$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.mft File: nPqGncMGNX16wwkuT__QTKUCd14.mft (raw, json) Hash identifier: dTw578a6seEo/s0PJ8Lt/mPDfB64DEBQ0r0cWwmutQA= Subject key identifier: 68:C1:85:AE:87:06:07:4B:2B:85:B7:69:DF:06:F5:EA:11:CD:57:E9 Authority key identifier: 9C:FA:86:9D:C3:06:35:7D:7A:C3:09:2E:4F:FF:D0:4C:A5:02:77:5E Certificate issuer: /CN=A917FFBF/serialNumber=9CFA869DC306357D7AC3092E4FFFD04CA502775E Certificate serial: 0322 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.mft Manifest number: 031E Signing time: Sun 27 Apr 2025 00:46:57 +0000 Manifest this update: Sun 27 Apr 2025 00:46:56 +0000 Manifest next update: Sun 04 May 2025 00:46:56 +0000 Files and hashes: 1: nPqGncMGNX16wwkuT__QTKUCd14.crl (hash: kMawvf+KSNPxil1HrWQY5ZnH7aMDLj4Ac0vnDBTwEUU=) 2: 6AE91888C5FC11EC9127557EC4F9AE02.roa (hash: Upjs7verB9kHZN2eaB1a6dX0s9sFshQhi4VCB4ap3GQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.crl rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 802 (0x322) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFBF, serialNumber=9CFA869DC306357D7AC3092E4FFFD04CA502775E Validity Not Before: Apr 27 00:46:56 2025 GMT Not After : May 4 00:46:56 2025 GMT Subject: CN=680d7e80-0ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:82:f3:66:25:64:5a:2f:61:8f:05:cb:f9:e0: 95:8d:84:29:e2:99:2a:32:fd:50:2d:db:5e:14:8d: bb:ab:2a:10:bb:c3:7f:64:05:8b:77:fa:05:14:b9: 69:6c:0d:05:61:f8:84:d5:f4:7c:17:d2:7c:b6:b8: 35:ad:5d:7d:13:46:c4:a7:2c:07:ee:0d:c4:cb:4d: 09:e6:94:7b:4a:e8:45:e1:30:c5:b9:57:8f:78:84: 0e:e9:d6:e7:8e:4d:25:ed:6e:23:71:0d:23:a9:86: 48:db:b8:ed:c9:bb:a9:f8:20:80:d5:49:43:c5:c5: 1b:91:03:23:cf:19:99:bf:c1:6c:3c:dd:d2:60:f7: f2:1a:f6:8c:b3:8f:c3:c0:40:1f:63:33:57:fe:de: 84:58:68:4d:4a:06:87:11:6e:2d:07:40:5a:58:1e: 27:18:72:ef:97:91:1a:20:96:d1:39:ce:19:df:31: 06:2c:f0:13:47:da:d4:4d:61:65:fb:1a:86:69:2c: 67:64:7b:17:2a:10:9a:64:45:2b:81:eb:9a:a6:b1: 0d:8c:8c:6d:9e:10:68:05:bf:c1:6e:81:dc:ab:7d: b6:f8:c1:b6:d9:a3:15:b1:b4:56:85:f6:66:33:68: 0c:d8:5a:b6:80:ec:1f:11:fb:8a:1c:00:37:6a:93: 1e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:C1:85:AE:87:06:07:4B:2B:85:B7:69:DF:06:F5:EA:11:CD:57:E9 X509v3 Authority Key Identifier: keyid:9C:FA:86:9D:C3:06:35:7D:7A:C3:09:2E:4F:FF:D0:4C:A5:02:77:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nPqGncMGNX16wwkuT__QTKUCd14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFBF/ED52F030C5F411EC8E80D886C4F9AE02/nPqGncMGNX16wwkuT__QTKUCd14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:f7:9d:5d:23:b6:05:0e:91:96:56:23:1c:92:d4:1e:d9:02: 