$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft File: p3fkgYyg3MY4LlYlcG-YyB6TByA.mft (raw, json) Hash identifier: 4sO68e/QSjgh6AsBy1w2FVUsTOEYEfZjMMKRdZ7HGfk= Subject key identifier: 8B:24:A2:67:9A:56:FA:98:21:70:43:A4:9B:EB:DE:E9:B4:30:71:13 Authority key identifier: A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 Certificate issuer: /CN=A918EF94/serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Certificate serial: 0E1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft Manifest number: 0E15 Signing time: Mon 28 Apr 2025 18:02:13 +0000 Manifest this update: Mon 28 Apr 2025 18:02:13 +0000 Manifest next update: Mon 05 May 2025 18:02:13 +0000 Files and hashes: 1: p3fkgYyg3MY4LlYlcG-YyB6TByA.crl (hash: CUXA0zo8M//mo+yyJz746JA7dkuZChy7hSj321HVZBA=) 2: EE78BE36068611EDA1C2070DC4F9AE02.roa (hash: X7Dq3eZ/GJf+9yPNH4D4Wvo3ddILMQm0OljP2i+67DY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3613 (0xe1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A777E4818CA0DCC6382E5625706F98C81E930720 Validity Not Before: Apr 28 18:02:13 2025 GMT Not After : May 5 18:02:13 2025 GMT Subject: CN=680fc2a5-54f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d9:52:b2:b5:b4:4f:05:a4:60:f5:8f:a8:2b: 64:1c:76:59:8d:ef:79:d5:b2:20:3b:4d:72:9c:cc: 1e:7c:0c:fa:fa:e6:ef:ad:c3:b4:e5:10:05:cb:49: b9:22:a2:49:00:e6:be:c3:42:05:9c:9e:4c:b1:35: 03:3a:be:e3:f7:81:b2:f3:1e:1d:a8:2e:a1:c6:dc: 0d:76:be:c1:40:bc:0c:65:4a:58:ec:31:00:7d:64: 40:a4:de:62:0b:6b:50:a2:79:b3:f7:d0:b1:13:f9: 16:19:d7:a6:d8:92:fe:4a:4c:6c:08:b7:60:6b:7f: 3d:f2:d6:7f:62:ae:8b:4b:90:7d:50:6e:df:56:b2: ed:01:5e:b4:c3:b9:da:50:36:f4:c8:74:5e:9c:fc: bd:34:55:2b:ec:60:f7:3b:fd:ab:e6:c3:ee:10:32: f5:d2:f9:73:14:5b:10:b8:71:97:d3:cc:94:32:3e: 82:04:e3:f6:26:a4:c8:60:8a:ab:2c:cf:24:82:3f: 6c:ec:c1:b3:69:aa:33:f1:94:0b:1f:1e:ec:30:74: 48:0d:4a:a3:e0:4f:5b:aa:b0:53:3b:4f:59:14:45: 24:e2:d9:15:d7:59:66:c5:99:a1:42:e7:a7:e8:06: c0:5e:20:fc:4e:2c:0e:be:29:24:ca:db:87:d3:90: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:24:A2:67:9A:56:FA:98:21:70:43:A4:9B:EB:DE:E9:B4:30:71:13 X509v3 Authority Key Identifier: keyid:A7:77:E4:81:8C:A0:DC:C6:38:2E:56:25:70:6F:98:C8:1E:93:07:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p3fkgYyg3MY4LlYlcG-YyB6TByA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5B24A5C8A6C111E98C379E0FC4F9AE02/p3fkgYyg3MY4LlYlcG-YyB6TByA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:17:d6:ea:74:76:26:6b:6f:ba:51:66:53:c7:15:ee:2d:72: 