$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/20BE1A30D7E011EF8B173D2FC4F9AE02/Xv3pjE-_jRGHtoWOvIHwYlspMWA.mft File: Xv3pjE-_jRGHtoWOvIHwYlspMWA.mft (raw, json) Hash identifier: LS4rCsQX9YlsZqteJiDiqwO/hRTiWFEBirqva3SR1Ic= Subject key identifier: 0B:F7:78:89:1E:D1:45:04:94:00:92:85:AD:71:55:7E:26:7A:D2:A1 Authority key identifier: 5E:FD:E9:8C:4F:BF:8D:11:87:B6:85:8E:BC:81:F0:62:5B:29:31:60 Certificate issuer: /CN=A9199CFF/serialNumber=5EFDE98C4FBF8D1187B6858EBC81F0625B293160 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xv3pjE-_jRGHtoWOvIHwYlspMWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/20BE1A30D7E011EF8B173D2FC4F9AE02/Xv3pjE-_jRGHtoWOvIHwYlspMWA.mft Manifest number: 35 Signing time: Fri 25 Apr 2025 06:38:15 +0000 Manifest this update: Fri 25 Apr 2025 06:38:14 +0000 Manifest next update: Fri 02 May 2025 06:38:14 +0000 Files and hashes: 1: Xv3pjE-_jRGHtoWOvIHwYlspMWA.crl (hash: A85zx11efDj6l9CWZOZPXDrCtfXM+q5c+TmqpI/bgLw=) 2: 8A941156D7E211EFBF26DA72C4F9AE02.roa (hash: a4pNtK3CV+mQ7nJwDHXCGhAdmpO8QsQ6bTiqCpOkfws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/20BE1A30D7E011EF8B173D2FC4F9AE02/Xv3pjE-_jRGHtoWOvIHwYlspMWA.crl rsync://rpki.apnic.net/member_repository/A9199CFF/20BE1A30D7E011EF8B173D2FC4F9AE02/Xv3pjE-_jRGHtoWOvIHwYlspMWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xv3pjE-_jRGHtoWOvIHwYlspMWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF, serialNumber=5EFDE98C4FBF8D1187B6858EBC81F0625B293160 Validity Not Before: Apr 25 06:38:14 2025 GMT Not After : May 2 06:38:14 2025 GMT Subject: CN=680b2dd6-01a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9d:9d:ad:43:62:6a:7f:00:76:78:73:29:3a: cb:b6:e9:df:a1:1d:3f:10:fb:90:6b:4f:df:91:92: 9a:b2:b9:88:2a:84:a0:e3:98:83:2c:93:19:8d:a3: db:a6:d2:26:fe:90:77:42:a2:ba:ed:48:8a:8d:ee: 8d:fa:8f:9b:bc:e2:aa:8c:03:3b:b9:81:77:08:04: 62:a0:b1:6a:e2:ca:de:32:ce:01:7e:43:5d:0f:a0: 90:53:6b:1d:ff:d7:5f:40:2b:79:59:0f:65:39:94: 45:21:8a:37:6f:b0:31:9d:66:c7:fe:f2:d5:59:ce: 7e:9a:6a:a7:fa:c9:64:8c:b2:22:55:ed:12:3b:89: fc:9f:fe:3a:3f:42:db:8e:3a:0d:05:6b:ff:c7:c5: 2b:ef:77:b3:7c:69:8e:d2:77:c5:52:89:cd:0f:58: fa:48:a0:0b:44:f7:c7:55:7d:9f:e2:ef:04:a1:a5: 10:52:11:00:43:76:26:58:66:5e:05:0a:fd:30:71: 36:da:50:c2:9f:58:16:11:35:95:06:db:77:1c:9f: d2:59:25:b6:a2:34:a7:45:91:b5:6e:e1:25:f6:39: f4:5b:ca:88:2e:6e:91:de:91:f6:c3:ba:05:e8:43: da:c0:f7:4d:3f:92:38:98:9e:03:90:07:af:e0:48: 23:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F7:78:89:1E:D1:45:04:94:00:92:85:AD:71:55:7E:26:7A:D2:A1 X509v3 Authority Key Identifier: