$ rpki-client -vvf rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft File: cXGYzRpGea2dRS7h2wLQASpDdOw.mft (raw, json) Hash identifier: uRfOuP+Um9NWv7dFeCVhyOigVLauhG6UjRsdwBvAfyM= Subject key identifier: 16:36:D1:3A:B2:55:CF:77:95:DC:16:21:22:B8:CF:A4:C6:FA:F8:7C Authority key identifier: 71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC Certificate issuer: /CN=A9169F49/serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft Manifest number: 1D Signing time: Sun 27 Apr 2025 06:42:19 +0000 Manifest this update: Sun 27 Apr 2025 06:42:18 +0000 Manifest next update: Sun 04 May 2025 06:42:18 +0000 Files and hashes: 1: cXGYzRpGea2dRS7h2wLQASpDdOw.crl (hash: UVo7/2dbBE3vfTpgzHyG7P2OjH9PamEzarc27SC3pLY=) 2: 2B42D1D8F9B611EFB3AB154BC4F9AE02.roa (hash: qRFt1VDcs2OHFjFWZc9CCxRhXeBrmwOFxAL6+b0Q2Co=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169F49, serialNumber=717198CD1A4679AD9D452EE1DB02D0012A4374EC Validity Not Before: Apr 27 06:42:18 2025 GMT Not After : May 4 06:42:18 2025 GMT Subject: CN=680dd1cb-0406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:3c:13:61:a1:c9:2e:e1:61:e9:45:5e:c6:01: 30:76:ce:bd:de:d1:e6:cd:cb:09:3c:51:4a:1a:15: 61:f2:02:6a:49:2d:3d:80:5c:20:50:78:2b:07:62: 04:87:e2:e3:33:01:12:49:cd:d7:d8:db:4e:d9:43: e1:77:de:22:e4:63:85:4c:c4:a7:43:c0:a8:3f:46: 11:f8:7f:07:10:ab:f1:88:9a:4f:1b:b6:e9:60:26: 11:45:0c:87:30:a7:35:8b:16:0d:91:66:78:94:ba: 6c:84:a1:d3:4c:f5:ae:6c:57:d6:8a:a1:a5:66:31: 82:c9:04:5f:b8:a0:14:6e:81:79:f2:f5:75:c2:81: cc:bf:90:3d:13:be:f8:ef:71:1f:b1:ee:fb:42:d2: 18:d2:fe:34:0a:69:03:45:dd:37:f4:14:dc:70:1b: 01:4e:f7:53:ee:5b:11:67:ef:26:49:83:16:10:d3: 73:00:43:40:6a:2e:12:7a:2d:54:f2:46:77:e9:14: 84:eb:f9:91:84:2b:72:b2:47:41:c7:d3:fa:fb:df: 71:fa:57:29:a7:2c:08:7c:c1:5b:96:8c:56:d2:ca: 26:e3:8c:ac:96:76:27:7c:d2:b9:5a:c8:bd:25:9a: c2:3d:7b:01:37:59:39:a0:30:c3:5e:d5:e4:8d:2c: c6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:36:D1:3A:B2:55:CF:77:95:DC:16:21:22:B8:CF:A4:C6:FA:F8:7C X509v3 Authority Key Identifier: keyid:71:71:98:CD:1A:46:79:AD:9D:45:2E:E1:DB:02:D0:01:2A:43:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXGYzRpGea2dRS7h2wLQASpDdOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169F49/B2C5FB9AF9B511EFA5D73C47C4F9AE02/cXGYzRpGea2dRS7h2wLQASpDdOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:8d:6b:b9:03:69:c3:ce:c1:a0:47:92:a3:41:26:59:4d:84: