$ rpki-client -vvf rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft File: gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft (raw, json) Hash identifier: pkFV0mToB9FXGy7oPlJeK/xCEhnVi1ksRecVbZK2eUc= Subject key identifier: 4C:2A:0A:A9:0C:83:F4:EA:D5:E6:48:58:A5:82:1E:22:4E:5A:95:81 Authority key identifier: 81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 Certificate issuer: /CN=A917092C/serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft Manifest number: 7A Signing time: Sun 27 Apr 2025 05:39:22 +0000 Manifest this update: Sun 27 Apr 2025 05:39:21 +0000 Manifest next update: Sun 04 May 2025 05:39:21 +0000 Files and hashes: 1: gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl (hash: /F43MWGjqtRQajHF1wEsKPoZVF2mOJu42aqLQhzVb6M=) 2: E1F3085E777E11EFB3F75352C4F9AE02.roa (hash: k8bmIEi5AkEe4xzWalacEnF3qdgyVE7VkZI11nYD+RY=) 3: E3105D04777E11EFB3F75352C4F9AE02.roa (hash: pcx/18jLnM6NqrvyQgLayio0TPjGkJNNnKGVPlHBYO8=) 4: E27B5862777E11EFB3F75352C4F9AE02.roa (hash: rPvzorCtxEUQHBw6HlxY0A29sySWnjRa4667RhmeUc8=) 5: 8E00FBF2777E11EF8D0ECC4EC4F9AE02.roa (hash: FsiT3oYazNjnPtPEe7G6GkJ5HTMUOkycbdZ+8LjujNs=) 6: 752774D616A111F0B2CDBC72C4F9AE02.roa (hash: d+1sX6tY5J0jwkyX1i5fUM/tk/BpB8/UlFulaWgxJOc=) 7: E3C4A4EE777E11EFB3F75352C4F9AE02.roa (hash: L5hcVKih/+nBko6kW7js31KvZiJs+q86I/1/tFKfyVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917092C, serialNumber=817DD3802F26E57ECE8265CE8626FCBB9C64E9D4 Validity Not Before: Apr 27 05:39:21 2025 GMT Not After : May 4 05:39:21 2025 GMT Subject: CN=680dc30a-6244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9b:91:06:92:53:b0:23:7a:f8:5a:17:dd:53: 93:ea:e0:9b:32:ed:88:ed:d4:45:ab:fa:c0:30:9b: f0:a1:1c:c1:27:f9:dc:b6:47:d6:d3:a5:3d:c9:e6: 07:b8:86:f8:b6:e0:09:4c:19:55:be:6a:2f:c3:8d: 62:77:9e:10:d6:75:23:19:09:8c:1a:15:ba:72:8d: ad:e2:ae:5d:66:36:d0:a1:20:b3:3a:1e:74:82:a7: 08:ab:3b:73:be:a3:c8:4d:01:1e:1a:75:0c:64:fb: e8:38:63:b8:c0:c6:c8:48:c1:57:b9:82:1f:e2:27: 6b:22:7b:db:f9:04:90:c1:f0:4e:0f:cc:67:be:dc: ad:03:5f:a5:b1:7f:e0:7d:94:57:f2:13:54:1b:72: 3d:05:b4:8a:72:a9:6b:81:25:42:b1:e7:9c:d3:3a: cb:a7:62:ee:92:58:fa:ca:f6:c6:42:64:36:6c:f9: e8:47:2d:30:8e:16:69:59:0b:a7:68:ef:db:3e:e6: 89:93:c2:2d:e9:90:48:87:ed:4a:41:ec:e1:8e:b5: ae:4e:57:1b:65:55:19:03:65:9b:05:69:76:0e:ba: 25:63:b6:cb:fc:41:c1:e9:cf:38:c1:a5:fe:5f:b9: 42:2d:65:9f:8f:16:1c:56:3d:03:13:d6:7e:a4:a5: fd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2A:0A:A9:0C:83:F4:EA:D5:E6:48:58:A5:82:1E:22:4E:5A:95:81 X509v3 Authority Key Identifier: