$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: e6alycEi1bADOi3CXXrNmXuRjjLCKY4r8WsUAoCAA6U= Subject key identifier: 72:C3:B7:FC:D7:FB:0B:CD:F0:DE:A5:F3:1C:85:51:57:D3:E9:AC:02 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 0973 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 095C Signing time: Mon 28 Apr 2025 20:39:29 +0000 Manifest this update: Mon 28 Apr 2025 20:39:28 +0000 Manifest next update: Mon 05 May 2025 20:39:28 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: ZMOxriBFm/Zkqr1pVB7zl0hLmpHpMMzf038ok+Ov0KY=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Apr 28 20:39:28 2025 GMT Not After : May 5 20:39:28 2025 GMT Subject: CN=680fe781-1e8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2e:da:2a:70:be:70:1e:0d:6a:5c:02:81:96: a2:a8:9f:67:6b:91:d9:2a:32:36:56:78:1b:4b:c1: 30:cf:fc:79:24:b7:a2:48:b6:76:15:0d:aa:09:6e: e3:9a:46:37:b1:13:c2:4b:3c:b6:1b:fd:dc:57:62: 15:21:dd:d6:b3:80:2c:f5:a5:c8:05:46:8d:cd:0a: ce:5c:61:71:50:e3:d6:39:fd:07:a4:10:e6:61:00: e9:77:17:71:a4:41:c5:8c:f1:8b:d4:4c:15:c7:e6: 64:4d:f4:5a:c1:6c:f0:10:43:d5:63:66:c3:2b:10: e9:9b:28:43:73:c6:56:90:cb:80:5e:bc:94:c2:80: 06:59:20:26:34:10:85:5c:39:99:d0:db:90:67:65: 69:2c:b9:64:6a:02:ab:bf:0c:ca:29:d9:2c:40:ea: 68:ae:ed:8e:05:8a:44:85:35:b4:ce:ab:c9:f5:ca: 32:d1:b9:ec:89:ad:e3:fd:ed:21:96:9f:04:93:74: c5:45:c3:0a:a3:ef:ee:bc:16:37:c0:25:d7:90:a4: c1:a3:f9:8e:c7:a9:8f:1c:24:7f:d7:ec:62:18:79: 08:d9:9f:d4:cc:13:76:80:46:b9:0a:53:09:af:83: 5c:55:07:5d:c0:6b:28:82:65:67:9a:60:bc:17:ea: da:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C3:B7:FC:D7:FB:0B:CD:F0:DE:A5:F3:1C:85:51:57:D3:E9:AC:02 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:e9:0d:3a:e3:fa:54:e6:7f:b4:2e:b4:94:fc:25:7e:20:11: 49:09:83:3b:6f:c3:87:be:0f:e0:54:0b:47:8c:e1:9a:b4:de: 77:92:08:83:6f:6c:08:55:bd:16:b3:c7:81:7a:86:ac:6b:b4: a9:d7:71:d9:9a:5d:7f:75:56:5e:4d:00:55:3b:c3:cb:aa:1f: b4:1f:63:22:4d:7f:9a:ec:37:36:da:1f:1f:e8:88:ae:b3:24: be:66:35:d8:4b:7e:ba:a9:ab:ac:8e:ef:94:25:53:ae:a6:50: 6a:84:50:3e:2c:08:65:64:e0:48:82:e8:cb:bf:0e:a5:2f:01: 5c:7f:71:c3:40:22:06:8f:91:0e:71:f5:97:2c:42:6b:07:be: bd:f2:f5:6b:77:e2:0b:31:57:1c:d7:e7:b6:f0:0c:b8:a8:fe: 90:cd:fb:87:cb:f7:6a:f6:95:a8:0d:81:b0:87:a8:7a:bf:6b: ab:a5:fc:23:3d:91:db:95:fc:e3:73:f3:95:dd:27:0b:56:93: ff:b4:51:e2:59:7b:a2:f9:81:0b:39:a6:60:13:62:12:e3:ba: 31:38:42:e0:e0:1d:a4:95:c4:e3:8b:22:04:a0:03:67:57:2a: 54:ac:f6:ba:11:1d:6a:94:02:47:43:88:af:c6:b5:cb:12:af: 5b:4d:59:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUwNDI4MjAzOTI4WhcNMjUwNTA1MjAzOTI4WjAYMRYwFAYD VQQDEw02ODBmZTc4MS0xZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvS7aKnC+cB4NalwCgZaiqJ9na5HZKjI2VngbS8Ewz/x5JLeiSLZ2FQ2qCW7j mkY3sRPCSzy2G/3cV2IVId3Ws4As9aXIBUaNzQrOXGFxUOPWOf0HpBDmYQDpdxdx pEHFjPGL1EwVx+ZkTfRawWzwEEPVY2bDKxDpmyhDc8ZWkMuAXryUwoAGWSAmNBCF XDmZ0NuQZ2VpLLlkagKrvwzKKdksQOporu2OBYpEhTW0zqvJ9coy0bnsia3j/e0h lp8Ek3TFRcMKo+/uvBY3wCXXkKTBo/mOx6mPHCR/1+xiGHkI2Z/UzBN2gEa5ClMJ r4NcVQddwGsogmVnmmC8F+rauwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLDt/zX +wvN8N6l8xyFUVfT6awCMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDS6Q064/pU5n+0LrSU/CV+IBFJCYM7b8OHvg/gVAtHjOGatN53kgiD b2wIVb0Ws8eBeoasa7Sp13HZml1/dVZeTQBVO8PLqh+0H2MiTX+a7Dc22h8f6Iiu syS+ZjXYS366qausju+UJVOuplBqhFA+LAhlZOBIgujLvw6lLwFcf3HDQCIGj5EO cfWXLEJrB7698vVrd+ILMVcc1+e28Ay4qP6QzfuHy/dq9pWoDYGwh6h6v2urpfwj PZHblfzjc/OV3ScLVpP/tFHiWXui+YELOaZgE2IS47oxOELg4B2klcTjiyIEoANn VypUrPa6ER1qlAJHQ4ivxrXLEq9bTVnU -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:36 2025 by rpki-client on console.sobornost.net