$ rpki-client -vvf rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft File: iaGX0JdonG6zOGepzIrM1_s2Tok.mft (raw, json) Hash identifier: ltynJT89km/JDgkWLkCFBMptlzjqErIioCEQopM5gag= Subject key identifier: 3E:41:54:3E:EC:7B:8B:BF:31:2D:0B:93:1E:F2:4C:AA:33:1A:EF:F6 Authority key identifier: 89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 Certificate issuer: /CN=A917991B/serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Certificate serial: 0434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft Manifest number: 042B Signing time: Sun 27 Apr 2025 00:02:00 +0000 Manifest this update: Sun 27 Apr 2025 00:01:59 +0000 Manifest next update: Sun 04 May 2025 00:01:59 +0000 Files and hashes: 1: iaGX0JdonG6zOGepzIrM1_s2Tok.crl (hash: WoZXKyeQmMAzayf1Edil9L+Wq3HOzM9w/RKJ0SCxcMQ=) 2: E82DE3C290AB11ECAB81252FC4F9AE02.roa (hash: bae2h1fyx3Q2HMMVl8xXKrMMVZUAe0Q5kTd+Vb0nl2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1076 (0x434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917991B, serialNumber=89A197D097689C6EB33867A9CC8ACCD7FB364E89 Validity Not Before: Apr 27 00:01:59 2025 GMT Not After : May 4 00:01:59 2025 GMT Subject: CN=680d73f7-b312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:2b:8e:e2:df:6f:18:fc:06:3d:bd:c5:b4: 9d:bc:b7:10:f3:be:7d:bc:9a:cb:c8:ca:0e:c4:eb: fe:23:af:89:1a:08:c5:3e:42:59:b3:a0:8e:75:5b: 3b:01:7b:25:b8:df:81:15:e6:49:10:d7:be:63:42: 2b:71:ab:83:4e:4a:da:ed:fc:21:5c:4c:ac:e6:2a: 0e:c2:f4:65:c9:5e:6c:6b:73:a3:f5:d1:f7:c5:a3: 5a:c4:04:c3:f7:ad:43:56:66:3f:97:9b:54:85:51: 71:c0:5a:0f:c9:3b:8c:55:18:75:ba:bb:2c:db:f6: 94:08:92:56:3b:29:8f:11:36:d1:ed:a3:fd:dd:85: ab:40:ff:01:c1:c7:98:55:24:4d:81:82:16:9b:d4: 7d:87:4a:60:cd:c2:b1:2a:52:4d:1e:85:cf:35:7b: ae:69:43:e6:8f:2b:dd:2a:3b:d6:29:12:e5:b6:9d: 9c:79:c2:d0:84:d5:b0:af:35:21:10:48:9a:77:0a: aa:e2:43:74:8c:a1:91:c6:50:4e:37:48:77:c5:a4: b7:6a:0c:1a:dc:b2:1a:56:fe:7b:b2:f5:f5:36:3e: e2:d8:32:76:68:05:9f:47:17:a6:7d:10:3a:db:09: 36:be:20:da:30:5c:f8:38:30:0c:86:e7:2c:b0:42: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:41:54:3E:EC:7B:8B:BF:31:2D:0B:93:1E:F2:4C:AA:33:1A:EF:F6 X509v3 Authority Key Identifier: keyid:89:A1:97:D0:97:68:9C:6E:B3:38:67:A9:CC:8A:CC:D7:FB:36:4E:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaGX0JdonG6zOGepzIrM1_s2Tok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917991B/7D0C37D0604311EC8D37510EC4F9AE02/iaGX0JdonG6zOGepzIrM1_s2Tok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:82:24:9c:fe:4e:fe:fa:51:0f:83:27:49:ac:bf:b5:0f:c9: 