$ rpki-client -vvf rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft File: _z4OD6f_JX29huYrEpqZTYpJ2E4.mft (raw, json) Hash identifier: NBR8y9ZYa2tC6MOXcw9sO7z41TIK2XT0T4Ejofjqvss= Subject key identifier: AD:5E:50:00:A5:3C:51:E0:02:FA:C2:89:12:39:73:8C:8D:4C:EB:BC Authority key identifier: FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E Certificate issuer: /CN=A916B1F5/serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft Manifest number: 0204 Signing time: Sun 27 Apr 2025 01:38:51 +0000 Manifest this update: Sun 27 Apr 2025 01:38:51 +0000 Manifest next update: Sun 04 May 2025 01:38:51 +0000 Files and hashes: 1: _z4OD6f_JX29huYrEpqZTYpJ2E4.crl (hash: K/dypJel0bVdvh/hj+6gvTDrjV20OuIyCgJ7IH9KQUM=) 2: 28536FDC340111EDB747A054C4F9AE02.roa (hash: nwv4OnHIeiaOuT9R5A9U+o0snvNWMEn4+NiK+Y5blsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B1F5, serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Validity Not Before: Apr 27 01:38:51 2025 GMT Not After : May 4 01:38:51 2025 GMT Subject: CN=680d8aab-059e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c6:92:5a:c2:35:9b:23:9a:33:92:df:d9:97: 87:f3:f3:4d:60:e4:76:2a:fb:88:db:59:c2:a7:12: cf:a4:4c:83:1b:76:c9:af:be:01:08:4f:d2:e6:a4: 30:33:f3:0a:a0:5b:42:80:f7:64:2b:90:3c:db:05: 30:32:82:e2:dc:13:a7:bc:d2:ae:7b:50:9e:0e:e5: 11:5e:58:a1:55:ee:19:f1:5d:7a:33:52:80:16:21: 1b:0f:45:48:21:52:15:1a:77:b8:5f:87:36:6e:46: 1c:14:1c:e5:fc:7a:25:fe:dc:5a:87:97:0c:8c:ed: 33:a4:51:98:d7:70:77:07:ae:71:7a:e8:29:91:3f: 16:c8:2d:43:da:b9:d2:e3:62:db:ff:9f:e1:a7:aa: ae:18:dc:78:be:8c:47:14:ff:a4:aa:c7:60:d5:93: 66:51:94:c8:3d:09:6d:87:40:42:b0:be:f9:22:1a: 74:3a:99:70:2b:2a:8d:b4:3e:d3:b4:c0:1e:e2:d0: ed:0f:c1:72:75:d0:35:18:ca:14:2b:9e:24:38:de: 5c:a2:9b:5d:b5:4d:de:41:c2:02:84:82:03:e2:20: bf:d2:88:3b:80:20:e1:84:5a:7e:48:81:16:0a:5e: aa:be:95:ca:64:b4:31:c2:0f:4a:b7:70:5a:c1:e4: 35:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5E:50:00:A5:3C:51:E0:02:FA:C2:89:12:39:73:8C:8D:4C:EB:BC X509v3 Authority Key Identifier: keyid:FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:9c:57:6f:84:26:ab:3b:41:32:61:a3:de:1d:b7:14:90:6e: f7:24:ab:8c:cb:24:6e:29:5d:e5:6f:2b:90:2c:80:0f:fd:4e: 79:f3:22:dc:34:5f:07:d7:b5:ef:94:ad:3d:08:f7:a3:f3:4a: 3a:8b:97:fc:62:15:00:e6:21:b1:7a:88:f7:87:1f:bb:1e:69: 3e:68:55:29:a0:07:cc:22:14:8a:14:1b:82:04:e8:e7:49:10: 8f:d0:0d:4e:e7:05:e7:b7:29:45:c6:ae:cc:73:08:f7:1a:ca: 34:e2:7e:52:68:e3:31:43:90:2d:a9:e0:40:42:7f:f6:95:b7: e7:31:ec:3f:80:4e:cc:46:c6:d0:b7:54:8e:71:a7:5a:23:a6: a9:c6:96:a6:49:45:c2:20:5b:e6:6d:dc:66:51:c4:3b:a3:d6: 4e:7e:61:c7:c7:ec:4b:70:1e:8c:a7:8f:43:39:28:ac:26:01: 7c:c8:ae:79:7d:98:fc:30:ac:2e:e4:fb:5f:5c:5f:b1:8d:34: 84:5a:b8:4f:22:51:90:e9:c4:45:80:d8:31:f6:ed:bf:23:28: f7:1c:58:1f:4b:83:f0:a2:c3:14:38:5f:be:ba:26:fd:71:4e: 5b:a4:15:db:29:82:62:81:da:bd:80:5b:68:96:3e:2c:6e:64: 48:1c:43:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxRjUxMTAvBgNVBAUTKEZGM0UwRTBGQTdGRjI1N0RCRDg2RTYyQjEyOUE5OTRE OEE0OUQ4NEUwHhcNMjUwNDI3MDEzODUxWhcNMjUwNTA0MDEzODUxWjAYMRYwFAYD VQQDEw02ODBkOGFhYi0wNTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38aSWsI1myOaM5Lf2ZeH8/NNYOR2KvuI21nCpxLPpEyDG3bJr74BCE/S5qQw M/MKoFtCgPdkK5A82wUwMoLi3BOnvNKue1CeDuURXlihVe4Z8V16M1KAFiEbD0VI IVIVGne4X4c2bkYcFBzl/Hol/txah5cMjO0zpFGY13B3B65xeugpkT8WyC1D2rnS 42Lb/5/hp6quGNx4voxHFP+kqsdg1ZNmUZTIPQlth0BCsL75Ihp0OplwKyqNtD7T tMAe4tDtD8FyddA1GMoUK54kON5coptdtU3eQcIChIID4iC/0og7gCDhhFp+SIEW Cl6qvpXKZLQxwg9Kt3BaweQ1FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1eUACl PFHgAvrCiRI5c4yNTOu8MB8GA1UdIwQYMBaAFP8+Dg+n/yV9vYbmKxKamU2KSdhO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjFGNS8wRDIxM0VEQzMz RkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pYMjlodVlyRXBxWlRZcEoy RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL196NE9ENmZfSlgyOWh1WXJFcHFaVFlwSjJFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjFGNS8wRDIxM0VEQzMzRkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pY MjlodVlyRXBxWlRZcEoyRTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAinFdvhCarO0EyYaPeHbcUkG73JKuMyyRuKV3lbyuQLIAP/U558yLc NF8H17XvlK09CPej80o6i5f8YhUA5iGxeoj3hx+7Hmk+aFUpoAfMIhSKFBuCBOjn SRCP0A1O5wXntylFxq7Mcwj3Gso04n5SaOMxQ5AtqeBAQn/2lbfnMew/gE7MRsbQ t1SOcadaI6apxpamSUXCIFvmbdxmUcQ7o9ZOfmHHx+xLcB6Mp49DOSisJgF8yK55 fZj8MKwu5PtfXF+xjTSEWrhPIlGQ6cRFgNgx9u2/Iyj3HFgfS4PwosMUOF++uib9 cU5bpBXbKYJigdq9gFtolj4sbmRIHEPw -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:01 2025 by rpki-client on console.sobornost.net