$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft File: U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft (raw, json) Hash identifier: eH4fdb7bURKxGEVudV5E0CianF+AGz3DqjvTsjj9pmE= Subject key identifier: 14:E8:57:6B:63:C4:63:ED:80:A7:AF:DF:67:7F:2C:45:E4:2B:78:92 Authority key identifier: 53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 Certificate issuer: /CN=A9187325/serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft Manifest number: 50 Signing time: Sun 27 Apr 2025 06:05:39 +0000 Manifest this update: Sun 27 Apr 2025 06:05:38 +0000 Manifest next update: Sun 04 May 2025 06:05:38 +0000 Files and hashes: 1: U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl (hash: lnc8DWcmuX0qJi8X7lIPbPsUfXpd/L36BfLdWB+AkeU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=53C08BDA04BC053221EB273AA215CCD95C00C392 Validity Not Before: Apr 27 06:05:38 2025 GMT Not After : May 4 06:05:38 2025 GMT Subject: CN=680dc932-2e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fc:9c:33:92:60:a4:b0:bf:d7:d2:79:c1:29: 5d:41:7e:e2:37:0e:50:63:1f:69:af:53:22:39:ab: c5:1f:67:55:a2:c2:c9:57:ce:aa:8d:1b:a3:70:0b: f7:0b:86:81:f0:64:d2:03:7e:88:fd:0d:c3:a4:b6: 8e:8d:c5:e0:6f:d4:5b:98:fb:21:f6:49:de:c9:7d: 8a:a7:b5:cf:b5:03:f9:f9:79:49:86:a1:84:3a:42: fd:a4:d3:be:a1:e7:50:50:af:b6:6d:66:96:3c:46: cb:4c:8f:e6:02:56:be:e7:38:e1:b7:a5:bd:2f:1a: 00:4f:b3:82:8f:ec:d3:f2:d7:66:e4:be:f7:99:a3: a3:e0:9e:ef:f1:b3:74:c0:d4:95:82:f9:5e:1e:bd: 2d:97:34:99:6a:49:74:76:10:82:6f:85:d6:d6:10: 40:ee:2f:a2:44:71:50:1d:c6:75:2d:eb:13:e9:6e: f8:a6:e4:24:10:8f:7b:17:cd:19:f9:c1:c9:48:5c: a9:0d:42:7a:d4:81:e3:6c:db:d4:8f:cc:b9:54:ef: 6e:f8:88:5a:a7:32:1d:c2:79:bd:21:e2:2e:c1:25: 8b:eb:9b:a7:73:c0:c1:11:92:42:28:ad:77:ed:f6: 23:65:d7:ff:86:62:93:0e:3d:c9:5c:73:d0:24:1d: 04:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E8:57:6B:63:C4:63:ED:80:A7:AF:DF:67:7F:2C:45:E4:2B:78:92 X509v3 Authority Key Identifier: keyid:53:C0:8B:DA:04:BC:05:32:21:EB:27:3A:A2:15:CC:D9:5C:00:C3:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8CL2gS8BTIh6yc6ohXM2VwAw5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/8338C4D6AAE911EFB721C25DC4F9AE02/U8CL2gS8BTIh6yc6ohXM2VwAw5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:02:84:84:8a:c9:ad:6b:1c:5b:1a:19:d9:a1:be:06:d2:5f: 7e:4b:a0:18:5a:1b:44:c0:a8:cb:0b:1c:b8:28:65:3c:bd:e5: 6a:9d:65:18:fc:a8:fd:85:14:b3:36:52:0e:5d:1a:b9:b4:93: 1d:3f:78:62:d4:0d:55:73:99:a6:b3:b9:ee:e1:19:47:f8:8d: 75:a7:1c:4a:e2:64:46:0e:0d:46:52:c7:f1:f7:f5:34:32:59: 30:a3:76:d4:9e:b6:4a:a5:1f:68:8d:f6:83:76:58:98:10:71: 18:5b:c1:62:c0:d8:34:df:16:51:51:61:13:19:56:0e:9f:ba: 8c:c1:f8:36:a6:5b:63:d1:10:5f:e0:ab:cc:ab:37:67:74:c9: 0f:4d:6d:94:bf:9e:e6:3c:31:bc:2d:9f:f1:cf:1e:e7:7d:59: c9:eb:de:98:7b:85:39:75:7a:6a:81:8b:f5:61:72:6e:26:ba: 2b:8c:f3:10:6d:e0:79:37:d6:72:cd:12:96:db:06:66:fe:6c: c8:d2:9e:86:a2:f6:62:d7:b6:6f:d4:ec:fb:a1:e4:8f:37:75: a7:69:36:0d:9a:29:d0:fc:b9:42:f2:0d:ba:e7:92:ab:84:f5: f5:a2:a1:fa:a1:ed:23:7f:9e:70:c5:65:88:da:7f:92:ce:39: e7:10:bf:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzMyNTExMC8GA1UEBRMoNTNDMDhCREEwNEJDMDUzMjIxRUIyNzNBQTIxNUNDRDk1 QzAwQzM5MjAeFw0yNTA0MjcwNjA1MzhaFw0yNTA1MDQwNjA1MzhaMBgxFjAUBgNV BAMTDTY4MGRjOTMyLTJlMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW/JwzkmCksL/X0nnBKV1BfuI3DlBjH2mvUyI5q8UfZ1WiwslXzqqNG6NwC/cL hoHwZNIDfoj9DcOkto6NxeBv1FuY+yH2Sd7JfYqntc+1A/n5eUmGoYQ6Qv2k076h 51BQr7ZtZpY8RstMj+YCVr7nOOG3pb0vGgBPs4KP7NPy12bkvveZo6Pgnu/xs3TA 1JWC+V4evS2XNJlqSXR2EIJvhdbWEEDuL6JEcVAdxnUt6xPpbvim5CQQj3sXzRn5 wclIXKkNQnrUgeNs29SPzLlU7274iFqnMh3Ceb0h4i7BJYvrm6dzwMERkkIorXft 9iNl1/+GYpMOPclcc9AkHQTzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFOhXa2PE Y+2Ap6/fZ38sReQreJIwHwYDVR0jBBgwFoAUU8CL2gS8BTIh6yc6ohXM2VwAw5Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3MzI1LzgzMzhDNEQ2QUFF OTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJaDZ5YzZvaFhNMlZ3QXc1 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVThDTDJnUzhCVEloNnljNm9oWE0yVndBdzVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 MzI1LzgzMzhDNEQ2QUFFOTExRUZCNzIxQzI1REM0RjlBRTAyL1U4Q0wyZ1M4QlRJ aDZ5YzZvaFhNMlZ3QXc1SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALcChISKya1rHFsaGdmhvgbSX35LoBhaG0TAqMsLHLgoZTy95WqdZRj8 qP2FFLM2Ug5dGrm0kx0/eGLUDVVzmaazue7hGUf4jXWnHEriZEYODUZSx/H39TQy WTCjdtSetkqlH2iN9oN2WJgQcRhbwWLA2DTfFlFRYRMZVg6fuozB+DamW2PREF/g q8yrN2d0yQ9NbZS/nuY8Mbwtn/HPHud9Wcnr3ph7hTl1emqBi/Vhcm4muiuM8xBt 4Hk31nLNEpbbBmb+bMjSnoai9mLXtm/U7Puh5I83dadpNg2aKdD8uULyDbrnkquE 9fWiofqh7SN/nnDFZYjaf5LOOecQv1Y= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:50 2025 by rpki-client on console.sobornost.net