$ rpki-client -vvf rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft File: Qg2MLsPSR5xUI6v_dHgriopLfeo.mft (raw, json) Hash identifier: jjZNG1YogLt3YUdis5Fyy7siCYycGdu4UvuBekpO/dY= Subject key identifier: 1D:33:2D:A8:D5:0B:1E:82:80:0F:E4:43:AF:5B:8C:17:86:BC:91:EB Authority key identifier: 42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA Certificate issuer: /CN=A9182F75/serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA Certificate serial: 1BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft Manifest number: 1BC7 Signing time: Mon 28 Apr 2025 16:21:20 +0000 Manifest this update: Mon 28 Apr 2025 16:21:19 +0000 Manifest next update: Mon 05 May 2025 16:21:19 +0000 Files and hashes: 1: Qg2MLsPSR5xUI6v_dHgriopLfeo.crl (hash: jvdepiNTUSFM+1ucX92w4JQM5MGghHBpm+d+2vBRrNk=) 2: A770EFB01E5611EFAF3FCB38C4F9AE02.roa (hash: BbGcUbwtP+aZHPYce4149SbFzjL1B5hYLShi68qQcek=) 3: A3B7573EF01A11EE935E4329C4F9AE02.roa (hash: 3Fv5pT2XLktCrAEzJ7qYpsBgXpFiEdMr09ecsEjPwls=) 4: DD55266E1E5611EFAFFD4839C4F9AE02.roa (hash: HlwCeu7nRQrhAHteeDH8/AzpstkCTMTYbzNnFUCPtI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7144 (0x1be8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182F75, serialNumber=420D8C2EC3D2479C5423ABFF74782B8A8A4B7DEA Validity Not Before: Apr 28 16:21:19 2025 GMT Not After : May 5 16:21:19 2025 GMT Subject: CN=680fab00-976e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:86:4d:a4:c3:30:5b:d3:eb:e6:dc:f0:6a: d8:1c:90:3c:f1:f0:93:99:6d:45:a0:24:80:ae:9a: 5b:87:11:a1:57:90:e8:5c:1e:6d:ed:38:88:1f:13: 5a:34:16:a0:57:f8:91:71:1b:54:88:a4:95:cc:30: ed:28:0f:8b:68:07:8e:cb:fa:87:67:4a:15:bf:92: 11:7e:68:87:f9:60:bb:6c:98:05:ff:db:ef:3f:a3: e3:39:2b:2a:ad:fb:23:72:19:41:e0:b4:5a:c8:1a: a4:2c:35:66:db:e5:c4:db:41:49:f8:d7:1e:be:4a: 3c:66:2b:a2:9c:38:7c:2d:c2:fa:a3:f2:1e:c8:a9: e7:e9:7f:03:9f:08:1a:55:e7:c0:ab:e4:8e:f1:e7: 8a:86:46:4e:48:e8:e3:d7:31:c2:4a:e6:b0:3f:b0: e8:39:53:30:0e:07:45:ad:73:35:35:72:20:49:2a: 6e:c0:e6:14:12:8f:50:a9:66:6e:33:b4:f6:75:3a: 0f:f4:d3:75:72:c7:47:5f:b5:ea:31:4e:23:cc:a6: 27:fc:3b:2e:d2:55:48:e4:1a:96:ad:5b:05:22:f9: d6:7d:2e:2c:e3:39:8a:82:82:bb:b5:74:0f:29:02: 03:ca:be:85:b8:cd:14:37:a0:68:3c:17:46:11:35: a8:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:33:2D:A8:D5:0B:1E:82:80:0F:E4:43:AF:5B:8C:17:86:BC:91:EB X509v3 Authority Key Identifier: keyid:42:0D:8C:2E:C3:D2:47:9C:54:23:AB:FF:74:78:2B:8A:8A:4B:7D:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg2MLsPSR5xUI6v_dHgriopLfeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182F75/3C8CF63EFCBD11E688D3125EC4F9AE02/Qg2MLsPSR5xUI6v_dHgriopLfeo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:88:f8:6b:6f:14:f7:64:e7:a0:15:4c:1b:d8:00:8a:58:53: 75:e1:ca:50:20:ec:3d:7e:4b:10:6e:aa:c7:b9:82:bd:8c:5c: 24:29:42:f2:53:bf:43:ce:89:2f:0c:49:c4:62:d1:1c:fa:29: 94:2e:f2:cf:c2:a8:0e:44:c3:23:79:7b:2c:1a:b9:69:bc:e9: a0:92:6e:11:a1:e5:67:3d:cb:97:85:7d:2f:1e:44:04:ce:97: cd:17:e6:bd:a1:ae:bf:63:44:a4:cb:c4:34:6b:ad:3b:8c:d0: 1f:09:6d:1a:99:8c:4f:cf:9b:64:2b:aa:28:50:20:04:21:f4: 37:4e:1e:71:48:8b:db:a3:fe:9f:d8:9f:bf:a1:f8:89:c1:c4: 4c:6c:87:a7:d7:df:03:51:f5:68:ce:d0:e1:9b:6c:c4:79:e3: a1:bd:df:e4:22:82:39:14:d6:46:ee:ba:e2:b8:9f:6d:cd:63: 27:6c:48:a5:f5:4e:b9:f2:37:9d:dc:1b:49:25:58:81:e2:66: 4c:3a:70:ba:23:4f:48:46:3d:8a:be:8e:27:d1:15:43:19:b5: cc:84:d9:67:a1:42:7e:c4:d7:46:78:66:f2:39:92:85:e7:d6: 60:2f:fe:8f:77:3a:c3:5e:7a:e4:b1:b9:a8:f0:d1:60:7e:f1: 98:50:5b:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJGNzUxMTAvBgNVBAUTKDQyMEQ4QzJFQzNEMjQ3OUM1NDIzQUJGRjc0NzgyQjhB OEE0QjdERUEwHhcNMjUwNDI4MTYyMTE5WhcNMjUwNTA1MTYyMTE5WjAYMRYwFAYD VQQDEw02ODBmYWIwMC05NzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgiGTaTDMFvT6+bc8GrYHJA88fCTmW1FoCSArppbhxGhV5DoXB5t7TiIHxNa NBagV/iRcRtUiKSVzDDtKA+LaAeOy/qHZ0oVv5IRfmiH+WC7bJgF/9vvP6PjOSsq rfsjchlB4LRayBqkLDVm2+XE20FJ+Ncevko8ZiuinDh8LcL6o/IeyKnn6X8Dnwga VefAq+SO8eeKhkZOSOjj1zHCSuawP7DoOVMwDgdFrXM1NXIgSSpuwOYUEo9QqWZu M7T2dToP9NN1csdHX7XqMU4jzKYn/Dsu0lVI5BqWrVsFIvnWfS4s4zmKgoK7tXQP KQIDyr6FuM0UN6BoPBdGETWogwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0zLajV Cx6CgA/kQ69bjBeGvJHrMB8GA1UdIwQYMBaAFEINjC7D0kecVCOr/3R4K4qKS33q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkY3NS8zQzhDRjYzRUZD QkQxMUU2ODhEMzEyNUVDNEY5QUUwMi9RZzJNTHNQU1I1eFVJNnZfZEhncmlvcExm ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnMk1Mc1BTUjV4VUk2dl9kSGdyaW9wTGZlby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkY3NS8zQzhDRjYzRUZDQkQxMUU2ODhEMzEyNUVDNEY5QUUwMi9RZzJNTHNQU1I1 eFVJNnZfZEhncmlvcExmZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQiPhrbxT3ZOegFUwb2ACKWFN14cpQIOw9fksQbqrHuYK9jFwkKULy U79DzokvDEnEYtEc+imULvLPwqgORMMjeXssGrlpvOmgkm4RoeVnPcuXhX0vHkQE zpfNF+a9oa6/Y0Sky8Q0a607jNAfCW0amYxPz5tkK6ooUCAEIfQ3Th5xSIvbo/6f 2J+/ofiJwcRMbIen198DUfVoztDhm2zEeeOhvd/kIoI5FNZG7rriuJ9tzWMnbEil 9U658jed3BtJJViB4mZMOnC6I09IRj2Kvo4n0RVDGbXMhNlnoUJ+xNdGeGbyOZKF 59ZgL/6PdzrDXnrksbmo8NFgfvGYUFuH -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:45 2025 by rpki-client on console.sobornost.net