$ rpki-client -vvf rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.mft File: tSxU1GporezDfV9vJyKMbepz6Fw.mft (raw, json) Hash identifier: G0lA0gmQat3wlOqcY/tyw/uJUzMzKn0TjoGTlkFSJlo= Subject key identifier: 65:D4:B9:17:65:6B:B5:9C:26:FC:C3:A2:F6:84:A6:32:8F:C2:DE:EF Authority key identifier: B5:2C:54:D4:6A:68:AD:EC:C3:7D:5F:6F:27:22:8C:6D:EA:73:E8:5C Certificate issuer: /CN=A918E79C/serialNumber=B52C54D46A68ADECC37D5F6F27228C6DEA73E85C Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.mft Manifest number: E8 Signing time: Sun 27 Apr 2025 04:17:51 +0000 Manifest this update: Sun 27 Apr 2025 04:17:51 +0000 Manifest next update: Sun 04 May 2025 04:17:51 +0000 Files and hashes: 1: tSxU1GporezDfV9vJyKMbepz6Fw.crl (hash: FuB7E7f8gmboVmzvpEqwg8PP3XlcNYg0TO9z59WSOI0=) 2: 28C6AB84C0E411EEAFFB100BC4F9AE02.roa (hash: V4rJ9+KQ3AK8oq6Dx/jnK6Kq8OonvPFz54Mtrt4dysM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.crl rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E79C, serialNumber=B52C54D46A68ADECC37D5F6F27228C6DEA73E85C Validity Not Before: Apr 27 04:17:51 2025 GMT Not After : May 4 04:17:51 2025 GMT Subject: CN=680dafef-0152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:59:52:08:f3:79:9d:3b:3b:5a:b8:28:be:14: cf:11:6c:74:48:78:61:47:75:a4:45:3e:dc:a0:81: fe:ee:10:0e:a3:7e:39:cc:7c:76:00:87:cf:a7:34: b9:d7:77:4b:68:0c:cf:38:86:0c:a8:d2:8d:0a:d6: 96:c9:63:d3:c6:cc:9e:fd:9b:6c:6d:b4:b0:9b:35: 9b:40:4a:fb:d6:56:a4:73:2b:90:3e:b0:f8:1d:bc: e6:cf:34:21:09:8c:1d:18:0d:bd:40:c5:60:46:4a: f7:ec:b0:16:60:e2:ce:b8:b0:76:0c:ae:e3:5f:34: 9b:b3:77:e6:27:07:9c:bf:da:7a:a4:8e:5a:7d:c4: ad:82:78:38:a7:e5:8f:b4:81:ba:82:e5:de:90:53: 70:87:cd:f8:e2:99:a1:a5:65:10:a2:82:74:22:c4: 4d:64:17:ce:b4:4d:04:54:5e:15:bf:51:78:74:c7: da:07:ef:bd:6d:0c:a7:53:82:8a:57:bf:8d:f0:04: 1e:6c:f3:aa:58:d0:3e:24:ab:c5:0e:8b:1a:c7:15: 75:73:61:0d:a4:b6:77:8e:43:fc:46:21:65:a0:c8: 2b:85:6e:d5:d6:7e:de:ae:d1:e0:1e:cf:e1:3d:67: 1e:80:da:5b:fb:f0:9f:56:7b:42:1f:7b:7b:6e:b0: 91:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D4:B9:17:65:6B:B5:9C:26:FC:C3:A2:F6:84:A6:32:8F:C2:DE:EF X509v3 Authority Key Identifier: keyid:B5:2C:54:D4:6A:68:AD:EC:C3:7D:5F:6F:27:22:8C:6D:EA:73:E8:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tSxU1GporezDfV9vJyKMbepz6Fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E79C/58A8118EC0E011EE90009209C4F9AE02/tSxU1GporezDfV9vJyKMbepz6Fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:11:91:78:6c:22:d2:25:97:1b:5b:23:15:2f:d7:9e:5e:37: 