$ rpki-client -vvf rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.mft File: 0EgP8QdQUv7-5sCOHb-Og-ABJ4g.mft (raw, json) Hash identifier: IoE3yaVqGHk4hgYYCfvUvayW31kWrgY9w7hPmOMX0f4= Subject key identifier: 99:5F:C5:84:C4:F2:E4:32:DC:FA:92:34:CF:B2:97:60:48:D7:DE:F8 Authority key identifier: D0:48:0F:F1:07:50:52:FE:FE:E6:C0:8E:1D:BF:8E:83:E0:01:27:88 Certificate issuer: /CN=A919874A/serialNumber=D0480FF1075052FEFEE6C08E1DBF8E83E0012788 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.mft Manifest number: 28 Signing time: Sun 27 Apr 2025 06:36:22 +0000 Manifest this update: Sun 27 Apr 2025 06:36:21 +0000 Manifest next update: Sun 04 May 2025 06:36:21 +0000 Files and hashes: 1: 0EgP8QdQUv7-5sCOHb-Og-ABJ4g.crl (hash: JkcuVWgaeRyMA7sDMq7GSH5p8R4dwA+Sh9lBqPFoE7U=) 2: 7223D638EAD411EFBA2AB40EC4F9AE02.roa (hash: YkOEpYLdm6BW8Hk0zKrvSza04bgoNTs0voQjpsLjr2k=) 3: 7151B356EAD411EFBA2AB40EC4F9AE02.roa (hash: VSF4aaLno+UR3o6W3Jl8Y30MNxvgZ99sJu4IeD9pONk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.crl rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919874A, serialNumber=D0480FF1075052FEFEE6C08E1DBF8E83E0012788 Validity Not Before: Apr 27 06:36:21 2025 GMT Not After : May 4 06:36:21 2025 GMT Subject: CN=680dd066-e923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6f:6f:44:1a:6c:7c:39:c5:0a:09:dd:0f:b5: 24:b0:92:45:62:d8:fa:32:3e:a1:2a:65:ed:e5:60: 8f:cf:e8:bd:82:35:ff:b6:8d:c6:ad:2d:ad:20:f2: ca:32:50:d1:ac:3e:22:ae:35:23:76:08:15:b5:cb: 6a:07:ca:6f:09:9a:f5:78:5c:6e:6c:c7:c7:c3:76: 8c:f9:de:42:b8:a1:9e:62:e5:c9:17:12:2c:36:1d: 00:37:85:76:f1:58:4a:9d:ef:b0:58:75:03:12:70: 52:de:4a:50:cb:2f:a0:ca:4d:3a:ad:d2:a7:a1:d5: e1:34:0f:75:e2:58:25:28:55:78:1f:34:74:87:25: 2d:e6:16:8c:3e:20:b3:b5:dd:be:29:81:40:c8:57: 37:fe:36:b1:86:49:01:07:78:88:d8:58:8c:b1:c8: 0b:da:8b:01:4a:8b:76:80:82:6b:92:a0:6b:b3:f2: f1:dd:1d:95:23:57:73:cc:41:2f:ba:8b:e9:06:f0: 14:9f:2f:73:a1:98:aa:45:ff:76:07:8c:72:b8:31: 24:09:6d:3e:69:75:e3:0e:22:e6:19:34:b2:fd:2b: c4:9b:ae:7c:cd:dd:a5:04:66:a7:5f:14:5a:72:3a: 95:6a:18:b1:ca:6d:cb:47:c9:78:bc:22:1e:8e:7a: 64:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:5F:C5:84:C4:F2:E4:32:DC:FA:92:34:CF:B2:97:60:48:D7:DE:F8 X509v3 Authority Key Identifier: keyid:D0:48:0F:F1:07:50:52:FE:FE:E6:C0:8E:1D:BF:8E:83:E0:01:27:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919874A/ECE166D4EAD311EFB1C4CC55C4F9AE02/0EgP8QdQUv7-5sCOHb-Og-ABJ4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:98:26:6c:da:f6:42:9f:9f:20:3a:61:9c:64:a4:d4:85:19: 