$ rpki-client -vvf rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft File: HN4SRMu7llQubIsJo9rBwbRDaNc.mft (raw, json) Hash identifier: eenHaFD+oWpDAM17ghQgoWAdhnitXo1wlJ0eJKX5TQ4= Subject key identifier: 5E:E3:EB:18:9C:BF:51:FC:DE:10:C8:7A:E3:09:8A:E4:C6:ED:EC:F6 Authority key identifier: 1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 Certificate issuer: /CN=A918A498/serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft Manifest number: 1E Signing time: Sun 27 Apr 2025 06:41:25 +0000 Manifest this update: Sun 27 Apr 2025 06:41:24 +0000 Manifest next update: Sun 04 May 2025 06:41:24 +0000 Files and hashes: 1: HN4SRMu7llQubIsJo9rBwbRDaNc.crl (hash: a7Uh2hQ5jj5A1iMhZI8UBmLWmenWOY3La49K7FBrJWg=) 2: 62C86698F80A11EFA400AC2FC4F9AE02.roa (hash: UFgylA3DVYfccb8XdgcDubKXiQ2Mtm89Z4YEW6R99s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A498, serialNumber=1CDE1244CBBB96542E6C8B09A3DAC1C1B44368D7 Validity Not Before: Apr 27 06:41:24 2025 GMT Not After : May 4 06:41:24 2025 GMT Subject: CN=680dd194-7f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8a:4f:7e:48:87:d0:f8:9c:a2:41:22:1f:5d: 82:ec:e0:44:50:2b:25:ea:91:e0:dd:ba:4e:3b:97: b9:60:0c:49:48:31:fe:dc:e6:37:c4:36:73:12:61: 74:90:1a:f6:45:54:c6:ff:a4:46:89:fd:91:d4:52: 58:c2:bd:e4:9b:ab:b8:52:51:95:b5:4c:6b:fb:a7: 77:89:64:d2:23:72:f8:da:dd:24:e8:79:5d:c7:4e: 98:1a:25:e3:a3:b5:b5:59:f0:09:69:fa:24:f4:53: 1c:c5:3f:e2:50:ec:b6:eb:c1:ec:d9:75:1a:fc:11: 85:a7:50:78:d8:73:2c:5b:d8:6a:df:0a:03:c2:2c: 4b:da:67:b7:ef:01:4e:ef:ef:c1:99:e3:b3:2c:a5: 60:b5:3a:65:40:be:3c:4c:d2:14:43:e7:48:78:d0: f9:91:13:85:4c:6b:4f:68:5d:ab:d8:cf:fd:94:d4: e0:32:e3:83:12:b8:45:42:ce:fb:48:50:4b:70:d8: 27:c1:55:5d:38:ef:9a:da:14:c9:2c:c6:ff:d7:70: 93:b8:fd:80:50:67:6d:e6:1d:7e:56:91:9c:6e:27: c3:78:20:c0:d5:1e:b1:05:f0:1d:af:7b:1b:c8:83: 0d:17:0f:1c:2f:71:c4:74:32:57:8d:5c:4b:bc:54: 31:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E3:EB:18:9C:BF:51:FC:DE:10:C8:7A:E3:09:8A:E4:C6:ED:EC:F6 X509v3 Authority Key Identifier: keyid:1C:DE:12:44:CB:BB:96:54:2E:6C:8B:09:A3:DA:C1:C1:B4:43:68:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HN4SRMu7llQubIsJo9rBwbRDaNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A498/D2DED346F80911EFA5281B16C4F9AE02/HN4SRMu7llQubIsJo9rBwbRDaNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:5a:b3:4e:9c:47:57:89:9d:53:e4:86:6f:8e:83:8c:8e:6b: 