$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft File: 7f5wbJSbXs8du-Rg29BO_nweEos.mft (raw, json) Hash identifier: 54QXqPSUsprVqpXrJoX6Zr6lgjlcOlBjY426fhfV/IM= Subject key identifier: F7:DC:97:2E:AB:66:83:29:E4:4F:BF:83:4C:F1:CD:16:F0:46:B8:0A Authority key identifier: ED:FE:70:6C:94:9B:5E:CF:1D:BB:E4:60:DB:D0:4E:FE:7C:1E:12:8B Certificate issuer: /CN=A9170EED/serialNumber=EDFE706C949B5ECF1DBBE460DBD04EFE7C1E128B Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft Manifest number: 6F Signing time: Sun 27 Apr 2025 05:45:22 +0000 Manifest this update: Sun 27 Apr 2025 05:45:21 +0000 Manifest next update: Sun 04 May 2025 05:45:21 +0000 Files and hashes: 1: 7f5wbJSbXs8du-Rg29BO_nweEos.crl (hash: c09HGUAl+78NFuID74VM350i1Jp5LqTXr3gAATwjwMc=) 2: A647525E853B11EFB513D149C4F9AE02.roa (hash: NVZ/4pC5x+KRkn1xpv0XuIrsdCyF6l6g38IM7lDAhYA=) 3: 4A6837A4CE0C11EF8EFFF140C4F9AE02.roa (hash: HwJfMTQ7jgg3uM77Aihq1iVX6drdh4vJBA8hbyppq9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.crl rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=EDFE706C949B5ECF1DBBE460DBD04EFE7C1E128B Validity Not Before: Apr 27 05:45:21 2025 GMT Not After : May 4 05:45:21 2025 GMT Subject: CN=680dc472-c1ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:12:22:94:e6:b2:a2:5f:ab:f1:cc:bc:73:56: dd:3b:03:92:16:44:23:1f:25:60:71:75:d2:29:1e: 43:7c:c8:22:c4:ce:24:39:f3:24:db:d0:bf:7e:77: a1:71:6b:63:c0:60:44:92:c4:70:5c:4c:13:c8:5a: 09:28:b8:82:cd:37:00:68:ea:50:19:36:51:56:82: 2a:85:fe:22:b8:f2:2a:2b:78:31:4d:ba:ca:eb:df: c2:f9:1e:8e:f4:43:f1:bc:f5:90:cf:69:e1:d1:be: 41:e8:aa:57:04:e1:f4:8b:63:f9:9c:6a:16:f6:a7: 25:67:24:94:a2:d0:44:df:07:aa:c5:8f:fe:95:e3: ae:e3:b6:3d:57:97:48:57:80:ae:64:90:c7:d4:c5: d7:2e:a6:cf:d1:5e:e2:79:27:23:cc:ae:86:15:6a: 6f:43:06:5e:c5:2a:a4:f4:23:81:fa:13:ad:da:76: 26:c3:bf:8e:33:de:f1:7e:94:f2:fd:d1:34:7a:12: 9b:0a:e6:65:57:92:9b:15:64:5c:89:6f:b6:b6:9a: 66:e8:1b:19:dd:e2:eb:85:e2:1c:18:93:80:df:4b: 5d:e2:27:3a:7e:86:3a:ea:f7:9a:9b:7a:ff:90:f3: 39:e5:c6:e0:7d:29:58:11:29:c5:8c:0d:f3:2a:79: df:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:DC:97:2E:AB:66:83:29:E4:4F:BF:83:4C:F1:CD:16:F0:46:B8:0A X509v3 Authority Key Identifier: keyid:ED:FE:70:6C:94:9B:5E:CF:1D:BB:E4:60:DB:D0:4E:FE:7C:1E:12:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f5wbJSbXs8du-Rg29BO_nweEos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/3FF3940E853B11EFA3072349C4F9AE02/7f5wbJSbXs8du-Rg29BO_nweEos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:3b:ef:05:f9:23:ad:52:5a:3b:ea:71:ff:3f:84:c4:53:27: 