$ rpki-client -vvf rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft File: EW8KKmpLkkLXeiULcXAIFdKY3bk.mft (raw, json) Hash identifier: L0aFGweo5j6IOdJdNSbNA5Iel1BCYhNAK+16Wrhteec= Subject key identifier: 9B:FF:B8:DE:18:CD:ED:D4:87:2E:1F:3B:89:71:B8:E2:9C:1E:18:77 Authority key identifier: 11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 Certificate issuer: /CN=A9175964/serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft Manifest number: 84 Signing time: Sun 27 Apr 2025 05:23:45 +0000 Manifest this update: Sun 27 Apr 2025 05:23:45 +0000 Manifest next update: Sun 04 May 2025 05:23:45 +0000 Files and hashes: 1: EW8KKmpLkkLXeiULcXAIFdKY3bk.crl (hash: gfMc6zBUxx3fgm2XaCqdm4/l/wEOC2KpQwcbFKQ/7yI=) 2: 426E71C25B1511EF95122A62C4F9AE02.roa (hash: iVgLpNzw9WvLZDCrNCeZKcdKAVuHQLIqgkettJkRmpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175964, serialNumber=116F0A2A6A4B9242D77A250B71700815D298DDB9 Validity Not Before: Apr 27 05:23:45 2025 GMT Not After : May 4 05:23:45 2025 GMT Subject: CN=680dbf61-f40b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6d:b1:ec:d6:24:fe:71:60:0f:8b:e4:5d:45: 2f:9d:78:54:41:5a:06:94:5e:31:95:ba:f7:ca:5a: 8c:e9:58:98:9f:65:e0:df:a8:8e:1c:5d:e1:9d:f2: 9c:0e:5f:64:5e:70:78:89:1c:3c:9f:7d:dc:39:ea: c6:72:08:0a:84:1a:5a:ad:5c:7e:4e:f5:ac:e3:91: b6:5b:15:4a:c5:d6:7d:ce:05:02:cc:40:db:86:bf: e0:73:37:7c:cf:c1:55:d6:b9:14:2a:37:c9:84:87: 7a:90:2e:95:e0:28:a8:63:52:7e:e0:eb:63:63:8c: 69:9b:c6:10:f8:36:77:94:c6:a8:bf:b2:1c:35:9b: 96:d9:91:9e:44:6d:46:6d:7b:cd:03:1b:38:5c:e6: 7f:07:b9:22:4a:3a:9c:ae:88:9e:66:e0:a8:06:99: e2:34:78:5e:ac:12:62:2b:a1:11:ea:ae:96:f0:05: 73:40:45:bb:35:08:07:a4:f5:61:24:57:21:0c:f4: 93:49:4a:d7:2b:c3:c3:6d:5d:dd:f3:c8:a4:8a:6e: 78:56:96:9c:a2:0c:d7:ff:6a:77:db:7a:54:5f:35: 1a:c7:5e:01:8f:ce:ab:d4:dd:cd:85:82:ee:c6:a3: b9:81:c6:7b:e4:a4:26:ff:ee:ca:3e:82:9c:7b:24: a2:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FF:B8:DE:18:CD:ED:D4:87:2E:1F:3B:89:71:B8:E2:9C:1E:18:77 X509v3 Authority Key Identifier: keyid:11:6F:0A:2A:6A:4B:92:42:D7:7A:25:0B:71:70:08:15:D2:98:DD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EW8KKmpLkkLXeiULcXAIFdKY3bk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175964/F531EDE45B1411EFAC974461C4F9AE02/EW8KKmpLkkLXeiULcXAIFdKY3bk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:e5:eb:57:94:a1:82:9c:c3:63:86:97:7d:f0:0f:92:b3:2e: 