2e:2b:c9:47:d1:cd:44:7c:0d:7d:2f:16:09:57:32:30:8f:cb: 77:22:68:68:68:39:11:bb:98:34:62:75:83:43:d7:fe:8f:03: 40:16:06:2d:50:a6:b2:97:88:63:c2:0e:de:0e:e5:9e:1f:bf: b2:11:62:d3:14:51:1c:ba:51:06:12:ff:05:be:f4:6d:1b:c6: 84:4b:27:bf:71:2f:73:2c:e5:d6:0a:e2:b0:be:22:4b:9b:05: db:86:74:d4:16:c1:31:f8:8f:a0:0f:2f:17:c2:ed:5a:fb:ad: 9c:f5:3d:3d:ce:69:b4:d1:4b:35:9f:41:4f:34:5c:6e:ea:bb: 0f:ba:3b:78:ea:4a:39:5e:1b:52:8e:2c:e7:7c:45:4c:d3:1f: bf:a2:95:c5:65:fd:09:af:88:90:46:ce:25:99:aa:aa:8c:d2: 7f:f9:2c:69:98:08:e8:8f:28:44:04:b2:22:c4:f2:f0:d7:da: 41:ba:b6:f5:b3:89:55:25:b1:2a:5d:f6:a5:4b:68:16:47:a0: 10:1a:cc:0d:91:e8:b8:5e:f2:6d:fc:48:7e:95:a4:d1:18:02: fa:e4:cd:ea:ea:5d:b5:e1:f4:a5:06:42:9b:71:41:4d:2b:e2: b3:65:84:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODc0QTExMC8GA1UEBRMoRDA0ODBGRjEwNzUwNTJGRUZFRTZDMDhFMURCRjhFODNF MDAxMjc4ODAeFw0yNTA0MjcwNjM2MjFaFw0yNTA1MDQwNjM2MjFaMBgxFjAUBgNV BAMTDTY4MGRkMDY2LWU5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqb29EGmx8OcUKCd0PtSSwkkVi2PoyPqEqZe3lYI/P6L2CNf+2jcatLa0g8soy UNGsPiKuNSN2CBW1y2oHym8JmvV4XG5sx8fDdoz53kK4oZ5i5ckXEiw2HQA3hXbx WEqd77BYdQMScFLeSlDLL6DKTTqt0qeh1eE0D3XiWCUoVXgfNHSHJS3mFow+ILO1 3b4pgUDIVzf+NrGGSQEHeIjYWIyxyAvaiwFKi3aAgmuSoGuz8vHdHZUjV3PMQS+6 i+kG8BSfL3OhmKpF/3YHjHK4MSQJbT5pdeMOIuYZNLL9K8SbrnzN3aUEZqdfFFpy OpVqGLHKbctHyXi8Ih6OemQvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmV/FhMTy 5DLc+pI0z7KXYEjX3vgwHwYDVR0jBBgwFoAU0EgP8QdQUv7+5sCOHb+Og+ABJ4gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NzRBL0VDRTE2NkQ0RUFE MzExRUZCMUM0Q0M1NUM0RjlBRTAyLzBFZ1A4UWRRVXY3LTVzQ09IYi1PZy1BQko0 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMEVnUDhRZFFVdjctNXNDT0hiLU9nLUFCSjRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 NzRBL0VDRTE2NkQ0RUFEMzExRUZCMUM0Q0M1NUM0RjlBRTAyLzBFZ1A4UWRRVXY3 LTVzQ09IYi1PZy1BQko0Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADWYJmza9kKfnyA6YZxkpNSFGS4ryUfRzUR8DX0vFglXMjCPy3ciaGho ORG7mDRidYND1/6PA0AWBi1QprKXiGPCDt4O5Z4fv7IRYtMUURy6UQYS/wW+9G0b xoRLJ79xL3Ms5dYK4rC+IkubBduGdNQWwTH4j6APLxfC7Vr7rZz1PT3OabTRSzWf QU80XG7quw+6O3jqSjleG1KOLOd8RUzTH7+ilcVl/QmviJBGziWZqqqM0n/5LGmY COiPKEQEsiLE8vDX2kG6tvWziVUlsSpd9qVLaBZHoBAazA2R6Lhe8m38SH6VpNEY AvrkzerqXbXh9KUGQptxQU0r4rNlhOY= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net