$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft File: OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft (raw, json) Hash identifier: dngA/IKHL7fiV6g/2dBtdm17VU7tpdTeEwHx0v0Ldp8= Subject key identifier: 44:36:FD:4F:F9:2E:8E:9F:F5:FC:35:BB:6D:AF:D4:56:E9:A7:DB:93 Authority key identifier: 38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A Certificate issuer: /CN=A917B520/serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft Manifest number: B7 Signing time: Sun 27 Apr 2025 02:43:30 +0000 Manifest this update: Sun 27 Apr 2025 02:43:29 +0000 Manifest next update: Sun 04 May 2025 02:43:29 +0000 Files and hashes: 1: OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl (hash: 2YQ/NFE6JAIJL4/zjkd9SGlgv2Ni7ddnkxxz+VCewuE=) 2: 9580A702548211EFAADB996FC4F9AE02.roa (hash: bdHgyKcyyyLsXCxe6xjw+MULUMGxfLoTKKgonGSTImI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=380CD6BCC9E1C11FEC4EE27DA893824DADB5212A Validity Not Before: Apr 27 02:43:29 2025 GMT Not After : May 4 02:43:29 2025 GMT Subject: CN=680d99d2-8ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cf:bf:c9:92:dc:3c:83:56:1e:07:50:76:7d: 59:9e:f8:bb:58:f3:9e:ab:bc:a6:e5:5b:53:39:93: 9c:9d:20:12:30:43:18:37:a4:ee:00:18:82:0b:2b: b0:bb:b0:ca:b5:d4:20:9a:ee:9c:61:02:bf:14:7e: d3:bd:2c:e0:f6:2b:c5:bc:8f:42:eb:f2:bc:0d:8b: ae:de:19:cf:42:73:4d:de:f0:9f:52:9e:d8:e8:aa: e0:7c:99:a2:5b:07:32:b7:91:50:a6:ee:b3:64:5f: 14:38:b2:4c:a1:94:03:55:39:54:1f:ed:db:b9:2f: 88:53:84:5e:25:b3:04:29:06:23:47:b8:78:3b:ca: 8d:a2:50:8f:31:33:2f:6f:d6:49:fc:b5:6a:e2:67: 00:62:9d:99:b3:03:76:6f:80:84:92:2d:9b:3d:45: f7:22:46:6c:c3:7a:23:73:d0:cf:c7:63:be:fb:76: 0c:af:0f:fc:73:90:b9:b6:36:44:02:82:be:91:d7: f1:4d:e6:33:6d:5a:59:d7:9f:65:17:98:aa:c9:24: 06:20:56:2c:ae:b0:c9:d2:f0:0b:26:67:76:1e:01: b8:fe:9e:3e:49:98:9b:be:57:d5:d6:dd:8f:e8:17: 90:2a:fe:8e:89:59:61:58:c7:05:45:27:c8:2f:bb: f4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:36:FD:4F:F9:2E:8E:9F:F5:FC:35:BB:6D:AF:D4:56:E9:A7:DB:93 X509v3 Authority Key Identifier: keyid:38:0C:D6:BC:C9:E1:C1:1F:EC:4E:E2:7D:A8:93:82:4D:AD:B5:21:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OAzWvMnhwR_sTuJ9qJOCTa21ISo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/8F9091D432B011EFA4CBF96AC4F9AE02/OAzWvMnhwR_sTuJ9qJOCTa21ISo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:03:f0:c9:c5:2d:4c:e0:06:ab:f6:00:a5:ae:ef:a3:62:d3: 