$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft File: hXUH8dizkVyVENUEcA7OiQsGaF8.mft (raw, json) Hash identifier: 7Pn3iD2/FCvFziWmHPmpdYNQ5Xq6F+O1XS6b8NIQ6dw= Subject key identifier: D6:91:A1:CE:45:E0:F3:74:9D:C2:D2:63:E7:D9:11:50:5B:E6:5C:F3 Authority key identifier: 85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F Certificate issuer: /CN=A916B7FC/serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft Manifest number: 19 Signing time: Sun 27 Apr 2025 06:47:56 +0000 Manifest this update: Sun 27 Apr 2025 06:47:56 +0000 Manifest next update: Sun 04 May 2025 06:47:56 +0000 Files and hashes: 1: hXUH8dizkVyVENUEcA7OiQsGaF8.crl (hash: rmL9CyFnAvsolE1Bd2DIKIjIn+9PgMZU81q2iOgDwa0=) 2: B49957AA134B11F0AE18CB2BC4F9AE02.roa (hash: ysrTnUlxkF1TKTdjUl7uimFokZqxTbeHcLYRk7mAwOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7FC, serialNumber=857507F1D8B3915C9510D504700ECE890B06685F Validity Not Before: Apr 27 06:47:56 2025 GMT Not After : May 4 06:47:56 2025 GMT Subject: CN=680dd31c-c905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e8:32:6d:f7:9e:68:a7:43:e2:8a:12:86:92: 82:b4:5e:71:0f:44:f6:7d:9d:1e:cd:b0:87:6e:7f: d9:2c:eb:5a:85:54:fe:85:0e:44:cb:d7:13:fe:ba: 41:eb:13:b8:a7:ae:4e:2c:9b:0c:1c:ff:ce:c1:e3: fe:ab:4f:70:8b:b4:30:88:49:d9:b8:69:08:43:03: 52:7c:51:fb:78:44:04:56:0c:b1:c6:01:bc:e3:92: 02:f4:dc:9a:ae:fa:29:da:f5:44:cd:89:d5:df:f4: 77:7a:e0:5f:ff:c7:a1:02:23:2e:b2:be:e5:f1:81: a3:f4:c7:84:44:e4:13:d8:c1:0c:49:31:50:56:d7: 35:a2:50:86:f6:ef:bc:84:08:69:23:17:11:c8:bf: 26:cb:57:41:75:23:7c:9d:fa:b2:d3:43:26:ed:5a: 94:df:be:48:16:63:b3:79:80:ef:ab:c6:89:50:43: 8a:92:e9:d9:dc:a5:2d:da:09:fc:f0:1c:eb:3e:28: 04:fd:a2:b8:63:47:bb:f7:68:28:24:f8:bd:e4:df: ce:61:4a:b8:fe:33:cb:87:9b:d7:b7:51:c2:1b:3f: 19:d5:3f:b3:68:dd:d7:bf:c9:a3:57:a9:aa:ea:29: 61:21:5a:9c:4c:fc:3a:f3:22:ec:ac:bf:8c:4f:b7: dc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:91:A1:CE:45:E0:F3:74:9D:C2:D2:63:E7:D9:11:50:5B:E6:5C:F3 X509v3 Authority Key Identifier: keyid:85:75:07:F1:D8:B3:91:5C:95:10:D5:04:70:0E:CE:89:0B:06:68:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hXUH8dizkVyVENUEcA7OiQsGaF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7FC/C73BA16403A711F0A7FF9C87C4F9AE02/hXUH8dizkVyVENUEcA7OiQsGaF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:18:8b:e5:5b:e0:76:e0:05:d7:79:e7:7e:96:0c:8d:47:8b: 