30:b4:70:a4:10:37:bf:f5:d1:4a:b0:0d:0d:41:ab:6d:c9:4f: 52:d3:34:09:7e:8d:3b:62:ea:dc:22:53:24:c8:4c:ef:57:39: 3e:73:c0:a3:81:d6:41:3a:3c:e2:cd:23:5f:0a:a5:64:39:aa: 67:6a:ef:30:cf:94:2d:e5:1b:b3:35:fc:7a:be:42:55:b5:db: 78:e3:33:3a:d2:14:88:60:a2:45:1f:ce:57:fd:b8:2b:6e:96: b9:0e:a5:a6:69:a0:6a:13:38:c9:40:2f:2b:b3:70:cd:36:47: f4:29:27:0c:91:26:e9:1c:55:fe:17:e9:0e:11:cf:57:fe:6b: 5d:d5:c9:84:26:9b:1b:68:dd:71:83:84:c7:96:ee:20:2c:8a: c8:01:51:48:aa:21:c0:da:dc:16:05:fa:11:00:18:5c:8a:18: 14:c5:d1:e1:06:53:1c:d7:1b:a4:20:6a:12:d6:59:de:0f:46: 87:76:23:2e:48:23:9c:46:8e:b7:f7:1d:52:2d:3e:de:62:ec: 22:73:c4:4d:56:3d:6a:5f:3b:8c:47:ca:2f:26:00:92:31:f5: 8d:0f:24:66:e7:96:37:5f:c2:ef:cc:22:dc:fc:9e:4e:33:f1: ce:15:ab:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3OUMxMTAvBgNVBAUTKEI1MkM1NEQ0NkE2OEFERUNDMzdENUY2RjI3MjI4QzZE RUE3M0U4NUMwHhcNMjUwNDI3MDQxNzUxWhcNMjUwNTA0MDQxNzUxWjAYMRYwFAYD VQQDEw02ODBkYWZlZi0wMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVlSCPN5nTs7WrgovhTPEWx0SHhhR3WkRT7coIH+7hAOo345zHx2AIfPpzS5 13dLaAzPOIYMqNKNCtaWyWPTxsye/ZtsbbSwmzWbQEr71lakcyuQPrD4HbzmzzQh CYwdGA29QMVgRkr37LAWYOLOuLB2DK7jXzSbs3fmJwecv9p6pI5afcStgng4p+WP tIG6guXekFNwh8344pmhpWUQooJ0IsRNZBfOtE0EVF4Vv1F4dMfaB++9bQynU4KK V7+N8AQebPOqWNA+JKvFDosaxxV1c2ENpLZ3jkP8RiFloMgrhW7V1n7ertHgHs/h PWcegNpb+/CfVntCH3t7brCR3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGXUuRdl a7WcJvzDovaEpjKPwt7vMB8GA1UdIwQYMBaAFLUsVNRqaK3sw31fbycijG3qc+hc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc5Qy81OEE4MTE4RUMw RTAxMUVFOTAwMDkyMDlDNEY5QUUwMi90U3hVMUdwb3JlekRmVjl2SnlLTWJlcHo2 RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RTeFUxR3BvcmV6RGZWOXZKeUtNYmVwejZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTc5Qy81OEE4MTE4RUMwRTAxMUVFOTAwMDkyMDlDNEY5QUUwMi90U3hVMUdwb3Jl ekRmVjl2SnlLTWJlcHo2RncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZEZF4bCLSJZcbWyMVL9eeXjcwtHCkEDe/9dFKsA0NQattyU9S0zQJ fo07YurcIlMkyEzvVzk+c8CjgdZBOjzizSNfCqVkOapnau8wz5Qt5RuzNfx6vkJV tdt44zM60hSIYKJFH85X/bgrbpa5DqWmaaBqEzjJQC8rs3DNNkf0KScMkSbpHFX+ F+kOEc9X/mtd1cmEJpsbaN1xg4THlu4gLIrIAVFIqiHA2twWBfoRABhcihgUxdHh BlMc1xukIGoS1lneD0aHdiMuSCOcRo639x1SLT7eYuwic8RNVj1qXzuMR8ovJgCS MfWNDyRm55Y3X8LvzCLc/J5OM/HOFavj -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:51 2025 by rpki-client on console.sobornost.net