$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: IwwkKkCRoNbz1KIcJZZI42ZF2iVLP7XmM0qZmGSnv+Q= Subject key identifier: E6:62:42:AA:CB:D8:97:C0:8F:63:0B:48:4B:79:91:19:B7:CB:CC:69 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 03FA Signing time: Sun 27 Apr 2025 00:07:18 +0000 Manifest this update: Sun 27 Apr 2025 00:07:17 +0000 Manifest next update: Sun 04 May 2025 00:07:17 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: c5PfZ0THLnB4mXsd6D5sWwnIaAb2vxIJJ56jOKp9Huo=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D, serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Apr 27 00:07:17 2025 GMT Not After : May 4 00:07:17 2025 GMT Subject: CN=680d7535-66cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6d:02:8b:8a:73:54:55:30:b8:21:43:18:38: 98:97:62:6e:c5:71:5d:b8:e4:bb:dc:bd:df:d7:1a: 28:a0:a4:40:f3:5a:a4:4c:a6:46:87:30:88:83:2a: 34:eb:2e:5a:08:77:bf:81:e4:06:4e:cc:37:eb:2b: f7:4d:e8:0a:db:78:eb:c8:19:99:c1:94:cf:ad:b2: 78:cd:75:94:6a:0a:ae:5f:02:f3:e6:27:27:b6:9a: cf:96:53:9f:4f:42:b9:f6:e9:a4:ae:ad:8f:fe:1b: 01:8a:f6:e6:a4:1d:2b:73:71:2a:5c:61:9b:9a:25: b5:20:8a:c7:65:f4:f0:59:1f:9a:00:96:ba:69:2d: d0:41:1f:4b:af:ea:1a:33:0c:5b:b1:88:d7:73:90: 52:3b:cf:55:0a:14:da:1b:61:f2:cb:0f:99:08:5d: df:39:2f:09:61:c7:f8:e6:f1:15:12:75:c5:20:36: 27:65:c8:47:a7:76:15:ad:f4:be:fa:6c:56:1e:0d: 84:e9:76:4b:7e:1d:2c:12:ef:f7:c4:a0:6b:26:90: 26:91:f2:f4:95:51:e3:44:9b:f6:c4:26:da:50:01: 24:e9:9f:37:ee:ea:fe:72:17:91:b8:75:88:39:3e: 07:b4:c7:e1:3a:e6:8d:8a:eb:c8:cc:b3:03:b0:57: 53:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:62:42:AA:CB:D8:97:C0:8F:63:0B:48:4B:79:91:19:B7:CB:CC:69 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:f8:ac:29:57:00:8e:32:5f:61:6f:66:7f:fe:21:b4:2b:8e: ec:0e:78:ca:d7:f8:d4:34:0a:68:76:d7:26:f9:7e:c4:7b:01: c8:14:3a:c9:27:52:17:d3:31:a6:49:13:ef:7a:c3:3f:41:30: 42:57:71:fa:11:e1:4a:42:bb:62:e4:df:91:0e:d9:ce:d1:58: e1:ff:3a:5a:33:c0:d9:6b:cd:01:05:ef:da:c1:e6:c9:8f:5c: 1f:3a:63:6b:da:2a:45:c5:1b:75:54:74:31:41:62:56:ac:9f: 06:14:53:83:6c:b1:da:63:bb:6c:3f:f6:94:ff:3e:9d:e9:81: 62:78:ba:d1:c9:12:97:44:75:90:f5:84:69:81:06:6a:68:38: 43:7d:c9:bf:ac:02:d9:87:05:1d:8e:25:1a:4d:cf:b0:b0:48: a3:6c:89:ef:94:7b:d2:c4:e2:7e:1f:75:84:79:02:65:2b:8f: cc:dc:08:22:67:6b:6d:da:68:63:bd:c5:54:94:8f:8e:2a:06: 96:25:4b:2c:83:20:19:2d:d7:b8:1d:c8:44:08:6d:9b:bb:1e: 9a:1e:4d:96:40:16:eb:a5:07:63:15:6f:8c:8b:1c:59:d0:f9: ce:c5:9c:91:a9:0d:d2:4e:c3:8a:4e:7e:94:78:a8:2f:a2:54: ed:72:bf:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjUwNDI3MDAwNzE3WhcNMjUwNTA0MDAwNzE3WjAYMRYwFAYD VQQDEw02ODBkNzUzNS02NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtG0Ci4pzVFUwuCFDGDiYl2JuxXFduOS73L3f1xoooKRA81qkTKZGhzCIgyo0 6y5aCHe/geQGTsw36yv3TegK23jryBmZwZTPrbJ4zXWUagquXwLz5icntprPllOf T0K59umkrq2P/hsBivbmpB0rc3EqXGGbmiW1IIrHZfTwWR+aAJa6aS3QQR9Lr+oa MwxbsYjXc5BSO89VChTaG2Hyyw+ZCF3fOS8JYcf45vEVEnXFIDYnZchHp3YVrfS+ +mxWHg2E6XZLfh0sEu/3xKBrJpAmkfL0lVHjRJv2xCbaUAEk6Z837ur+cheRuHWI OT4HtMfhOuaNiuvIzLMDsFdTbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZiQqrL 2JfAj2MLSEt5kRm3y8xpMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg+KwpVwCOMl9hb2Z//iG0K47sDnjK1/jUNApodtcm+X7EewHIFDrJ J1IX0zGmSRPvesM/QTBCV3H6EeFKQrti5N+RDtnO0Vjh/zpaM8DZa80BBe/awebJ j1wfOmNr2ipFxRt1VHQxQWJWrJ8GFFODbLHaY7tsP/aU/z6d6YFieLrRyRKXRHWQ 9YRpgQZqaDhDfcm/rALZhwUdjiUaTc+wsEijbInvlHvSxOJ+H3WEeQJlK4/M3Agi Z2tt2mhjvcVUlI+OKgaWJUssgyAZLde4HchECG2bux6aHk2WQBbrpQdjFW+MixxZ 0PnOxZyRqQ3STsOKTn6UeKgvolTtcr99 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:00 2025 by rpki-client on console.sobornost.net