06:60:c0:9f:aa:79:f5:51:81:d8:3d:06:c0:7c:06:65:76:31: 41:91:c8:50:82:b3:e6:9e:9f:01:11:f8:75:ad:bb:d9:24:76: f0:23:24:fe:29:33:8f:e0:99:05:72:b6:e8:3a:34:3b:90:50: 7b:61:90:34:06:d8:94:61:77:e8:9d:b9:63:6e:ea:87:39:93: 7c:37:71:50:4d:fa:3c:12:a0:29:11:17:df:62:63:e7:19:04: 16:ed:13:69:1c:1a:15:c0:59:38:e3:dc:23:79:f7:8c:db:d8: f3:f9:73:07:3c:1d:53:9f:10:73:72:d5:66:ae:02:00:79:13: c3:94:00:6b:ac:dc:2c:d6:87:b5:53:86:2e:cc:a1:75:35:af: 60:f6:34:d5:19:ca:6a:7d:a1:02:06:be:29:02:6c:c6:3a:fa: 9f:1e:0c:4f:b0:ee:08:41:67:f8:51:e8:81:b9:0b:24:37:41: e0:4d:38:71:8d:f2:c2:ae:62:d0:27:ce:b7:24:8a:7f:7e:1a: cc:09:26:36:14:60:93:22:da:98:ac:90:60:69:2e:f7:4f:14: de:e3:41:2f:06:2a:86:bb:5b:35:1b:be:40:fb:dd:61:91:4e: 61:e3:cb:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk5MUIxMTAvBgNVBAUTKDg5QTE5N0QwOTc2ODlDNkVCMzM4NjdBOUNDOEFDQ0Q3 RkIzNjRFODkwHhcNMjUwNDI3MDAwMTU5WhcNMjUwNTA0MDAwMTU5WjAYMRYwFAYD VQQDEw02ODBkNzNmNy1iMzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNArjuLfbxj8Bj29xbSdvLcQ8759vJrLyMoOxOv+I6+JGgjFPkJZs6COdVs7 AXsluN+BFeZJENe+Y0IrcauDTkra7fwhXEys5ioOwvRlyV5sa3Oj9dH3xaNaxATD 961DVmY/l5tUhVFxwFoPyTuMVRh1urss2/aUCJJWOymPETbR7aP93YWrQP8BwceY VSRNgYIWm9R9h0pgzcKxKlJNHoXPNXuuaUPmjyvdKjvWKRLltp2cecLQhNWwrzUh EEiadwqq4kN0jKGRxlBON0h3xaS3agwa3LIaVv57svX1Nj7i2DJ2aAWfRxemfRA6 2wk2viDaMFz4ODAMhucssEI3EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5BVD7s e4u/MS0Lkx7yTKozGu/2MB8GA1UdIwQYMBaAFImhl9CXaJxuszhnqcyKzNf7Nk6J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTkxQi83RDBDMzdEMDYw NDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25HNnpPR2VweklyTTFfczJU b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhR1gwSmRvbkc2ek9HZXB6SXJNMV9zMlRvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTkxQi83RDBDMzdEMDYwNDMxMUVDOEQzNzUxMEVDNEY5QUUwMi9pYUdYMEpkb25H NnpPR2VweklyTTFfczJUb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXgiSc/k7++lEPgydJrL+1D8kGYMCfqnn1UYHYPQbAfAZldjFBkchQ grPmnp8BEfh1rbvZJHbwIyT+KTOP4JkFcrboOjQ7kFB7YZA0BtiUYXfonbljbuqH OZN8N3FQTfo8EqApERffYmPnGQQW7RNpHBoVwFk449wjefeM29jz+XMHPB1TnxBz ctVmrgIAeRPDlABrrNws1oe1U4YuzKF1Na9g9jTVGcpqfaECBr4pAmzGOvqfHgxP sO4IQWf4UeiBuQskN0HgTThxjfLCrmLQJ863JIp/fhrMCSY2FGCTItqYrJBgaS73 TxTe40EvBiqGu1s1G75A+91hkU5h48s2 -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:09 2025 by rpki-client on console.sobornost.net