$ rpki-client -vvf rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.mft File: _Vo_Wh8zV0TAwUKsQhfsvD0gyg8.mft (raw, json) Hash identifier: 0gYIerJalWMQtUlpe9CJn7Msx7IrB1AH8q5Mf+J2/Aw= Subject key identifier: D5:11:5F:50:F5:E9:BF:99:E5:89:32:46:03:9F:2A:17:A1:8C:E7:F0 Authority key identifier: FD:5A:3F:5A:1F:33:57:44:C0:C1:42:AC:42:17:EC:BC:3D:20:CA:0F Certificate issuer: /CN=A916ACF5/serialNumber=FD5A3F5A1F335744C0C142AC4217ECBC3D20CA0F Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.mft Manifest number: 7A Signing time: Sun 27 Apr 2025 05:36:15 +0000 Manifest this update: Sun 27 Apr 2025 05:36:14 +0000 Manifest next update: Sun 04 May 2025 05:36:14 +0000 Files and hashes: 1: _Vo_Wh8zV0TAwUKsQhfsvD0gyg8.crl (hash: AzJrlCKMRP1z2512IKgz3VQZUSsV8IKuBRSxuc2SQuo=) 2: B538B552701211EFB6868329C4F9AE02.roa (hash: 29NsNsEH3hS+ytz7V80jP+Hgfwg6ZXrunR8Rxp6hBOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.crl rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916ACF5, serialNumber=FD5A3F5A1F335744C0C142AC4217ECBC3D20CA0F Validity Not Before: Apr 27 05:36:14 2025 GMT Not After : May 4 05:36:14 2025 GMT Subject: CN=680dc24f-a48e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d1:0a:d2:8b:d6:9e:a7:ae:c3:5c:7d:e6:08: 5b:c3:51:d5:d4:d5:6f:d2:73:c8:2c:f1:42:1d:e4: 6b:75:de:60:79:3a:0b:8e:d3:ec:a5:69:cc:65:2d: 30:17:88:38:48:a0:66:4c:a2:5e:3b:44:67:cb:28: 4a:3e:5b:81:c5:a2:d2:0b:d3:e0:df:f7:f7:19:65: da:9e:11:45:6b:9a:ce:7d:b5:c5:cb:89:0c:5e:59: ba:fd:35:0b:89:c8:f2:be:47:c7:31:80:15:35:b7: 98:59:cf:dd:59:f8:48:79:b8:1b:7f:fb:26:1b:d1: 18:94:44:0d:a2:08:53:12:ca:d1:34:b6:22:62:d4: 31:a7:e7:9d:dc:d4:13:29:6f:9a:7f:41:80:be:77: 3a:7e:0b:c5:92:f0:2b:f8:c5:25:35:41:8d:73:a2: 85:f1:72:e7:41:5e:c5:60:48:45:bd:e3:6f:43:93: 9f:9c:48:3f:73:df:44:bd:34:e6:9e:ab:1f:aa:76: 0e:5c:4e:f8:f1:9e:e6:31:78:aa:00:1d:b8:c8:b9: 7d:dc:c4:48:55:ec:eb:b4:ec:8b:50:30:43:f9:c3: 3c:08:ea:4f:12:b7:d1:39:b8:01:6b:19:76:a5:21: 8f:ef:d3:f9:42:1c:53:ed:df:88:69:55:66:bc:f2: 39:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:11:5F:50:F5:E9:BF:99:E5:89:32:46:03:9F:2A:17:A1:8C:E7:F0 X509v3 Authority Key Identifier: keyid:FD:5A:3F:5A:1F:33:57:44:C0:C1:42:AC:42:17:EC:BC:3D:20:CA:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ACF5/5B30C49A6F3C11EFB5899612C4F9AE02/_Vo_Wh8zV0TAwUKsQhfsvD0gyg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:5e:65:da:9f:bc:fa:82:2f:ee:7d:9b:f2:27:d6:6b:3f:3d: