$ rpki-client -vvf rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft File: 7CxkBsqh85689Fh1MVANVrlTYsA.mft (raw, json) Hash identifier: Yb4ne1gLbVG7aGimc0GgW3DwMHN31yA5EBemQA8MMU4= Subject key identifier: 65:64:0C:1B:70:18:DB:5D:DE:CB:46:CD:A3:AE:D3:E6:E5:88:08:6F Authority key identifier: EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 Certificate issuer: /CN=A9174880/serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Certificate serial: 34B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft Manifest number: 3492 Signing time: Mon 28 Apr 2025 14:16:44 +0000 Manifest this update: Mon 28 Apr 2025 14:16:43 +0000 Manifest next update: Mon 05 May 2025 14:16:43 +0000 Files and hashes: 1: 7CxkBsqh85689Fh1MVANVrlTYsA.crl (hash: W+hp8Swpoc5vuAyr09kZjvltn5iNK8hdEwr5Gx1D4FM=) 2: 3768DFB41C6011EEAF58FB61C4F9AE02.roa (hash: Un+gRmwEe7RmL1YJ6V7sBXAGRc3bNfxPT16yGupUBnU=) 3: 316EEFD4AAE511E68EBE4D52C4F9AE02.roa (hash: JRg1LZXcFPzNHPCZgdhpiNiCJWsLCkY/WCIHJGUF1Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13496 (0x34b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174880, serialNumber=EC2C6406CAA1F39EBCF4587531500D56B95362C0 Validity Not Before: Apr 28 14:16:43 2025 GMT Not After : May 5 14:16:43 2025 GMT Subject: CN=680f8dcc-00c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:1b:c8:43:d7:d1:d1:44:13:d1:32:8b:15:ec: 16:81:a1:3f:d7:0f:41:99:7b:b9:27:a9:d2:ed:49: ae:74:83:56:cb:42:6b:71:d9:10:96:16:1b:8e:f8: c3:28:fb:f8:32:dd:07:05:10:0f:dc:8e:42:07:44: a5:2f:6e:37:9c:15:b1:d0:1c:6e:96:ba:7a:7c:75: 72:11:78:17:83:6d:a5:7e:8d:b9:cb:9a:0c:f5:d9: 48:bb:e3:17:e4:6f:61:77:81:b0:0b:c1:de:a8:c1: 21:4a:0f:68:cb:3f:96:da:00:b6:3c:a1:97:6e:7e: 4f:12:b7:f7:bd:80:2e:61:be:b7:e4:68:9a:6a:27: a2:9e:9f:ea:50:b2:45:e9:52:ae:82:1c:c0:72:53: 20:93:b6:2a:27:d3:96:24:3d:80:53:15:31:cc:d9: d8:8f:37:b7:65:78:fe:e9:02:28:0b:b1:d2:00:e7: ac:00:cb:b0:7b:f0:1a:b7:9d:08:4b:34:fb:49:24: ab:cf:32:ca:fe:76:6b:93:64:64:76:84:17:e0:e3: 83:86:d3:58:49:67:b1:bd:69:b9:c9:a9:ee:62:00: a1:b5:07:02:de:36:85:aa:e8:e3:16:3e:ea:78:f9: 35:53:39:50:51:dd:bd:79:cb:0a:eb:c6:b6:3e:4d: 1e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:64:0C:1B:70:18:DB:5D:DE:CB:46:CD:A3:AE:D3:E6:E5:88:08:6F X509v3 Authority Key Identifier: keyid:EC:2C:64:06:CA:A1:F3:9E:BC:F4:58:75:31:50:0D:56:B9:53:62:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7CxkBsqh85689Fh1MVANVrlTYsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174880/4E86450C1D6A11E2BB7014A808B02CD2/7CxkBsqh85689Fh1MVANVrlTYsA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c8:d2:83:17:e8:c8:43:4c:f5:33:2b:f1:f2:b1:ac:88:6c: