$ rpki-client -vvf rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft File: LgN_IhyajV_cyIxDyosl1ENrsDk.mft (raw, json) Hash identifier: r4vkRRq+d9eG5x27dp51ukXHDoi564e+j1t/FBIxCts= Subject key identifier: 16:F6:94:DD:55:6A:CB:4E:62:7C:99:EF:1D:1B:E7:6B:F4:FB:7F:AA Authority key identifier: 2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 Certificate issuer: /CN=A9196285/serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft Manifest number: 17 Signing time: Sun 27 Apr 2025 06:47:46 +0000 Manifest this update: Sun 27 Apr 2025 06:47:46 +0000 Manifest next update: Sun 04 May 2025 06:47:46 +0000 Files and hashes: 1: LgN_IhyajV_cyIxDyosl1ENrsDk.crl (hash: o8O43q+WkMsMRt/cmJjdBv+gCObZgGBxYNEhm866P7U=) 2: D3E69766027B11F0ACFB0B53C4F9AE02.roa (hash: riovgsjK6T9Xk/OVypXbdv81H28kZxqc1J6kqB+epyE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196285, serialNumber=2E037F221C9A8D5FDCC88C43CA8B25D4436BB039 Validity Not Before: Apr 27 06:47:46 2025 GMT Not After : May 4 06:47:46 2025 GMT Subject: CN=680dd312-b5cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:de:e0:45:b3:29:15:ed:74:b0:c1:39:bb: 80:a0:ad:49:7b:d7:2b:59:cf:5b:c4:71:6a:77:34: 0b:4d:7f:69:07:0e:4d:4b:60:fb:22:75:1e:59:9a: da:31:91:0e:64:37:29:b7:e5:20:14:f1:d2:a3:ec: bb:d8:e3:ac:dc:04:0b:82:4c:42:0a:08:6e:48:80: 78:80:0d:0a:d6:ea:93:b5:18:92:38:67:f1:f0:0b: 8a:a0:6f:6f:d8:9f:a1:3b:26:9f:86:26:65:c8:93: bc:9e:5d:91:c7:c0:7e:e8:a0:7a:13:b7:17:6b:0a: e9:55:a8:53:b7:9f:96:28:83:8e:d9:11:22:38:bd: bc:27:e3:2c:ce:43:12:1c:05:b9:21:2b:2c:08:e4: 53:10:09:32:f3:4d:e3:3d:e6:42:11:23:ef:5e:e7: 0d:cf:24:eb:f3:2a:7c:26:97:71:7d:b9:4d:c1:19: 8d:f9:71:1a:6e:86:10:d2:9e:10:0f:63:ae:8c:96: 54:2d:a2:19:80:ec:81:57:cb:f7:78:f5:51:e6:bb: 98:9b:b2:e8:de:4a:e3:e9:db:bc:bf:17:e2:ef:0e: 09:3c:47:50:e9:05:a8:aa:d1:c2:fb:9f:b2:cf:dd: 48:14:a0:9b:32:5b:6e:ed:e3:ef:92:f2:fc:f8:54: e1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F6:94:DD:55:6A:CB:4E:62:7C:99:EF:1D:1B:E7:6B:F4:FB:7F:AA X509v3 Authority Key Identifier: keyid:2E:03:7F:22:1C:9A:8D:5F:DC:C8:8C:43:CA:8B:25:D4:43:6B:B0:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgN_IhyajV_cyIxDyosl1ENrsDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196285/8C258B12027B11F0A946ED34C4F9AE02/LgN_IhyajV_cyIxDyosl1ENrsDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9b:b6:55:b6:06:94:b0:ef:f0:68:b8:b8:29:45:9d:f6:e3: 