$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: SvQybFRjN/It7FjptvWVPPVkcsZJuRSBCe6lLawWp6E= Subject key identifier: 44:FB:5C:89:3C:C2:26:46:F5:74:4F:C5:01:07:5F:79:39:79:49:42 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0126 Signing time: Sat 26 Apr 2025 19:09:32 +0000 Manifest this update: Sat 26 Apr 2025 19:09:31 +0000 Manifest next update: Sat 03 May 2025 19:09:31 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: Mzec/quP3EDganGzygitsrAnljWZOaS1TqY45vjzWh0=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:09:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Apr 26 19:09:31 2025 GMT Not After : May 3 19:09:31 2025 GMT Subject: CN=680d2f6b-cc50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dc:59:d6:3c:0f:19:0a:90:23:8a:4b:61:d0: 82:f4:f0:a1:a8:f2:74:41:a5:bb:6e:14:5f:7f:7c: 33:17:20:77:8b:f7:d6:e1:4f:3a:d4:1e:ed:10:15: 90:52:cf:5e:21:0f:8f:49:58:ec:ed:cd:58:25:53: f2:8e:bf:ea:b7:75:1e:59:df:87:c6:33:a9:a9:2e: 51:9f:22:fa:0f:74:99:ab:00:1d:66:a6:9b:51:67: 8f:4d:f7:eb:fe:9b:f5:4a:4d:75:35:47:e4:7f:74: 01:7e:55:7e:de:11:ce:f7:d2:5d:64:bb:31:0e:c0: d2:a1:5d:8e:d8:8e:83:3c:ec:1b:b1:22:9e:24:12: 93:04:bc:4b:16:88:15:7c:c1:39:1e:be:8c:db:78: 88:08:35:64:68:05:00:9f:60:cf:ae:e2:cf:3a:3d: e7:0d:3a:fe:17:2b:dc:15:ac:c2:06:74:23:b5:8f: 8d:b5:62:0a:e3:e5:35:cb:3c:3f:16:84:91:57:6c: 31:50:5e:9d:3e:36:43:c7:ad:d5:50:3e:43:dc:73: cb:7e:41:73:88:bd:b3:c2:67:56:c7:9b:69:a3:be: ca:82:f3:9f:9b:27:76:8c:99:39:58:cd:e2:51:7a: 76:6f:9b:26:14:b5:c9:d2:93:f9:fa:ae:c6:ec:0f: f6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FB:5C:89:3C:C2:26:46:F5:74:4F:C5:01:07:5F:79:39:79:49:42 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:61:48:27:6e:c6:8b:af:1a:10:b3:6f:bc:fa:1c:d9:f8:c4: 07:3e:09:ef:85:c7:44:9e:dd:16:26:2d:d3:e9:a7:09:34:9c: a3:08:0e:67:33:de:1f:0c:66:26:6c:5a:ca:27:2d:33:ab:81: 9f:05:a6:50:f5:d7:89:4a:b1:4a:02:89:1f:d2:32:64:ee:20: dd:5b:ae:52:f4:df:6f:46:8f:5d:3a:17:fa:cc:27:63:c6:09: 90:b6:88:96:26:49:72:30:8e:71:a8:47:b4:85:5e:80:77:d9: 5b:d5:16:b9:56:c1:35:f9:8a:f2:73:1a:79:b9:47:db:fd:b2: e1:07:22:87:4f:0e:cd:1d:ef:0b:f4:7a:1b:d8:24:c4:08:00: c8:01:fe:f8:09:0d:9e:bf:d9:ab:e0:be:62:a4:9f:1c:aa:bd: e0:ec:e1:e7:cd:ed:58:28:48:75:4e:cf:5e:35:7c:0e:0a:ee: 5a:77:9c:73:14:38:e1:49:1d:16:d3:d1:8a:22:00:a8:0b:53: 9d:df:70:20:27:60:ad:fd:73:a0:46:31:e4:35:b8:b7:5d:b2: 03:4f:4a:56:a0:e2:f5:b4:37:ec:bd:39:7a:94:65:ac:62:99: 6d:1a:cc:46:d9:14:f0:0e:05:e8:75:70:9e:89:c2:12:38:03: 68:73:42:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwNDI2MTkwOTMxWhcNMjUwNTAzMTkwOTMxWjAYMRYwFAYD VQQDEw02ODBkMmY2Yi1jYzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdxZ1jwPGQqQI4pLYdCC9PChqPJ0QaW7bhRff3wzFyB3i/fW4U861B7tEBWQ Us9eIQ+PSVjs7c1YJVPyjr/qt3UeWd+HxjOpqS5RnyL6D3SZqwAdZqabUWePTffr /pv1Sk11NUfkf3QBflV+3hHO99JdZLsxDsDSoV2O2I6DPOwbsSKeJBKTBLxLFogV fME5Hr6M23iICDVkaAUAn2DPruLPOj3nDTr+FyvcFazCBnQjtY+NtWIK4+U1yzw/ FoSRV2wxUF6dPjZDx63VUD5D3HPLfkFziL2zwmdWx5tpo77KgvOfmyd2jJk5WM3i UXp2b5smFLXJ0pP5+q7G7A/2NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFET7XIk8 wiZG9XRPxQEHX3k5eUlCMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACYUgnbsaLrxoQs2+8+hzZ+MQHPgnvhcdEnt0WJi3T6acJNJyjCA5n M94fDGYmbFrKJy0zq4GfBaZQ9deJSrFKAokf0jJk7iDdW65S9N9vRo9dOhf6zCdj xgmQtoiWJklyMI5xqEe0hV6Ad9lb1Ra5VsE1+Yrycxp5uUfb/bLhByKHTw7NHe8L 9Hob2CTECADIAf74CQ2ev9mr4L5ipJ8cqr3g7OHnze1YKEh1Ts9eNXwOCu5ad5xz FDjhSR0W09GKIgCoC1Od33AgJ2Ct/XOgRjHkNbi3XbIDT0pWoOL1tDfsvTl6lGWs YpltGsxG2RTwDgXodXCeicISOANoc0KJ -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:06 2025 by rpki-client on console.sobornost.net