$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: FIAQm7mZ8+7JMichoqSL5js1CiutLaPuA66QTNQwEMU= Subject key identifier: 14:83:24:DF:90:B5:68:F6:91:1F:21:22:D4:66:F1:C8:9C:F0:1D:E5 Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 0624 Signing time: Sun 27 Apr 2025 00:00:16 +0000 Manifest this update: Sun 27 Apr 2025 00:00:15 +0000 Manifest next update: Sun 04 May 2025 00:00:15 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: EO8Hpacrff1ufnzE3E0Wd2po6/+PJcEfOSdRfbHyjLU=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: 6xK46XhJtyZvl0GV6Tg9wg5kNg7cdtZOaQsNEIc5Pf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Apr 27 00:00:15 2025 GMT Not After : May 4 00:00:15 2025 GMT Subject: CN=680d7390-fd87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:15:28:36:29:20:c2:bc:16:f3:e7:69:1a:ce: df:0e:33:6e:b7:e8:13:7f:aa:35:2e:64:16:a8:d4: 24:e2:d0:86:5f:64:0c:7f:86:5c:e6:43:1e:90:d5: af:09:58:de:3d:ff:b5:71:53:82:58:45:31:68:87: 21:cc:53:9b:94:d8:c7:2e:f1:73:b5:ac:ba:b7:7b: 05:5e:72:3e:ec:91:65:34:c3:c6:a5:5d:30:ac:0a: 00:67:7d:9a:66:ab:6b:02:1b:a1:57:42:77:17:85: 24:99:58:9e:ad:bd:b5:81:8f:a4:71:3f:4f:c4:c1: b4:e0:98:aa:00:ff:35:81:e0:92:5b:7a:96:5d:46: fd:b3:0a:fe:bf:54:90:d3:1e:1e:7e:f6:0e:5a:8d: 1b:0e:4f:64:0b:1b:8d:2b:23:e9:7a:06:95:d3:6f: 53:75:f4:69:ba:f8:81:fb:17:36:49:bd:53:5b:5e: ef:13:60:1f:a6:53:a2:dd:cd:55:13:d0:e0:86:eb: b4:20:63:63:47:7c:44:4c:36:f4:a8:18:9c:c5:07: 32:4c:e5:b9:d4:2d:b0:1d:18:83:e7:1f:e4:03:a2: 21:1c:1c:9f:d4:97:7c:2d:30:f5:9f:52:ec:81:84: 6a:4c:36:41:bd:09:86:6a:dc:46:9a:a4:88:9b:be: ec:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:83:24:DF:90:B5:68:F6:91:1F:21:22:D4:66:F1:C8:9C:F0:1D:E5 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:6f:6f:d5:ab:64:d2:d1:65:8c:b5:ce:e8:1a:93:e6:f3:6c: 4f:87:78:87:7c:63:b7:3c:0a:9e:bc:0f:69:12:d6:ee:2b:0b: cb:6d:65:3c:4f:6c:cd:9b:23:c1:9d:ff:e9:f8:b4:15:a6:fe: 14:0a:fb:2f:8d:86:4a:b8:21:e2:17:73:5d:e2:86:53:c8:6e: b4:4f:b3:88:a7:61:81:25:ae:7b:54:25:b4:bd:99:cb:72:5e: ee:86:70:94:98:5b:b9:92:ed:1b:14:f2:da:73:4f:d2:7d:e6: bd:3f:f4:68:48:c0:1f:80:4d:18:c5:27:9f:6e:2b:6c:58:c9: 44:38:ad:5b:91:a0:cb:71:03:85:08:59:9d:3e:4f:d5:42:f9: ca:4d:56:08:da:66:6c:65:6a:3b:e3:c9:4c:e3:ba:93:15:90: d0:41:71:b6:d5:32:f4:ec:fb:0a:24:eb:dc:79:0e:52:ac:73: 65:90:ad:7e:86:07:44:b7:d5:dc:5b:f7:34:f8:9f:b8:7e:71: 05:69:f4:30:88:39:bf:f9:14:65:86:31:33:dd:cd:ad:4d:05: 65:15:07:a6:ea:c4:65:7c:b7:d6:d0:ac:07:fa:df:b1:e7:10: bf:7c:40:71:b9:a0:ef:b8:92:3e:b1:1c:92:24:83:2f:77:e7: 9c:9d:cd:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwNDI3MDAwMDE1WhcNMjUwNTA0MDAwMDE1WjAYMRYwFAYD VQQDEw02ODBkNzM5MC1mZDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhUoNikgwrwW8+dpGs7fDjNut+gTf6o1LmQWqNQk4tCGX2QMf4Zc5kMekNWv CVjePf+1cVOCWEUxaIchzFOblNjHLvFztay6t3sFXnI+7JFlNMPGpV0wrAoAZ32a ZqtrAhuhV0J3F4UkmVierb21gY+kcT9PxMG04JiqAP81geCSW3qWXUb9swr+v1SQ 0x4efvYOWo0bDk9kCxuNKyPpegaV029TdfRpuviB+xc2Sb1TW17vE2AfplOi3c1V E9Dghuu0IGNjR3xETDb0qBicxQcyTOW51C2wHRiD5x/kA6IhHByf1Jd8LTD1n1Ls gYRqTDZBvQmGatxGmqSIm77sSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSDJN+Q tWj2kR8hItRm8cic8B3lMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEb2/Vq2TS0WWMtc7oGpPm82xPh3iHfGO3PAqevA9pEtbuKwvLbWU8 T2zNmyPBnf/p+LQVpv4UCvsvjYZKuCHiF3Nd4oZTyG60T7OIp2GBJa57VCW0vZnL cl7uhnCUmFu5ku0bFPLac0/Sfea9P/RoSMAfgE0YxSefbitsWMlEOK1bkaDLcQOF CFmdPk/VQvnKTVYI2mZsZWo748lM47qTFZDQQXG21TL07PsKJOvceQ5SrHNlkK1+ hgdEt9XcW/c0+J+4fnEFafQwiDm/+RRlhjEz3c2tTQVlFQem6sRlfLfW0KwH+t+x 5xC/fEBxuaDvuJI+sRySJIMvd+ecnc1p -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net