fc:33:6c:c5:2b:50:e2:35:33:16:57:54:c0:76:43:74:a1:e4: d0:2d:89:50:ea:d0:0a:85:64:68:24:35:15:18:2c:b2:37:f5: ff:2a:14:00:cd:32:5c:5b:eb:f4:ac:23:a1:63:5f:79:73:a8: 87:55:0b:ed:e9:e4:d9:29:f6:aa:09:38:8a:29:25:01:2f:4a: 51:4d:2d:bd:f6:93:d9:5a:f3:1c:41:c8:65:b1:58:a3:57:77: c8:43:c6:a7:93:bf:60:98:37:9c:43:04:9d:fd:10:df:08:19: 63:48:95:f2:cd:a1:21:c4:63:75:43:4a:b9:c2:af:6b:65:83: 62:f2:23:c1:7d:cd:4f:c3:2b:4f:bb:7f:73:86:b8:eb:7f:1f: ab:91:92:91:af:0f:47:0e:43:9e:d7:eb:27:ef:fd:e5:3c:76: 11:2c:1d:09:02:ad:67:d7:89:59:b7:58:ee:9d:dd:df:0a:f7: 34:4a:9d:f7:7b:1e:eb:a5:74:14:20:63:4f:32:4a:5a:3b:17: a4:ba:5d:8b:3d:3b:7a:a2:35:ed:9e:d1:4e:2e:0c:44:08:1e: d1:39:e4:05:df:bf:3e:69:68:b5:1a:19:aa:be:93:57:f6:39: 84:83:26:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ4ODAxMTAvBgNVBAUTKEVDMkM2NDA2Q0FBMUYzOUVCQ0Y0NTg3NTMxNTAwRDU2 Qjk1MzYyQzAwHhcNMjUwNDI4MTQxNjQzWhcNMjUwNTA1MTQxNjQzWjAYMRYwFAYD VQQDEw02ODBmOGRjYy0wMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxvIQ9fR0UQT0TKLFewWgaE/1w9BmXu5J6nS7UmudINWy0JrcdkQlhYbjvjD KPv4Mt0HBRAP3I5CB0SlL243nBWx0Bxulrp6fHVyEXgXg22lfo25y5oM9dlIu+MX 5G9hd4GwC8HeqMEhSg9oyz+W2gC2PKGXbn5PErf3vYAuYb635Giaaieinp/qULJF 6VKughzAclMgk7YqJ9OWJD2AUxUxzNnYjze3ZXj+6QIoC7HSAOesAMuwe/Aat50I SzT7SSSrzzLK/nZrk2RkdoQX4OODhtNYSWexvWm5yanuYgChtQcC3jaFqujjFj7q ePk1UzlQUd29ecsK68a2Pk0e9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVkDBtw GNtd3stGzaOu0+bliAhvMB8GA1UdIwQYMBaAFOwsZAbKofOevPRYdTFQDVa5U2LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDg4MC80RTg2NDUwQzFE NkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1Njg5RmgxTVZBTlZybFRZ c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdDeGtCc3FoODU2ODlGaDFNVkFOVnJsVFlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDg4MC80RTg2NDUwQzFENkExMUUyQkI3MDE0QTgwOEIwMkNEMi83Q3hrQnNxaDg1 Njg5RmgxTVZBTlZybFRZc0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9yNKDF+jIQ0z1Myvx8rGsiGz8M2zFK1DiNTMWV1TAdkN0oeTQLYlQ 6tAKhWRoJDUVGCyyN/X/KhQAzTJcW+v0rCOhY195c6iHVQvt6eTZKfaqCTiKKSUB L0pRTS299pPZWvMcQchlsVijV3fIQ8ank79gmDecQwSd/RDfCBljSJXyzaEhxGN1 Q0q5wq9rZYNi8iPBfc1PwytPu39zhrjrfx+rkZKRrw9HDkOe1+sn7/3lPHYRLB0J Aq1n14lZt1jund3fCvc0Sp33ex7rpXQUIGNPMkpaOxekul2LPTt6ojXtntFOLgxE CB7ROeQF378+aWi1GhmqvpNX9jmEgyYk -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:10 2025 by rpki-client on console.sobornost.net