52:2b:1b:a6:82:4e:ad:17:ee:b7:00:e1:cd:74:5a:a5:3b:34: 42:c8:97:3c:08:e6:87:18:76:e9:cb:39:bd:d1:31:5b:fa:1d: f4:35:72:67:6c:e5:70:4e:19:d5:08:10:75:f3:49:35:55:9d: 97:e4:4b:aa:87:ca:5b:96:69:13:a2:af:ad:2a:51:81:f6:21: 08:01:50:66:d1:6f:92:15:57:57:77:80:c7:bd:2c:37:a5:df: de:48:8a:01:f8:df:ee:c1:b8:f2:79:0e:ae:c7:bc:5b:95:c8: c5:5c:30:d6:f3:78:84:cb:2a:39:e4:32:25:bd:1a:03:5a:2e: 9d:f0:85:4d:33:5d:5c:04:fb:2b:f9:23:23:87:45:00:9e:56: aa:b2:b4:2b:18:31:ea:73:4b:19:ac:88:fc:1d:89:dd:2c:1f: 3d:6b:8d:d6:29:b9:0e:37:b6:2f:bf:94:e5:15:f1:0d:4d:c2: f9:f4:dd:1a:6b:bd:03:8e:27:16:59:4a:f8:1a:35:82:eb:dc: a4:ed:07:e4:e1:a6:5d:d5:54:05:a4:78:c8:9f:25:a4:b3:b4: 37:84:c2:a6:d3:01:c5:e6:22:22:88:01:cb:c8:43:3d:24:54: cc:5d:1a:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjdGQzExMC8GA1UEBRMoODU3NTA3RjFEOEIzOTE1Qzk1MTBENTA0NzAwRUNFODkw QjA2Njg1RjAeFw0yNTA0MjcwNjQ3NTZaFw0yNTA1MDQwNjQ3NTZaMBgxFjAUBgNV BAMTDTY4MGRkMzFjLWM5MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh6DJt955op0PiihKGkoK0XnEPRPZ9nR7NsIduf9ks61qFVP6FDkTL1xP+ukHr E7inrk4smwwc/87B4/6rT3CLtDCISdm4aQhDA1J8Uft4RARWDLHGAbzjkgL03Jqu +ina9UTNidXf9Hd64F//x6ECIy6yvuXxgaP0x4RE5BPYwQxJMVBW1zWiUIb277yE CGkjFxHIvybLV0F1I3yd+rLTQybtWpTfvkgWY7N5gO+rxolQQ4qS6dncpS3aCfzw HOs+KAT9orhjR7v3aCgk+L3k385hSrj+M8uHm9e3UcIbPxnVP7No3de/yaNXqarq KWEhWpxM/DrzIuysv4xPt9ytAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1pGhzkXg 83SdwtJj59kRUFvmXPMwHwYDVR0jBBgwFoAUhXUH8dizkVyVENUEcA7OiQsGaF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCN0ZDL0M3M0JBMTY0MDNB NzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5VkVOVUVjQTdPaVFzR2FG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaFhVSDhkaXprVnlWRU5VRWNBN09pUXNHYUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZC N0ZDL0M3M0JBMTY0MDNBNzExRjBBN0ZGOUM4N0M0RjlBRTAyL2hYVUg4ZGl6a1Z5 VkVOVUVjQTdPaVFzR2FGOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK8Yi+Vb4HbgBdd5536WDI1Hi1IrG6aCTq0X7rcA4c10WqU7NELIlzwI 5ocYdunLOb3RMVv6HfQ1cmds5XBOGdUIEHXzSTVVnZfkS6qHyluWaROir60qUYH2 IQgBUGbRb5IVV1d3gMe9LDel395IigH43+7BuPJ5Dq7HvFuVyMVcMNbzeITLKjnk MiW9GgNaLp3whU0zXVwE+yv5IyOHRQCeVqqytCsYMepzSxmsiPwdid0sHz1rjdYp uQ43ti+/lOUV8Q1Nwvn03RprvQOOJxZZSvgaNYLr3KTtB+Thpl3VVAWkeMifJaSz tDeEwqbTAcXmIiKIAcvIQz0kVMxdGtg= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net