$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft File: 7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft (raw, json) Hash identifier: s61koZmWcZoaBGDFKsi0yTRc7kHdag2ASUR8MmY8gw4= Subject key identifier: 63:14:65:83:C4:34:31:44:1F:EE:4C:A0:99:60:68:45:6C:99:3F:4C Authority key identifier: EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF Certificate issuer: /CN=A916DB72/serialNumber=ECE2E0160161B6F77FC74976FA7D46C3E4232DEF Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft Manifest number: 9F Signing time: Fri 25 Apr 2025 05:14:43 +0000 Manifest this update: Fri 25 Apr 2025 05:14:42 +0000 Manifest next update: Fri 02 May 2025 05:14:42 +0000 Files and hashes: 1: 7OLgFgFhtvd_x0l2-n1Gw-QjLe8.crl (hash: ovVvz8AWZcEZ/+KE+tG6Wm2mmpIsPG9SYXGl9JCpM+0=) 2: 6C722C5A6C8311EF90BD1B76C4F9AE02.roa (hash: 7gIQlEaY6p9FZPwnLquANP+Ly+DUi94SCHLL5QY24Hg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.crl rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB72, serialNumber=ECE2E0160161B6F77FC74976FA7D46C3E4232DEF Validity Not Before: Apr 25 05:14:42 2025 GMT Not After : May 2 05:14:42 2025 GMT Subject: CN=680b1a42-c37c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:24:e2:96:97:6d:33:10:ba:1b:38:16:4d: 77:67:61:47:a5:cb:0c:84:9a:5c:a6:8f:dd:e9:d4: 16:6a:80:78:3a:07:3c:7d:fe:b5:9c:43:af:f8:54: 94:16:4e:48:c1:46:58:f9:dc:45:3b:c7:41:0a:2e: 09:ab:8d:2c:3c:04:0b:b5:ec:28:4a:a7:d0:45:89: b8:92:4f:61:ba:b1:f2:88:6e:b5:1f:0d:14:ea:fb: 84:3b:03:9c:63:51:5b:ac:b7:e9:10:1c:85:86:6e: e4:a3:5e:ac:90:e4:61:14:c9:d0:48:9d:96:b8:31: ad:dd:00:ff:46:ff:05:c5:1d:3e:ba:e5:c4:1f:b0: b5:57:9f:6e:c7:4a:14:23:5f:d9:38:a8:18:38:1e: 61:2f:91:de:df:71:76:62:46:9b:5d:d0:12:d9:08: cb:da:ea:b5:59:7d:d6:6a:6c:f9:d6:3c:42:c7:50: 71:bb:df:7c:c1:59:bd:89:ac:17:a0:4f:df:bf:74: c7:e1:bb:7c:72:24:0f:f6:0e:f2:14:9e:54:a0:9b: ef:41:7d:dd:07:83:d3:6d:db:04:b3:7a:04:3b:0c: 36:d5:db:60:a4:82:3a:4d:c4:8f:02:46:0c:f8:37: 39:5a:6b:0e:78:e9:51:fc:67:f2:7d:ca:e2:0f:64: 31:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:14:65:83:C4:34:31:44:1F:EE:4C:A0:99:60:68:45:6C:99:3F:4C X509v3 Authority Key Identifier: keyid:EC:E2:E0:16:01:61:B6:F7:7F:C7:49:76:FA:7D:46:C3:E4:23:2D:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB72/7D99ACAC31F411EFAE91A00CC4F9AE02/7OLgFgFhtvd_x0l2-n1Gw-QjLe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:ed:c4:8c:b2:eb:40:38:bf:75:a8:9b:f9:18:99:cd:72:b4: 