$ rpki-client -vvf rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.mft File: 7knhDcoGuBY3lASCqMSKzvukTT8.mft (raw, json) Hash identifier: r2Wx68leVZcpfQrXZ0zsUbstaD5q18toZDLSAAutVZ8= Subject key identifier: 56:E5:A2:69:9B:B8:39:44:81:74:B1:D0:58:BC:E6:38:45:8B:F7:04 Authority key identifier: EE:49:E1:0D:CA:06:B8:16:37:94:04:82:A8:C4:8A:CE:FB:A4:4D:3F Certificate issuer: /CN=A918E76B/serialNumber=EE49E10DCA06B81637940482A8C48ACEFBA44D3F Certificate serial: 0958 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7knhDcoGuBY3lASCqMSKzvukTT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.mft Manifest number: 0952 Signing time: Mon 28 Apr 2025 20:38:59 +0000 Manifest this update: Mon 28 Apr 2025 20:38:58 +0000 Manifest next update: Mon 05 May 2025 20:38:58 +0000 Files and hashes: 1: 7knhDcoGuBY3lASCqMSKzvukTT8.crl (hash: V1LEyoEd5BsYZkHIrfPC7rShozsseVxRiZwRpR1UfEI=) 2: DD726152945311EAB9A9B971C4F9AE02.roa (hash: eARvkLPx4cJh+IeHG0XdxEw7zw/djQ5xDufaDbeB8VU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.crl rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7knhDcoGuBY3lASCqMSKzvukTT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2392 (0x958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E76B, serialNumber=EE49E10DCA06B81637940482A8C48ACEFBA44D3F Validity Not Before: Apr 28 20:38:58 2025 GMT Not After : May 5 20:38:58 2025 GMT Subject: CN=680fe762-3717 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:90:47:f5:31:76:37:af:93:0c:75:8e:d2:0e: 39:6f:88:3c:2a:2e:e7:c1:ba:97:af:11:94:cf:89: 32:b5:e5:bb:b2:95:13:89:d2:bf:a1:bd:76:7a:95: fe:b6:d8:6f:b8:89:e1:67:20:99:59:c6:4c:c7:55: 7b:7e:2b:af:35:34:79:9b:27:60:9b:a3:6f:c8:df: 64:07:9a:7b:93:d9:75:b2:f5:6a:fa:c9:3e:e7:05: bf:68:a4:d3:5d:ef:2c:f8:24:77:92:e1:32:2e:56: 68:ef:e1:ea:d4:c8:d7:ad:5e:e1:eb:06:73:a0:81: 1f:26:a9:b5:c8:44:6c:99:39:16:df:eb:ff:4a:d8: 43:03:be:4c:a6:ce:6c:93:3c:b3:de:27:84:09:38: 8d:88:26:a6:cc:7d:d1:09:a1:92:ef:e5:3b:dd:3b: ae:8d:28:17:0c:7b:d2:0c:2c:73:e2:47:8d:5b:a0: c9:16:e0:e2:11:b2:67:a7:84:29:6f:57:93:31:09: f7:c4:da:5d:78:e0:0c:55:ba:0c:f4:63:c7:5c:5e: 95:6e:34:7f:2f:bc:6e:8a:3e:19:5c:f4:38:2a:b4: 03:e6:4b:04:aa:80:fc:86:a9:2b:61:88:ba:82:18: 25:6c:67:e2:c3:5d:2c:a2:f1:97:c1:17:22:30:b1: 31:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E5:A2:69:9B:B8:39:44:81:74:B1:D0:58:BC:E6:38:45:8B:F7:04 X509v3 Authority Key Identifier: