$ rpki-client -vvf rpki.apnic.net/member_repository/A917530D/E64001F4B64B11EE91463760C4F9AE02/54D6N3e4HUz2o1QG6lz0vk9l6fo.mft File: 54D6N3e4HUz2o1QG6lz0vk9l6fo.mft (raw, json) Hash identifier: KBjjTLXlCeyA4WHhYjKyCOntocH5NzlvK47S/6/6KkI= Subject key identifier: 8A:F6:BB:B2:E0:7D:9D:1F:A5:86:BF:B8:76:D6:97:80:C4:C1:43:63 Authority key identifier: E7:80:FA:37:77:B8:1D:4C:F6:A3:54:06:EA:5C:F4:BE:4F:65:E9:FA Certificate issuer: /CN=A917530D/serialNumber=E780FA3777B81D4CF6A35406EA5CF4BE4F65E9FA Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/54D6N3e4HUz2o1QG6lz0vk9l6fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917530D/E64001F4B64B11EE91463760C4F9AE02/54D6N3e4HUz2o1QG6lz0vk9l6fo.mft Manifest number: F3 Signing time: Sun 27 Apr 2025 04:12:10 +0000 Manifest this update: Sun 27 Apr 2025 04:12:09 +0000 Manifest next update: Sun 04 May 2025 04:12:09 +0000 Files and hashes: 1: 54D6N3e4HUz2o1QG6lz0vk9l6fo.crl (hash: 48FZ31lVMlbXZMdOlsDjwPOnZTT6RIAfuGdfnjWwtVc=) 2: 1032223CBC2B11EE9E04192FC4F9AE02.roa (hash: KaLq/qLC36FBeVUH4PJULMTUIMWcwgut4EvM5q8D+vE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917530D/E64001F4B64B11EE91463760C4F9AE02/54D6N3e4HUz2o1QG6lz0vk9l6fo.crl rsync://rpki.apnic.net/member_repository/A917530D/E64001F4B64B11EE91463760C4F9AE02/54D6N3e4HUz2o1QG6lz0vk9l6fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/54D6N3e4HUz2o1QG6lz0vk9l6fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917530D, serialNumber=E780FA3777B81D4CF6A35406EA5CF4BE4F65E9FA Validity Not Before: Apr 27 04:12:09 2025 GMT Not After : May 4 04:12:09 2025 GMT Subject: CN=680dae99-a251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:0e:94:90:d9:bf:5e:6f:2a:e1:2c:18:56: 26:b9:1d:c1:af:09:28:7f:cb:49:e6:dc:83:fe:7a: 70:1e:88:60:8a:0e:41:a8:14:9f:59:9a:9c:ec:04: 91:99:3b:f6:2e:3e:85:45:ae:6a:f6:84:d2:a9:9f: 11:d5:d7:a3:70:3e:c4:89:4c:34:6b:0d:b9:07:8f: e6:bd:fe:ab:56:30:1a:2f:33:ae:5e:39:b8:d7:b4: 88:ba:62:e5:f7:8f:31:35:0f:38:1a:c7:bb:6e:91: 4a:21:59:20:f5:ba:1b:30:11:99:dc:8d:3e:2c:12: 3c:25:b9:f0:67:30:b4:47:2e:8d:71:e0:08:03:16: 85:a3:9c:44:a1:d7:2f:e9:e6:79:e5:f9:cc:d3:2f: 14:da:8f:49:34:56:cf:a7:1f:a0:93:0d:82:94:d1: 17:90:58:cf:88:c5:65:4b:01:96:36:88:ee:7d:b8: 97:1d:67:20:8f:02:48:73:d1:7e:70:f7:02:0d:36: 98:a6:1a:1f:ca:01:14:95:d6:df:68:49:43:e1:9f: 8f:9f:c7:d6:7d:0a:72:7f:e9:9a:1b:62:6c:b9:90: 0e:77:39:29:80:62:a4:ee:8f:8f:32:42:b7:1b:b9: bd:4a:33:12:e0:72:80:fb:2a:06:26:62:99:12:14: 87:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F6:BB:B2:E0:7D:9D:1F:A5:86:BF:B8:76:D6:97:80:C4:C1:43:63 X509v3 Authority Key Identifier: