$ rpki-client -vvf rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft File: IjvhmJLm5stAbl-plW3bzqlcu0Y.mft (raw, json) Hash identifier: GS0IMKU1a311AbJwmvTcvg06r4HAJWdmvX70L3NjRWk= Subject key identifier: 85:38:66:63:86:B2:E4:F7:A9:CA:8D:A6:37:FC:4C:C5:15:9A:7E:8A Authority key identifier: 22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 Certificate issuer: /CN=A918E6B7/serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Certificate serial: 1007 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft Manifest number: 0FFD Signing time: Mon 28 Apr 2025 17:40:51 +0000 Manifest this update: Mon 28 Apr 2025 17:40:51 +0000 Manifest next update: Mon 05 May 2025 17:40:51 +0000 Files and hashes: 1: IjvhmJLm5stAbl-plW3bzqlcu0Y.crl (hash: WrRRo4xyiSFSnSv3lFQWGAFx+qBJdQDaxrLo0SGS9Ws=) 2: 42CBE6BE29F111EEAECAED6FC4F9AE02.roa (hash: Mc3Q9wmukgUIJT3q9J5EygK6/IHcoyR/RZQ0Eut8nLU=) 3: 608836D046B111E98B793856C4F9AE02.roa (hash: rltN2xhTkn/8LBf4ssPkcwToahSO3m8NAPpsxdmLbos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E6B7, serialNumber=223BE19892E6E6CB406E5FA9956DDBCEA95CBB46 Validity Not Before: Apr 28 17:40:51 2025 GMT Not After : May 5 17:40:51 2025 GMT Subject: CN=680fbda3-3e87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ee:41:83:fa:3d:95:a0:8b:12:bf:d8:17:af: 77:b8:c4:03:ab:3d:68:7b:fb:a0:4c:53:27:2e:63: 35:47:4d:3c:42:04:66:44:a2:ea:4b:05:3c:e1:a4: c6:93:d0:e4:4c:e6:fd:44:33:70:02:6a:e0:72:5e: c6:f2:4d:44:49:df:88:cb:58:7c:c3:5f:b5:06:ed: 06:62:c2:8b:d6:2c:c1:84:2b:e6:ed:38:c0:1e:f6: 76:98:82:8a:25:50:fa:c2:65:ce:d8:6a:54:57:b2: ed:78:89:04:70:04:1d:47:7b:8e:58:35:3c:91:5a: d2:ab:19:7e:32:d7:f9:94:cf:b2:9c:60:d0:44:e3: d6:4a:48:be:4b:d0:ce:e7:4c:61:d4:c7:23:5c:6e: ca:8e:8a:eb:cd:fb:6f:5e:d8:0f:0d:d5:e0:c2:56: 41:d4:97:36:7e:2f:ed:7d:e0:ef:0d:dd:05:96:48: 1d:e0:87:81:e7:16:e6:09:87:48:b5:3e:c6:20:4f: d1:c2:16:da:38:77:e7:ed:14:69:a6:ec:3d:b4:13: 1d:f4:5f:0d:99:90:c2:61:00:03:92:bb:74:33:df: f9:24:0b:06:0f:04:82:af:0e:0c:ca:29:dc:6a:0a: 44:6d:3b:39:b3:32:06:3e:a1:34:28:ee:3e:20:ed: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:38:66:63:86:B2:E4:F7:A9:CA:8D:A6:37:FC:4C:C5:15:9A:7E:8A X509v3 Authority Key Identifier: keyid:22:3B:E1:98:92:E6:E6:CB:40:6E:5F:A9:95:6D:DB:CE:A9:5C:BB:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IjvhmJLm5stAbl-plW3bzqlcu0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E6B7/B6A9F26046AC11E996088348C4F9AE02/IjvhmJLm5stAbl-plW3bzqlcu0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:34:ce:86:61:90:56:ad:e9:2f:7c:5e:43:df:4f:6b:bf:ac: 