$ rpki-client -vvf rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft File: nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft (raw, json) Hash identifier: s9qjCdvO/+p5mqcwcNyNFrVTm1v5EvBEeDt8E288BeQ= Subject key identifier: 5E:6D:32:15:5E:10:C7:FF:34:8A:1C:10:53:7D:FB:42:E5:AE:93:D5 Authority key identifier: 9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 Certificate issuer: /CN=A9175906/serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Certificate serial: 03D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft Manifest number: 03CA Signing time: Sun 27 Apr 2025 00:16:40 +0000 Manifest this update: Sun 27 Apr 2025 00:16:40 +0000 Manifest next update: Sun 04 May 2025 00:16:40 +0000 Files and hashes: 1: nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl (hash: SGd+VCTi/pDFK1PGrsmBTmBJJpY4QDZgShXwceawufs=) 2: 27A6D5CAAF1C11EC94FF9534C4F9AE02.roa (hash: tuiOvz0EtN5gYIcDBljazRXB+32WdpyvWw0LqnkHLT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175906, serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Validity Not Before: Apr 27 00:16:40 2025 GMT Not After : May 4 00:16:40 2025 GMT Subject: CN=680d7768-9f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:54:ff:47:97:74:ab:da:01:f2:68:52:f7:51: 2b:c6:67:9c:68:e4:43:f2:c2:2a:dc:79:5c:d3:b2: 99:fe:da:6d:3f:d4:50:cb:ad:1a:71:ac:55:99:48: f1:cc:ad:36:e0:0f:54:29:57:58:d6:7d:ea:9a:87: 62:7f:e2:68:21:b1:ab:29:80:cb:f8:b7:a4:30:ca: 33:7e:4a:2f:1f:31:e1:19:d1:9f:0a:cd:f1:00:26: e4:37:09:80:51:f3:c7:3f:85:23:e3:8e:6a:f4:ef: ac:e9:35:1f:a5:f9:5a:2c:4f:ec:2e:81:5d:57:06: fc:2c:94:c5:6f:90:f3:5a:49:f3:c1:8c:08:bb:a1: 0d:13:d8:fc:e6:01:3b:ed:62:dd:50:6b:86:06:d0: 42:0b:a5:19:b9:7c:43:ae:78:c0:56:b8:3b:bf:d6: 45:83:ee:fb:44:b0:ae:a2:6f:fb:d0:d7:be:2f:7f: 53:ec:6b:f2:5b:62:9d:ae:2b:92:87:05:e1:d1:79: cb:ad:2a:1d:89:2d:4e:69:31:db:89:e7:8a:c0:5b: be:eb:ce:c2:4a:cb:f1:d3:32:8d:b9:aa:f8:71:ab: 59:04:b5:19:66:1f:e9:25:2f:32:f2:8f:3b:83:51: c2:d2:96:79:41:ec:a2:ed:ae:2a:da:22:90:51:39: a6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6D:32:15:5E:10:C7:FF:34:8A:1C:10:53:7D:FB:42:E5:AE:93:D5 X509v3 Authority Key Identifier: keyid:9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:d1:cf:3a:93:b9:3a:68:44:d9:35:ae:50:29:13:e7:51:e2: 04:ea:95:36:11:d2:10:41:91:c1:9c:7a:09:d0:61:cd:ef:d9: c8:fe:1a:f2:ae:8a:c5:67:29:c7:05:12:bb:b8:12:30:54:8f: 6c:b9:14:73:5e:c2:c8:21:5b:f9:d8:a5:70:7d:9d:81:e4:4c: 85:77:45:2e:a7:91:62:a4:f6:9b:a5:a7:49:db:6a:f6:f3:cb: bf:a6:bd:1a:4d:d9:c1:eb:47:d3:90:99:4e:39:dd:65:fb:f6: 6c:2c:04:97:23:7a:fb:46:8a:8b:8b:cf:60:f7:c4:83:62:d1: c2:ab:7e:5b:28:41:77:ae:5d:8c:53:3d:a0:94:11:bb:e6:33: 46:48:61:f1:79:02:98:80:45:04:74:df:c6:2c:66:7a:12:bc: dc:08:47:a5:d7:f9:1e:8c:38:db:a6:01:d0:33:fe:5e:58:82: 69:82:3d:d6:78:e2:26:d1:53:5b:ac:e3:2b:72:4b:2e:1a:80: d5:1b:70:9e:36:83:74:20:ed:38:4f:3a:07:86:e9:10:ee:01: de:6f:ba:1e:74:54:e6:be:38:fb:1c:b0:a5:b0:57:8f:99:df: 25:4e:72:06:12:1f:4c:cd:fb:33:eb:a3:1f:a6:5a:1f:db:d8: fe:3f:6d:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5MDYxMTAvBgNVBAUTKDlEMUJBQ0Q0MEE4MjU5OTI0Q0QyQzU2OTUxQTQzRTBC Rjg3MkQ2ODYwHhcNMjUwNDI3MDAxNjQwWhcNMjUwNTA0MDAxNjQwWjAYMRYwFAYD VQQDEw02ODBkNzc2OC05ZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FT/R5d0q9oB8mhS91ErxmecaORD8sIq3Hlc07KZ/tptP9RQy60acaxVmUjx zK024A9UKVdY1n3qmodif+JoIbGrKYDL+LekMMozfkovHzHhGdGfCs3xACbkNwmA UfPHP4Uj445q9O+s6TUfpflaLE/sLoFdVwb8LJTFb5DzWknzwYwIu6ENE9j85gE7 7WLdUGuGBtBCC6UZuXxDrnjAVrg7v9ZFg+77RLCuom/70Ne+L39T7GvyW2KdriuS hwXh0XnLrSodiS1OaTHbieeKwFu+687CSsvx0zKNuar4catZBLUZZh/pJS8y8o87 g1HC0pZ5Qeyi7a4q2iKQUTmmSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5tMhVe EMf/NIocEFN9+0LlrpPVMB8GA1UdIwQYMBaAFJ0brNQKglmSTNLFaVGkPgv4ctaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTkwNi84Q0NDQ0JBNDgz RTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1daSk0wc1ZwVWFRLUNfaHkx b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25SdXMxQXFDV1pKTTBzVnBVYVEtQ19oeTFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTkwNi84Q0NDQ0JBNDgzRTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1da Sk0wc1ZwVWFRLUNfaHkxb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA0c86k7k6aETZNa5QKRPnUeIE6pU2EdIQQZHBnHoJ0GHN79nI/hry rorFZynHBRK7uBIwVI9suRRzXsLIIVv52KVwfZ2B5EyFd0Uup5FipPabpadJ22r2 88u/pr0aTdnB60fTkJlOOd1l+/ZsLASXI3r7RoqLi89g98SDYtHCq35bKEF3rl2M Uz2glBG75jNGSGHxeQKYgEUEdN/GLGZ6ErzcCEel1/kejDjbpgHQM/5eWIJpgj3W eOIm0VNbrOMrcksuGoDVG3CeNoN0IO04TzoHhukQ7gHeb7oedFTmvjj7HLClsFeP md8lTnIGEh9Mzfsz66Mfplof29j+P22y -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:08 2025 by rpki-client on console.sobornost.net