94:58:42:fe:aa:76:2c:0a:4f:20:01:3b:dc:6a:2c:5d:3c:05: 2c:e5:d3:57:92:cb:a1:6f:da:6f:60:ac:33:fd:79:99:04:4b: 38:f9:e7:1f:e5:80:74:c0:3e:cd:e4:41:0b:8e:c1:4a:7f:db: 9b:3f:18:36:0b:8b:54:fe:f2:31:9d:86:14:a2:ce:50:6f:73: 18:cb:4d:0b:70:60:c1:14:79:11:47:6f:22:b9:e8:0f:cf:f5: e3:de:fc:76:fb:dc:fe:7c:f6:24:9e:b5:3d:10:d7:48:e1:e6: 99:0a:73:6a:e6:51:f8:a9:30:44:3a:79:0d:e1:49:a7:fc:f1: 49:64:69:df:19:a8:8a:9b:4f:5f:3e:c2:4b:7d:3a:46:fb:80: c3:5a:24:da:d7:b4:de:f5:6b:f9:82:ca:71:8f:93:3d:af:f0: aa:6b:a4:c0:ea:b9:5d:20:4f:2a:40:df:12:93:95:5a:21:98: 07:e7:e3:8b:7a:ff:ec:5c:db:fa:c1:c5:7a:da:ca:58:88:4e: 7e:bd:8c:ca:9f:dc:e1:8d:fb:71:c1:70:4a:a0:ce:8c:99:8f: b8:92:37:ad:b9:af:2e:d8:74:de:34:35:d9:d6:fb:5c:d0:3d: 60:f8:37:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5NjQxMTAvBgNVBAUTKDExNkYwQTJBNkE0QjkyNDJENzdBMjUwQjcxNzAwODE1 RDI5OEREQjkwHhcNMjUwNDI3MDUyMzQ1WhcNMjUwNTA0MDUyMzQ1WjAYMRYwFAYD VQQDEw02ODBkYmY2MS1mNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA022x7NYk/nFgD4vkXUUvnXhUQVoGlF4xlbr3ylqM6ViYn2Xg36iOHF3hnfKc Dl9kXnB4iRw8n33cOerGcggKhBparVx+TvWs45G2WxVKxdZ9zgUCzEDbhr/gczd8 z8FV1rkUKjfJhId6kC6V4CioY1J+4OtjY4xpm8YQ+DZ3lMaov7IcNZuW2ZGeRG1G bXvNAxs4XOZ/B7kiSjqcroieZuCoBpniNHherBJiK6ER6q6W8AVzQEW7NQgHpPVh JFchDPSTSUrXK8PDbV3d88ikim54VpacogzX/2p323pUXzUax14Bj86r1N3NhYLu xqO5gcZ75KQm/+7KPoKceySiOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJv/uN4Y ze3Uhy4fO4lxuOKcHhh3MB8GA1UdIwQYMBaAFBFvCipqS5JC13olC3FwCBXSmN25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTk2NC9GNTMxRURFNDVC MTQxMUVGQUM5NzQ0NjFDNEY5QUUwMi9FVzhLS21wTGtrTFhlaVVMY1hBSUZkS1kz YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VXOEtLbXBMa2tMWGVpVUxjWEFJRmRLWTNiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTk2NC9GNTMxRURFNDVCMTQxMUVGQUM5NzQ0NjFDNEY5QUUwMi9FVzhLS21wTGtr TFhlaVVMY1hBSUZkS1kzYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi5etXlKGCnMNjhpd98A+Ssy6UWEL+qnYsCk8gATvcaixdPAUs5dNX ksuhb9pvYKwz/XmZBEs4+ecf5YB0wD7N5EELjsFKf9ubPxg2C4tU/vIxnYYUos5Q b3MYy00LcGDBFHkRR28iuegPz/Xj3vx2+9z+fPYknrU9ENdI4eaZCnNq5lH4qTBE OnkN4Umn/PFJZGnfGaiKm09fPsJLfTpG+4DDWiTa17Te9Wv5gspxj5M9r/Cqa6TA 6rldIE8qQN8Sk5VaIZgH5+OLev/sXNv6wcV62spYiE5+vYzKn9zhjftxwXBKoM6M mY+4kjetua8u2HTeNDXZ1vtc0D1g+DdW -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net