$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.mft File: aeHOy4gdpslouq4HMjfCZglaRc0.mft (raw, json) Hash identifier: chkOqhycwlWSVNdlNaUk36pv+zVeVJbcmmKudJCUau4= Subject key identifier: 94:CA:2F:95:C8:12:9C:03:7B:94:07:E0:C1:5E:F4:EA:8C:78:31:4C Authority key identifier: 69:E1:CE:CB:88:1D:A6:C9:68:BA:AE:07:32:37:C2:66:09:5A:45:CD Certificate issuer: /CN=A9172CB5/serialNumber=69E1CECB881DA6C968BAAE073237C266095A45CD Certificate serial: 0396 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.mft Manifest number: 038D Signing time: Mon 05 May 2025 00:24:59 +0000 Manifest this update: Mon 05 May 2025 00:24:58 +0000 Manifest next update: Mon 12 May 2025 00:24:58 +0000 Files and hashes: 1: aeHOy4gdpslouq4HMjfCZglaRc0.crl (hash: HM9nykIQLuBeKYiM5iDaZjR8HfqXBP0hVskg9FWJZ+0=) 2: 9F2E362C9B6E11ECA489542DC4F9AE02.roa (hash: ASwdm1L9Wn+Rz2UEXw3LVXx6V8cb6bPFge6o2YPGGR8=) 3: DD2DD3489F9111ECB958FF25C4F9AE02.roa (hash: ge5i/gUk2rLl8NFshkx3QLIeml4hinyetB2nMALgvq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.crl rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 00:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CB5, serialNumber=69E1CECB881DA6C968BAAE073237C266095A45CD Validity Not Before: May 5 00:24:58 2025 GMT Not After : May 12 00:24:58 2025 GMT Subject: CN=6818055b-ae71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:23:84:c5:d1:e5:91:27:f4:1d:94:0b:c0:1a: f9:e4:c2:b7:2a:12:d6:e6:33:33:e2:e0:a5:bb:ab: fe:ef:6f:26:3d:78:71:d3:62:0f:99:49:12:c3:7f: 1a:b2:5e:1d:f5:1a:ce:5e:47:5b:d2:67:9e:0d:1a: 95:24:c3:59:06:ad:e4:28:92:a5:2f:2b:62:e6:4c: d5:72:96:83:b6:43:22:02:ac:e9:72:34:57:32:4e: a0:02:77:81:7f:0d:60:58:ba:27:19:37:5e:fa:ce: 3f:42:9f:a5:81:cd:4d:ea:12:db:0e:dc:90:eb:a9: dc:59:f6:2e:b3:67:15:37:56:e7:96:1c:b1:10:bb: b0:b9:81:28:88:96:8c:0a:4f:2c:ad:fa:a2:72:05: e6:ad:17:40:00:d2:70:39:84:87:24:27:c9:66:25: 48:91:92:3a:c3:ca:30:0b:fb:94:62:ca:68:c3:46: da:fe:c4:03:83:6f:13:8b:c8:85:bf:85:d5:35:f5: 48:6b:43:2b:87:83:71:71:46:62:9e:ce:42:c7:71: 46:7f:d8:f8:64:e4:ea:71:1c:59:f7:53:ba:e9:ac: 84:be:0e:43:b2:90:18:3d:9d:05:d4:e1:53:cf:7b: b7:a4:44:9d:92:95:d7:73:59:70:5f:df:87:4f:7e: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:CA:2F:95:C8:12:9C:03:7B:94:07:E0:C1:5E:F4:EA:8C:78:31:4C X509v3 Authority Key Identifier: keyid:69:E1:CE:CB:88:1D:A6:C9:68:BA:AE:07:32:37:C2:66:09:5A:45:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:88:5b:66:54:37:a5:ca:69:c4:c8:3f:c7:dd:cc:a6:85:f7: 