$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: l08f67R4HteSOSezhmVwG8UigYF6cL1l/pz9lwVZVkw= Subject key identifier: 1A:57:EF:E2:53:0F:1E:D9:B4:6A:D4:A5:F7:2D:30:6B:C9:AE:29:28 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 035A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 0356 Signing time: Sun 27 Apr 2025 00:38:06 +0000 Manifest this update: Sun 27 Apr 2025 00:38:06 +0000 Manifest next update: Sun 04 May 2025 00:38:06 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: Va76U9QCO7Qq47EKDurTvc7sMyCl22P9UCTvd1jg/nI=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fCg3LsUh16wFnDfXkxVhThF2ZOUkgckgr+TaTcI9RIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:38:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Apr 27 00:38:06 2025 GMT Not After : May 4 00:38:06 2025 GMT Subject: CN=680d7c6e-25d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3a:9c:93:da:d9:85:e6:ab:d7:44:5a:d6:ab: 8e:0d:71:02:54:df:97:ad:db:c5:0b:fb:29:65:33: f1:9d:3e:cb:2f:8b:1a:ef:20:3b:64:4e:0f:05:cd: d4:2f:97:61:8d:9e:57:63:cf:1d:2d:01:df:f9:ac: 00:7c:29:78:75:7e:0e:d2:a0:01:f6:12:70:dd:bf: 11:62:e4:8c:44:69:7b:0b:13:d6:a5:93:42:8d:45: 20:40:58:fe:12:b0:4c:5d:de:d3:a4:cf:53:54:57: 9d:6e:19:8a:4a:56:7c:a8:af:32:fc:0f:f7:51:05: af:aa:c4:cd:74:5e:c4:30:01:ff:38:50:18:4a:51: 22:d4:b8:98:47:93:44:b3:aa:82:9c:5c:d3:21:20: 47:3a:8a:fc:13:12:86:a0:40:b7:27:cf:d2:3b:12: b6:48:a8:07:0d:53:8f:45:ce:2d:02:99:25:5d:af: 20:85:1d:12:f0:f2:41:da:dd:ac:4a:df:13:d4:a2: 8d:43:f5:94:e5:65:c6:4e:91:87:9b:be:e2:13:81: d9:71:6c:be:21:4e:a7:2f:76:7a:1f:7c:48:69:f6: 3a:20:7b:e5:2a:03:fe:24:de:b4:3d:6f:bb:b6:d3: 1d:d0:2c:ad:a7:e5:e3:17:eb:c3:61:85:de:66:7c: c8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:57:EF:E2:53:0F:1E:D9:B4:6A:D4:A5:F7:2D:30:6B:C9:AE:29:28 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:92:e2:4e:b9:8b:99:dc:bf:11:a4:07:20:93:f5:ef:e6:e6: 16:0c:e9:22:d5:67:ce:a2:5f:fe:cf:2c:13:2c:ce:17:87:29: a1:74:eb:d9:b5:2c:c8:0c:94:ea:a7:9a:6a:23:84:13:56:ab: 23:2c:46:7b:58:1c:08:6a:fc:09:ea:a7:ba:57:ff:e4:ed:55: 74:59:73:fa:6e:85:0d:51:0d:ee:3d:24:12:46:6d:1b:2e:af: 0f:2c:bf:33:83:04:fd:e9:80:57:63:a5:bf:3d:3d:4a:60:16: 03:fe:c1:57:cc:ca:07:c1:69:ce:6a:ea:3c:42:83:e4:e9:22: 6a:1d:cf:e4:be:25:75:fd:50:92:2f:97:75:5b:01:50:93:21: c0:71:0a:a1:f6:ad:95:c5:98:9a:f4:e2:d2:b5:5b:70:41:1d: f7:f7:e1:f6:f1:66:a6:59:5b:a7:76:0e:cb:b0:f0:ba:54:3b: ff:fb:6c:b5:d8:88:a8:7b:2e:0c:21:b1:c3:d0:9b:ea:27:c6: c7:5f:80:a9:83:05:5a:57:4f:5b:5d:ba:2a:80:3a:77:44:c2: 7f:5e:06:75:37:ba:92:33:a0:1c:bf:0e:d0:07:c7:f7:4e:89: 14:b7:e2:84:52:0d:1c:ff:2a:7d:bf:5b:b4:af:fa:bc:6a:9e: c6:a6:7b:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjUwNDI3MDAzODA2WhcNMjUwNTA0MDAzODA2WjAYMRYwFAYD VQQDEw02ODBkN2M2ZS0yNWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Tqck9rZhear10Ra1quODXECVN+XrdvFC/spZTPxnT7LL4sa7yA7ZE4PBc3U L5dhjZ5XY88dLQHf+awAfCl4dX4O0qAB9hJw3b8RYuSMRGl7CxPWpZNCjUUgQFj+ ErBMXd7TpM9TVFedbhmKSlZ8qK8y/A/3UQWvqsTNdF7EMAH/OFAYSlEi1LiYR5NE s6qCnFzTISBHOor8ExKGoEC3J8/SOxK2SKgHDVOPRc4tApklXa8ghR0S8PJB2t2s St8T1KKNQ/WU5WXGTpGHm77iE4HZcWy+IU6nL3Z6H3xIafY6IHvlKgP+JN60PW+7 ttMd0Cytp+XjF+vDYYXeZnzIAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpX7+JT Dx7ZtGrUpfctMGvJrikoMB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhkuJOuYuZ3L8RpAcgk/Xv5uYWDOki1WfOol/+zywTLM4XhymhdOvZ tSzIDJTqp5pqI4QTVqsjLEZ7WBwIavwJ6qe6V//k7VV0WXP6boUNUQ3uPSQSRm0b Lq8PLL8zgwT96YBXY6W/PT1KYBYD/sFXzMoHwWnOauo8QoPk6SJqHc/kviV1/VCS L5d1WwFQkyHAcQqh9q2VxZia9OLStVtwQR339+H28WamWVundg7LsPC6VDv/+2y1 2Iioey4MIbHD0JvqJ8bHX4CpgwVaV09bXboqgDp3RMJ/XgZ1N7qSM6Acvw7QB8f3 TokUt+KEUg0c/yp9v1u0r/q8ap7Gpnss -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:00 2025 by rpki-client on console.sobornost.net