$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: IKa6CWssEzdxV0Joa9vvyzQG0kjtqy+qkGE/cno+ctU= Subject key identifier: D1:AB:E3:5F:CE:6D:04:F4:97:B9:AB:44:9C:94:73:7C:03:F2:37:05 Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 0661 Signing time: Sat 26 Apr 2025 22:03:17 +0000 Manifest this update: Sat 26 Apr 2025 22:03:17 +0000 Manifest next update: Sat 03 May 2025 22:03:17 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: SjNPMRFKsf8zrGfPXe95xA/tYfMojyIcmq5KgZniOhE=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: yju+fZAWtM3RsMZrSlngexqtu4I3chkHV+7N/8ZbBdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Apr 26 22:03:17 2025 GMT Not After : May 3 22:03:17 2025 GMT Subject: CN=680d5825-3917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e5:a1:09:02:b1:3f:88:88:04:24:ee:51:85: 11:3a:e6:6e:a0:3c:e3:70:e1:70:29:51:84:59:f6: 2f:0f:4b:4d:93:54:9f:ef:59:48:c7:2e:4c:44:1b: 53:29:fb:85:fc:43:96:96:14:c7:82:49:86:ea:27: 5a:c8:58:c1:4d:df:10:08:02:e6:e6:7c:f2:42:38: 44:0f:f1:0f:dd:5e:c4:78:7f:f3:0c:89:d6:f8:c0: bc:06:c5:4c:f6:be:aa:4a:a4:5e:c6:ed:fa:9f:1c: d4:4c:81:23:77:ab:78:f9:fb:08:44:ea:d4:eb:b5: 25:d6:3f:ec:f7:44:3d:f2:4d:00:bf:53:4c:5f:99: 51:ca:34:e7:d7:01:e2:12:55:71:34:32:b9:f3:05: d8:0e:1f:eb:0c:53:f9:85:f1:7a:6b:1a:81:21:e3: cc:c3:e3:cf:ea:2a:3b:9e:17:26:de:9b:96:5e:33: 4e:9d:03:2f:5b:60:13:df:5f:31:d9:c4:2e:a9:77: 35:cd:84:96:73:23:e4:22:2f:54:7b:cc:b9:f0:ba: e2:61:06:c7:d8:f2:d3:f1:4f:b4:75:c7:b0:b9:e5: 56:10:b4:23:0f:c8:f6:1b:91:9b:67:a1:39:65:c2: 94:25:52:a4:e3:18:77:33:52:25:1c:85:ac:5c:da: c8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AB:E3:5F:CE:6D:04:F4:97:B9:AB:44:9C:94:73:7C:03:F2:37:05 X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:07:f8:15:e7:ba:f0:0a:b5:4d:1d:79:fb:6a:cc:39:c8:e1: 1f:a1:94:43:44:24:d3:26:19:e3:76:9b:8d:4e:84:44:0f:02: bf:a2:93:84:78:a0:04:89:46:d6:fb:5f:31:08:fe:d4:94:54: 61:ef:35:48:ff:7e:8c:08:50:5c:2d:94:bb:34:76:89:d3:9d: dd:33:b3:16:88:1e:7d:48:46:11:ae:04:7f:da:e2:a1:98:db: e3:1b:1f:31:df:83:06:80:13:cd:05:57:fa:5e:84:69:ed:ab: 0b:47:05:f8:70:7e:28:6b:ca:8a:6d:24:f8:28:76:cf:ca:79: 65:8d:4f:9c:25:8c:66:ae:65:69:04:06:30:14:71:99:81:5f: 31:42:e3:f3:85:f1:1d:d6:79:f8:ab:25:f6:f5:ca:a5:ef:58: ea:01:54:52:0d:94:df:89:6a:32:18:89:35:6a:3c:ab:26:ba: e1:8b:d7:3e:03:f2:09:dd:4a:05:b8:d7:35:f1:c4:f3:6e:3a: be:31:46:b2:68:d8:1c:fc:40:92:40:cd:8e:9f:7d:61:b3:86: 59:73:2a:b4:35:7d:2e:6f:e4:04:ec:a5:15:7a:a8:96:2c:55: 22:32:19:3f:60:64:ef:d9:52:91:0e:11:4b:ef:98:56:db:f9: 0e:50:ca:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjUwNDI2MjIwMzE3WhcNMjUwNTAzMjIwMzE3WjAYMRYwFAYD VQQDEw02ODBkNTgyNS0zOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eWhCQKxP4iIBCTuUYUROuZuoDzjcOFwKVGEWfYvD0tNk1Sf71lIxy5MRBtT KfuF/EOWlhTHgkmG6idayFjBTd8QCALm5nzyQjhED/EP3V7EeH/zDInW+MC8BsVM 9r6qSqRexu36nxzUTIEjd6t4+fsIROrU67Ul1j/s90Q98k0Av1NMX5lRyjTn1wHi ElVxNDK58wXYDh/rDFP5hfF6axqBIePMw+PP6io7nhcm3puWXjNOnQMvW2AT318x 2cQuqXc1zYSWcyPkIi9Ue8y58LriYQbH2PLT8U+0dcewueVWELQjD8j2G5GbZ6E5 ZcKUJVKk4xh3M1IlHIWsXNrIiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGr41/O bQT0l7mrRJyUc3wD8jcFMB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOB/gV57rwCrVNHXn7asw5yOEfoZRDRCTTJhnjdpuNToREDwK/opOE eKAEiUbW+18xCP7UlFRh7zVI/36MCFBcLZS7NHaJ053dM7MWiB59SEYRrgR/2uKh mNvjGx8x34MGgBPNBVf6XoRp7asLRwX4cH4oa8qKbST4KHbPynlljU+cJYxmrmVp BAYwFHGZgV8xQuPzhfEd1nn4qyX29cql71jqAVRSDZTfiWoyGIk1ajyrJrrhi9c+ A/IJ3UoFuNc18cTzbjq+MUayaNgc/ECSQM2On31hs4ZZcyq0NX0ub+QE7KUVeqiW LFUiMhk/YGTv2VKRDhFL75hW2/kOUMoB -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:04 2025 by rpki-client on console.sobornost.net