04:2c:67:10:05:52:c4:87:1d:d5:6d:0f:da:1f:89:41:50:3d: d9:e2:60:07:62:5d:fd:e4:7f:08:c4:11:a9:ec:84:60:e1:eb: f6:2e:02:d2:1d:06:38:97:85:48:af:88:08:14:8e:ad:4e:b1: 49:e1:71:bd:12:13:27:d1:ea:22:dd:d2:56:cb:6d:4a:56:74: 92:ee:c6:5a:e0:6b:3f:76:25:1f:62:6c:fa:9b:c4:69:b7:98: 04:fc:4c:c4:e5:c8:a3:a0:97:c6:d5:9f:79:40:01:93:d1:ed: 77:28:db:a1:45:c2:01:9f:02:6b:56:2c:01:89:6a:a3:f0:e9: 28:22:ac:93:83:73:8a:57:53:b3:2f:b3:d7:f2:52:4d:23:c7: 9a:59:a0:05:24:9b:51:f8:ec:80:dd:af:8b:db:15:41:dc:b0: 74:3e:38:0f:7e:25:e0:0d:9b:b9:d9:c6:43:2b:a1:5a:54:b0: f2:32:87:58:ae:65:f7:b7:b2:8d:c2:54:cc:2c:3a:82:c9:3d: 76:4d:7d:bf:c8:41:a2:94:15:65:0a:50:fb:1b:05:00:2c:fc: dd:89:e0:8c:09:47:ba:dd:b4:46:dd:ca:93:91:af:51:f7:00: a1:16:f1:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQkYxMTAvBgNVBAUTKDlDRkE4NjlEQzMwNjM1N0Q3QUMzMDkyRTRGRkZEMDRD QTUwMjc3NUUwHhcNMjUwNDI3MDA0NjU2WhcNMjUwNTA0MDA0NjU2WjAYMRYwFAYD VQQDEw02ODBkN2U4MC0wYWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoLzZiVkWi9hjwXL+eCVjYQp4pkqMv1QLdteFI27qyoQu8N/ZAWLd/oFFLlp bA0FYfiE1fR8F9J8trg1rV19E0bEpywH7g3Ey00J5pR7SuhF4TDFuVePeIQO6dbn jk0l7W4jcQ0jqYZI27jtybup+CCA1UlDxcUbkQMjzxmZv8FsPN3SYPfyGvaMs4/D wEAfYzNX/t6EWGhNSgaHEW4tB0BaWB4nGHLvl5EaIJbROc4Z3zEGLPATR9rUTWFl +xqGaSxnZHsXKhCaZEUrgeuaprENjIxtnhBoBb/BboHcq322+MG22aMVsbRWhfZm M2gM2Fq2gOwfEfuKHAA3apMe/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjBha6H BgdLK4W3ad8G9eoRzVfpMB8GA1UdIwQYMBaAFJz6hp3DBjV9esMJLk//0EylAnde MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCRi9FRDUyRjAzMEM1 RjQxMUVDOEU4MEQ4ODZDNEY5QUUwMi9uUHFHbmNNR05YMTZ3d2t1VF9fUVRLVUNk MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25QcUduY01HTlgxNnd3a3VUX19RVEtVQ2QxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkZCRi9FRDUyRjAzMEM1RjQxMUVDOEU4MEQ4ODZDNEY5QUUwMi9uUHFHbmNNR05Y MTZ3d2t1VF9fUVRLVUNkMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk951dI7YFDpGWViMcktQe2QIELGcQBVLEhx3VbQ/aH4lBUD3Z4mAH Yl395H8IxBGp7IRg4ev2LgLSHQY4l4VIr4gIFI6tTrFJ4XG9EhMn0eoi3dJWy21K VnSS7sZa4Gs/diUfYmz6m8Rpt5gE/EzE5cijoJfG1Z95QAGT0e13KNuhRcIBnwJr ViwBiWqj8OkoIqyTg3OKV1OzL7PX8lJNI8eaWaAFJJtR+OyA3a+L2xVB3LB0PjgP fiXgDZu52cZDK6FaVLDyModYrmX3t7KNwlTMLDqCyT12TX2/yEGilBVlClD7GwUA LPzdieCMCUe63bRG3cqTka9R9wChFvHa -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:10 2025 by rpki-client on console.sobornost.net