$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.mft File: j6aYZRx6wk24J9I50PyLLI2jZrg.mft (raw, json) Hash identifier: naqd57a7zQlUwwmYInxBmbSNkSojSkBpepXq8fzOo1g= Subject key identifier: 2E:80:F8:D6:C7:EC:12:9D:41:77:B1:45:61:71:2B:81:28:AA:5F:6F Authority key identifier: 8F:A6:98:65:1C:7A:C2:4D:B8:27:D2:39:D0:FC:8B:2C:8D:A3:66:B8 Certificate issuer: /CN=A918C3B7/serialNumber=8FA698651C7AC24DB827D239D0FC8B2C8DA366B8 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6aYZRx6wk24J9I50PyLLI2jZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.mft Manifest number: 0105 Signing time: Sun 27 Apr 2025 03:56:47 +0000 Manifest this update: Sun 27 Apr 2025 03:56:47 +0000 Manifest next update: Sun 04 May 2025 03:56:47 +0000 Files and hashes: 1: j6aYZRx6wk24J9I50PyLLI2jZrg.crl (hash: BH6wlyoklonalB0C85hLFb0nBDeU8sFmUvKPR11tB5I=) 2: 756EDE70611611EF83B51C41C4F9AE02.roa (hash: 0voBvvYJ1FOla9h6paRdef89XemcSYIiMH4ggu9oHRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.crl rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6aYZRx6wk24J9I50PyLLI2jZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=8FA698651C7AC24DB827D239D0FC8B2C8DA366B8 Validity Not Before: Apr 27 03:56:47 2025 GMT Not After : May 4 03:56:47 2025 GMT Subject: CN=680daaff-d798 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:73:63:27:1b:4a:12:69:76:1b:44:eb:ae:f5: 1d:b8:f3:4b:ee:4d:27:cf:49:a9:46:4e:32:1d:73: 7b:3c:29:98:d8:91:67:62:b3:26:46:45:41:5d:d7: 51:72:ef:f9:3a:69:22:e6:9f:f9:92:d8:85:05:bb: 44:71:a6:27:5c:df:92:80:7f:eb:31:e6:4c:43:cf: d9:3d:4c:b6:83:30:c8:80:12:8d:29:ca:b9:84:38: 1b:b1:ed:2a:a5:43:02:ca:00:09:30:c8:60:18:72: ed:75:78:8b:7e:74:cd:bb:d7:39:1a:f2:c6:f9:15: e8:e2:01:cd:65:3a:25:9e:d2:40:62:8b:c0:fb:48: c4:42:55:6a:7e:1a:17:94:5e:af:7a:68:e5:e5:ab: 88:0f:72:09:94:ee:50:20:71:f0:c8:29:fc:78:9d: 84:96:b5:1d:a5:1a:3a:a5:b6:83:01:45:22:a3:11: 7a:ec:a4:ee:9d:84:b6:82:14:88:d8:51:82:45:13: 88:40:c4:05:bb:88:54:02:48:85:40:c7:05:41:4f: e3:e3:af:d2:5b:23:a6:98:52:1c:1e:f4:e8:c6:7d: 31:87:26:2e:13:38:7f:9d:56:23:d3:f8:50:54:35: 84:7c:79:79:d4:43:9b:cd:e6:be:12:eb:03:45:42: 35:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:80:F8:D6:C7:EC:12:9D:41:77:B1:45:61:71:2B:81:28:AA:5F:6F X509v3 Authority Key Identifier: keyid:8F:A6:98:65:1C:7A:C2:4D:B8:27:D2:39:D0:FC:8B:2C:8D:A3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6aYZRx6wk24J9I50PyLLI2jZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/1E6777AA932511EEBE987F60C4F9AE02/j6aYZRx6wk24J9I50PyLLI2jZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:8a:ac:ea:8e:44:45:e3:0e:69:16:29:13:82:17:7e:11:b8: 