$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: VM6jfLjtuFYBeGQ22WK5bpHq37veXJP28/+Dj75TjUw= Subject key identifier: 9D:BD:90:3C:E7:C9:2E:9E:4D:74:73:7C:6F:F6:09:CA:DC:B0:62:46 Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: 50 Signing time: Sun 27 Apr 2025 06:05:41 +0000 Manifest this update: Sun 27 Apr 2025 06:05:41 +0000 Manifest next update: Sun 04 May 2025 06:05:41 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: nm00Kj/5xBxtolbRllpAALIKaeLJkktlVshokxa6kHY=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Apr 27 06:05:41 2025 GMT Not After : May 4 06:05:41 2025 GMT Subject: CN=680dc935-fb7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:99:03:cc:9a:ac:58:bb:b7:27:2a:7f:75:49: 13:34:5b:59:4c:93:ed:29:99:8d:be:57:ac:ad:ab: c0:1c:2d:1d:f6:5c:5d:65:71:bf:bb:d5:36:52:21: 13:6b:ba:98:e1:7f:30:65:e4:0e:cc:4e:e5:1c:9f: 6e:93:36:4f:98:e5:95:83:b4:0e:eb:37:e1:b1:78: 70:14:53:77:6a:7e:df:f5:f8:72:5f:19:da:b5:89: af:1c:79:3f:6a:39:be:4c:fb:6d:5d:4c:06:93:b5: eb:bd:20:9a:59:17:d6:f9:72:a6:d9:c6:ae:92:bc: f4:be:97:c3:41:57:01:cb:7a:cb:f5:2e:ef:3b:8f: c8:1f:75:81:5a:d1:00:72:5d:83:6f:a8:7e:af:8f: 0a:de:90:df:ef:36:5a:bb:b2:69:71:6f:21:0d:83: d0:24:b4:4b:7d:cf:a1:e4:be:a7:44:d3:4d:11:05: 0f:85:81:ff:fb:e7:e1:36:f7:9a:1e:27:3b:a0:5b: b7:c4:3d:6a:a8:a0:1f:a0:8d:8e:56:b2:08:47:00: d1:d2:62:94:b6:67:d3:5d:55:5e:07:f8:5a:5c:73: 7b:cd:0b:7b:7f:4d:e2:a9:e3:0c:8c:49:83:cd:c2: 31:71:84:bd:6d:da:12:d1:6d:75:09:38:13:70:cf: 07:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BD:90:3C:E7:C9:2E:9E:4D:74:73:7C:6F:F6:09:CA:DC:B0:62:46 X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:da:11:c0:74:c1:de:dc:fa:d4:31:b5:3b:8a:61:ec:a2:d6: 66:47:06:31:dd:eb:86:39:15:7e:86:56:03:ed:79:6c:c2:93: 0f:8d:b0:76:6e:08:b9:b3:29:51:6d:7d:e1:d9:3d:d6:d4:f5: c4:2f:ec:08:6a:17:25:0f:b2:ae:f0:48:d5:f4:8d:c8:47:da: 27:17:88:d5:25:8d:10:e4:55:5b:8f:39:56:26:30:8f:ab:1b: fa:bb:e2:7c:81:b2:34:2c:69:92:26:33:2d:36:f7:53:23:39: 71:22:b9:46:24:b8:88:c9:1c:20:bc:1b:72:5d:06:4f:19:93: 85:c6:f9:57:76:22:08:f6:c7:56:8e:e3:05:f1:38:24:f4:ed: 0e:12:9f:2e:6d:c0:33:4e:50:e6:13:54:05:2d:55:18:b8:8c: 73:f4:a6:9d:2f:0b:f6:94:43:a8:63:c0:0b:0d:41:44:73:10: e2:31:92:59:0a:ff:34:4f:85:71:cf:83:61:d8:17:ff:65:ab: 39:ab:a1:e1:7c:d0:b4:e5:3e:2f:c7:f8:ec:36:5c:22:5b:17: 4c:64:30:c3:dc:d4:be:51:c2:c5:83:7d:ef:c3:b2:59:a7:97: 78:b6:3a:8b:46:6a:4c:d7:6c:a3:c8:84:d3:65:4c:0b:6b:6b: 2f:7e:23:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoRDE3NDQ1M0U5NTYzRUJBRkNCQkIzMkFDQzZDRjg2NkZC RDhFMjJGMDAeFw0yNTA0MjcwNjA1NDFaFw0yNTA1MDQwNjA1NDFaMBgxFjAUBgNV BAMTDTY4MGRjOTM1LWZiN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDmQPMmqxYu7cnKn91SRM0W1lMk+0pmY2+V6ytq8AcLR32XF1lcb+71TZSIRNr upjhfzBl5A7MTuUcn26TNk+Y5ZWDtA7rN+GxeHAUU3dqft/1+HJfGdq1ia8ceT9q Ob5M+21dTAaTteu9IJpZF9b5cqbZxq6SvPS+l8NBVwHLesv1Lu87j8gfdYFa0QBy XYNvqH6vjwrekN/vNlq7smlxbyENg9AktEt9z6HkvqdE000RBQ+Fgf/75+E295oe JzugW7fEPWqooB+gjY5WsghHANHSYpS2Z9NdVV4H+Fpcc3vNC3t/TeKp4wyMSYPN wjFxhL1t2hLRbXUJOBNwzwe9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnb2QPOfJ Lp5NdHN8b/YJytywYkYwHwYDVR0jBBgwFoAU0XRFPpVj66/LuzKsxs+Gb72OIvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzdCMzM0QTRBQUFF OTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFhSRlBwVmo2Nl9MdXpLc3hzLUdiNzJPSXZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzdCMzM0QTRBQUFFOTExRUZCNzIxQzI1REM0RjlBRTAyLzBYUkZQcFZqNjZf THV6S3N4cy1HYjcyT0l2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEzaEcB0wd7c+tQxtTuKYeyi1mZHBjHd64Y5FX6GVgPteWzCkw+NsHZu CLmzKVFtfeHZPdbU9cQv7AhqFyUPsq7wSNX0jchH2icXiNUljRDkVVuPOVYmMI+r G/q74nyBsjQsaZImMy0291MjOXEiuUYkuIjJHCC8G3JdBk8Zk4XG+Vd2Igj2x1aO 4wXxOCT07Q4Sny5twDNOUOYTVAUtVRi4jHP0pp0vC/aUQ6hjwAsNQURzEOIxklkK /zRPhXHPg2HYF/9lqzmroeF80LTlPi/H+Ow2XCJbF0xkMMPc1L5RwsWDfe/Dslmn l3i2OotGakzXbKPIhNNlTAtray9+IxY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:50 2025 by rpki-client on console.sobornost.net