$ rpki-client -vvf rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft File: 7ObXRymptklRLPzniy2vzsFGlzo.mft (raw, json) Hash identifier: xuCoiF2bdkGBSF4yM/OQljxqKjLH9rzFJqmmUEvqbfc= Subject key identifier: AC:5E:A3:B4:67:1E:F8:E9:BA:9F:E1:FB:88:05:8B:C8:5B:78:E1:E2 Authority key identifier: EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A Certificate issuer: /CN=A916A171/serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft Manifest number: 0C8D Signing time: Mon 28 Apr 2025 18:24:02 +0000 Manifest this update: Mon 28 Apr 2025 18:24:02 +0000 Manifest next update: Mon 05 May 2025 18:24:01 +0000 Files and hashes: 1: 7ObXRymptklRLPzniy2vzsFGlzo.crl (hash: N0sPO3dTOBmer1qauuLswzljpt9oOlRoz3ZlOzFpzYw=) 2: F268590C1B9911ED9A50C30EC4F9AE02.roa (hash: B32sLriEZBiwsvO/X5p+YP5+TxaEvkZ8AXqcNmiVRPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A171, serialNumber=ECE6D74729A9B649512CFCE78B2DAFCEC146973A Validity Not Before: Apr 28 18:24:02 2025 GMT Not After : May 5 18:24:01 2025 GMT Subject: CN=680fc7c2-4e7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:93:55:f1:a1:3e:74:e5:2b:97:d6:7b:c5:09: 6f:f5:1a:f2:53:c2:8a:48:db:57:c2:59:a4:66:a4: 79:95:f8:16:f4:e6:f0:2e:61:1f:37:c0:f6:a7:0f: 43:12:99:c1:fd:2a:c4:4b:6f:ba:d7:1e:59:eb:8d: 60:cc:81:ee:04:6e:48:49:a4:8b:e0:d7:51:67:17: e8:21:9f:b7:19:5a:51:c4:74:bc:b6:63:cf:01:67: 8b:0f:13:05:5f:b1:7b:b6:a7:b9:8e:90:57:7f:50: ba:a9:66:06:49:4e:15:4f:28:e3:47:f2:7a:e4:dc: de:32:86:f8:9c:36:d9:2d:77:7b:6f:65:b2:1d:20: ea:62:22:f8:aa:5d:7c:26:7b:38:67:b9:ad:ab:09: c0:60:bd:06:03:d4:05:87:87:4e:87:a0:d9:3f:f6: e3:6c:8e:a0:02:bd:05:70:64:63:77:cd:38:70:7c: 48:40:42:21:41:26:ec:9c:c4:f1:64:07:d0:f0:4e: 40:bf:c3:c9:d8:9c:51:5c:0c:6f:2e:bf:e8:15:46: b2:84:d3:db:d2:d5:db:62:ca:cf:b6:58:3f:62:fd: 9e:5a:3a:9e:3c:dc:99:cd:60:1a:b4:1f:e5:ed:ed: a1:85:4b:3a:9a:eb:75:d7:eb:8d:0c:dc:66:9e:8a: 28:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5E:A3:B4:67:1E:F8:E9:BA:9F:E1:FB:88:05:8B:C8:5B:78:E1:E2 X509v3 Authority Key Identifier: keyid:EC:E6:D7:47:29:A9:B6:49:51:2C:FC:E7:8B:2D:AF:CE:C1:46:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ObXRymptklRLPzniy2vzsFGlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A171/4F57E9BEF49911E98F37DC1CC4F9AE02/7ObXRymptklRLPzniy2vzsFGlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:09:5b:b9:49:d1:db:d4:c6:68:0b:0e:2d:ef:9e:ed:8f:af: 