$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft File: 4bseYl2967MiD_kjzWoRos4kUZY.mft (raw, json) Hash identifier: 1W7yDOdhEpH9B0UyaBgzpxpkxq6JL5VAohpeEpvI3pU= Subject key identifier: C4:B1:B1:02:C3:50:DC:3C:DB:20:67:6B:23:95:F5:91:26:BE:B1:19 Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 17EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft Manifest number: 17B5 Signing time: Mon 28 Apr 2025 16:46:34 +0000 Manifest this update: Mon 28 Apr 2025 16:46:34 +0000 Manifest next update: Mon 05 May 2025 16:46:34 +0000 Files and hashes: 1: 4bseYl2967MiD_kjzWoRos4kUZY.crl (hash: FokQ0X5q/lUGNYAOGPtVFtcemzx5J8O2YsGJSbiHGwU=) 2: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (hash: wcQu6qDmYL8RSwTWQdHq8swDuqsLZ/b+WksTXiVZeUI=) 3: 2B04CC143D9F11EEACFF646FC4F9AE02.roa (hash: ukI4z4ZMWUWet1XkTlAm00Pda4+ffxxraVEq+pStj8k=) 4: 2A3161763D9F11EEACFF646FC4F9AE02.roa (hash: mm0VJeRGh/+0foB6ENfn+0Td2KUkG+rfML9gCL5EGhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6127 (0x17ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E, serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Validity Not Before: Apr 28 16:46:34 2025 GMT Not After : May 5 16:46:34 2025 GMT Subject: CN=680fb0ea-3217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:19:34:5c:4a:07:4d:dc:94:15:77:11:2b: 01:10:d2:2e:ea:72:c0:93:c2:95:f6:de:ab:9c:11: 81:ca:b6:ef:15:df:87:75:eb:8d:2d:99:aa:2f:66: 2c:33:6e:af:33:cf:ef:97:be:42:34:63:1b:cc:2a: e4:b1:59:9d:d4:33:f4:38:90:f0:8b:e4:ad:82:7f: 2e:db:3c:87:48:c5:f9:38:87:50:b8:87:ee:1c:01: c5:67:e7:bb:bf:f1:6e:76:3f:09:75:b4:13:a7:72: 63:76:c9:c3:ae:e1:b8:bf:c8:43:5a:fd:4a:9e:d0: 8c:f3:68:bd:b8:f0:78:e6:09:94:b2:c5:83:b4:bb: d4:f8:d4:73:83:0b:57:e9:43:04:9e:9f:34:5d:25: ae:b5:cd:e9:12:01:43:04:6f:b9:44:e9:c7:a8:b3: 1c:35:7c:23:0d:98:4f:1e:db:e8:99:95:d6:21:28: 9f:5d:db:14:ff:5c:40:ec:2b:90:80:43:fb:ad:0b: fb:bf:d3:09:f5:dc:3d:b5:d2:32:02:a7:03:8e:6f: 19:99:33:27:6b:97:05:be:ef:49:e0:57:4b:f0:fe: 99:88:b3:ee:98:c6:44:0d:40:06:56:44:a0:f2:f2: da:fb:fc:9d:34:66:c0:9a:1d:5d:e5:30:73:a2:f8: ad:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:B1:B1:02:C3:50:DC:3C:DB:20:67:6B:23:95:F5:91:26:BE:B1:19 X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:6f:22:38:ca:d9:e6:7d:cf:cf:e9:ff:5d:b6:d4:10:ae:ea: 89:69:fb:51:64:89:66:e1:5d:3e:27:b9:1d:db:10:c3:0c:6d: ca:d7:56:8f:d9:75:f6:d5:82:b3:d7:57:ed:84:aa:d5:1d:ff: 94:f6:4a:8f:ed:57:0b:2d:96:3d:1e:2c:85:0e:69:b0:3c:cd: cc:a7:3d:ba:8f:b6:1a:18:d1:cb:1c:14:6d:1a:38:e3:a8:df: 41:6a:e3:2b:a1:59:3f:a3:a0:e1:aa:23:ba:89:be:ba:f3:1f: 12:a3:ab:2f:27:9c:e9:11:d0:df:c3:d0:d3:87:44:6f:3f:b4: 56:d5:e5:42:60:3d:32:2a:03:8f:4a:a4:c3:39:5d:ec:3f:50: 22:cc:7e:cc:b1:81:ac:6a:d8:b2:88:d6:32:05:91:37:a5:34: 6a:26:de:52:1a:d7:79:d9:02:6a:10:5f:06:76:d6:f2:dd:c0: b7:71:66:9b:eb:da:07:c4:6a:ec:c4:ba:56:6a:76:17:ff:a0: 34:9d:f2:e1:f1:25:3a:22:ea:2b:e2:04:42:f6:32:59:b5:5b: 8a:ba:05:2c:b4:b6:82:41:7f:10:8b:52:e5:a4:c1:b0:18:9b: 72:1f:d4:12:75:39:ea:7d:3e:74:f4:35:47:77:0a:44:5d:c1: e1:35:99:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjUwNDI4MTY0NjM0WhcNMjUwNTA1MTY0NjM0WjAYMRYwFAYD VQQDEw02ODBmYjBlYS0zMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5YZNFxKB03clBV3ESsBENIu6nLAk8KV9t6rnBGByrbvFd+HdeuNLZmqL2Ys M26vM8/vl75CNGMbzCrksVmd1DP0OJDwi+Stgn8u2zyHSMX5OIdQuIfuHAHFZ+e7 v/Fudj8JdbQTp3JjdsnDruG4v8hDWv1KntCM82i9uPB45gmUssWDtLvU+NRzgwtX 6UMEnp80XSWutc3pEgFDBG+5ROnHqLMcNXwjDZhPHtvomZXWISifXdsU/1xA7CuQ gEP7rQv7v9MJ9dw9tdIyAqcDjm8ZmTMna5cFvu9J4FdL8P6ZiLPumMZEDUAGVkSg 8vLa+/ydNGbAmh1d5TBzovit3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSxsQLD UNw82yBnayOV9ZEmvrEZMB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxRS9DMUZBMDgyQ0M4Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3 TWlEX2tqeldvUm9zNGtVWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALbyI4ytnmfc/P6f9dttQQruqJaftRZIlm4V0+J7kd2xDDDG3K11aP 2XX21YKz11fthKrVHf+U9kqP7VcLLZY9HiyFDmmwPM3Mpz26j7YaGNHLHBRtGjjj qN9BauMroVk/o6DhqiO6ib668x8So6svJ5zpEdDfw9DTh0RvP7RW1eVCYD0yKgOP SqTDOV3sP1AizH7MsYGsatiyiNYyBZE3pTRqJt5SGtd52QJqEF8Gdtby3cC3cWab 69oHxGrsxLpWanYX/6A0nfLh8SU6Iuor4gRC9jJZtVuKugUstLaCQX8Qi1LlpMGw GJtyH9QSdTnqfT509DVHdwpEXcHhNZnI -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:39 2025 by rpki-client on console.sobornost.net