSxCTZ1BZSfCa tA08uzSgLgV+5a7EbEKXRPsOIOHp+XOaHRMuyVVFUAVLtVgUQtLZ4s+7oy2QHN/L kenRaF8yEE+Cu/VR03f/4Exe9UnBUm3+DnMOoSRhFY/FbrxtRk5ktJddLoCifn3S RIqOqpUiypxWuRYhCthqUNpe6+2wh72N8NvxTEj+9sCX/bNmSTBd22CME6LIdhxL LI24STFZIrPW4LMwzOcB9ralYRpOoBmQ -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:48 2025 by rpki-client on console.sobornost.net