9d:3c:8c:73:cd:de:ab:a8:01:bb:0a:32:3a:8b:a9:79:9a:d7: 80:f3:0d:df:e5:07:08:1f:0b:b3:9b:59:7c:a0:1b:09:62:32: f1:7b:3d:88:40:9d:30:8d:79:cd:b3:cf:84:92:8c:f9:67:5d: 5b:73:3d:4f:29:04:ad:d4:5d:2b:53:2f:99:fe:b6:ab:42:8e: e5:9b:e9:9b:72:9c:ce:33:85:5b:4e:74:5c:55:09:97:3a:ed: a2:32:e4:1f:a1:e4:86:72:4e:6c:04:99:9b:a1:2d:20:44:62: 79:57:73:cd:1e:cb:28:66:ad:5f:37:2a:f4:67:47:36:fe:9a: fb:6a:bd:fe:ff:20:d8:7e:4e:11:b0:2f:9b:47:d7:5f:3b:38: c1:4d:50:fa:d4:3f:cc:ad:f1:fe:5b:5b:5e:ce:6a:d0:2b:17: 3b:93:65:a7:54:7d:de:38:a6:db:5b:62:1c:85:06:34:42:3b: b2:7e:fe:8b:ea:73:42:6e:db:ac:bc:30:e9:00:38:17:8d:db: 89:d7:c2:60:f6:8c:18:c2:4f:46:e7:84:72:2e:1b:a1:19:41: 51:0a:b7:68:85:8d:21:24:ea:5c:d5:77:ce:96:28:ce:29:d8: e8:9d:91:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDM4MENENkJDQzlFMUMxMUZFQzRFRTI3REE4OTM4MjRE QURCNTIxMkEwHhcNMjUwNDI3MDI0MzI5WhcNMjUwNTA0MDI0MzI5WjAYMRYwFAYD VQQDEw02ODBkOTlkMi04Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3M+/yZLcPINWHgdQdn1Znvi7WPOeq7ym5VtTOZOcnSASMEMYN6TuABiCCyuw u7DKtdQgmu6cYQK/FH7TvSzg9ivFvI9C6/K8DYuu3hnPQnNN3vCfUp7Y6KrgfJmi Wwcyt5FQpu6zZF8UOLJMoZQDVTlUH+3buS+IU4ReJbMEKQYjR7h4O8qNolCPMTMv b9ZJ/LVq4mcAYp2ZswN2b4CEki2bPUX3IkZsw3ojc9DPx2O++3YMrw/8c5C5tjZE AoK+kdfxTeYzbVpZ159lF5iqySQGIFYsrrDJ0vALJmd2HgG4/p4+SZibvlfV1t2P 6BeQKv6OiVlhWMcFRSfIL7v0bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQ2/U/5 Lo6f9fw1u22v1Fbpp9uTMB8GA1UdIwQYMBaAFDgM1rzJ4cEf7E7ifaiTgk2ttSEq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC84RjkwOTFENDMy QjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdSX3NUdUo5cUpPQ1RhMjFJ U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09Beld2TW5od1Jfc1R1SjlxSk9DVGEyMUlTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjUyMC84RjkwOTFENDMyQjAxMUVGQTRDQkY5NkFDNEY5QUUwMi9PQXpXdk1uaHdS X3NUdUo5cUpPQ1RhMjFJU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbA/DJxS1M4Aar9gClru+jYtOdPIxzzd6rqAG7CjI6i6l5mteA8w3f 5QcIHwuzm1l8oBsJYjLxez2IQJ0wjXnNs8+Ekoz5Z11bcz1PKQSt1F0rUy+Z/rar Qo7lm+mbcpzOM4VbTnRcVQmXOu2iMuQfoeSGck5sBJmboS0gRGJ5V3PNHssoZq1f Nyr0Z0c2/pr7ar3+/yDYfk4RsC+bR9dfOzjBTVD61D/MrfH+W1tezmrQKxc7k2Wn VH3eOKbbW2IchQY0Qjuyfv6L6nNCbtusvDDpADgXjduJ18Jg9owYwk9G54RyLhuh GUFRCrdohY0hJOpc1XfOlijOKdjonZG1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:10 2025 by rpki-client on console.sobornost.net