c5:01:ab:34:65:e5:dc:0e:c6:f4:db:38:51:f5:ec:cc:d1:9a: 4b:a7:32:04:0d:a4:e0:ce:79:0d:9c:f5:65:33:13:89:12:14: 10:d9:68:0e:c8:2d:63:04:b4:4a:fd:ac:30:9d:5b:8d:42:81: db:c8:d9:6c:21:2a:e4:9a:8b:4b:fd:16:9d:f4:bc:19:6c:88: 1f:7f:50:a0:c2:fa:cd:0e:e3:bd:ce:7a:a5:5d:e0:1a:70:55: 9d:41:c8:ff:c0:3b:7a:03:bd:85:d6:00:95:6d:5d:6e:fe:56: a2:80:8a:2d:e1:3c:9c:ec:94:9d:f2:a9:65:1d:74:71:f7:b1: 22:a2:e1:4b:bb:b5:12:54:7a:72:ef:82:86:5f:7d:f2:49:48: 76:c4:ef:31:59:b7:09:9c:f9:26:b4:39:e5:15:a2:0b:7e:73: b4:d4:f5:f2:2b:da:b1:6e:aa:1e:f7:28:db:84:62:df:b5:8b: e2:4e:7d:89:71:da:35:02:be:a4:19:88:8f:32:a9:a9:c1:57: 05:24:37:bb:a2:d0:bf:30:eb:53:f7:d1:59:35:19:35:27:a0: ce:83:af:3b:ee:56:d6:0a:d4:1a:c4:05:7f:cc:f0:fc:7a:98: 30:4e:39:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUNGNTExMC8GA1UEBRMoRkQ1QTNGNUExRjMzNTc0NEMwQzE0MkFDNDIxN0VDQkMz RDIwQ0EwRjAeFw0yNTA0MjcwNTM2MTRaFw0yNTA1MDQwNTM2MTRaMBgxFjAUBgNV BAMTDTY4MGRjMjRmLWE0OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG0QrSi9aep67DXH3mCFvDUdXU1W/Sc8gs8UId5Gt13mB5OguO0+ylacxlLTAX iDhIoGZMol47RGfLKEo+W4HFotIL0+Df9/cZZdqeEUVrms59tcXLiQxeWbr9NQuJ yPK+R8cxgBU1t5hZz91Z+Eh5uBt/+yYb0RiURA2iCFMSytE0tiJi1DGn553c1BMp b5p/QYC+dzp+C8WS8Cv4xSU1QY1zooXxcudBXsVgSEW9429Dk5+cSD9z30S9NOae qx+qdg5cTvjxnuYxeKoAHbjIuX3cxEhV7Ou07ItQMEP5wzwI6k8St9E5uAFrGXal IY/v0/lCHFPt34hpVWa88jmvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1RFfUPXp v5nliTJGA58qF6GM5/AwHwYDVR0jBBgwFoAU/Vo/Wh8zV0TAwUKsQhfsvD0gyg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQ0Y1LzVCMzBDNDlBNkYz QzExRUZCNTg5OTYxMkM0RjlBRTAyL19Wb19XaDh6VjBUQXdVS3NRaGZzdkQwZ3ln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX1ZvX1doOHpWMFRBd1VLc1FoZnN2RDBneWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB Q0Y1LzVCMzBDNDlBNkYzQzExRUZCNTg5OTYxMkM0RjlBRTAyL19Wb19XaDh6VjBU QXdVS3NRaGZzdkQwZ3lnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADFeZdqfvPqCL+59m/In1ms/PcUBqzRl5dwOxvTbOFH17MzRmkunMgQN pODOeQ2c9WUzE4kSFBDZaA7ILWMEtEr9rDCdW41CgdvI2WwhKuSai0v9Fp30vBls iB9/UKDC+s0O473OeqVd4BpwVZ1ByP/AO3oDvYXWAJVtXW7+VqKAii3hPJzslJ3y qWUddHH3sSKi4Uu7tRJUenLvgoZfffJJSHbE7zFZtwmc+Sa0OeUVogt+c7TU9fIr 2rFuqh73KNuEYt+1i+JOfYlx2jUCvqQZiI8yqanBVwUkN7ui0L8w61P30Vk1GTUn oM6DrzvuVtYK1BrEBX/M8Px6mDBOORU= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:48 2025 by rpki-client on console.sobornost.net