50:cf:a3:ae:18:86:65:6e:86:35:80:f6:c8:6d:d5:2b:be:ec: 31:09:b5:08:72:f0:86:50:2b:31:73:02:27:57:c9:04:7c:f8: 1f:62:b0:20:cc:8a:ef:e8:aa:ab:a6:6a:01:f0:cc:8d:f3:b4: ad:c7:3e:00:4c:75:9c:e8:62:5a:67:e9:4d:6f:ca:d1:4a:47: 26:75:d0:cc:5a:c4:1f:20:b0:01:55:1d:3a:49:20:a3:5c:51: f4:d3:fa:9e:fb:a4:05:d9:1d:1c:c9:c9:73:12:d8:35:e9:e7: b7:76:2e:db:6c:60:23:b0:d6:7f:28:33:f3:72:2a:98:61:65: a9:7b:e2:20:74:e0:9c:ba:98:cd:3b:1c:1e:f7:97:b9:88:3e: a1:5f:73:45:be:a6:2a:3f:61:28:74:d2:e0:c3:62:c7:7a:47: 68:23:09:c7:d0:25:ce:dc:22:94:c7:55:74:dd:92:97:7d:a6: 29:60:f3:65:3b:10:55:0c:12:d4:f9:b4:ea:f4:fb:cd:6c:87: 07:93:c0:89:9f:5c:36:1a:e5:ad:8f:35:90:22:ce:97:4d:d8: c4:88:59:ae:9b:f7:05:89:1d:a2:49:68:9b:3f:97:f3:dd:6f: 61:0b:87:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDhGQTY5ODY1MUM3QUMyNERCODI3RDIzOUQwRkM4QjJD OERBMzY2QjgwHhcNMjUwNDI3MDM1NjQ3WhcNMjUwNTA0MDM1NjQ3WjAYMRYwFAYD VQQDEw02ODBkYWFmZi1kNzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3NjJxtKEml2G0TrrvUduPNL7k0nz0mpRk4yHXN7PCmY2JFnYrMmRkVBXddR cu/5Omki5p/5ktiFBbtEcaYnXN+SgH/rMeZMQ8/ZPUy2gzDIgBKNKcq5hDgbse0q pUMCygAJMMhgGHLtdXiLfnTNu9c5GvLG+RXo4gHNZTolntJAYovA+0jEQlVqfhoX lF6vemjl5auID3IJlO5QIHHwyCn8eJ2ElrUdpRo6pbaDAUUioxF67KTunYS2ghSI 2FGCRROIQMQFu4hUAkiFQMcFQU/j46/SWyOmmFIcHvToxn0xhyYuEzh/nVYj0/hQ VDWEfHl51EObzea+EusDRUI1EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6A+NbH 7BKdQXexRWFxK4Eoql9vMB8GA1UdIwQYMBaAFI+mmGUcesJNuCfSOdD8iyyNo2a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xRTY3NzdBQTkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9qNmFZWlJ4NndrMjRKOUk1MFB5TExJMmpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o2YVlaUng2d2syNEo5STUwUHlMTEkyalpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xRTY3NzdBQTkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9qNmFZWlJ4Nndr MjRKOUk1MFB5TExJMmpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2iqzqjkRF4w5pFikTghd+EbhQz6OuGIZlboY1gPbIbdUrvuwxCbUI cvCGUCsxcwInV8kEfPgfYrAgzIrv6KqrpmoB8MyN87Stxz4ATHWc6GJaZ+lNb8rR SkcmddDMWsQfILABVR06SSCjXFH00/qe+6QF2R0cyclzEtg16ee3di7bbGAjsNZ/ KDPzciqYYWWpe+IgdOCcupjNOxwe95e5iD6hX3NFvqYqP2EodNLgw2LHekdoIwnH 0CXO3CKUx1V03ZKXfaYpYPNlOxBVDBLU+bTq9PvNbIcHk8CJn1w2GuWtjzWQIs6X TdjEiFmum/cFiR2iSWibP5fz3W9hC4c8 -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:13 2025 by rpki-client on console.sobornost.net