keyid:E7:80:FA:37:77:B8:1D:4C:F6:A3:54:06:EA:5C:F4:BE:4F:65:E9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917530D/E64001F4B64B11EE91463760C4F9AE02/54D6N3e4HUz2o1QG6lz0vk9l6fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/54D6N3e4HUz2o1QG6lz0vk9l6fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917530D/E64001F4B64B11EE91463760C4F9AE02/54D6N3e4HUz2o1QG6lz0vk9l6fo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:2c:e3:dc:f1:a2:8b:ee:4d:4b:f0:1a:4c:e4:5b:9b:24:fe: c3:b1:c8:e0:40:99:04:25:39:7b:73:06:e7:11:3a:74:5b:f6: 13:55:38:a5:ef:42:0d:b8:4d:bb:e3:c1:df:aa:37:c4:1e:56: df:11:33:09:8c:58:10:10:ba:15:61:fa:64:43:1a:27:07:9c: b1:88:21:a1:d9:22:25:2a:24:61:63:11:fc:03:42:7f:dc:80: 6b:d0:cc:44:2c:40:dd:68:72:81:06:8a:1f:c5:c0:c8:2e:3b: 6a:97:9d:47:62:f0:33:65:1e:78:7b:c8:61:8a:f5:ae:2d:99: 7a:28:3a:87:3f:14:8e:89:6e:a5:74:34:f5:12:82:c2:8c:63: 0f:ea:ba:ad:85:91:57:f0:2e:e9:8f:52:71:9f:7d:ba:14:11: ee:1e:06:56:26:b2:36:40:a5:34:40:10:9a:68:62:71:72:df: e2:28:5a:e5:4c:22:5f:7c:07:4a:2b:84:e6:0b:5d:95:19:22: d9:07:18:04:98:d9:6c:52:3b:83:1d:93:c5:96:3b:7d:a4:a4: 94:5a:9f:31:45:d8:61:9c:6c:da:00:6c:da:8b:9e:52:37:ff: 90:70:5e:e8:51:1a:3c:66:6e:81:d3:8a:59:eb:d1:d5:b8:a4: 01:3e:08:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMEQxMTAvBgNVBAUTKEU3ODBGQTM3NzdCODFENENGNkEzNTQwNkVBNUNGNEJF NEY2NUU5RkEwHhcNMjUwNDI3MDQxMjA5WhcNMjUwNTA0MDQxMjA5WjAYMRYwFAYD VQQDEw02ODBkYWU5OS1hMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SsOlJDZv15vKuEsGFYmuR3Brwkof8tJ5tyD/npwHohgig5BqBSfWZqc7ASR mTv2Lj6FRa5q9oTSqZ8R1dejcD7EiUw0aw25B4/mvf6rVjAaLzOuXjm417SIumLl 948xNQ84Gse7bpFKIVkg9bobMBGZ3I0+LBI8JbnwZzC0Ry6NceAIAxaFo5xEodcv 6eZ55fnM0y8U2o9JNFbPpx+gkw2ClNEXkFjPiMVlSwGWNojufbiXHWcgjwJIc9F+ cPcCDTaYphofygEUldbfaElD4Z+Pn8fWfQpyf+maG2JsuZAOdzkpgGKk7o+PMkK3 G7m9SjMS4HKA+yoGJmKZEhSHOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIr2u7Lg fZ0fpYa/uHbWl4DEwUNjMB8GA1UdIwQYMBaAFOeA+jd3uB1M9qNUBupc9L5PZen6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwRC9FNjQwMDFGNEI2 NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi81NEQ2TjNlNEhVejJvMVFHNmx6MHZrOWw2 Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU0RDZOM2U0SFV6Mm8xUUc2bHowdms5bDZmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTMwRC9FNjQwMDFGNEI2NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi81NEQ2TjNlNEhV ejJvMVFHNmx6MHZrOWw2Zm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5LOPc8aKL7k1L8BpM5FubJP7DscjgQJkEJTl7cwbnETp0W/YTVTil 70INuE2748HfqjfEHlbfETMJjFgQELoVYfpkQxonB5yxiCGh2SIlKiRhYxH8A0J/ 3IBr0MxELEDdaHKBBoofxcDILjtql51HYvAzZR54e8hhivWuLZl6KDqHPxSOiW6l dDT1EoLCjGMP6rqthZFX8C7pj1Jxn326FBHuHgZWJrI2QKU0QBCaaGJxct/iKFrl TCJffAdKK4TmC12VGSLZBxgEmNlsUjuDHZPFljt9pKSUWp8xRdhhnGzaAGzai55S N/+QcF7oURo8Zm6B04pZ69HVuKQBPggt -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net