94:08:37:4b:95:ae:46:80:ca:2b:b4:c8:63:b2:d5:f7:11:fd: 3d:1c:f3:06:64:bd:66:b7:40:b8:aa:79:4e:5b:3c:76:cb:11: 60:03:0f:2d:00:15:48:22:d5:a7:72:96:cb:0b:a8:c5:59:3d: 75:86:3a:86:6b:14:92:99:41:3a:3c:1b:22:e5:6a:2d:cd:96: 88:35:74:44:a2:64:a6:5a:75:d0:7c:d8:84:25:64:4c:0b:e4: be:47:e5:91:3d:97:78:a4:c6:90:fa:9a:42:9e:7a:66:82:2b: fb:69:89:72:79:f4:c0:19:e9:5e:25:51:40:a9:96:c9:5e:97: 6c:94:dc:70:22:c7:ea:89:4a:49:3f:81:a2:27:ff:c2:09:3b: 46:9e:7d:9c:6b:ff:f1:75:17:c2:94:96:ac:02:6c:36:51:9b: c9:a8:9b:91:4d:37:1c:fc:bb:c1:f7:3c:c1:7a:d6:77:50:8f: f9:96:0e:a8:e3:cd:17:e1:8f:c0:5f:b2:98:b9:82:e6:ea:a1: 5d:94:6f:da:d5:be:0a:25:89:2b:d4:04:d0:9f:86:8b:a1:83: 47:05:7e:91:94:5a:77:58:95:52:40:c1:88:2f:21:7f:12:3e: fd:a6:2c:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDQjUxMTAvBgNVBAUTKDY5RTFDRUNCODgxREE2Qzk2OEJBQUUwNzMyMzdDMjY2 MDk1QTQ1Q0QwHhcNMjUwNTA1MDAyNDU4WhcNMjUwNTEyMDAyNDU4WjAYMRYwFAYD VQQDEw02ODE4MDU1Yi1hZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyOExdHlkSf0HZQLwBr55MK3KhLW5jMz4uClu6v+728mPXhx02IPmUkSw38a sl4d9RrOXkdb0meeDRqVJMNZBq3kKJKlLyti5kzVcpaDtkMiAqzpcjRXMk6gAneB fw1gWLonGTde+s4/Qp+lgc1N6hLbDtyQ66ncWfYus2cVN1bnlhyxELuwuYEoiJaM Ck8srfqicgXmrRdAANJwOYSHJCfJZiVIkZI6w8owC/uUYspow0ba/sQDg28Ti8iF v4XVNfVIa0Mrh4NxcUZins5Cx3FGf9j4ZOTqcRxZ91O66ayEvg5DspAYPZ0F1OFT z3u3pESdkpXXc1lwX9+HT37atQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTKL5XI EpwDe5QH4MFe9OqMeDFMMB8GA1UdIwQYMBaAFGnhzsuIHabJaLquBzI3wmYJWkXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNCNS8zOUQ3NjcyMDlC NkExMUVDQTY4MjM1MjJDNEY5QUUwMi9hZUhPeTRnZHBzbG91cTRITWpmQ1pnbGFS YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlSE95NGdkcHNsb3VxNEhNamZDWmdsYVJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNCNS8zOUQ3NjcyMDlCNkExMUVDQTY4MjM1MjJDNEY5QUUwMi9hZUhPeTRnZHBz bG91cTRITWpmQ1pnbGFSYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATiFtmVDelymnEyD/H3cymhfeUCDdLla5GgMortMhjstX3Ef09HPMG ZL1mt0C4qnlOWzx2yxFgAw8tABVIItWncpbLC6jFWT11hjqGaxSSmUE6PBsi5Wot zZaINXREomSmWnXQfNiEJWRMC+S+R+WRPZd4pMaQ+ppCnnpmgiv7aYlyefTAGele JVFAqZbJXpdslNxwIsfqiUpJP4GiJ//CCTtGnn2ca//xdRfClJasAmw2UZvJqJuR TTcc/LvB9zzBetZ3UI/5lg6o480X4Y/AX7KYuYLm6qFdlG/a1b4KJYkr1ATQn4aL oYNHBX6RlFp3WJVSQMGILyF/Ej79piyK -----END CERTIFICATE-----Generated at Mon May 5 09:46:44 2025 by rpki-client on console.sobornost.net