2a:e9:da:f3:62:01:99:21:cd:9d:6e:8f:d8:19:28:68:49:82: 27:d4:2f:5c:9d:b0:ab:1e:53:d2:cb:c2:61:85:64:a6:c1:61: 59:aa:1d:12:08:11:b0:e9:2c:f6:04:95:2b:ed:14:c8:e1:b9: a5:8b:d7:b5:e7:ac:2c:34:0e:79:0e:e5:a2:8b:81:6d:48:48: 73:f1:ed:77:3c:3c:d6:84:58:0a:1a:cf:36:5f:b9:77:09:03: cd:a8:d3:56:c8:d3:53:1c:22:5a:dc:e3:b9:24:02:f7:f1:72: 52:77:47:dc:f8:94:3d:88:5b:3b:37:ee:5a:5e:b9:7d:84:a1: 92:55:b8:fe:23:82:01:0a:8d:5d:e1:cb:c0:36:9e:08:6b:d7: 53:e7:93:14:ca:e1:35:38:40:f7:8a:16:73:e1:1d:05:27:9e: 45:52:19:61:4a:1f:7c:d0:f0:31:df:a3:f9:19:cf:d5:ac:56: d2:8b:3a:aa:c3:d6:fb:1f:48:be:1c:d2:50:53:49:96:41:0d: 4f:3d:21:15:26:ec:17:a6:c6:5b:e7:e7:88:34:04:70:7b:14: 1a:05:94:d4:a3:01:c1:23:e9:28:ef:4b:62:c8:9a:a3:1f:b4: 6b:a7:e1:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NjI4NTExMC8GA1UEBRMoMkUwMzdGMjIxQzlBOEQ1RkRDQzg4QzQzQ0E4QjI1RDQ0 MzZCQjAzOTAeFw0yNTA0MjcwNjQ3NDZaFw0yNTA1MDQwNjQ3NDZaMBgxFjAUBgNV BAMTDTY4MGRkMzEyLWI1Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyvt7gRbMpFe10sME5u4CgrUl71ytZz1vEcWp3NAtNf2kHDk1LYPsidR5Zmtox kQ5kNym35SAU8dKj7LvY46zcBAuCTEIKCG5IgHiADQrW6pO1GJI4Z/HwC4qgb2/Y n6E7Jp+GJmXIk7yeXZHHwH7ooHoTtxdrCulVqFO3n5Yog47ZESI4vbwn4yzOQxIc BbkhKywI5FMQCTLzTeM95kIRI+9e5w3PJOvzKnwml3F9uU3BGY35cRpuhhDSnhAP Y66MllQtohmA7IFXy/d49VHmu5ibsujeSuPp27y/F+LvDgk8R1DpBaiq0cL7n7LP 3UgUoJsyW27t4++S8vz4VOGLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFvaU3VVq y05ifJnvHRvna/T7f6owHwYDVR0jBBgwFoAULgN/IhyajV/cyIxDyosl1ENrsDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2Mjg1LzhDMjU4QjEyMDI3 QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZfY3lJeER5b3NsMUVOcnNE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTGdOX0loeWFqVl9jeUl4RHlvc2wxRU5yc0RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 Mjg1LzhDMjU4QjEyMDI3QjExRjBBOTQ2RUQzNEM0RjlBRTAyL0xnTl9JaHlhalZf Y3lJeER5b3NsMUVOcnNEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+btlW2BpSw7/BouLgpRZ324yrp2vNiAZkhzZ1uj9gZKGhJgifUL1yd sKseU9LLwmGFZKbBYVmqHRIIEbDpLPYElSvtFMjhuaWL17XnrCw0DnkO5aKLgW1I SHPx7Xc8PNaEWAoazzZfuXcJA82o01bI01McIlrc47kkAvfxclJ3R9z4lD2IWzs3 7lpeuX2EoZJVuP4jggEKjV3hy8A2nghr11PnkxTK4TU4QPeKFnPhHQUnnkVSGWFK H3zQ8DHfo/kZz9WsVtKLOqrD1vsfSL4c0lBTSZZBDU89IRUm7Bemxlvn54g0BHB7 FBoFlNSjAcEj6SjvS2LImqMftGun4XE= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net