$ rpki-client -vvf rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft File: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft (raw, json) Hash identifier: o5slDJ1OF4S9doq8k684mbH5n3FFbAfQHThDknkIaUg= Subject key identifier: B3:0E:A6:94:AC:53:B9:15:CD:3E:90:52:90:11:89:29:A5:68:F9:4D Authority key identifier: 1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 Certificate issuer: /CN=A9178C1E/serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft Manifest number: EA Signing time: Sun 27 Apr 2025 04:19:44 +0000 Manifest this update: Sun 27 Apr 2025 04:19:44 +0000 Manifest next update: Sun 04 May 2025 04:19:43 +0000 Files and hashes: 1: HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl (hash: yZy3rmi4PJASfR1jnz69BVwc9I84Q+s5YC5AKmu0Yy0=) 2: 4AFD4994CDD011EEA5534481C4F9AE02.roa (hash: 5W+7nQ6sUflibilCBlXCdge8iT2G6A6aLqY201MPVEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178C1E, serialNumber=1DF9C0CEF9A77DCD15BB51F93FD342999BE11658 Validity Not Before: Apr 27 04:19:44 2025 GMT Not After : May 4 04:19:43 2025 GMT Subject: CN=680db060-0cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:96:25:42:cd:89:38:ca:1b:14:64:34:0f:8b: 0c:d2:e0:d6:d6:af:22:2a:af:4a:7c:fe:a9:a8:ab: 40:9c:d0:ab:c1:0e:4d:4c:15:31:e8:2c:8a:35:9e: 9c:f8:5d:f2:2e:58:d2:63:6d:3c:d1:89:fc:0a:be: 61:7f:a1:a0:7e:cd:d0:da:43:73:6e:f4:8f:c4:a4: ab:4f:5e:5e:e8:39:5b:70:4b:e6:39:99:d1:c2:5a: 06:44:d9:72:a1:00:41:98:ae:2d:2c:a2:13:85:06: ce:a4:44:5f:d4:2b:e2:e4:ca:39:96:99:ad:d7:27: 81:46:93:5f:20:19:31:6c:30:a8:ed:51:ed:c8:88: 74:e8:ce:20:ac:45:28:2a:9f:2f:04:33:de:5d:ba: 3d:2b:3f:0d:12:b7:78:8a:ed:14:fa:67:ac:6a:80: e7:41:6d:c2:a1:d8:97:d3:d6:bc:36:a3:a5:e8:33: 3c:34:fb:9c:e4:83:7d:68:57:6e:d2:46:30:9c:8a: 04:33:fe:bf:d5:92:01:dc:df:2c:c4:92:9a:40:6c: cf:d3:9f:6a:b2:46:a6:3c:d6:6f:dd:37:ee:d1:18: 36:5b:b0:20:4d:34:e0:d5:ac:d7:08:dc:fb:52:f8: de:c9:5d:01:52:0a:e7:66:dd:24:fd:55:44:93:02: 57:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0E:A6:94:AC:53:B9:15:CD:3E:90:52:90:11:89:29:A5:68:F9:4D X509v3 Authority Key Identifier: keyid:1D:F9:C0:CE:F9:A7:7D:CD:15:BB:51:F9:3F:D3:42:99:9B:E1:16:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178C1E/C286032EC64711EE9D68EB7FC4F9AE02/HfnAzvmnfc0Vu1H5P9NCmZvhFlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:2b:04:50:af:df:25:50:a0:df:ae:90:09:d9:04:11:82:85: 59:ba:93:86:f5:80:0e:9f:c1:2d:de:05:20:f6:7f:c9:e3:87: 1d:ce:22:6d:64:3f:bb:53:dd:21:a4:50:c1:7b:1b:10:cd:6c: fc:65:00:f0:12:ca:99:ac:54:a2:e5:1b:12:1d:c2:74:d4:2e: 27:80:ab:d7:30:6f:73:cd:3b:db:51:e2:6a:4e:7c:b5:1c:ef: d4:92:0e:c0:b6:53:1e:48:32:65:47:3f:84:a1:df:6b:92:7d: da:22:16:3e:17:a5:36:ad:51:e0:34:c2:4f:c4:64:8d:36:96: d8:c5:68:26:be:28:fc:80:90:36:fc:86:b1:f2:20:da:a5:31: 0d:5a:73:00:13:8b:2c:97:f4:c6:38:90:86:6f:4b:12:cb:19: 4a:83:2e:a0:f2:4c:2f:cf:f7:57:fa:36:b1:a9:87:21:b2:c8: ce:66:0c:5b:be:f5:f7:d3:86:c2:5f:af:c1:d4:1d:7b:a4:49: bc:24:5d:4b:89:7e:71:dd:c5:81:4a:a5:06:16:ab:93:9b:59: 7c:1f:62:ad:98:9f:ba:4e:9d:85:0f:e0:b9:f0:5f:b7:6e:e3: 8a:ca:f8:2a:b9:ff:1c:cf:63:79:e1:af:63:1f:e3:ef:46:05: 95:d4:67:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhDMUUxMTAvBgNVBAUTKDFERjlDMENFRjlBNzdEQ0QxNUJCNTFGOTNGRDM0Mjk5 OUJFMTE2NTgwHhcNMjUwNDI3MDQxOTQ0WhcNMjUwNTA0MDQxOTQzWjAYMRYwFAYD VQQDEw02ODBkYjA2MC0wY2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5YlQs2JOMobFGQ0D4sM0uDW1q8iKq9KfP6pqKtAnNCrwQ5NTBUx6CyKNZ6c +F3yLljSY2080Yn8Cr5hf6Ggfs3Q2kNzbvSPxKSrT15e6DlbcEvmOZnRwloGRNly oQBBmK4tLKIThQbOpERf1Cvi5Mo5lpmt1yeBRpNfIBkxbDCo7VHtyIh06M4grEUo Kp8vBDPeXbo9Kz8NErd4iu0U+mesaoDnQW3CodiX09a8NqOl6DM8NPuc5IN9aFdu 0kYwnIoEM/6/1ZIB3N8sxJKaQGzP059qskamPNZv3Tfu0Rg2W7AgTTTg1azXCNz7 UvjeyV0BUgrnZt0k/VVEkwJXowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMOppSs U7kVzT6QUpARiSmlaPlNMB8GA1UdIwQYMBaAFB35wM75p33NFbtR+T/TQpmb4RZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEMxRS9DMjg2MDMyRUM2 NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZjMFZ1MUg1UDlOQ21admhG bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmbkF6dm1uZmMwVnUxSDVQOU5DbVp2aEZsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEMxRS9DMjg2MDMyRUM2NDcxMUVFOUQ2OEVCN0ZDNEY5QUUwMi9IZm5BenZtbmZj MFZ1MUg1UDlOQ21admhGbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYKwRQr98lUKDfrpAJ2QQRgoVZupOG9YAOn8Et3gUg9n/J44cdziJt ZD+7U90hpFDBexsQzWz8ZQDwEsqZrFSi5RsSHcJ01C4ngKvXMG9zzTvbUeJqTny1 HO/Ukg7AtlMeSDJlRz+Eod9rkn3aIhY+F6U2rVHgNMJPxGSNNpbYxWgmvij8gJA2 /Iax8iDapTENWnMAE4ssl/TGOJCGb0sSyxlKgy6g8kwvz/dX+jaxqYchssjOZgxb vvX304bCX6/B1B17pEm8JF1LiX5x3cWBSqUGFquTm1l8H2KtmJ+6Tp2FD+C58F+3 buOKyvgquf8cz2N54a9jH+PvRgWV1GdL -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net