69:1c:d2:d4:0f:38:90:62:7f:96:3f:25:a2:65:7b:c7:5c:cf: 23:09:1a:2d:92:a8:82:1d:a2:3c:60:7c:a9:10:1b:23:8f:a7: d1:66:a7:a2:71:0c:6a:9b:8d:98:50:11:4d:87:fc:14:27:fc: c8:be:d5:12:eb:90:70:92:bd:ad:30:a1:6f:d5:37:ec:e5:d3: ae:e6:f6:57:03:0a:5d:2c:a8:b8:00:e1:03:af:76:7c:99:2d: 06:71:ec:57:03:c6:d3:88:97:3e:aa:b0:88:f2:69:0a:c3:2f: b3:a0:03:53:c4:54:f2:91:c2:53:25:b0:af:31:13:73:1d:85: 40:2c:4b:4e:91:f8:25:da:47:69:40:a5:e7:44:51:86:f4:3b: 19:e5:37:f9:98:de:8e:bf:88:e3:9e:c4:80:be:c7:be:39:89: 8d:ea:56:2e:99:8c:6f:15:1e:0f:76:7a:1a:99:14:56:72:77: a4:76:5b:89:7e:72:bb:52:89:58:3c:6b:ea:16:eb:59:3c:4e: c1:5b:f7:a1:eb:73:f7:5c:33:b7:39:19:86:0c:ba:12:5b:4d: 7c:45:dd:af:bb:70:d4:84:4f:63:3b:8b:f2:74:ef:55:a4:70: a4:db:35:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU2QjcxMTAvBgNVBAUTKDIyM0JFMTk4OTJFNkU2Q0I0MDZFNUZBOTk1NkREQkNF QTk1Q0JCNDYwHhcNMjUwNDI4MTc0MDUxWhcNMjUwNTA1MTc0MDUxWjAYMRYwFAYD VQQDEw02ODBmYmRhMy0zZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuu5Bg/o9laCLEr/YF693uMQDqz1oe/ugTFMnLmM1R008QgRmRKLqSwU84aTG k9DkTOb9RDNwAmrgcl7G8k1ESd+Iy1h8w1+1Bu0GYsKL1izBhCvm7TjAHvZ2mIKK JVD6wmXO2GpUV7LteIkEcAQdR3uOWDU8kVrSqxl+Mtf5lM+ynGDQROPWSki+S9DO 50xh1McjXG7KjorrzftvXtgPDdXgwlZB1Jc2fi/tfeDvDd0Flkgd4IeB5xbmCYdI tT7GIE/RwhbaOHfn7RRppuw9tBMd9F8NmZDCYQADkrt0M9/5JAsGDwSCrw4Myinc agpEbTs5szIGPqE0KO4+IO0cJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIU4ZmOG suT3qcqNpjf8TMUVmn6KMB8GA1UdIwQYMBaAFCI74ZiS5ubLQG5fqZVt286pXLtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTZCNy9CNkE5RjI2MDQ2 QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVzdEFibC1wbFczYnpxbGN1 MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lqdmhtSkxtNXN0QWJsLXBsVzNienFsY3UwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTZCNy9CNkE5RjI2MDQ2QUMxMUU5OTYwODgzNDhDNEY5QUUwMi9JanZobUpMbTVz dEFibC1wbFczYnpxbGN1MFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjNM6GYZBWrekvfF5D309rv6xpHNLUDziQYn+WPyWiZXvHXM8jCRot kqiCHaI8YHypEBsjj6fRZqeicQxqm42YUBFNh/wUJ/zIvtUS65Bwkr2tMKFv1Tfs 5dOu5vZXAwpdLKi4AOEDr3Z8mS0GcexXA8bTiJc+qrCI8mkKwy+zoANTxFTykcJT JbCvMRNzHYVALEtOkfgl2kdpQKXnRFGG9DsZ5Tf5mN6Ov4jjnsSAvse+OYmN6lYu mYxvFR4PdnoamRRWcnekdluJfnK7UolYPGvqFutZPE7BW/eh63P3XDO3ORmGDLoS W018Rd2vu3DUhE9jO4vydO9VpHCk2zXI -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:47 2025 by rpki-client on console.sobornost.net