$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: BXxtA6PYJ7wOHy3iB9VXen0lDGEYwG0zSEpnpNZLilw= Subject key identifier: 72:78:D8:FD:AA:B1:C4:6A:B7:E9:6D:22:9D:07:F6:CF:77:15:25:9D Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 1666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 1628 Signing time: Mon 28 Apr 2025 16:59:29 +0000 Manifest this update: Mon 28 Apr 2025 16:59:28 +0000 Manifest next update: Mon 05 May 2025 16:59:28 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: 2/TklVkWxUdQy1Xsk49J952mpobn0AzX9J19JcGJZyc=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: pak3Iy8E0gYpnvDkmWBebcI4LeVYUCjbRqic1+nKIXc=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: YpgFRa2Rul9X6oABfgOzOCogI1xE9k1rvzUQOQyIs6c=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: v+Ks9nZk5YSGi8jwz8W2ujGkO89h3nHyAUbCbrfDviU=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: Adsar2w8VAjS3SUaIO5TAhSv+c7iSEo6NtUlziAok5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5734 (0x1666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Apr 28 16:59:28 2025 GMT Not After : May 5 16:59:28 2025 GMT Subject: CN=680fb3f0-e8db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2c:13:10:53:bb:76:c0:21:5e:cc:9e:8a:1b: 50:32:ea:a9:b2:39:40:50:d6:4c:b4:61:04:22:f3: 35:f4:63:84:79:67:92:68:04:28:f5:31:df:c9:90: 4c:1e:7c:bc:be:cc:73:e8:ff:db:86:c8:7c:d6:f1: 1f:79:2c:e5:3f:3e:3c:52:7a:76:8c:9a:e0:64:f0: e3:e6:f6:5e:85:2e:a1:d6:8e:67:1e:93:e8:c4:ba: e0:7f:43:a3:66:2d:eb:bd:b2:09:2f:7a:e6:22:95: 55:56:a0:16:18:57:95:4a:1e:b6:75:16:a2:19:d5: 84:b6:c5:ed:45:4d:c6:97:50:5c:d6:d3:64:35:fe: c1:2a:c2:1d:f6:cd:b8:bc:8d:21:7a:a8:f7:c9:d7: 04:91:f7:84:83:fa:c4:64:37:27:c4:67:af:cc:c0: 31:87:2f:f5:59:c8:37:b9:18:2e:6c:ce:f2:4e:51: 92:f3:e6:01:cd:af:ec:29:e7:14:5f:8b:fb:d0:ea: 44:84:13:93:c7:d7:7d:4d:00:0e:e3:cf:aa:02:88: f9:fe:99:65:3f:25:10:af:c5:ff:45:33:61:7b:d2: c2:10:01:aa:33:ff:40:f4:23:63:03:07:99:f0:8f: bc:32:5d:52:63:c1:65:c8:0b:a0:88:a3:d4:d5:0a: 8b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:78:D8:FD:AA:B1:C4:6A:B7:E9:6D:22:9D:07:F6:CF:77:15:25:9D X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:71:b7:a2:59:cc:97:96:3c:b1:d0:6b:a1:b3:87:41:c9:08: 5a:60:18:97:e9:2d:2c:9f:32:97:20:f9:43:59:d3:9c:90:65: 91:18:de:a3:64:bb:d6:a3:a6:27:13:ae:cb:4c:52:a9:37:28: 34:9e:41:73:53:33:52:6d:e2:bd:f8:f3:a1:d2:aa:5f:04:74: 03:a4:3a:a0:5f:87:a0:4c:cc:1a:29:71:17:7b:b7:c9:57:3d: 4c:6e:77:f3:3d:f6:ba:20:53:d5:e4:a1:ff:57:43:93:9a:45: ef:e9:11:f2:dd:cc:fc:75:b7:fe:cb:be:7d:47:05:2b:1c:06: 98:52:8c:49:52:eb:ff:18:73:ef:a5:1c:37:6c:33:30:85:83: 5a:73:16:f4:a7:78:9e:c0:a1:f5:e5:97:55:66:d2:d0:62:7a: 9c:bc:23:44:b1:00:24:ec:ea:61:c8:2d:ea:f9:e5:ef:fb:5a: 37:64:16:45:24:80:8e:05:e1:fa:f6:5c:01:8a:be:5f:8a:b2: ae:0b:c3:f4:88:0f:06:a8:6c:a8:be:52:a7:81:9b:a3:17:46: 9e:c2:13:7c:99:73:0f:0d:df:47:a3:5f:02:d5:cb:38:1c:73: 4c:5a:1d:53:a7:2e:15:df:71:c1:03:61:60:d6:ce:0a:b0:98: 4f:cc:84:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwNDI4MTY1OTI4WhcNMjUwNTA1MTY1OTI4WjAYMRYwFAYD VQQDEw02ODBmYjNmMC1lOGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiwTEFO7dsAhXsyeihtQMuqpsjlAUNZMtGEEIvM19GOEeWeSaAQo9THfyZBM Hny8vsxz6P/bhsh81vEfeSzlPz48Unp2jJrgZPDj5vZehS6h1o5nHpPoxLrgf0Oj Zi3rvbIJL3rmIpVVVqAWGFeVSh62dRaiGdWEtsXtRU3Gl1Bc1tNkNf7BKsId9s24 vI0heqj3ydcEkfeEg/rEZDcnxGevzMAxhy/1Wcg3uRgubM7yTlGS8+YBza/sKecU X4v70OpEhBOTx9d9TQAO48+qAoj5/pllPyUQr8X/RTNhe9LCEAGqM/9A9CNjAweZ 8I+8Ml1SY8FlyAugiKPU1QqLDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJ42P2q scRqt+ltIp0H9s93FSWdMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAicbeiWcyXljyx0Guhs4dByQhaYBiX6S0snzKXIPlDWdOckGWRGN6j ZLvWo6YnE67LTFKpNyg0nkFzUzNSbeK9+POh0qpfBHQDpDqgX4egTMwaKXEXe7fJ Vz1MbnfzPfa6IFPV5KH/V0OTmkXv6RHy3cz8dbf+y759RwUrHAaYUoxJUuv/GHPv pRw3bDMwhYNacxb0p3iewKH15ZdVZtLQYnqcvCNEsQAk7OphyC3q+eXv+1o3ZBZF JICOBeH69lwBir5firKuC8P0iA8GqGyovlKngZujF0aewhN8mXMPDd9Ho18C1cs4 HHNMWh1Tpy4V33HBA2Fg1s4KsJhPzIQL -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:42 2025 by rpki-client on console.sobornost.net