$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: QwCXEuuBl+fwsqcQxw20NjrvutyeavXEKY9MGpslxxI= Subject key identifier: 6A:97:BD:20:B1:AB:04:3F:A2:93:0A:BB:F3:2A:66:CA:F6:D2:AD:FB Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 011F Signing time: Sat 26 Apr 2025 23:28:58 +0000 Manifest this update: Sat 26 Apr 2025 23:28:58 +0000 Manifest next update: Sat 03 May 2025 23:28:58 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: makcEkmZefpAWqJi31cFN0sgdWdSPgSxQbuGARWQ/Gc=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Apr 26 23:28:58 2025 GMT Not After : May 3 23:28:58 2025 GMT Subject: CN=680d6c3a-6d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:07:41:17:bf:4b:01:20:01:21:6e:58:54: 09:d2:49:90:46:ec:8d:0c:ae:53:74:bb:94:95:d7: 6f:d7:6c:47:5f:55:9e:e2:de:26:33:2a:6d:3b:9a: 16:ce:96:34:1f:ba:63:b5:ac:8e:41:91:0d:f2:64: 8a:f4:7d:c1:54:de:25:d1:7d:b9:0b:e7:82:8f:6c: 9d:61:29:83:20:73:a3:00:a0:dc:49:4b:5a:95:d5: f8:19:44:cc:dd:5a:f4:52:17:05:07:23:13:3b:e2: 40:52:3a:b0:09:81:73:10:24:0b:ab:3e:9b:5c:25: de:ef:33:42:2b:6f:c2:c4:17:f7:f9:0b:86:ca:da: 27:14:45:0d:f7:58:2e:c8:1e:39:3d:d5:a3:b3:da: a1:e9:39:a2:3b:90:02:02:03:8d:a0:d4:28:51:9b: fa:fc:e7:c5:89:e4:f8:a4:3f:03:5e:b6:c4:a7:0c: 95:1d:39:34:0f:38:1b:9a:5b:ca:a4:58:4b:91:cb: a7:23:cc:d7:21:8a:48:aa:c9:e8:30:22:a1:c5:bb: 88:1f:12:a4:4c:92:89:31:27:34:09:1a:52:b4:cb: 99:33:c3:31:71:8b:a8:d6:b2:ca:4c:db:6f:73:ab: e6:30:72:ea:69:9b:f7:71:bb:d0:69:bf:80:d6:ab: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:97:BD:20:B1:AB:04:3F:A2:93:0A:BB:F3:2A:66:CA:F6:D2:AD:FB X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:7f:80:ea:21:71:bc:8f:07:17:33:dd:dc:91:54:c2:fb:2a: e6:aa:5f:4f:ee:99:af:ca:18:1c:b6:f5:d5:ba:2a:6e:bf:02: 7e:bb:8c:87:ae:a1:88:57:fa:17:22:4a:aa:f7:64:d1:e0:76: 7c:d5:a9:5b:a2:89:0b:8b:42:6f:fa:1d:a3:de:71:cc:56:c1: e9:38:4e:68:e3:8d:6e:fd:e5:07:89:3f:5c:aa:23:3e:45:1e: db:d9:32:8a:ac:54:7b:4e:a6:8e:54:7d:09:fb:af:52:d0:8d: c8:48:e5:07:41:1c:0a:02:fb:aa:10:ce:a5:46:e0:47:47:dd: 3b:9a:bc:17:f3:fb:c6:f7:b2:46:51:d5:6f:b0:90:2a:67:32: 5b:45:6d:77:bf:7b:74:7d:03:24:48:9c:9a:77:e5:32:14:de: 97:32:9c:ea:02:ae:c4:46:f8:a6:7d:7d:7e:5f:f4:7b:6d:97: e0:3a:6c:31:5d:a5:53:d5:ca:bc:a8:90:48:6a:f0:ee:db:1b: 5a:cb:ba:76:6c:37:53:df:96:ac:04:cf:d8:94:11:aa:6f:11: 6f:57:00:9a:23:a1:50:8f:0e:c4:d5:25:08:d8:fa:e0:d8:1b: d6:8b:e5:4c:12:38:cc:a8:9a:1d:ac:16:f8:5d:91:c9:99:5e: e6:4f:d5:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwNDI2MjMyODU4WhcNMjUwNTAzMjMyODU4WjAYMRYwFAYD VQQDEw02ODBkNmMzYS02ZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XUHQRe/SwEgASFuWFQJ0kmQRuyNDK5TdLuUlddv12xHX1We4t4mMyptO5oW zpY0H7pjtayOQZEN8mSK9H3BVN4l0X25C+eCj2ydYSmDIHOjAKDcSUtaldX4GUTM 3Vr0UhcFByMTO+JAUjqwCYFzECQLqz6bXCXe7zNCK2/CxBf3+QuGytonFEUN91gu yB45PdWjs9qh6TmiO5ACAgONoNQoUZv6/OfFieT4pD8DXrbEpwyVHTk0DzgbmlvK pFhLkcunI8zXIYpIqsnoMCKhxbuIHxKkTJKJMSc0CRpStMuZM8MxcYuo1rLKTNtv c6vmMHLqaZv3cbvQab+A1quUaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqXvSCx qwQ/opMKu/MqZsr20q37MB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPf4DqIXG8jwcXM93ckVTC+yrmql9P7pmvyhgctvXVuipuvwJ+u4yH rqGIV/oXIkqq92TR4HZ81albookLi0Jv+h2j3nHMVsHpOE5o441u/eUHiT9cqiM+ RR7b2TKKrFR7TqaOVH0J+69S0I3ISOUHQRwKAvuqEM6lRuBHR907mrwX8/vG97JG UdVvsJAqZzJbRW13v3t0fQMkSJyad+UyFN6XMpzqAq7ERvimfX1+X/R7bZfgOmwx XaVT1cq8qJBIavDu2xtay7p2bDdT35asBM/YlBGqbxFvVwCaI6FQjw7E1SUI2Prg 2BvWi+VMEjjMqJodrBb4XZHJmV7mT9XF -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:14 2025 by rpki-client on console.sobornost.net