16:80:84:62:f4:8a:9e:bb:63:91:ed:96:19:ba:01:34:d7:5c: 44:4a:44:1c:9c:91:10:6d:ae:e2:7f:06:43:96:e3:5f:08:11: 2a:59:c9:42:e3:e5:52:2c:b1:82:99:ea:5c:92:a2:4e:8a:40: 0d:2f:c6:dc:3e:99:68:5a:87:71:3c:29:87:fd:7a:7c:31:9d: 84:23:19:df:89:17:12:75:58:5a:37:b2:9e:7f:a0:21:06:e8: d3:f2:e0:61:06:f9:97:e7:59:93:5c:4d:6c:95:ce:06:da:76: 92:9d:e4:75:61:97:0f:d9:32:c8:95:fe:8f:bd:d0:49:07:c9: 58:2a:a2:e1:cf:40:1b:8d:94:c5:49:5b:12:34:82:b6:a0:d7: ab:cb:d6:26:b3:88:a6:8b:d1:21:52:f4:cd:83:1b:65:c3:fb: c8:54:8c:38:98:3f:55:da:cc:d8:ff:b9:7f:00:97:c7:c3:21: a4:da:97:98:ca:e4:1a:e1:d6:79:66:c2:20:c3:ba:0b:65:47: 0e:aa:65:fc:71:7d:30:fe:94:fa:1e:be:1d:a4:41:c0:67:f2: 2b:27:3d:9f:72:1c:1c:c4:a8:12:16:fa:21:06:70:9c:81:b6: a1:57:55:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEE3NzdFNDgxOENBMERDQzYzODJFNTYyNTcwNkY5OEM4 MUU5MzA3MjAwHhcNMjUwNDI4MTgwMjEzWhcNMjUwNTA1MTgwMjEzWjAYMRYwFAYD VQQDEw02ODBmYzJhNS01NGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNlSsrW0TwWkYPWPqCtkHHZZje951bIgO01ynMwefAz6+ubvrcO05RAFy0m5 IqJJAOa+w0IFnJ5MsTUDOr7j94Gy8x4dqC6hxtwNdr7BQLwMZUpY7DEAfWRApN5i C2tQonmz99CxE/kWGdem2JL+SkxsCLdga3898tZ/Yq6LS5B9UG7fVrLtAV60w7na UDb0yHRenPy9NFUr7GD3O/2r5sPuEDL10vlzFFsQuHGX08yUMj6CBOP2JqTIYIqr LM8kgj9s7MGzaaoz8ZQLHx7sMHRIDUqj4E9bqrBTO09ZFEUk4tkV11lmxZmhQuen 6AbAXiD8TiwOvikkytuH05DctwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIskomea VvqYIXBDpJvr3um0MHETMB8GA1UdIwQYMBaAFKd35IGMoNzGOC5WJXBvmMgekwcg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81QjI0QTVDOEE2 QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNNWTRMbFlsY0ctWXlCNlRC eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AzZmtnWXlnM01ZNExsWWxjRy1ZeUI2VEJ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81QjI0QTVDOEE2QzExMUU5OEMzNzlFMEZDNEY5QUUwMi9wM2ZrZ1l5ZzNN WTRMbFlsY0ctWXlCNlRCeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEF9bqdHYma2+6UWZTxxXuLXIWgIRi9Iqeu2OR7ZYZugE011xESkQc nJEQba7ifwZDluNfCBEqWclC4+VSLLGCmepckqJOikANL8bcPploWodxPCmH/Xp8 MZ2EIxnfiRcSdVhaN7Kef6AhBujT8uBhBvmX51mTXE1slc4G2naSneR1YZcP2TLI lf6PvdBJB8lYKqLhz0AbjZTFSVsSNIK2oNery9Yms4imi9EhUvTNgxtlw/vIVIw4 mD9V2szY/7l/AJfHwyGk2peYyuQa4dZ5ZsIgw7oLZUcOqmX8cX0w/pT6Hr4dpEHA Z/IrJz2fchwcxKgSFvohBnCcgbahV1Xq -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:47 2025 by rpki-client on console.sobornost.net