85:e0:16:58:03:40:55:7b:f1:d1:a3:3a:d9:fe:53:0e:f6:6e: 07:0d:75:21:6c:2b:76:a3:ce:f9:94:7e:31:f2:2c:b9:31:3d: 38:26:fb:85:bc:4e:13:b8:88:15:b5:76:8f:1a:dd:0b:ff:ea: ab:dd:57:26:1f:de:3c:cc:c3:c7:54:6f:02:31:d6:a8:2d:ca: d7:ce:30:d5:6c:57:9c:50:fa:5d:ae:19:ad:37:e1:64:14:14: 7f:dc:1f:ee:6d:b1:8b:23:ee:f1:e1:5f:e2:f3:b3:8c:c2:d4: ea:df:5c:02:05:96:17:37:a5:97:f4:68:00:80:ff:df:c9:68: 62:ad:57:e3:40:5a:b9:67:dc:2c:8f:49:c2:f1:bb:e5:bb:91: 03:6d:38:66:0a:76:af:3a:18:b1:2f:b7:65:bc:bc:69:b1:cc: bc:77:ef:4a:a9:15:51:c0:a0:35:92:6d:bf:13:a5:f6:d4:cb: 36:64:5e:2c:cf:eb:02:ec:74:0a:9b:88:53:28:7e:f6:a8:c5: 67:a0:37:e9:43:bb:08:b6:76:4a:5b:eb:29:b5:83:f3:2b:39: 84:7a:21:28:06:69:a5:b8:4e:c9:0a:68:3b:e8:18:d4:8f:7b: 58:09:59:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCNzIxMTAvBgNVBAUTKEVDRTJFMDE2MDE2MUI2Rjc3RkM3NDk3NkZBN0Q0NkMz RTQyMzJERUYwHhcNMjUwNDI1MDUxNDQyWhcNMjUwNTAyMDUxNDQyWjAYMRYwFAYD VQQDEw02ODBiMWE0Mi1jMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJsk4paXbTMQuhs4Fk13Z2FHpcsMhJpcpo/d6dQWaoB4Ogc8ff61nEOv+FSU Fk5IwUZY+dxFO8dBCi4Jq40sPAQLtewoSqfQRYm4kk9hurHyiG61Hw0U6vuEOwOc Y1FbrLfpEByFhm7ko16skORhFMnQSJ2WuDGt3QD/Rv8FxR0+uuXEH7C1V59ux0oU I1/ZOKgYOB5hL5He33F2YkabXdAS2QjL2uq1WX3Wamz51jxCx1Bxu998wVm9iawX oE/fv3TH4bt8ciQP9g7yFJ5UoJvvQX3dB4PTbdsEs3oEOww21dtgpII6TcSPAkYM +Dc5WmsOeOlR/GfyfcriD2QxAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGMUZYPE NDFEH+5MoJlgaEVsmT9MMB8GA1UdIwQYMBaAFOzi4BYBYbb3f8dJdvp9RsPkIy3v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REI3Mi83RDk5QUNBQzMx RjQxMUVGQUU5MUEwMENDNEY5QUUwMi83T0xnRmdGaHR2ZF94MGwyLW4xR3ctUWpM ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdPTGdGZ0ZodHZkX3gwbDItbjFHdy1RakxlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REI3Mi83RDk5QUNBQzMxRjQxMUVGQUU5MUEwMENDNEY5QUUwMi83T0xnRmdGaHR2 ZF94MGwyLW4xR3ctUWpMZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH7cSMsutAOL91qJv5GJnNcrSF4BZYA0BVe/HRozrZ/lMO9m4HDXUh bCt2o875lH4x8iy5MT04JvuFvE4TuIgVtXaPGt0L/+qr3VcmH948zMPHVG8CMdao LcrXzjDVbFecUPpdrhmtN+FkFBR/3B/ubbGLI+7x4V/i87OMwtTq31wCBZYXN6WX 9GgAgP/fyWhirVfjQFq5Z9wsj0nC8bvlu5EDbThmCnavOhixL7dlvLxpscy8d+9K qRVRwKA1km2/E6X21Ms2ZF4sz+sC7HQKm4hTKH72qMVnoDfpQ7sItnZKW+sptYPz KzmEeiEoBmmluE7JCmg76BjUj3tYCVm/ -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:57 2025 by rpki-client on console.sobornost.net