f0:36:a3:f1:70:47:c9:0e:b4:a3:98:77:e1:94:9e:7b:59:ca: 08:9f:1d:5b:fb:8d:e6:41:a7:5a:52:e1:6b:50:c0:34:6d:11: 53:f5:08:21:aa:58:46:85:bc:13:91:f5:1c:97:4f:39:7a:ed: 32:15:20:f0:95:1f:00:84:13:71:f8:2d:2b:96:6b:33:6c:ce: b5:c8:4c:6e:05:11:d0:37:f5:f6:48:aa:77:e6:e9:8d:de:57: 4e:56:2c:49:dd:fd:68:af:4a:c0:45:c2:55:36:00:74:7d:8d: 32:cd:d6:14:d9:ad:67:8e:cb:60:96:0a:9a:6b:53:26:cf:3f: 64:2d:a7:22:a0:e1:78:90:f0:46:f2:47:06:ad:9f:69:51:82: d9:ac:32:f3:c8:b1:c2:a8:87:82:36:a1:4a:05:2b:ce:4b:65: 01:cd:7d:f1:1c:63:23:e1:3c:00:47:22:00:5e:dd:6a:6d:89: 1d:c6:00:a0:6e:56:7d:07:11:8d:cf:07:0a:c5:b5:36:02:2a: aa:50:a6:d4:b5:e2:29:1c:10:2a:57:dc:b0:7c:0e:ba:cd:ba: a7:88:62:73:cf:3e:63:7d:1e:36:43:c5:9a:35:1f:cc:70:ed: 5a:15:11:14 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUY0OTExMC8GA1UEBRMoNzE3MTk4Q0QxQTQ2NzlBRDlENDUyRUUxREIwMkQwMDEy QTQzNzRFQzAeFw0yNTA0MjcwNjQyMThaFw0yNTA1MDQwNjQyMThaMBgxFjAUBgNV BAMTDTY4MGRkMWNiLTA0MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrPBNhocku4WHpRV7GATB2zr3e0ebNywk8UUoaFWHyAmpJLT2AXCBQeCsHYgSH 4uMzARJJzdfY207ZQ+F33iLkY4VMxKdDwKg/RhH4fwcQq/GImk8btulgJhFFDIcw pzWLFg2RZniUumyEodNM9a5sV9aKoaVmMYLJBF+4oBRugXny9XXCgcy/kD0Tvvjv cR+x7vtC0hjS/jQKaQNF3Tf0FNxwGwFO91PuWxFn7yZJgxYQ03MAQ0BqLhJ6LVTy RnfpFITr+ZGEK3KyR0HH0/r733H6VymnLAh8wVuWjFbSyibjjKyWdid80rlayL0l msI9ewE3WTmgMMNe1eSNLManAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFjbROrJV z3eV3BYhIrjPpMb6+HwwHwYDVR0jBBgwFoAUcXGYzRpGea2dRS7h2wLQASpDdOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5RjQ5L0IyQzVGQjlBRjlC NTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEyZFJTN2gyd0xRQVNwRGRP dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY1hHWXpScEdlYTJkUlM3aDJ3TFFBU3BEZE93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 RjQ5L0IyQzVGQjlBRjlCNTExRUZBNUQ3M0M0N0M0RjlBRTAyL2NYR1l6UnBHZWEy ZFJTN2gyd0xRQVNwRGRPdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC2Na7kDacPOwaBHkqNBJllNhPA2o/FwR8kOtKOYd+GUnntZygifHVv7 jeZBp1pS4WtQwDRtEVP1CCGqWEaFvBOR9RyXTzl67TIVIPCVHwCEE3H4LSuWazNs zrXITG4FEdA39fZIqnfm6Y3eV05WLEnd/WivSsBFwlU2AHR9jTLN1hTZrWeOy2CW CpprUybPP2QtpyKg4XiQ8EbyRwatn2lRgtmsMvPIscKoh4I2oUoFK85LZQHNffEc YyPhPABHIgBe3WptiR3GAKBuVn0HEY3PBwrFtTYCKqpQptS14ikcECpX3LB8DrrN uqeIYnPPPmN9HjZDxZo1H8xw7VoVERQ= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net