$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: fvZ5gx9hefDu8s13/ji+ymYSx3X4izI7zAHxVxPBR0M= Subject key identifier: C6:5D:71:40:76:1B:A4:D4:6C:F8:27:25:66:CE:6C:DF:FB:3B:4F:2F Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E00 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1DEB Signing time: Mon 28 Apr 2025 16:12:47 +0000 Manifest this update: Mon 28 Apr 2025 16:12:46 +0000 Manifest next update: Mon 05 May 2025 16:12:46 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: rvAtTHimz97or/a3ALcjCAxMiwoOlEnmzHIqOY9e74w=) 2: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (hash: rt/eyNRwh3HSmHt+oMSmnpP/31deXcLSwt8yukP8jbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7680 (0x1e00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Apr 28 16:12:46 2025 GMT Not After : May 5 16:12:46 2025 GMT Subject: CN=680fa8ff-06b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:24:a0:cc:1d:12:3d:7c:5f:7d:77:e0:c2:e7: 5a:ad:f5:ff:33:73:c7:dd:e6:ee:62:7a:a7:5a:04: 72:8d:f5:97:aa:53:4b:e3:7e:b3:cf:c0:c5:8c:56: a2:a3:51:07:29:ee:93:79:9b:67:02:3f:4e:30:58: 0f:47:f6:1a:d1:bf:86:26:bb:eb:9a:90:25:07:e6: 13:80:2e:cc:b1:e5:e8:26:8d:f9:47:a7:c9:3c:da: 88:0a:06:77:53:74:3f:49:2e:81:0f:f5:cf:23:b4: b0:1c:c4:bd:4f:91:ae:a2:ed:87:ee:62:fc:3e:b5: 21:68:f7:93:b5:a4:33:a4:1f:68:5c:66:c8:69:6d: 54:44:3b:c7:01:c9:00:45:4f:fd:9c:e7:4a:cb:07: 78:f5:3c:ca:43:6b:eb:9c:1e:33:73:4c:1b:cc:e3: ca:1d:f4:f0:95:39:85:8e:42:9e:cb:dc:96:18:38: 00:8a:5d:44:17:77:b5:2b:2b:81:c0:9e:41:c4:9d: 9c:0b:6b:4c:1d:89:9d:24:85:9f:ce:92:7a:6a:c5: 8b:e1:0d:0b:16:18:da:ab:a6:08:9f:dd:f5:76:61: 7e:c3:50:75:f2:33:5b:44:d4:06:72:f0:f0:e4:b1: 18:10:b6:97:ca:9e:58:56:8c:2d:8c:a2:96:21:99: d1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:5D:71:40:76:1B:A4:D4:6C:F8:27:25:66:CE:6C:DF:FB:3B:4F:2F X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c2:40:c0:47:47:86:02:6b:e9:9c:18:dc:52:b1:c4:0f:f0: df:99:ff:04:b3:18:af:29:a4:c8:50:06:1c:a5:49:97:f0:d9: 7d:58:69:fa:ec:ff:1c:7d:cc:e0:7c:4c:4e:fb:39:89:ab:e3: 36:89:94:f8:bd:a7:bf:41:d4:12:40:e7:3e:0d:76:fd:07:4e: ad:95:2d:00:a8:07:94:4f:e3:40:c4:63:9a:1b:4c:1c:80:f0: 7f:60:3b:ae:e0:61:dd:85:05:e5:73:9b:94:5b:59:c9:a7:a9: 1a:35:3e:2a:52:db:01:32:2b:a4:53:47:24:c1:d9:5b:b4:ed: f0:b0:61:5d:04:17:e0:d8:e1:49:2e:5f:2f:5a:fb:cb:d4:93: 79:ea:83:ad:02:c6:09:dd:4f:e0:9b:a6:36:95:cd:1e:10:15: fe:18:3b:bf:db:8f:84:64:66:18:c9:c1:15:38:cd:31:03:fe: 30:31:6a:e0:6f:1b:12:db:b9:09:0b:c6:0b:fd:07:af:b4:84: 85:cb:6c:dc:df:45:a9:ed:28:70:43:a7:f9:5c:d4:a1:1b:fc: 55:27:62:a3:5f:eb:03:33:a2:00:ca:a6:cf:a9:64:3c:58:eb: 47:30:4b:61:b8:00:c5:16:da:50:1f:82:1c:c2:e0:06:10:76: b3:a5:56:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUwNDI4MTYxMjQ2WhcNMjUwNTA1MTYxMjQ2WjAYMRYwFAYD VQQDEw02ODBmYThmZi0wNmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCSgzB0SPXxffXfgwudarfX/M3PH3ebuYnqnWgRyjfWXqlNL436zz8DFjFai o1EHKe6TeZtnAj9OMFgPR/Ya0b+GJrvrmpAlB+YTgC7MseXoJo35R6fJPNqICgZ3 U3Q/SS6BD/XPI7SwHMS9T5Guou2H7mL8PrUhaPeTtaQzpB9oXGbIaW1URDvHAckA RU/9nOdKywd49TzKQ2vrnB4zc0wbzOPKHfTwlTmFjkKey9yWGDgAil1EF3e1KyuB wJ5BxJ2cC2tMHYmdJIWfzpJ6asWL4Q0LFhjaq6YIn931dmF+w1B18jNbRNQGcvDw 5LEYELaXyp5YVowtjKKWIZnREQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZdcUB2 G6TUbPgnJWbObN/7O08vMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHwkDAR0eGAmvpnBjcUrHED/Dfmf8EsxivKaTIUAYcpUmX8Nl9WGn6 7P8cfczgfExO+zmJq+M2iZT4vae/QdQSQOc+DXb9B06tlS0AqAeUT+NAxGOaG0wc gPB/YDuu4GHdhQXlc5uUW1nJp6kaNT4qUtsBMiukU0ckwdlbtO3wsGFdBBfg2OFJ Ll8vWvvL1JN56oOtAsYJ3U/gm6Y2lc0eEBX+GDu/24+EZGYYycEVOM0xA/4wMWrg bxsS27kJC8YL/QevtISFy2zc30Wp7ShwQ6f5XNShG/xVJ2KjX+sDM6IAyqbPqWQ8 WOtHMEthuADFFtpQH4IcwuAGEHazpVbR -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:50 2025 by rpki-client on console.sobornost.net