$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft File: Ixupmdjogk9iIrhWhdB91HpwRts.mft (raw, json) Hash identifier: NAnRz/HPAE71EkPjalgpSobR9eGXS1PjYn3DkBH7uLs= Subject key identifier: D7:5C:4B:75:BD:8F:00:2C:A7:2B:A6:C8:C1:83:0C:03:1A:B0:1E:D3 Authority key identifier: 23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB Certificate issuer: /CN=A916B95A/serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft Manifest number: 9A Signing time: Sun 27 Apr 2025 05:07:30 +0000 Manifest this update: Sun 27 Apr 2025 05:07:30 +0000 Manifest next update: Sun 04 May 2025 05:07:30 +0000 Files and hashes: 1: Ixupmdjogk9iIrhWhdB91HpwRts.crl (hash: ie7XjOyCK78qm3IoFY9g61qoWl9nnNVNaVpCwTVso/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Validity Not Before: Apr 27 05:07:30 2025 GMT Not After : May 4 05:07:30 2025 GMT Subject: CN=680dbb92-9e31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:e9:15:1d:5a:23:4b:e6:f4:93:67:90:ab: 70:af:94:d1:b4:31:b3:b7:40:36:85:74:42:18:a8: 07:2c:cd:bf:3e:cb:51:3b:64:84:67:8c:ac:cd:9d: 40:70:78:7e:8a:8c:5c:cf:b9:29:f7:65:07:62:66: eb:7f:e1:0a:7a:c3:ca:5d:ef:9c:63:85:97:74:3d: ae:7a:b1:99:fb:e2:18:66:dd:a5:c1:19:51:de:12: 2e:62:fb:fa:12:18:f6:2b:6d:2f:e3:62:77:37:fa: 8a:10:d2:42:b0:bf:10:37:b4:c6:e2:6f:93:cb:6a: bc:32:5d:7d:75:78:39:3d:79:4b:66:4f:6e:6a:ad: 05:bb:87:6d:c6:e6:1d:c0:53:a2:4e:1a:72:1c:c3: b3:0f:4c:ed:fa:a6:38:90:15:6f:42:77:87:60:31: 20:69:c2:b1:8e:c6:5f:fa:e5:6e:b0:a4:dd:4c:dc: c8:f4:2f:51:c9:8f:64:fd:63:1c:42:bb:6f:08:4d: d3:60:6d:4d:92:b1:5b:81:59:ca:1a:c3:ba:a7:71: b4:9b:93:b7:b6:d2:e1:11:1a:a1:7e:1f:af:1a:65: 3f:f3:8c:bd:d6:60:86:7a:23:ee:4a:e3:4b:b8:04: 8a:d1:91:da:56:be:a4:ed:d2:20:6e:92:fa:26:35: cc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:5C:4B:75:BD:8F:00:2C:A7:2B:A6:C8:C1:83:0C:03:1A:B0:1E:D3 X509v3 Authority Key Identifier: keyid:23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:2e:bb:8d:0e:d7:36:39:86:82:4d:ae:9a:eb:a8:2c:2f:c8: 64:88:67:92:f3:c2:02:ba:a7:bf:94:63:70:73:ea:08:98:84: 1a:be:d8:2a:52:a2:44:a7:50:8e:3b:e6:55:ed:97:fa:64:4e: a6:2b:4c:8b:77:29:7e:39:90:49:68:d7:09:22:1e:82:2a:50: be:12:70:86:98:74:b0:8c:99:2f:e9:a1:63:ea:1f:7a:bd:d0: 70:2e:cf:7b:4b:98:c3:39:51:d3:7a:12:3b:e7:99:8f:64:dc: a0:cc:f8:fd:1d:c9:8d:cb:5a:9c:9c:4b:a5:f4:22:c6:81:c1: 6f:0a:e4:fd:10:b4:7d:62:1b:7c:6f:f3:7f:98:12:ec:55:b1: 6d:55:87:96:e5:65:21:06:72:c6:ba:38:20:10:68:fb:27:26: 8f:30:c5:93:06:56:62:17:13:42:6c:1e:99:91:95:81:67:b2: ae:09:38:62:13:57:61:6a:40:3f:cb:b5:3e:62:b7:07:a0:88: 03:f2:23:b4:3f:a8:af:fd:76:f1:36:1a:6a:4f:c1:a9:5d:89: 5e:d1:2c:7f:56:89:38:ce:f7:d2:68:fd:ab:e7:21:b1:b9:74: 55:4c:b0:27:fb:30:dd:03:1c:f5:1d:64:a0:67:14:39:35:c9: fc:22:e0:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKDIzMUJBOTk5RDhFODgyNEY2MjIyQjg1Njg1RDA3REQ0 N0E3MDQ2REIwHhcNMjUwNDI3MDUwNzMwWhcNMjUwNTA0MDUwNzMwWjAYMRYwFAYD VQQDEw02ODBkYmI5Mi05ZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgDpFR1aI0vm9JNnkKtwr5TRtDGzt0A2hXRCGKgHLM2/PstRO2SEZ4yszZ1A cHh+ioxcz7kp92UHYmbrf+EKesPKXe+cY4WXdD2uerGZ++IYZt2lwRlR3hIuYvv6 Ehj2K20v42J3N/qKENJCsL8QN7TG4m+Ty2q8Ml19dXg5PXlLZk9uaq0Fu4dtxuYd wFOiThpyHMOzD0zt+qY4kBVvQneHYDEgacKxjsZf+uVusKTdTNzI9C9RyY9k/WMc QrtvCE3TYG1NkrFbgVnKGsO6p3G0m5O3ttLhERqhfh+vGmU/84y91mCGeiPuSuNL uASK0ZHaVr6k7dIgbpL6JjXMJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdcS3W9 jwAspyumyMGDDAMasB7TMB8GA1UdIwQYMBaAFCMbqZnY6IJPYiK4VoXQfdR6cEbb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81QTE5QkRDQTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2drOWlJcmhXaGRCOTFIcHdS dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l4dXBtZGpvZ2s5aUlyaFdoZEI5MUhwd1J0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81QTE5QkRDQTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2dr OWlJcmhXaGRCOTFIcHdSdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2LruNDtc2OYaCTa6a66gsL8hkiGeS88ICuqe/lGNwc+oImIQavtgq UqJEp1COO+ZV7Zf6ZE6mK0yLdyl+OZBJaNcJIh6CKlC+EnCGmHSwjJkv6aFj6h96 vdBwLs97S5jDOVHTehI755mPZNygzPj9HcmNy1qcnEul9CLGgcFvCuT9ELR9Yht8 b/N/mBLsVbFtVYeW5WUhBnLGujggEGj7JyaPMMWTBlZiFxNCbB6ZkZWBZ7KuCThi E1dhakA/y7U+YrcHoIgD8iO0P6iv/XbxNhpqT8GpXYle0Sx/Vok4zvfSaP2r5yGx uXRVTLAn+zDdAxz1HWSgZxQ5Ncn8IuBS -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:48 2025 by rpki-client on console.sobornost.net