0a:9a:96:42:66:ee:e7:42:7b:14:36:54:9e:ce:2a:21:73:fe: 5b:27:a0:ab:d6:60:b5:85:0d:d2:70:c8:dc:96:c0:36:6d:09: 83:1c:07:06:32:d4:1f:50:35:dd:53:8a:25:d5:69:b8:42:7c: 64:13:94:33:21:19:22:27:39:ff:3d:5b:64:9a:de:26:65:39: f3:a6:63:bf:65:85:45:45:ce:db:d9:37:5c:70:97:a9:a8:18: 92:32:71:f8:e7:7f:33:9b:c1:83:77:8a:a6:3e:94:8f:41:b9: a1:be:c8:20:1f:a5:bd:ae:36:72:30:59:d8:86:a5:37:cc:a5: b1:08:2c:8d:4f:dd:ff:a2:f1:2e:26:86:f4:96:bc:42:40:f5: ef:57:4c:4e:cc:39:a8:b5:07:6e:e9:b0:37:2e:e5:68:fd:8a: e3:92:41:01:ce:3f:91:9a:48:93:c7:48:a6:0f:64:3c:fa:6b: 86:d9:58:05:39:b4:be:1d:c0:d0:5a:2f:b8:81:12:42:d5:45: 04:08:6e:01:8b:05:04:5f:a5:dd:8b:2f:94:b0:06:90:6e:29: 72:ba:e6:e9:f7:10:11:7c:dd:10:98:05:bd:fb:7c:2b:5b:1f: 41:9a:11:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTQ5ODExMC8GA1UEBRMoMUNERTEyNDRDQkJCOTY1NDJFNkM4QjA5QTNEQUMxQzFC NDQzNjhENzAeFw0yNTA0MjcwNjQxMjRaFw0yNTA1MDQwNjQxMjRaMBgxFjAUBgNV BAMTDTY4MGRkMTk0LTdmNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgik9+SIfQ+JyiQSIfXYLs4ERQKyXqkeDduk47l7lgDElIMf7c5jfENnMSYXSQ GvZFVMb/pEaJ/ZHUUljCveSbq7hSUZW1TGv7p3eJZNIjcvja3SToeV3HTpgaJeOj tbVZ8Alp+iT0UxzFP+JQ7LbrwezZdRr8EYWnUHjYcyxb2GrfCgPCLEvaZ7fvAU7v 78GZ47MspWC1OmVAvjxM0hRD50h40PmRE4VMa09oXavYz/2U1OAy44MSuEVCzvtI UEtw2CfBVV0475raFMksxv/XcJO4/YBQZ23mHX5WkZxuJ8N4IMDVHrEF8B2vexvI gw0XDxwvccR0MleNXEu8VDH/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXuPrGJy/ UfzeEMh64wmK5Mbt7PYwHwYDVR0jBBgwFoAUHN4SRMu7llQubIsJo9rBwbRDaNcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNDk4L0QyREVEMzQ2Rjgw OTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxRdWJJc0pvOXJCd2JSRGFO Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSE40U1JNdTdsbFF1YklzSm85ckJ3YlJEYU5jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB NDk4L0QyREVEMzQ2RjgwOTExRUZBNTI4MUIxNkM0RjlBRTAyL0hONFNSTXU3bGxR dWJJc0pvOXJCd2JSRGFOYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD9as06cR1eJnVPkhm+Og4yOawqalkJm7udCexQ2VJ7OKiFz/lsnoKvW YLWFDdJwyNyWwDZtCYMcBwYy1B9QNd1TiiXVabhCfGQTlDMhGSInOf89W2Sa3iZl OfOmY79lhUVFztvZN1xwl6moGJIycfjnfzObwYN3iqY+lI9BuaG+yCAfpb2uNnIw WdiGpTfMpbEILI1P3f+i8S4mhvSWvEJA9e9XTE7MOai1B27psDcu5Wj9iuOSQQHO P5GaSJPHSKYPZDz6a4bZWAU5tL4dwNBaL7iBEkLVRQQIbgGLBQRfpd2LL5SwBpBu KXK65un3EBF83RCYBb37fCtbH0GaEYo= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net