keyid:EE:49:E1:0D:CA:06:B8:16:37:94:04:82:A8:C4:8A:CE:FB:A4:4D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7knhDcoGuBY3lASCqMSKzvukTT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:0d:93:c1:ed:79:da:1a:cd:e7:cb:de:26:ff:f1:94:20:e6: 0f:0b:6b:72:d9:15:21:1c:a6:7e:5c:b4:53:9d:27:c8:a4:40: c0:28:6b:2a:25:42:41:7c:e7:ec:06:18:a5:cb:85:5b:50:51: 1f:54:3b:6a:f4:82:32:99:65:ef:e1:1c:18:da:e8:b6:22:0d: 2d:dd:24:58:2e:17:51:b5:15:65:64:d9:e8:0f:f8:11:4d:9c: 22:22:71:f0:9e:ea:cb:73:b1:7d:77:7f:ca:53:44:3b:c9:53: ed:6e:56:0d:98:c3:a8:a3:12:70:78:10:e0:ef:04:c9:79:3f: a8:f4:88:88:4c:aa:c0:f1:68:21:8d:7a:e4:bc:7d:16:b3:ee: 2c:27:0f:fa:78:5e:4a:c6:20:3c:e3:71:76:10:5a:7e:f1:e3: b7:c2:0a:88:f1:2a:fe:12:b4:e9:11:be:8b:7f:02:77:9b:d5: b1:bd:29:53:3f:53:e8:87:6d:75:70:0b:c7:3f:9f:94:e8:ee: 8c:28:40:14:bd:72:7a:45:10:06:e3:0b:e5:b6:ca:d1:f7:ac: 8b:72:d1:9b:99:7b:ee:8c:e8:f6:81:e2:e7:48:b1:5d:de:1d: 8d:77:d2:3f:88:73:22:34:80:77:5c:64:5c:1d:80:f1:ca:21: a7:bd:90:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3NkIxMTAvBgNVBAUTKEVFNDlFMTBEQ0EwNkI4MTYzNzk0MDQ4MkE4QzQ4QUNF RkJBNDREM0YwHhcNMjUwNDI4MjAzODU4WhcNMjUwNTA1MjAzODU4WjAYMRYwFAYD VQQDEw02ODBmZTc2Mi0zNzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJBH9TF2N6+TDHWO0g45b4g8Ki7nwbqXrxGUz4kyteW7spUTidK/ob12epX+ tthvuInhZyCZWcZMx1V7fiuvNTR5mydgm6NvyN9kB5p7k9l1svVq+sk+5wW/aKTT Xe8s+CR3kuEyLlZo7+Hq1MjXrV7h6wZzoIEfJqm1yERsmTkW3+v/SthDA75Mps5s kzyz3ieECTiNiCamzH3RCaGS7+U73TuujSgXDHvSDCxz4keNW6DJFuDiEbJnp4Qp b1eTMQn3xNpdeOAMVboM9GPHXF6VbjR/L7xuij4ZXPQ4KrQD5ksEqoD8hqkrYYi6 ghglbGfiw10sovGXwRciMLExoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFblommb uDlEgXSx0Fi85jhFi/cEMB8GA1UdIwQYMBaAFO5J4Q3KBrgWN5QEgqjEis77pE0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc2Qi9CRjE4MzIzMjk0 NTIxMUVBODA2RTY5NzBDNEY5QUUwMi83a25oRGNvR3VCWTNsQVNDcU1TS3p2dWtU VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrbmhEY29HdUJZM2xBU0NxTVNLenZ1a1RUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTc2Qi9CRjE4MzIzMjk0NTIxMUVBODA2RTY5NzBDNEY5QUUwMi83a25oRGNvR3VC WTNsQVNDcU1TS3p2dWtUVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnDZPB7XnaGs3ny94m//GUIOYPC2ty2RUhHKZ+XLRTnSfIpEDAKGsq JUJBfOfsBhily4VbUFEfVDtq9IIymWXv4RwY2ui2Ig0t3SRYLhdRtRVlZNnoD/gR TZwiInHwnurLc7F9d3/KU0Q7yVPtblYNmMOooxJweBDg7wTJeT+o9IiITKrA8Wgh jXrkvH0Ws+4sJw/6eF5KxiA843F2EFp+8eO3wgqI8Sr+ErTpEb6LfwJ3m9WxvSlT P1Poh211cAvHP5+U6O6MKEAUvXJ6RRAG4wvltsrR96yLctGbmXvujOj2geLnSLFd 3h2Nd9I/iHMiNIB3XGRcHYDxyiGnvZC4 -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:39 2025 by rpki-client on console.sobornost.net