$ rpki-client -vvf rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft File: u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft (raw, json) Hash identifier: RPGPqauP2/hl+BKYE4KIZ29KS8/zR6pjTuFY7A1o6Wo= Subject key identifier: 58:5E:C9:D7:31:AF:94:B1:4F:96:76:D5:AC:40:CA:76:DC:6F:88:12 Authority key identifier: BB:DB:7B:D0:B8:E9:65:6E:71:E1:99:4E:19:61:87:45:70:8F:CE:F1 Certificate issuer: /CN=A919B824/serialNumber=BBDB7BD0B8E9656E71E1994E19618745708FCEF1 Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft Manifest number: 08F3 Signing time: Mon 28 Apr 2025 20:49:32 +0000 Manifest this update: Mon 28 Apr 2025 20:49:32 +0000 Manifest next update: Mon 05 May 2025 20:49:32 +0000 Files and hashes: 1: u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl (hash: kMcWVhK1FLJceWg3pgOhcj7XyyiJwj5Ywtl42CIVZkQ=) 2: EEC7D1CAA6C911EA8079FD17C4F9AE02.roa (hash: ggnDaBNF34HQg+n5+et1BdldDeh00Zq26oas41hsO6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B824, serialNumber=BBDB7BD0B8E9656E71E1994E19618745708FCEF1 Validity Not Before: Apr 28 20:49:32 2025 GMT Not After : May 5 20:49:32 2025 GMT Subject: CN=680fe9dc-7b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:72:45:8f:7d:4c:87:76:5a:c5:1c:4b:6c:83: 55:aa:97:91:56:a8:9a:b3:ac:5e:b0:ad:d8:60:ba: e3:20:7d:48:18:85:78:47:e5:a7:15:34:a4:99:b2: a0:fc:46:7d:26:72:e7:6d:dc:54:5e:20:51:f8:53: 97:30:c9:04:83:ae:d4:5e:13:f8:c2:b8:02:1e:45: 28:d6:14:f9:d5:ae:d2:f1:76:75:91:68:1c:af:48: 8a:cc:43:64:32:95:74:06:22:ee:bd:09:d3:fd:81: b4:49:85:dc:e9:17:5e:f0:02:69:93:24:eb:31:d2: c0:1b:bd:cc:c0:de:fa:94:86:29:8f:42:a2:e2:ef: 52:01:c5:30:82:1e:a0:a8:8d:2e:61:b1:95:65:b3: fc:53:cc:6b:a1:34:72:94:ce:12:44:2b:09:09:b7: 7b:e8:64:40:aa:9f:07:c3:f3:47:d0:7c:a0:a4:14: ed:ef:39:e3:fd:14:66:97:88:15:f6:eb:5a:e6:49: f4:5d:64:97:a4:f4:5b:72:3a:bc:59:46:3b:a4:7c: b9:ee:85:55:9b:51:46:47:e0:db:36:c7:57:30:97: 0a:c4:1a:8a:1d:72:83:5b:1e:23:f9:7d:34:e8:a6: 71:4e:19:18:b6:6e:cb:e9:6f:e9:d1:71:a8:be:24: ad:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5E:C9:D7:31:AF:94:B1:4F:96:76:D5:AC:40:CA:76:DC:6F:88:12 X509v3 Authority Key Identifier: keyid:BB:DB:7B:D0:B8:E9:65:6E:71:E1:99:4E:19:61:87:45:70:8F:CE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u9t70LjpZW5x4ZlOGWGHRXCPzvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B824/734BAD16A6C711EABD305010C4F9AE02/u9t70LjpZW5x4ZlOGWGHRXCPzvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:68:c1:ed:aa:93:a6:b8:9c:5f:98:08:9b:33:f4:80:88:4f: 