$ rpki-client -vvf rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft File: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft (raw, json) Hash identifier: xAIMZ7OCPOu9nnNR/ya1HJHHBAZdiZorrp85N0s9VbA= Subject key identifier: E2:26:33:C6:85:EA:76:00:31:2A:5B:32:7F:C8:6A:E1:D1:26:90:74 Authority key identifier: A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF Certificate issuer: /CN=A917604B/serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft Manifest number: 0120 Signing time: Sun 27 Apr 2025 03:39:38 +0000 Manifest this update: Sun 27 Apr 2025 03:39:38 +0000 Manifest next update: Sun 04 May 2025 03:39:38 +0000 Files and hashes: 1: oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl (hash: Z8VdgYCggEPFY4n2y7Jd7iVmgtLxW7kZ3oPgYxuQKJA=) 2: 2D7DCF98BA1411EFBD0C393DC4F9AE02.roa (hash: fg42UFyy2LFjnZK3Qasj9lnWcNe6AFnhvIhyePUvpAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917604B, serialNumber=A14BDAA31576A6367A0B5C3ACAB91C4E9F3118EF Validity Not Before: Apr 27 03:39:38 2025 GMT Not After : May 4 03:39:38 2025 GMT Subject: CN=680da6fa-2ebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fa:f5:ef:e5:90:33:b9:e8:23:94:2a:e6:8e: 6c:0d:10:02:95:03:f8:7d:b7:0d:04:f4:af:f8:40: cb:f7:46:1b:7a:f9:32:74:7c:20:bb:40:4f:19:ee: 0f:df:4f:3f:6d:89:d2:3f:6f:4e:6e:81:41:a1:04: dd:92:52:fd:2d:f7:cd:f4:2e:2a:3c:86:31:5f:e8: 86:76:e6:38:3d:c4:30:bf:6c:7b:04:e2:10:4a:90: 33:7c:cc:d2:66:12:fb:6d:40:15:78:6d:f6:48:6e: 27:e0:e5:c2:1d:36:02:08:60:aa:02:ce:15:b1:de: e0:37:9f:93:19:dc:49:f3:75:55:a5:46:72:51:b6: 3a:ac:02:6d:b3:4e:85:24:2e:da:b5:95:c1:bf:aa: a3:a1:47:2b:8d:20:2b:51:ec:ea:1b:da:da:60:7d: df:0a:dd:d5:50:58:f3:ee:9d:c3:74:0d:85:10:ff: cc:91:6c:05:65:bc:78:cb:86:2d:99:c1:d1:b8:ac: b2:0d:db:48:6c:fb:7f:87:12:ee:df:28:d4:2a:11: 84:31:2c:46:bc:e4:d4:a6:fc:4b:c0:4b:5f:8a:e0: ec:2b:a4:63:99:da:4b:ca:3c:21:93:8e:d3:4a:7c: 32:50:78:52:72:a0:fe:87:12:aa:93:5e:d2:26:36: 85:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:26:33:C6:85:EA:76:00:31:2A:5B:32:7F:C8:6A:E1:D1:26:90:74 X509v3 Authority Key Identifier: keyid:A1:4B:DA:A3:15:76:A6:36:7A:0B:5C:3A:CA:B9:1C:4E:9F:31:18:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917604B/41C0135C6DAE11EEA80D0574C4F9AE02/oUvaoxV2pjZ6C1w6yrkcTp8xGO8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:ca:27:dc:b7:a9:f3:9c:27:bc:f6:04:57:75:63:08:bf:b5: 0d:5b:2c:25:6e:e3:ff:2c:fc:c8:4a:01:41:cd:4a:e5:8b:74: ad:50:39:d1:e2:d7:a9:b1:ed:a5:d6:d8:03:68:08:64:d5:f1: 74:20:f0:c2:bc:7f:27:0d:50:1b:f8:77:82:fc:c2:98:10:e3: 56:31:d1:46:c5:4c:18:f7:d5:4b:6c:ca:e0:72:62:29:f3:d5: 3d:51:85:8a:92:c2:a9:0d:26:f3:cf:e8:f0:8f:04:60:fc:5b: 2b:c3:b6:e2:27:47:57:df:7b:a0:79:b3:1f:9f:db:14:ca:09: 66:14:b8:67:16:16:61:57:de:a4:8e:9b:34:77:d5:3e:05:3c: e2:34:cf:ad:c1:29:61:fe:4b:aa:f8:39:6e:ed:7f:fd:d9:ea: 38:86:9c:e1:67:90:ff:ff:ce:08:e9:1c:65:d0:70:a3:cd:93: 81:c6:8f:ee:58:74:f6:e6:73:32:a6:5c:d7:3e:f3:2f:04:a2: f6:d2:24:b7:4f:aa:94:8c:00:17:69:85:63:7b:19:63:57:57: 72:f0:6d:20:97:99:4a:9b:e6:2d:47:e0:4c:cd:34:6c:bc:e3: a9:af:73:dc:dd:15:54:0c:76:3c:2b:83:15:91:cb:1d:bc:0a: ec:63:48:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYwNEIxMTAvBgNVBAUTKEExNEJEQUEzMTU3NkE2MzY3QTBCNUMzQUNBQjkxQzRF OUYzMTE4RUYwHhcNMjUwNDI3MDMzOTM4WhcNMjUwNTA0MDMzOTM4WjAYMRYwFAYD VQQDEw02ODBkYTZmYS0yZWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fr17+WQM7noI5Qq5o5sDRAClQP4fbcNBPSv+EDL90YbevkydHwgu0BPGe4P 308/bYnSP29OboFBoQTdklL9LffN9C4qPIYxX+iGduY4PcQwv2x7BOIQSpAzfMzS ZhL7bUAVeG32SG4n4OXCHTYCCGCqAs4Vsd7gN5+TGdxJ83VVpUZyUbY6rAJts06F JC7atZXBv6qjoUcrjSArUezqG9raYH3fCt3VUFjz7p3DdA2FEP/MkWwFZbx4y4Yt mcHRuKyyDdtIbPt/hxLu3yjUKhGEMSxGvOTUpvxLwEtfiuDsK6RjmdpLyjwhk47T SnwyUHhScqD+hxKqk17SJjaFaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOImM8aF 6nYAMSpbMn/IauHRJpB0MB8GA1UdIwQYMBaAFKFL2qMVdqY2egtcOsq5HE6fMRjv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjA0Qi80MUMwMTM1QzZE QUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBqWjZDMXc2eXJrY1RwOHhH TzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29VdmFveFYycGpaNkMxdzZ5cmtjVHA4eEdPOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjA0Qi80MUMwMTM1QzZEQUUxMUVFQTgwRDA1NzRDNEY5QUUwMi9vVXZhb3hWMnBq WjZDMXc2eXJrY1RwOHhHTzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCayifct6nznCe89gRXdWMIv7UNWywlbuP/LPzISgFBzUrli3StUDnR 4tepse2l1tgDaAhk1fF0IPDCvH8nDVAb+HeC/MKYEONWMdFGxUwY99VLbMrgcmIp 89U9UYWKksKpDSbzz+jwjwRg/Fsrw7biJ0dX33ugebMfn9sUyglmFLhnFhZhV96k jps0d9U+BTziNM+twSlh/kuq+Dlu7X/92eo4hpzhZ5D//84I6Rxl0HCjzZOBxo/u WHT25nMyplzXPvMvBKL20iS3T6qUjAAXaYVjexljV1dy8G0gl5lKm+YtR+BMzTRs vOOpr3Pc3RVUDHY8K4MVkcsdvArsY0gp -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:08 2025 by rpki-client on console.sobornost.net