$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft File: 9ncWp9N92wPcVtA6uQKnIDfqGdk.mft (raw, json) Hash identifier: L8TFQXvEpi+wukwionjhkjofoTKcDhOYPYugxUKzgH8= Subject key identifier: 52:42:97:E1:FA:34:6C:6D:89:FC:4D:08:63:BF:BA:06:C1:B5:B8:80 Authority key identifier: F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 Certificate issuer: /CN=A918F1EE/serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft Manifest number: 29 Signing time: Sun 27 Apr 2025 06:33:08 +0000 Manifest this update: Sun 27 Apr 2025 06:33:07 +0000 Manifest next update: Sun 04 May 2025 06:33:07 +0000 Files and hashes: 1: 9ncWp9N92wPcVtA6uQKnIDfqGdk.crl (hash: 3MeTDrAjZJMLaFxRIgAFbTd3ehCwZbNA6mtvDg84TqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1EE, serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Validity Not Before: Apr 27 06:33:07 2025 GMT Not After : May 4 06:33:07 2025 GMT Subject: CN=680dcfa3-f83f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:94:ad:57:a9:2c:59:21:f9:68:d4:89:f2:40: 46:5e:12:ce:5f:99:09:91:ae:fc:ac:89:6e:f2:47: b9:7d:e8:f1:76:c6:e3:c9:98:f2:4b:ac:9f:bb:0f: 81:41:14:cc:6f:20:01:f3:14:b0:4e:23:d2:36:4f: 30:aa:67:11:79:48:2b:95:f8:91:3b:c0:91:fe:b7: 75:a2:bd:45:7e:32:ae:fe:fe:b7:b7:cc:13:3b:d7: 85:6c:3c:d9:01:71:ad:62:72:52:4e:d6:76:0d:29: 8f:69:4f:05:f8:fd:43:c2:c4:63:fb:b6:de:93:4a: 0a:8f:3d:46:b6:08:ed:d0:5e:83:4d:8f:e3:1f:14: bf:32:67:8e:50:0a:f3:aa:3c:86:7a:52:76:f2:3e: c2:46:7b:4f:b6:c8:d3:f5:3a:69:a4:48:06:65:e8: fe:cb:f4:84:e7:93:16:b2:7d:b8:f2:28:40:63:8a: bc:2f:32:49:db:06:9d:c3:e1:ed:5d:e7:59:b0:2f: 28:8f:f1:16:6c:12:47:05:c6:fe:c1:da:df:ee:17: b5:70:8b:16:24:01:f6:a0:eb:e0:66:49:61:64:c8: a1:ed:7a:c9:7f:cd:fa:41:47:39:bf:00:36:86:1a: 20:75:b4:0e:3e:2f:b8:eb:4f:7e:11:22:84:4e:7e: c9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:42:97:E1:FA:34:6C:6D:89:FC:4D:08:63:BF:BA:06:C1:B5:B8:80 X509v3 Authority Key Identifier: keyid:F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:e5:33:6f:b9:16:39:ad:65:3b:ae:3c:c6:48:46:e2:69:de: 1f:b5:c2:80:1b:fb:60:8d:29:c2:36:46:ec:49:3d:84:59:f1: 7a:d9:55:ca:f6:94:13:f1:99:c4:98:24:ab:0c:15:cf:ef:af: 75:22:bc:74:72:80:6c:5b:85:30:ed:f8:b2:67:5e:2f:b7:bb: a8:68:c8:42:74:cb:58:f5:ff:05:e1:34:64:03:0d:7f:34:0d: 2f:2a:42:a4:75:bf:59:7b:2c:38:76:ba:f2:1c:b2:68:5c:f7: 0d:3e:3a:e5:61:18:1d:b1:09:85:5e:a7:18:39:23:9c:cb:6e: b5:55:b6:3a:2c:ae:fc:1a:a6:d6:04:af:b0:b6:89:6e:fa:5e: 8e:2b:56:37:1d:7c:26:fe:08:3f:08:52:04:49:fc:8b:22:2a: 11:61:32:f8:00:d4:26:05:34:fd:d8:8a:e4:6e:25:80:2e:43: c7:dd:ab:18:c0:9e:b0:a4:0c:04:23:3d:62:a4:5a:56:30:1e: 96:fc:57:eb:23:4c:b4:c5:53:ee:8d:ee:6e:75:59:82:c5:94: a1:7b:65:3e:2a:68:62:b0:42:f0:0b:6d:a3:7c:93:ea:c8:78: 13:53:c3:15:f2:30:6a:ae:c7:89:bf:d6:3a:b5:d3:29:57:3f: d3:d3:fb:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFFRTExMC8GA1UEBRMoRjY3NzE2QTdEMzdEREIwM0RDNTZEMDNBQjkwMkE3MjAz N0VBMTlEOTAeFw0yNTA0MjcwNjMzMDdaFw0yNTA1MDQwNjMzMDdaMBgxFjAUBgNV BAMTDTY4MGRjZmEzLWY4M2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAlK1XqSxZIflo1InyQEZeEs5fmQmRrvysiW7yR7l96PF2xuPJmPJLrJ+7D4FB FMxvIAHzFLBOI9I2TzCqZxF5SCuV+JE7wJH+t3WivUV+Mq7+/re3zBM714VsPNkB ca1iclJO1nYNKY9pTwX4/UPCxGP7tt6TSgqPPUa2CO3QXoNNj+MfFL8yZ45QCvOq PIZ6UnbyPsJGe0+2yNP1OmmkSAZl6P7L9ITnkxayfbjyKEBjirwvMknbBp3D4e1d 51mwLyiP8RZsEkcFxv7B2t/uF7VwixYkAfag6+BmSWFkyKHtesl/zfpBRzm/ADaG GiB1tA4+L7jrT34RIoROfsmxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUkKX4fo0 bG2J/E0IY7+6BsG1uIAwHwYDVR0jBBgwFoAU9ncWp9N92wPcVtA6uQKnIDfqGdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUVFL0YzMkNGNEU4RTc1 MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQY1Z0QTZ1UUtuSURmcUdk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOW5jV3A5Tjkyd1BjVnRBNnVRS25JRGZxR2RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUVFL0YzMkNGNEU4RTc1MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQ Y1Z0QTZ1UUtuSURmcUdkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKrlM2+5FjmtZTuuPMZIRuJp3h+1woAb+2CNKcI2RuxJPYRZ8XrZVcr2 lBPxmcSYJKsMFc/vr3UivHRygGxbhTDt+LJnXi+3u6hoyEJ0y1j1/wXhNGQDDX80 DS8qQqR1v1l7LDh2uvIcsmhc9w0+OuVhGB2xCYVepxg5I5zLbrVVtjosrvwaptYE r7C2iW76Xo4rVjcdfCb+CD8IUgRJ/IsiKhFhMvgA1CYFNP3YiuRuJYAuQ8fdqxjA nrCkDAQjPWKkWlYwHpb8V+sjTLTFU+6N7m51WYLFlKF7ZT4qaGKwQvALbaN8k+rI eBNTwxXyMGqux4m/1jq10ylXP9PT+xI= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:51 2025 by rpki-client on console.sobornost.net