0f:64:48:9e:b4:63:70:78:cd:7b:c1:d8:a7:d0:1d:5b:da:46: 36:66:88:ad:9e:ae:4e:c6:3f:e2:8d:0a:1d:58:3e:d2:04:24: bd:62:44:1f:dc:36:00:49:d2:e2:0a:33:a6:2b:30:a8:12:3d: f6:75:5d:03:39:94:e6:f7:d3:ea:b5:18:e6:62:6c:24:07:29: c5:42:d6:a6:0f:8e:1a:e3:bc:5c:69:92:7e:53:e3:05:9a:06: 2e:dc:29:53:8e:2c:98:a0:03:15:a6:0c:20:07:3a:58:22:35: 1a:27:7f:3c:e6:56:1d:1e:56:3f:71:86:47:2c:b8:de:4d:f1: 9b:9f:66:69:0b:bb:62:d5:69:5d:1b:9b:9e:13:ca:b2:e2:c9: ec:51:6b:1b:f1:bd:72:80:16:63:00:73:d4:a6:25:0d:29:38: 59:96:9b:cd:c6:47:47:0f:7c:54:cb:8f:2f:e4:c8:4d:b4:ae: 3e:f5:0f:ee:67:34:41:31:9f:a2:75:c9:40:d2:a0:b0:38:f7: 6e:35:de:e7:54:87:e8:e2:34:58:2a:1c:94:44:0b:22:7e:ef: 7f:58:e4:f8:3a:ca:19:ad:c7:a9:5a:e2:54:7f:67:9c:e1:a9: 46:43:83:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI4MjQxMTAvBgNVBAUTKEJCREI3QkQwQjhFOTY1NkU3MUUxOTk0RTE5NjE4NzQ1 NzA4RkNFRjEwHhcNMjUwNDI4MjA0OTMyWhcNMjUwNTA1MjA0OTMyWjAYMRYwFAYD VQQDEw02ODBmZTlkYy03YjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXJFj31Mh3ZaxRxLbINVqpeRVqias6xesK3YYLrjIH1IGIV4R+WnFTSkmbKg /EZ9JnLnbdxUXiBR+FOXMMkEg67UXhP4wrgCHkUo1hT51a7S8XZ1kWgcr0iKzENk MpV0BiLuvQnT/YG0SYXc6Rde8AJpkyTrMdLAG73MwN76lIYpj0Ki4u9SAcUwgh6g qI0uYbGVZbP8U8xroTRylM4SRCsJCbd76GRAqp8Hw/NH0HygpBTt7znj/RRml4gV 9uta5kn0XWSXpPRbcjq8WUY7pHy57oVVm1FGR+DbNsdXMJcKxBqKHXKDWx4j+X00 6KZxThkYtm7L6W/p0XGoviStAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFheydcx r5SxT5Z21axAynbcb4gSMB8GA1UdIwQYMBaAFLvbe9C46WVuceGZThlhh0Vwj87x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjgyNC83MzRCQUQxNkE2 QzcxMUVBQkQzMDUwMTBDNEY5QUUwMi91OXQ3MExqcFpXNXg0WmxPR1dHSFJYQ1B6 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5dDcwTGpwWlc1eDRabE9HV0dIUlhDUHp2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjgyNC83MzRCQUQxNkE2QzcxMUVBQkQzMDUwMTBDNEY5QUUwMi91OXQ3MExqcFpX NXg0WmxPR1dHSFJYQ1B6dkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAaMHtqpOmuJxfmAibM/SAiE8PZEietGNweM17wdin0B1b2kY2Zoit nq5Oxj/ijQodWD7SBCS9YkQf3DYASdLiCjOmKzCoEj32dV0DOZTm99PqtRjmYmwk BynFQtamD44a47xcaZJ+U+MFmgYu3ClTjiyYoAMVpgwgBzpYIjUaJ3885lYdHlY/ cYZHLLjeTfGbn2ZpC7ti1WldG5ueE8qy4snsUWsb8b1ygBZjAHPUpiUNKThZlpvN xkdHD3xUy48v5MhNtK4+9Q/uZzRBMZ+idclA0qCwOPduNd7nVIfo4jRYKhyURAsi fu9/WOT4OsoZrcepWuJUf2ec4alGQ4O1 -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:40 2025 by rpki-client on console.sobornost.net