$ rpki-client -vvf rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft File: sDUqu0PwqFVkm512GmVcP8YPbmM.mft (raw, json) Hash identifier: 1zE8QGkEFAp9x0iFxLL0QLwIcEIXDa0LWzNlf6R0ucU= Subject key identifier: 65:63:F2:E1:C6:1C:84:32:DD:DB:2C:9F:B7:DB:EA:8B:34:6A:AC:59 Authority key identifier: B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 Certificate issuer: /CN=A9176DFC/serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft Manifest number: 0150 Signing time: Sun 27 Apr 2025 03:07:38 +0000 Manifest this update: Sun 27 Apr 2025 03:07:37 +0000 Manifest next update: Sun 04 May 2025 03:07:37 +0000 Files and hashes: 1: sDUqu0PwqFVkm512GmVcP8YPbmM.crl (hash: jEq3ZM5N7hcHPdp6hb+aAsk2nI9+UqgYvLoo3NXvNmI=) 2: 7BFE665EE17F11EF9536DC48C4F9AE02.roa (hash: k+tzt38gMzmau0c2rmQWNYzVDcpA9LwBPBlXy9g9UUQ=) 3: 230A1090248C11EEA9EE1935C4F9AE02.roa (hash: GPm7lgmcPBXG9N85GnRJZzvPZx2wbvxxB75DoAT8PYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176DFC, serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Validity Not Before: Apr 27 03:07:37 2025 GMT Not After : May 4 03:07:37 2025 GMT Subject: CN=680d9f79-b382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ce:a8:de:17:7b:9a:e1:6c:47:2f:5e:b1:53: d5:a0:74:4a:b7:df:01:1c:a0:b0:f8:09:dc:9d:a9: 72:4b:8a:2c:1a:7b:89:ca:9f:c5:89:ea:89:de:be: a2:87:74:34:8f:e7:af:0c:c6:a3:1f:fe:b8:ed:85: 21:b9:56:92:e9:5b:07:58:55:bc:9f:1c:a1:39:ec: cb:41:c5:d9:fd:b6:48:5b:0e:a7:06:5a:ed:e4:98: ac:d0:c3:b3:7c:53:d1:ec:71:ce:67:fe:73:56:93: 9e:b5:9f:b7:4c:70:e7:82:ab:51:ca:51:9f:39:4d: a4:dc:a5:1d:3a:1c:45:24:d0:06:cf:6e:15:f0:f6: 93:3a:96:29:b4:a2:c6:89:7a:d5:aa:65:5e:3a:76: b2:fd:d4:be:bb:72:ab:7e:c2:d7:c6:95:42:46:7b: 5d:8e:df:bd:8f:b6:e8:39:dc:61:02:3b:e0:01:54: b0:8a:03:90:b5:a2:9a:e1:77:02:35:ce:ae:d4:c6: 43:d1:8b:f3:47:91:cf:e0:0a:31:4a:ac:96:16:9d: 97:6c:02:b9:dd:3e:1d:d7:f8:a8:cf:41:b8:e6:cc: 42:92:6d:93:73:73:2e:cd:80:19:a4:2e:33:f3:de: 9a:27:a1:c9:2c:cc:84:6c:0c:78:db:20:1e:56:4c: bd:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:63:F2:E1:C6:1C:84:32:DD:DB:2C:9F:B7:DB:EA:8B:34:6A:AC:59 X509v3 Authority Key Identifier: keyid:B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b2:a4:0b:ee:f1:7e:a3:60:f3:b8:6f:ae:f0:b7:83:2b:69: 5c:dc:15:74:22:c5:ad:96:77:d8:1c:0b:3b:4d:95:b0:e7:76: e2:f7:3c:f7:31:be:e5:cc:93:3a:ee:12:46:b9:93:d8:3f:65: d3:eb:65:ac:66:c6:7f:e3:0b:cb:d9:16:1e:7e:30:d5:50:5e: 46:8a:1e:89:63:5b:90:06:52:4b:29:42:df:2f:09:3c:43:cf: f7:a1:a7:01:b2:8e:8c:11:a7:8e:be:7a:51:d3:0b:f6:ce:8b: a5:17:81:2e:bd:2b:b6:38:b0:7b:f4:7b:31:1b:d4:5d:19:26: 3c:24:4a:3c:3d:98:16:fc:52:f2:90:2a:2e:a9:fb:43:5f:e3: cf:5b:13:08:ba:50:74:b7:02:e5:a4:54:bb:2c:b3:bf:8b:c7: 86:4d:03:aa:ae:e9:23:85:ae:c8:1a:4f:17:cb:d8:75:8a:cc: 95:81:ac:ff:fa:75:03:69:a0:90:fa:fc:1b:20:76:74:a5:6a: 26:f6:fa:02:6f:25:ed:6a:66:85:7b:f0:49:b9:ec:ff:53:3d: bb:a0:f2:4a:0d:40:db:8a:b5:51:62:89:95:56:e4:00:79:60: 9b:a9:11:8e:2e:cd:04:b6:ea:ca:2f:b1:e7:d4:40:db:16:39: 87:f6:4f:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZERkMxMTAvBgNVBAUTKEIwMzUyQUJCNDNGMEE4NTU2NDlCOUQ3NjFBNjU1QzNG QzYwRjZFNjMwHhcNMjUwNDI3MDMwNzM3WhcNMjUwNTA0MDMwNzM3WjAYMRYwFAYD VQQDEw02ODBkOWY3OS1iMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk86o3hd7muFsRy9esVPVoHRKt98BHKCw+AncnalyS4osGnuJyp/FieqJ3r6i h3Q0j+evDMajH/647YUhuVaS6VsHWFW8nxyhOezLQcXZ/bZIWw6nBlrt5Jis0MOz fFPR7HHOZ/5zVpOetZ+3THDngqtRylGfOU2k3KUdOhxFJNAGz24V8PaTOpYptKLG iXrVqmVeOnay/dS+u3KrfsLXxpVCRntdjt+9j7boOdxhAjvgAVSwigOQtaKa4XcC Nc6u1MZD0YvzR5HP4AoxSqyWFp2XbAK53T4d1/ioz0G45sxCkm2Tc3MuzYAZpC4z 896aJ6HJLMyEbAx42yAeVky9NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVj8uHG HIQy3dssn7fb6os0aqxZMB8GA1UdIwQYMBaAFLA1KrtD8KhVZJuddhplXD/GD25j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkRGQy9CRTQwQzEzNjI0 OEIxMUVFQTM0RjZGMzRDNEY5QUUwMi9zRFVxdTBQd3FGVmttNTEyR21WY1A4WVBi bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NEVXF1MFB3cUZWa201MTJHbVZjUDhZUGJtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkRGQy9CRTQwQzEzNjI0OEIxMUVFQTM0RjZGMzRDNEY5QUUwMi9zRFVxdTBQd3FG VmttNTEyR21WY1A4WVBibU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBesqQL7vF+o2DzuG+u8LeDK2lc3BV0IsWtlnfYHAs7TZWw53bi9zz3 Mb7lzJM67hJGuZPYP2XT62WsZsZ/4wvL2RYefjDVUF5Gih6JY1uQBlJLKULfLwk8 Q8/3oacBso6MEaeOvnpR0wv2zoulF4EuvSu2OLB79HsxG9RdGSY8JEo8PZgW/FLy kCouqftDX+PPWxMIulB0twLlpFS7LLO/i8eGTQOqrukjha7IGk8Xy9h1isyVgaz/ +nUDaaCQ+vwbIHZ0pWom9voCbyXtamaFe/BJuez/Uz27oPJKDUDbirVRYomVVuQA eWCbqRGOLs0EturKL7Hn1EDbFjmH9k+D -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:09 2025 by rpki-client on console.sobornost.net