$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft File: MLwu5bdWT-D98gDnibI6LA2OkiQ.mft (raw, json) Hash identifier: 3ghCrywOBehrDcpHoWgp61zpMH393xCj1nIayyOgZL8= Subject key identifier: DE:34:3A:A5:4C:02:E0:96:24:01:3C:2B:E6:7C:A0:BE:F9:DA:F7:1A Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0C45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft Manifest number: 0C3F Signing time: Mon 28 Apr 2025 18:38:55 +0000 Manifest this update: Mon 28 Apr 2025 18:38:55 +0000 Manifest next update: Mon 05 May 2025 18:38:55 +0000 Files and hashes: 1: MLwu5bdWT-D98gDnibI6LA2OkiQ.crl (hash: fh4ksfElFErHyVZpzereO3ynd4uvWrc/U6e10C/hQfM=) 2: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (hash: olNlCN64bLbPObiQcnjy8ZCy31CgqZyVDz4boAZyKow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3141 (0xc45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: Apr 28 18:38:55 2025 GMT Not After : May 5 18:38:55 2025 GMT Subject: CN=680fcb3f-29c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e5:43:16:b6:5c:74:4a:18:4a:f2:a7:24:66: c0:2c:3c:ba:a7:8a:cd:5e:4f:4e:2d:fa:be:cf:7e: a2:94:35:9f:1e:fd:47:e6:e8:1a:23:77:6c:dd:97: 97:fb:35:bd:93:3a:34:6b:26:59:ff:1e:a8:e2:d8: e3:da:12:2b:36:da:11:86:79:09:82:87:70:e9:67: 79:b4:04:e2:d5:71:1c:df:44:82:0a:ea:a8:fe:81: b1:4f:b8:b0:01:5b:5b:11:14:29:fc:82:f8:5d:e5: 87:0e:89:38:58:50:a3:28:1e:d8:26:29:4a:d2:a1: 74:4a:21:74:2b:95:b5:16:83:3e:fb:ae:6d:eb:6b: f9:f0:b1:46:98:a8:a2:37:b8:d4:ae:c4:9b:cb:bf: a2:42:41:d6:a1:f7:15:0b:1e:66:74:65:3f:1e:3c: af:39:6d:89:3f:b8:ec:e6:2d:e5:f2:6c:30:a3:f0: f5:e8:1f:a7:3b:a8:f7:43:57:0a:44:11:37:ec:b8: e0:82:a1:b4:68:9f:ac:a0:49:80:15:22:8f:71:fe: 0a:63:51:4d:d3:4d:1a:d9:2e:ef:6c:b8:b3:81:53: f2:5b:71:22:6b:01:de:25:6e:c4:7a:a7:bc:83:b9: 5d:7c:d5:cd:0d:fa:1f:d9:f0:ad:07:a4:c0:03:98: 2d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:34:3A:A5:4C:02:E0:96:24:01:3C:2B:E6:7C:A0:BE:F9:DA:F7:1A X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d5:c4:84:16:48:3c:4f:dd:d8:a9:54:66:6d:e3:7a:d0:d6: 8f:cc:3f:0b:b0:c9:0a:b6:fd:b1:16:4a:46:f7:ee:10:b6:01: b3:8d:16:8b:5f:84:68:d6:33:42:3d:bf:26:b1:eb:ea:eb:71: db:cc:71:4f:3b:3f:f1:d9:91:eb:4c:16:ae:c6:1f:a6:1b:f8: 00:00:05:33:31:7b:bf:68:f4:da:13:92:8e:2b:1a:07:ca:a4: 76:02:13:d5:49:d2:02:8d:d6:6a:d3:60:9b:54:82:ba:92:ad: 3d:30:7a:88:69:d2:37:0d:84:21:95:96:eb:71:e5:ef:1a:7c: e7:07:4b:ec:1e:a1:09:7a:3b:ef:a6:c2:58:17:c1:e8:55:52: 02:fb:82:ad:bc:b1:48:2d:ef:2f:39:23:af:1a:9f:bf:51:c6: e5:4f:51:db:3d:65:12:1c:f1:68:57:10:34:51:dd:34:c9:4f: 28:2c:c2:c9:07:c1:79:0c:98:df:fa:49:f5:73:d9:fc:f1:5d: fa:5d:f0:49:52:e2:cc:49:42:1b:c2:00:a7:1e:3b:15:a4:cf: 12:b3:41:35:1e:ba:b1:7a:d3:cc:48:ca:5c:0b:3a:d2:d6:55: 42:19:2d:8f:1e:ca:3d:8b:77:54:76:4a:aa:38:35:66:23:3c: 50:2f:4f:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjUwNDI4MTgzODU1WhcNMjUwNTA1MTgzODU1WjAYMRYwFAYD VQQDEw02ODBmY2IzZi0yOWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+VDFrZcdEoYSvKnJGbALDy6p4rNXk9OLfq+z36ilDWfHv1H5ugaI3ds3ZeX +zW9kzo0ayZZ/x6o4tjj2hIrNtoRhnkJgodw6Wd5tATi1XEc30SCCuqo/oGxT7iw AVtbERQp/IL4XeWHDok4WFCjKB7YJilK0qF0SiF0K5W1FoM++65t62v58LFGmKii N7jUrsSby7+iQkHWofcVCx5mdGU/HjyvOW2JP7js5i3l8mwwo/D16B+nO6j3Q1cK RBE37LjggqG0aJ+soEmAFSKPcf4KY1FN000a2S7vbLizgVPyW3EiawHeJW7Eeqe8 g7ldfNXNDfof2fCtB6TAA5gtQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN40OqVM AuCWJAE8K+Z8oL752vcaMB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FDNy9DMTM5REFCQTAyMkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1Qt RDk4Z0RuaWJJNkxBMk9raVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu1cSEFkg8T93YqVRmbeN60NaPzD8LsMkKtv2xFkpG9+4QtgGzjRaL X4Ro1jNCPb8msevq63HbzHFPOz/x2ZHrTBauxh+mG/gAAAUzMXu/aPTaE5KOKxoH yqR2AhPVSdICjdZq02CbVIK6kq09MHqIadI3DYQhlZbrceXvGnznB0vsHqEJejvv psJYF8HoVVIC+4KtvLFILe8vOSOvGp+/UcblT1HbPWUSHPFoVxA0Ud00yU8oLMLJ B8F5DJjf+kn1c9n88V36XfBJUuLMSUIbwgCnHjsVpM8Ss0E1HrqxetPMSMpcCzrS 1lVCGS2PHso9i3dUdkqqODVmIzxQL0+t -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:40 2025 by rpki-client on console.sobornost.net