keyid:81:7D:D3:80:2F:26:E5:7E:CE:82:65:CE:86:26:FC:BB:9C:64:E9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gX3TgC8m5X7OgmXOhib8u5xk6dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917092C/E2C077DE776611EFB55ED279C4F9AE02/gX3TgC8m5X7OgmXOhib8u5xk6dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:89:1b:1b:be:02:16:ab:fe:80:b6:c0:39:92:0c:85:40:bf: a5:6a:82:4a:7e:5f:2f:db:ba:8a:57:02:af:a2:95:4d:e6:3f: 8e:39:82:22:e7:03:31:27:36:f1:8b:f4:c7:d2:59:04:2b:1f: 77:63:b2:34:9d:ef:20:50:31:5d:fa:a8:7d:96:b1:61:0f:37: a2:34:25:06:e9:60:a1:02:b1:d3:75:f8:6e:86:13:4d:ba:c7: c7:ab:22:a9:3e:2a:cf:0a:ef:05:1e:eb:8e:19:4a:43:b0:f1: a2:b4:4a:48:4a:1f:86:20:66:d2:cb:43:28:89:38:73:c0:16: 19:e0:59:6d:75:52:f9:ea:61:98:c5:88:ba:cf:d2:b4:14:9c: 5e:b9:b7:2a:74:b5:67:a6:9f:20:2f:88:92:c5:c3:37:42:48: c7:3e:b5:e2:76:2e:be:a1:77:06:28:1d:83:ec:67:80:6e:9b: de:94:b5:4b:5b:0a:9a:b4:c5:3e:bc:e7:38:8e:55:2b:35:a8: 56:17:15:f7:86:00:7f:38:bc:1a:cc:63:af:44:d8:b7:76:ac: d0:54:2e:6b:5a:5f:ce:aa:56:ac:48:1d:76:8f:d8:7c:13:9b: 64:25:49:39:0d:8c:db:5f:44:b3:15:5d:63:00:66:27:10:35: 5a:a8:60:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5MkMxMTAvBgNVBAUTKDgxN0REMzgwMkYyNkU1N0VDRTgyNjVDRTg2MjZGQ0JC OUM2NEU5RDQwHhcNMjUwNDI3MDUzOTIxWhcNMjUwNTA0MDUzOTIxWjAYMRYwFAYD VQQDEw02ODBkYzMwYS02MjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZuRBpJTsCN6+FoX3VOT6uCbMu2I7dRFq/rAMJvwoRzBJ/nctkfW06U9yeYH uIb4tuAJTBlVvmovw41id54Q1nUjGQmMGhW6co2t4q5dZjbQoSCzOh50gqcIqztz vqPITQEeGnUMZPvoOGO4wMbISMFXuYIf4idrInvb+QSQwfBOD8xnvtytA1+lsX/g fZRX8hNUG3I9BbSKcqlrgSVCseec0zrLp2Luklj6yvbGQmQ2bPnoRy0wjhZpWQun aO/bPuaJk8It6ZBIh+1KQezhjrWuTlcbZVUZA2WbBWl2DrolY7bL/EHB6c84waX+ X7lCLWWfjxYcVj0DE9Z+pKX9ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwqCqkM g/Tq1eZIWKWCHiJOWpWBMB8GA1UdIwQYMBaAFIF904AvJuV+zoJlzoYm/LucZOnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDkyQy9FMkMwNzdERTc3 NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVYN09nbVhPaGliOHU1eGs2 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dYM1RnQzhtNVg3T2dtWE9oaWI4dTV4azZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDkyQy9FMkMwNzdERTc3NjYxMUVGQjU1RUQyNzlDNEY5QUUwMi9nWDNUZ0M4bTVY N09nbVhPaGliOHU1eGs2ZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwiRsbvgIWq/6AtsA5kgyFQL+laoJKfl8v27qKVwKvopVN5j+OOYIi 5wMxJzbxi/TH0lkEKx93Y7I0ne8gUDFd+qh9lrFhDzeiNCUG6WChArHTdfhuhhNN usfHqyKpPirPCu8FHuuOGUpDsPGitEpISh+GIGbSy0MoiThzwBYZ4FltdVL56mGY xYi6z9K0FJxeubcqdLVnpp8gL4iSxcM3QkjHPrXidi6+oXcGKB2D7GeAbpvelLVL WwqatMU+vOc4jlUrNahWFxX3hgB/OLwazGOvRNi3dqzQVC5rWl/OqlasSB12j9h8 E5tkJUk5DYzbX0SzFV1jAGYnEDVaqGBk -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net