3a:55:1d:bb:ef:b9:c2:a7:51:d1:3b:95:f5:61:65:77:c8:5d: cb:f2:cb:5d:2b:d0:19:8a:1e:3a:30:10:46:44:17:67:aa:d5: 24:a9:f0:8d:7b:23:73:6c:83:ae:73:c3:a7:d2:6f:38:0c:51: da:75:c2:67:81:70:26:eb:ad:50:bf:16:53:13:b1:e5:62:38: 0b:ba:70:65:f2:05:8a:e1:6a:20:8d:71:7a:79:5c:84:00:cf: 6d:94:92:99:32:4f:79:bf:99:89:88:6e:0b:71:49:b1:32:99: 55:1a:f7:71:05:ec:44:e2:4a:e9:80:f7:81:f1:f7:61:11:65: 36:80:b8:7a:14:86:ae:36:16:84:99:a2:5a:a4:64:9d:51:a2: b2:c9:50:84:4d:b2:0f:7d:27:45:3b:3c:80:1b:6e:75:4a:a6: 80:02:3e:32:79:95:a3:2f:f9:a6:32:01:b7:98:db:19:86:2b: bb:75:f4:1f:e9:d9:c3:82:4a:c3:92:55:e8:51:a8:be:29:ba: d0:e8:d6:46:a0:1d:2a:db:b8:a1:e6:1d:2f:41:06:0a:4c:2c: 7e:31:67:a9:a6:61:32:2f:1f:e8:28:7d:cf:a4:5b:a8:8b:56: f4:32:42:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEVFRDExMC8GA1UEBRMoRURGRTcwNkM5NDlCNUVDRjFEQkJFNDYwREJEMDRFRkU3 QzFFMTI4QjAeFw0yNTA0MjcwNTQ1MjFaFw0yNTA1MDQwNTQ1MjFaMBgxFjAUBgNV BAMTDTY4MGRjNDcyLWMxZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbEiKU5rKiX6vxzLxzVt07A5IWRCMfJWBxddIpHkN8yCLEziQ58yTb0L9+d6Fx a2PAYESSxHBcTBPIWgkouILNNwBo6lAZNlFWgiqF/iK48ioreDFNusrr38L5Ho70 Q/G89ZDPaeHRvkHoqlcE4fSLY/mcahb2pyVnJJSi0ETfB6rFj/6V467jtj1Xl0hX gK5kkMfUxdcups/RXuJ5JyPMroYVam9DBl7FKqT0I4H6E63adibDv44z3vF+lPL9 0TR6EpsK5mVXkpsVZFyJb7a2mmboGxnd4uuF4hwYk4DfS13iJzp+hjrq95qbev+Q 8znlxuB9KVgRKcWMDfMqed9hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU99yXLqtm gynkT7+DTPHNFvBGuAowHwYDVR0jBBgwFoAU7f5wbJSbXs8du+Rg29BO/nweEosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwRUVELzNGRjM5NDBFODUz QjExRUZBMzA3MjM0OUM0RjlBRTAyLzdmNXdiSlNiWHM4ZHUtUmcyOUJPX253ZUVv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN2Y1d2JKU2JYczhkdS1SZzI5Qk9fbndlRW9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw RUVELzNGRjM5NDBFODUzQjExRUZBMzA3MjM0OUM0RjlBRTAyLzdmNXdiSlNiWHM4 ZHUtUmcyOUJPX253ZUVvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEE77wX5I61SWjvqcf8/hMRTJzpVHbvvucKnUdE7lfVhZXfIXcvyy10r 0BmKHjowEEZEF2eq1SSp8I17I3Nsg65zw6fSbzgMUdp1wmeBcCbrrVC/FlMTseVi OAu6cGXyBYrhaiCNcXp5XIQAz22UkpkyT3m/mYmIbgtxSbEymVUa93EF7ETiSumA 94Hx92ERZTaAuHoUhq42FoSZolqkZJ1RorLJUIRNsg99J0U7PIAbbnVKpoACPjJ5 laMv+aYyAbeY2xmGK7t19B/p2cOCSsOSVehRqL4putDo1kagHSrbuKHmHS9BBgpM LH4xZ6mmYTIvH+gofc+kW6iLVvQyQn0= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net