$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft File: hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft (raw, json) Hash identifier: 3To/PWzsjRGfmzAHqAQ4VdZSPq21JgLW0a0o5o4pIPU= Subject key identifier: B1:60:AB:DD:CC:1A:B1:5C:FD:08:33:24:53:90:EF:40:9A:88:86:69 Authority key identifier: 85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 Certificate issuer: /CN=A9196DCA/serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft Manifest number: 3B Signing time: Sun 27 Apr 2025 06:18:54 +0000 Manifest this update: Sun 27 Apr 2025 06:18:53 +0000 Manifest next update: Sun 04 May 2025 06:18:53 +0000 Files and hashes: 1: hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl (hash: dxAyUl0rsTIuH3zlZUR012wkGn9Wnahz6tzBhJNt0Eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DCA, serialNumber=85C567259103D9E2292E64DBFB79FD39B256FDE4 Validity Not Before: Apr 27 06:18:53 2025 GMT Not After : May 4 06:18:53 2025 GMT Subject: CN=680dcc4e-2146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a8:b9:17:2c:c3:d3:be:c5:c0:e9:35:79:03: 3e:34:3b:66:12:6c:81:12:9c:a6:17:9e:ab:5f:65: 8c:a7:4d:56:e7:d3:bf:c6:de:c3:13:1f:c2:33:c6: 92:60:12:89:3f:f4:8f:7e:27:c4:30:6f:51:f0:67: 51:db:74:a1:71:37:3f:93:5a:97:9f:75:3e:0b:b4: 32:79:cd:10:d2:59:38:a4:d1:ae:c2:9a:c7:53:b6: 45:31:c8:78:83:89:0c:ff:78:48:97:96:08:61:e3: 25:50:f1:75:7b:e2:dc:ef:96:be:3c:86:73:12:ca: 7b:1c:0b:e6:e6:2d:f5:e0:8d:9a:23:3c:ff:73:fd: d9:a8:2f:da:d2:ed:9d:04:ba:ce:c5:2e:37:e5:88: 83:d7:f5:f1:ce:56:e0:5b:09:08:50:cc:37:af:20: c4:2f:4c:83:bb:47:84:2a:79:05:00:53:79:65:82: 56:e2:f6:ee:1a:6d:96:25:fa:c2:75:2c:d5:55:05: 4d:d7:0c:c5:f3:8a:f3:90:95:d0:47:e1:e3:15:13: b7:83:4a:d7:b1:c6:30:44:39:25:f1:c2:b9:6c:3a: d6:18:75:54:50:09:3a:0c:be:71:14:89:28:d8:c9: 0d:9e:7b:cc:14:e8:8e:1b:04:76:5b:e1:fb:89:6c: 41:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:60:AB:DD:CC:1A:B1:5C:FD:08:33:24:53:90:EF:40:9A:88:86:69 X509v3 Authority Key Identifier: keyid:85:C5:67:25:91:03:D9:E2:29:2E:64:DB:FB:79:FD:39:B2:56:FD:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hcVnJZED2eIpLmTb-3n9ObJW_eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DCA/583FFC94CB1F11EFB7AC2786C4F9AE02/hcVnJZED2eIpLmTb-3n9ObJW_eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:8c:63:a4:7f:37:a8:10:54:aa:d5:f1:cd:0b:96:b1:4f:f2: 88:d4:ad:d3:7d:c2:20:ed:25:a1:f9:f5:b6:8b:e1:9c:9f:02: 1c:23:1d:93:ab:27:29:f0:80:f4:d4:08:6a:0d:d8:c6:95:d9: ee:32:15:72:8b:2b:4f:d1:bf:ff:70:3d:d5:d9:0c:87:a0:c0: e0:2f:85:63:2f:4b:3a:ca:83:c8:99:32:cc:34:4f:3a:0d:9f: 0e:6f:11:00:d4:de:64:c8:ea:70:1d:8f:28:a5:4f:7a:2a:4b: d5:c3:9e:47:3a:84:6b:b8:33:36:b5:ee:ba:8f:89:29:82:ed: c7:dd:57:db:de:ff:34:1c:dd:be:03:a5:4e:36:31:08:08:22: 13:55:e6:8d:b4:f9:f6:28:e5:11:bf:0e:ef:e8:60:cd:ab:b2: 32:1e:bd:3b:c8:41:5b:b1:34:d5:f1:a0:26:04:bd:4d:29:a0: e5:e4:24:9c:6f:af:d9:a9:70:c5:0b:47:aa:db:41:a9:e0:b6: 56:4f:7c:c3:d8:af:2d:51:9b:ff:ab:3d:d5:98:08:41:48:6f: 1f:b1:d7:f8:08:ac:1f:6f:e6:e5:7f:b2:03:a0:e1:9d:be:4c: df:be:43:f6:a8:a4:30:a5:9e:61:6e:08:3c:e7:9e:ff:5a:82: de:5e:e6:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkRDQTExMC8GA1UEBRMoODVDNTY3MjU5MTAzRDlFMjI5MkU2NERCRkI3OUZEMzlC MjU2RkRFNDAeFw0yNTA0MjcwNjE4NTNaFw0yNTA1MDQwNjE4NTNaMBgxFjAUBgNV BAMTDTY4MGRjYzRlLTIxNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+qLkXLMPTvsXA6TV5Az40O2YSbIESnKYXnqtfZYynTVbn07/G3sMTH8IzxpJg Eok/9I9+J8Qwb1HwZ1HbdKFxNz+TWpefdT4LtDJ5zRDSWTik0a7CmsdTtkUxyHiD iQz/eEiXlghh4yVQ8XV74tzvlr48hnMSynscC+bmLfXgjZojPP9z/dmoL9rS7Z0E us7FLjfliIPX9fHOVuBbCQhQzDevIMQvTIO7R4QqeQUAU3llglbi9u4abZYl+sJ1 LNVVBU3XDMXzivOQldBH4eMVE7eDStexxjBEOSXxwrlsOtYYdVRQCToMvnEUiSjY yQ2ee8wU6I4bBHZb4fuJbEHLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsWCr3cwa sVz9CDMkU5DvQJqIhmkwHwYDVR0jBBgwFoAUhcVnJZED2eIpLmTb+3n9ObJW/eQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RENBLzU4M0ZGQzk0Q0Ix RjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJcExtVGItM245T2JKV19l US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGNWbkpaRUQyZUlwTG1UYi0zbjlPYkpXX2VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RENBLzU4M0ZGQzk0Q0IxRjExRUZCN0FDMjc4NkM0RjlBRTAyL2hjVm5KWkVEMmVJ cExtVGItM245T2JKV19lUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHiMY6R/N6gQVKrV8c0LlrFP8ojUrdN9wiDtJaH59baL4ZyfAhwjHZOr JynwgPTUCGoN2MaV2e4yFXKLK0/Rv/9wPdXZDIegwOAvhWMvSzrKg8iZMsw0TzoN nw5vEQDU3mTI6nAdjyilT3oqS9XDnkc6hGu4Mza17rqPiSmC7cfdV9ve/zQc3b4D pU42MQgIIhNV5o20+fYo5RG/Du/oYM2rsjIevTvIQVuxNNXxoCYEvU0poOXkJJxv r9mpcMULR6rbQangtlZPfMPYry1Rm/+rPdWYCEFIbx+x1/gIrB9v5uV/sgOg4Z2+ TN++Q/aopDClnmFuCDznnv9agt5e5nY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net