$ rpki-client -vvf rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft File: w7rY8KXaBY6fklA30EqnHJKLoXM.mft (raw, json) Hash identifier: ejJGGrrlEesFpCKVjCD3y+2/rWn3ztHJ34QTZk2RwHo= Subject key identifier: CA:00:8B:D4:8D:FE:EF:27:65:0D:3C:AF:DD:42:A0:1C:49:6A:F9:8D Authority key identifier: C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 Certificate issuer: /CN=A9189265/serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Certificate serial: 19B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft Manifest number: 19A7 Signing time: Mon 28 Apr 2025 16:34:40 +0000 Manifest this update: Mon 28 Apr 2025 16:34:39 +0000 Manifest next update: Mon 05 May 2025 16:34:39 +0000 Files and hashes: 1: w7rY8KXaBY6fklA30EqnHJKLoXM.crl (hash: hDh/j992OPHwv/c3lwPiW4gXBWQuj88ybnnhoet0MPs=) 2: 885DA760AA8811E799348329C4F9AE02.roa (hash: yqEcj3SZ3T1pYpHMLtfx0ZxmS715TGOM5EI1dS08gyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6577 (0x19b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189265, serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Validity Not Before: Apr 28 16:34:39 2025 GMT Not After : May 5 16:34:39 2025 GMT Subject: CN=680fae20-4d9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:31:46:66:2a:98:c1:db:1a:de:05:e8:7a: 17:44:ac:44:41:71:4f:9f:74:09:be:0d:bc:4f:61: 98:49:f1:90:b3:9b:39:c5:70:fd:c5:6e:b8:08:54: b6:d6:57:b5:82:1c:97:16:3c:c1:9e:06:ef:9f:5f: 4c:dd:88:5f:ab:62:9a:67:fd:b7:46:2f:ea:c5:db: 80:38:cd:56:88:74:b3:7e:08:8e:77:34:56:5f:7d: 65:a8:a5:d4:dd:f4:2a:48:6e:2c:59:e2:17:ba:70: ba:1a:94:09:f8:e1:2c:0f:7e:a3:26:a2:e8:1d:d6: f5:3a:37:8b:d2:9b:97:dd:90:48:84:5b:81:53:ab: d5:82:9d:36:6d:96:0a:e6:a6:04:3f:fa:a0:e1:d6: dd:b8:97:5d:70:39:f5:74:b2:05:73:aa:ed:af:fb: 59:9a:f2:85:0a:78:3a:e2:90:74:00:27:94:1d:42: 8e:ce:42:1e:83:f2:51:30:25:2b:b6:34:82:8f:d5: 52:0f:7c:50:32:40:f6:d3:c7:53:d3:f9:2c:7f:45: 42:7c:9c:da:b9:d4:2a:48:20:51:ef:25:ca:ae:f5: 49:9b:6d:e3:5a:21:69:1e:88:8c:c1:dd:09:d4:f8: 34:9e:af:55:d2:1f:fa:ca:2a:b4:ef:b7:06:db:2b: 74:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:00:8B:D4:8D:FE:EF:27:65:0D:3C:AF:DD:42:A0:1C:49:6A:F9:8D X509v3 Authority Key Identifier: keyid:C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:7f:66:79:6b:cb:25:6a:26:29:fb:88:fb:ba:7f:a0:96:6b: f1:51:03:0b:f0:19:34:a2:e1:b5:2b:71:a4:39:6a:5b:90:c1: 13:76:63:ca:8c:e4:68:23:9b:e5:70:3c:06:d9:9d:9f:2d:79: 65:73:0f:48:6c:6d:6f:a4:81:a9:02:62:cf:a3:4e:24:c8:4a: 63:ae:60:72:99:9e:f5:e9:0e:c3:bf:4a:f2:2c:93:bd:13:49: 06:c2:69:e5:33:ef:c5:46:56:4c:86:7d:00:08:b8:28:71:30: 43:a3:9f:2e:86:8b:b3:d0:e3:c4:ce:37:e7:17:31:da:f7:13: 58:20:76:39:c1:42:5b:70:f9:eb:87:a9:17:c7:e9:9f:c6:68: a0:54:3f:ef:29:20:46:89:24:bf:40:36:ff:98:b0:56:87:ff: 42:a3:e3:15:9c:aa:ed:37:0f:2d:df:ae:5c:27:1d:0f:f1:57: 14:2c:e9:45:05:b9:12:78:f7:68:80:4b:2a:36:d1:a5:2a:7f: 70:34:d9:12:62:08:42:55:ac:96:ac:a3:a1:a6:15:82:cd:32: c0:41:40:0c:8d:9d:56:7d:b8:f1:67:38:56:12:13:57:84:43: 14:f7:eb:8c:0d:1d:d4:3b:9d:32:84:e6:0e:19:6b:06:a7:14: 64:c0:37:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjUxMTAvBgNVBAUTKEMzQkFEOEYwQTVEQTA1OEU5RjkyNTAzN0QwNEFBNzFD OTI4QkExNzMwHhcNMjUwNDI4MTYzNDM5WhcNMjUwNTA1MTYzNDM5WjAYMRYwFAYD VQQDEw02ODBmYWUyMC00ZDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArssxRmYqmMHbGt4F6HoXRKxEQXFPn3QJvg28T2GYSfGQs5s5xXD9xW64CFS2 1le1ghyXFjzBngbvn19M3Yhfq2KaZ/23Ri/qxduAOM1WiHSzfgiOdzRWX31lqKXU 3fQqSG4sWeIXunC6GpQJ+OEsD36jJqLoHdb1OjeL0puX3ZBIhFuBU6vVgp02bZYK 5qYEP/qg4dbduJddcDn1dLIFc6rtr/tZmvKFCng64pB0ACeUHUKOzkIeg/JRMCUr tjSCj9VSD3xQMkD208dT0/ksf0VCfJzaudQqSCBR7yXKrvVJm23jWiFpHoiMwd0J 1Pg0nq9V0h/6yiq077cG2yt0TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoAi9SN /u8nZQ08r91CoBxJavmNMB8GA1UdIwQYMBaAFMO62PCl2gWOn5JQN9BKpxySi6Fz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2NS9EOEI0QjYxRTYw MjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZNmZrbEEzMEVxbkhKS0xv WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3clk4S1hhQlk2ZmtsQTMwRXFuSEpLTG9YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTI2NS9EOEI0QjYxRTYwMjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZ NmZrbEEzMEVxbkhKS0xvWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyf2Z5a8slaiYp+4j7un+glmvxUQML8Bk0ouG1K3GkOWpbkMETdmPK jORoI5vlcDwG2Z2fLXllcw9IbG1vpIGpAmLPo04kyEpjrmBymZ716Q7Dv0ryLJO9 E0kGwmnlM+/FRlZMhn0ACLgocTBDo58uhouz0OPEzjfnFzHa9xNYIHY5wUJbcPnr h6kXx+mfxmigVD/vKSBGiSS/QDb/mLBWh/9Co+MVnKrtNw8t365cJx0P8VcULOlF BbkSePdogEsqNtGlKn9wNNkSYghCVayWrKOhphWCzTLAQUAMjZ1WfbjxZzhWEhNX hEMU9+uMDR3UO50yhOYOGWsGpxRkwDft -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:46 2025 by rpki-client on console.sobornost.net