keyid:5E:FD:E9:8C:4F:BF:8D:11:87:B6:85:8E:BC:81:F0:62:5B:29:31:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/20BE1A30D7E011EF8B173D2FC4F9AE02/Xv3pjE-_jRGHtoWOvIHwYlspMWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xv3pjE-_jRGHtoWOvIHwYlspMWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/20BE1A30D7E011EF8B173D2FC4F9AE02/Xv3pjE-_jRGHtoWOvIHwYlspMWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:09:64:b9:84:77:54:75:a9:81:3c:d2:11:a7:93:43:5f:01: f9:b3:a3:39:61:bf:49:ae:a2:2f:9d:47:5d:59:9a:3c:ed:f3: 56:29:1e:93:89:d1:43:0a:6f:de:c6:51:26:a1:1f:32:d5:b7: db:b5:80:5d:a0:0d:bb:7f:98:98:78:5f:5d:e9:29:82:80:82: e4:0c:e0:1b:9a:39:d8:0e:b8:b6:26:1d:84:95:d1:69:48:df: 2d:23:1d:f2:49:88:6d:49:2b:c0:da:c3:a1:99:10:11:c4:88: 7b:ce:b7:91:ee:ef:d5:02:a4:9c:64:dd:b5:d1:c4:c7:4c:39: be:14:e4:7f:db:f6:04:36:88:c9:c3:c2:49:8d:c4:78:8b:c9: 1e:87:e0:74:8e:a6:e1:36:5e:e9:e6:76:66:cd:e1:ca:42:d0: a2:ba:48:cf:0d:4e:55:4e:88:86:a3:25:42:68:85:b4:df:92: ed:03:2b:2c:fc:60:b6:18:07:74:cc:93:39:f6:81:03:3b:2d: d3:16:f8:50:13:fd:60:32:50:21:fd:db:3d:d0:dd:f4:a0:18: 4f:bc:b9:41:45:5c:7c:03:01:a7:76:c1:7c:e3:f5:4b:4c:2d: 11:36:9c:a7:34:d8:70:99:b2:72:68:d2:24:c0:79:fd:07:93: ec:93:ea:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OUNGRjExMC8GA1UEBRMoNUVGREU5OEM0RkJGOEQxMTg3QjY4NThFQkM4MUYwNjI1 QjI5MzE2MDAeFw0yNTA0MjUwNjM4MTRaFw0yNTA1MDIwNjM4MTRaMBgxFjAUBgNV BAMTDTY4MGIyZGQ2LTAxYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMnZ2tQ2JqfwB2eHMpOsu26d+hHT8Q+5BrT9+RkpqyuYgqhKDjmIMskxmNo9um 0ib+kHdCorrtSIqN7o36j5u84qqMAzu5gXcIBGKgsWriyt4yzgF+Q10PoJBTax3/ 119AK3lZD2U5lEUhijdvsDGdZsf+8tVZzn6aaqf6yWSMsiJV7RI7ifyf/jo/QtuO Og0Fa//HxSvvd7N8aY7Sd8VSic0PWPpIoAtE98dVfZ/i7wShpRBSEQBDdiZYZl4F Cv0wcTbaUMKfWBYRNZUG23ccn9JZJbaiNKdFkbVu4SX2OfRbyogubpHekfbDugXo Q9rA900/kjiYngOQB6/gSCMLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC/d4iR7R RQSUAJKFrXFVfiZ60qEwHwYDVR0jBBgwFoAUXv3pjE+/jRGHtoWOvIHwYlspMWAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5Q0ZGLzIwQkUxQTMwRDdF MDExRUY4QjE3M0QyRkM0RjlBRTAyL1h2M3BqRS1falJHSHRvV092SUh3WWxzcE1X QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHYzcGpFLV9qUkdIdG9XT3ZJSHdZbHNwTVdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 Q0ZGLzIwQkUxQTMwRDdFMDExRUY4QjE3M0QyRkM0RjlBRTAyL1h2M3BqRS1falJH SHRvV092SUh3WWxzcE1XQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQJZLmEd1R1qYE80hGnk0NfAfmzozlhv0muoi+dR11Zmjzt81YpHpOJ 0UMKb97GUSahHzLVt9u1gF2gDbt/mJh4X13pKYKAguQM4BuaOdgOuLYmHYSV0WlI 3y0jHfJJiG1JK8Daw6GZEBHEiHvOt5Hu79UCpJxk3bXRxMdMOb4U5H/b9gQ2iMnD wkmNxHiLyR6H4HSOpuE2XunmdmbN4cpC0KK6SM8NTlVOiIajJUJohbTfku0DKyz8 YLYYB3TMkzn2gQM7LdMW+FAT/WAyUCH92z3Q3fSgGE+8uUFFXHwDAad2wXzj9UtM LRE2nKc02HCZsnJo0iTAef0Hk+yT6qQ= -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:51 2025 by rpki-client on console.sobornost.net