$ rpki-client -vvf rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft File: 2LHiOJulkf15uaUEr1pE2uCm6Cg.mft (raw, json) Hash identifier: 2Jf1DLotw00fjlSJzbYsNcEPAJkKiTw2/VHJkzSgJ9Y= Subject key identifier: 5E:03:52:8D:25:4D:8E:69:75:5D:9C:55:EB:9E:AF:C7:97:0B:4D:AC Authority key identifier: D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 Certificate issuer: /CN=A918C287/serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft Manifest number: 80 Signing time: Sun 27 Apr 2025 06:10:33 +0000 Manifest this update: Sun 27 Apr 2025 06:10:32 +0000 Manifest next update: Sun 04 May 2025 06:10:32 +0000 Files and hashes: 1: 2LHiOJulkf15uaUEr1pE2uCm6Cg.crl (hash: 6l503eljmExx/fqfgT+9MNTuYm0Y4AmQ7dHqwmvtBsw=) 2: 7BA29070CD7211EFBB533C0DC4F9AE02.roa (hash: RO9PVHuysanL+FwkTH6uRwMIgQlql2WV/+8jAG5HfIw=) 3: 46F07DE2BECC11EF8B106213C4F9AE02.roa (hash: G0jMrMH21eAUA/cjp2WPKqbHaywt2Ep3opCnxDMVRXs=) 4: 0D73D29E0DDC11F0B78D5A68C4F9AE02.roa (hash: cDoM5IMp1RVEZcbuIT/nXNre619WWcYGHnTE2Hy4AEg=) 5: 3032F85ABECC11EF8992CD85C4F9AE02.roa (hash: rpMLyoZvQyb1ho+FopwPvoVgmXiLOFz0MQlXsd/Ou7U=) 6: 3C9DCE2ED6C511EFBF407577C4F9AE02.roa (hash: 96CXsA04scOaM1cbnErMDWbzyLO2tA6KbWztXUY7o2Y=) 7: 9E8803A0EB0D11EF99575976C4F9AE02.roa (hash: yaPteE4hejSxLkmWmY4xK2B059SLePJYwcPEvAeEGQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C287, serialNumber=D8B1E2389BA591FD79B9A504AF5A44DAE0A6E828 Validity Not Before: Apr 27 06:10:32 2025 GMT Not After : May 4 06:10:32 2025 GMT Subject: CN=680dca58-cf1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:18:ff:7b:d8:42:20:ae:a8:74:89:b0:28:ae: 67:02:2c:74:cc:83:c6:4c:d0:44:a3:f5:70:d5:0e: a0:7c:5f:45:06:ce:f4:47:61:f8:70:b0:15:23:9e: c7:f7:7e:77:99:07:55:d1:6d:61:4d:f5:41:a8:f4: cb:9e:3d:65:36:02:62:3c:48:fd:5b:ce:dc:bb:07: c1:b4:58:5b:df:01:8d:60:13:d1:90:67:60:99:92: b3:02:ec:bd:a0:4f:72:91:4f:7c:6d:44:a2:3c:66: 85:e1:7c:55:58:36:01:19:eb:4d:69:71:0e:74:3b: df:d5:2f:88:62:8f:15:3f:e0:b3:49:90:ed:db:ca: 16:c5:ac:49:29:f6:9b:3a:56:d6:ed:2e:75:b6:21: 8f:11:d1:59:46:d8:2d:43:0b:6e:09:51:c0:ea:4b: de:70:27:6a:da:2c:7d:de:7d:60:4b:b8:95:70:a9: 26:50:f6:e9:0a:b9:bf:e2:3c:0f:3d:46:1f:23:26: 4c:44:42:b2:ff:66:d2:5e:2f:89:6e:ab:44:60:e4: 1b:22:3c:98:c3:a2:49:32:13:79:af:e7:a2:a6:7c: 11:ac:cd:ed:62:97:42:de:31:c2:49:0a:d6:65:5c: 68:ad:02:ee:15:1d:af:a1:c1:6c:0e:22:c8:6e:01: fc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:03:52:8D:25:4D:8E:69:75:5D:9C:55:EB:9E:AF:C7:97:0B:4D:AC X509v3 Authority Key Identifier: keyid:D8:B1:E2:38:9B:A5:91:FD:79:B9:A5:04:AF:5A:44:DA:E0:A6:E8:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2LHiOJulkf15uaUEr1pE2uCm6Cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C287/307CFF1EB37711EFB9184D7AC4F9AE02/2LHiOJulkf15uaUEr1pE2uCm6Cg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:5b:3f:f6:f5:4e:ae:88:e9:b5:b7:f0:c6:ed:02:2e:f2:ec: a1:c7:77:53:fc:5d:d7:ba:b0:3a:6f:c1:e3:67:e3:c2:c4:83: f6:21:81:e4:69:2a:c6:97:39:9c:06:b8:d4:84:ae:15:69:86: aa:cb:12:a0:7b:91:d7:6a:c0:e1:1d:86:6c:ee:e5:87:ce:23: d7:be:34:13:09:94:df:24:b2:57:dc:eb:7a:97:cd:25:33:a0: b6:2c:7c:92:90:f9:78:67:7b:74:66:ff:5b:79:6a:be:f3:96: 98:10:53:6e:7c:2f:df:5e:f6:3f:1a:f2:af:eb:86:89:0d:11: ec:f8:75:30:df:fd:3a:a8:75:77:e5:e9:73:52:ba:cc:11:e9: e0:1e:09:83:83:07:15:e5:b4:1b:8a:70:01:5e:b0:bc:8f:ac: dd:6d:05:e7:a4:97:24:ba:6c:8f:95:69:78:30:b4:0b:21:38: da:60:1e:b7:68:c3:e9:58:ea:1b:f4:93:92:1f:0f:93:86:43: 95:18:b6:f7:e3:01:95:19:77:80:cf:4a:58:ec:0c:04:d1:a0: 73:d1:52:4d:d8:27:76:6c:0e:10:5a:d5:3d:f0:70:c4:28:59: b6:50:b6:ab:4d:22:b2:e3:7c:03:b2:3c:2c:30:57:16:32:9a: d8:22:fd:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyODcxMTAvBgNVBAUTKEQ4QjFFMjM4OUJBNTkxRkQ3OUI5QTUwNEFGNUE0NERB RTBBNkU4MjgwHhcNMjUwNDI3MDYxMDMyWhcNMjUwNTA0MDYxMDMyWjAYMRYwFAYD VQQDEw02ODBkY2E1OC1jZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Bj/e9hCIK6odImwKK5nAix0zIPGTNBEo/Vw1Q6gfF9FBs70R2H4cLAVI57H 9353mQdV0W1hTfVBqPTLnj1lNgJiPEj9W87cuwfBtFhb3wGNYBPRkGdgmZKzAuy9 oE9ykU98bUSiPGaF4XxVWDYBGetNaXEOdDvf1S+IYo8VP+CzSZDt28oWxaxJKfab OlbW7S51tiGPEdFZRtgtQwtuCVHA6kvecCdq2ix93n1gS7iVcKkmUPbpCrm/4jwP PUYfIyZMREKy/2bSXi+JbqtEYOQbIjyYw6JJMhN5r+eipnwRrM3tYpdC3jHCSQrW ZVxorQLuFR2vocFsDiLIbgH89QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4DUo0l TY5pdV2cVeuer8eXC02sMB8GA1UdIwQYMBaAFNix4jibpZH9ebmlBK9aRNrgpugo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI4Ny8zMDdDRkYxRUIz NzcxMUVGQjkxODREN0FDNEY5QUUwMi8yTEhpT0p1bGtmMTV1YVVFcjFwRTJ1Q202 Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJMSGlPSnVsa2YxNXVhVUVyMXBFMnVDbTZDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI4Ny8zMDdDRkYxRUIzNzcxMUVGQjkxODREN0FDNEY5QUUwMi8yTEhpT0p1bGtm MTV1YVVFcjFwRTJ1Q202Q2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzWz/29U6uiOm1t/DG7QIu8uyhx3dT/F3XurA6b8HjZ+PCxIP2IYHk aSrGlzmcBrjUhK4VaYaqyxKge5HXasDhHYZs7uWHziPXvjQTCZTfJLJX3Ot6l80l M6C2LHySkPl4Z3t0Zv9beWq+85aYEFNufC/fXvY/GvKv64aJDRHs+HUw3/06qHV3 5elzUrrMEengHgmDgwcV5bQbinABXrC8j6zdbQXnpJckumyPlWl4MLQLITjaYB63 aMPpWOob9JOSHw+ThkOVGLb34wGVGXeAz0pY7AwE0aBz0VJN2Cd2bA4QWtU98HDE KFm2ULarTSKy43wDsjwsMFcWMprYIv3T -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:51 2025 by rpki-client on console.sobornost.net