$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft File: Ol4QKeZcY2gSMttn2AU90vaU5h8.mft (raw, json) Hash identifier: GyD1af1SfXEAAzZbKEWtHr8f29pt0aJ2gaE1xGHY7Yk= Subject key identifier: A1:7C:B8:13:83:BD:B4:B5:76:FE:07:10:F7:63:32:7A:44:82:77:83 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft Manifest number: 32 Signing time: Sun 27 Apr 2025 06:28:21 +0000 Manifest this update: Sun 27 Apr 2025 06:28:21 +0000 Manifest next update: Sun 04 May 2025 06:28:21 +0000 Files and hashes: 1: Ol4QKeZcY2gSMttn2AU90vaU5h8.crl (hash: kuf6zHXiYo+OtBqOrke4NrSIYzoxPkN5xiHXXgueC3g=) 2: E8112D9AD95A11EF815C7470C4F9AE02.roa (hash: mG5mPJ9TzgmR6vCAw7pVeBBypwUd04LX9QtyyGLebqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: Apr 27 06:28:21 2025 GMT Not After : May 4 06:28:21 2025 GMT Subject: CN=680dce85-8e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5f:36:34:f7:56:c9:f9:0b:39:7e:a0:d0:3b: af:6b:db:9f:50:2d:ae:7b:61:06:f8:9f:d8:08:33: f1:ba:95:40:6b:c4:b2:1d:35:b9:99:7e:43:36:10: 7f:15:d7:48:0b:54:f8:63:3a:e2:bd:f7:85:8b:e6: 35:e5:e6:37:2c:94:bf:4e:09:53:dc:16:0d:b2:45: 49:37:b8:11:0b:ce:21:f5:29:0e:ba:c0:2f:3e:2b: dc:f7:40:94:b1:c0:c7:34:16:99:f5:83:52:30:8f: 9f:8c:6a:41:d7:07:14:0c:c9:02:ce:b5:1c:40:00: 47:18:04:d5:3c:7b:2b:0e:20:fc:c5:11:c8:78:df: 2d:4f:49:83:a1:66:26:ce:c6:dd:39:ce:14:4c:9b: 22:ca:81:4c:25:64:8c:a1:1d:15:b7:3d:a7:d5:54: 5a:79:80:04:59:a6:ba:bd:53:49:81:b7:9d:97:51: 17:0d:16:f4:07:6d:a2:fb:20:1c:c6:36:29:eb:09: 80:03:2d:3c:2a:b3:b1:c8:8c:20:72:7f:44:9e:81: 69:fe:71:ee:ed:0c:34:90:b5:1b:e2:a4:6c:1d:db: b7:c2:28:a5:6b:6b:a6:89:d4:cd:a2:98:d9:3e:85: 3b:e8:fe:6e:8f:75:a5:f5:96:f3:da:15:e8:78:f9: da:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7C:B8:13:83:BD:B4:B5:76:FE:07:10:F7:63:32:7A:44:82:77:83 X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:3f:c8:11:ff:b8:30:30:34:87:64:2f:25:d7:53:92:00:e1: 80:c5:97:6a:7d:2e:29:d8:c0:87:f2:78:2b:25:b2:ee:8e:32: f6:c6:9c:4e:bf:c0:da:86:2a:7b:ee:96:01:e7:42:28:2a:2c: 3d:02:f0:9d:80:58:a9:8c:8a:3e:9c:83:aa:16:37:02:7b:8e: 75:bc:9e:b9:6a:0b:fa:c3:08:b0:54:f3:d6:80:58:68:aa:e4: 0a:d4:d5:7f:da:dd:31:49:7f:ed:90:3a:c7:b4:2f:82:a3:18: 70:7a:87:66:19:77:13:6c:6b:47:9f:ab:a1:0e:cd:37:9d:0d: aa:d0:28:4f:05:a9:ad:20:d6:3b:83:89:c1:13:48:a5:51:b8: 42:4d:0e:ab:6c:8c:f1:37:b7:c8:31:6a:fb:71:1f:76:98:03: 0b:67:ad:fa:16:64:43:76:97:44:1a:e1:52:d9:e9:26:86:1b: 02:6d:87:39:a6:0f:47:f0:e2:20:6c:6b:b9:b7:1d:2b:00:52: ad:f1:d3:61:31:01:46:5a:86:6a:6c:d6:8a:25:ed:77:3d:d0: 05:ba:db:3b:f4:52:c1:4d:85:ee:9e:1e:e7:62:79:79:77:1e: 8d:de:ce:49:bc:09:f0:df:08:ae:1c:7f:bd:a7:ba:9f:72:d2: 28:48:28:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEVDNTExMC8GA1UEBRMoM0E1RTEwMjlFNjVDNjM2ODEyMzJEQjY3RDgwNTNERDJG Njk0RTYxRjAeFw0yNTA0MjcwNjI4MjFaFw0yNTA1MDQwNjI4MjFaMBgxFjAUBgNV BAMTDTY4MGRjZTg1LThlMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaXzY091bJ+Qs5fqDQO69r259QLa57YQb4n9gIM/G6lUBrxLIdNbmZfkM2EH8V 10gLVPhjOuK994WL5jXl5jcslL9OCVPcFg2yRUk3uBELziH1KQ66wC8+K9z3QJSx wMc0Fpn1g1Iwj5+MakHXBxQMyQLOtRxAAEcYBNU8eysOIPzFEch43y1PSYOhZibO xt05zhRMmyLKgUwlZIyhHRW3PafVVFp5gARZprq9U0mBt52XURcNFvQHbaL7IBzG NinrCYADLTwqs7HIjCByf0SegWn+ce7tDDSQtRvipGwd27fCKKVra6aJ1M2imNk+ hTvo/m6PdaX1lvPaFeh4+dpLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoXy4E4O9 tLV2/gcQ92MyekSCd4MwHwYDVR0jBBgwFoAUOl4QKeZcY2gSMttn2AU90vaU5h8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RUM1LzgyMzM1QTIwRDk1 QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVo OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT2w0UUtlWmNZMmdTTXR0bjJBVTkwdmFVNWg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 RUM1LzgyMzM1QTIwRDk1QTExRUZBMDJGQjQ2RkM0RjlBRTAyL09sNFFLZVpjWTJn U010dG4yQVU5MHZhVTVoOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFY/yBH/uDAwNIdkLyXXU5IA4YDFl2p9LinYwIfyeCslsu6OMvbGnE6/ wNqGKnvulgHnQigqLD0C8J2AWKmMij6cg6oWNwJ7jnW8nrlqC/rDCLBU89aAWGiq 5ArU1X/a3TFJf+2QOse0L4KjGHB6h2YZdxNsa0efq6EOzTedDarQKE8Fqa0g1juD icETSKVRuEJNDqtsjPE3t8gxavtxH3aYAwtnrfoWZEN2l0Qa4VLZ6SaGGwJthzmm D0fw4iBsa7m3HSsAUq3x02ExAUZahmps1ool7Xc90AW62zv0UsFNhe6eHudieXl3 Ho3ezkm8CfDfCK4cf72nup9y0ihIKGs= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net