9d:71:8d:35:e3:cb:49:9e:69:21:88:47:c5:82:a2:bc:79:fa: 31:4c:b8:90:22:17:d8:d1:4f:57:0a:49:b1:c0:43:9d:51:d9: 3e:6c:12:29:90:cd:46:d9:9a:a9:65:62:04:4b:30:e8:e9:dc: 2e:68:51:47:43:7a:e5:bf:56:82:5d:6a:47:98:29:83:f4:28: 3b:00:b5:90:7b:77:c4:c6:dd:ed:44:bc:d2:e6:84:1c:75:16: 3a:05:03:bf:0b:b6:32:7b:c4:18:8b:53:6b:5b:0b:3b:d7:f2: ba:c8:f8:1e:b8:d1:2c:ad:2c:1d:ba:c9:a7:5e:d3:8a:b9:37: 7e:4d:a3:b9:dd:cf:70:6e:48:62:b1:67:a5:26:3f:2a:d5:9d: 1e:03:9c:de:c6:08:83:30:e8:2f:51:89:e3:e8:49:a7:09:7b: 02:7d:5a:2d:9d:55:b4:82:5c:3b:6a:7e:6f:88:b8:11:28:37: e1:1a:a1:7e:90:0c:4b:92:e8:ba:91:53:67:0f:37:ae:29:44: c5:a7:38:2f:3e:89:63:a1:6a:d9:0d:cd:0b:a9:28:cc:83:2b: b3:00:20:2e:21:07:5c:7f:b1:c5:04:91:cb:92:70:3e:dc:da: 16:a5:82:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkExNzExMTAvBgNVBAUTKEVDRTZENzQ3MjlBOUI2NDk1MTJDRkNFNzhCMkRBRkNF QzE0Njk3M0EwHhcNMjUwNDI4MTgyNDAyWhcNMjUwNTA1MTgyNDAxWjAYMRYwFAYD VQQDEw02ODBmYzdjMi00ZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5NV8aE+dOUrl9Z7xQlv9RryU8KKSNtXwlmkZqR5lfgW9ObwLmEfN8D2pw9D EpnB/SrES2+61x5Z641gzIHuBG5ISaSL4NdRZxfoIZ+3GVpRxHS8tmPPAWeLDxMF X7F7tqe5jpBXf1C6qWYGSU4VTyjjR/J65NzeMob4nDbZLXd7b2WyHSDqYiL4ql18 Jns4Z7mtqwnAYL0GA9QFh4dOh6DZP/bjbI6gAr0FcGRjd804cHxIQEIhQSbsnMTx ZAfQ8E5Av8PJ2JxRXAxvLr/oFUayhNPb0tXbYsrPtlg/Yv2eWjqePNyZzWAatB/l 7e2hhUs6mut11+uNDNxmnooolQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxeo7Rn Hvjpup/h+4gFi8hbeOHiMB8GA1UdIwQYMBaAFOzm10cpqbZJUSz854str87BRpc6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTE3MS80RjU3RTlCRUY0 OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRrbFJMUHpuaXkydnpzRkds em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdPYlhSeW1wdGtsUkxQem5peTJ2enNGR2x6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTE3MS80RjU3RTlCRUY0OTkxMUU5OEYzN0RDMUNDNEY5QUUwMi83T2JYUnltcHRr bFJMUHpuaXkydnpzRkdsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKCVu5SdHb1MZoCw4t757tj6+dcY0148tJnmkhiEfFgqK8efoxTLiQ IhfY0U9XCkmxwEOdUdk+bBIpkM1G2ZqpZWIESzDo6dwuaFFHQ3rlv1aCXWpHmCmD 9Cg7ALWQe3fExt3tRLzS5oQcdRY6BQO/C7Yye8QYi1NrWws71/K6yPgeuNEsrSwd usmnXtOKuTd+TaO53c9wbkhisWelJj8q1Z0eA5zexgiDMOgvUYnj6EmnCXsCfVot nVW0glw7an5viLgRKDfhGqF+kAxLkui6kVNnDzeuKUTFpzgvPoljoWrZDc0LqSjM gyuzACAuIQdcf7HFBJHLknA+3NoWpYJW -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:39 2025 by rpki-client on console.sobornost.net