$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft File: ggZKEDz1DwHRlFMAajhs04c5G-Y.mft (raw, json) Hash identifier: 4Tx3/z94dvXhIxm60Ye3Q/OpaItvgYczVhMb5Pfz7BQ= Subject key identifier: 85:BC:83:BB:22:E4:10:5A:24:61:A8:EC:ED:84:8E:F6:93:28:D4:1A Authority key identifier: 82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 Certificate issuer: /CN=A919CA1B/serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft Manifest number: 01BF Signing time: Sun 27 Apr 2025 02:04:16 +0000 Manifest this update: Sun 27 Apr 2025 02:04:16 +0000 Manifest next update: Sun 04 May 2025 02:04:16 +0000 Files and hashes: 1: ggZKEDz1DwHRlFMAajhs04c5G-Y.crl (hash: cdYlxf17B3Mmn4YhADg473VNFtS3+vFGV6qlmLVtv9M=) 2: D3B49A1676CA11EDAA4FE042C4F9AE02.roa (hash: MMkdhzYrtB2EaUzaUeaUoWgtYA29GMYgRCaFiVCPSo0=) 3: D318E67076CA11EDAA4FE042C4F9AE02.roa (hash: dCssZ98YqQlWBb/mCVwsQnrI9ONxqFmsNypt7KWWLSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:04:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA1B, serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Validity Not Before: Apr 27 02:04:16 2025 GMT Not After : May 4 02:04:16 2025 GMT Subject: CN=680d90a0-5909 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a9:5b:ba:19:c4:8c:03:e7:71:e2:1d:07:c3: ed:c5:bb:d9:55:37:ea:87:0e:8b:60:e8:9e:12:78: 79:ca:36:63:2f:1d:84:84:df:d7:e7:dc:1f:87:54: e8:ac:89:7d:8d:ab:75:08:58:73:fd:15:eb:09:98: a6:42:61:68:be:2d:4d:05:b4:ef:ca:24:18:df:b1: 05:02:bf:34:c3:9f:6d:50:dc:23:b6:1d:6b:f9:84: ff:b5:de:74:e0:cc:a1:87:08:9b:3f:e8:54:ab:12: 08:a5:d7:9d:bb:b2:ff:4f:00:c0:3c:31:e9:7c:f1: 35:d5:9e:9b:05:61:a3:15:fd:5e:87:36:0f:e9:d2: 95:a9:13:9a:4a:90:66:49:0d:b8:85:61:d8:af:f3: 77:f7:68:e4:2e:89:57:c0:45:e7:95:81:61:6f:9d: d4:0e:a4:5c:99:dc:86:4a:78:8e:4d:84:d9:1d:2c: cd:79:47:c3:04:0f:15:a0:8e:6c:52:5c:bb:ab:2c: 05:82:e0:a1:c7:e2:7f:ba:c5:ec:22:81:ae:fb:8a: 96:5e:83:ce:81:63:0e:03:c5:f1:da:36:6e:58:9d: 13:64:02:bd:eb:43:bb:9c:08:95:61:74:35:99:71: fe:31:bf:5f:6e:77:3d:fe:5a:b2:6d:fc:f7:ab:48: ad:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:BC:83:BB:22:E4:10:5A:24:61:A8:EC:ED:84:8E:F6:93:28:D4:1A X509v3 Authority Key Identifier: keyid:82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e5:28:9c:25:e4:83:8a:ec:c5:d9:81:43:a2:fc:28:c8:a3: 34:8c:b0:7f:24:5a:17:ac:67:d1:26:9c:3c:7e:d9:2f:e3:02: 7c:a5:2b:95:8c:fb:72:9b:ce:77:11:fd:d2:2f:76:41:42:4d: 91:bb:7b:37:4b:a3:fd:73:64:07:1a:ac:0d:0a:c0:1b:91:8d: 47:d8:a5:86:bb:ed:0a:50:a1:a3:5a:ad:c8:be:0d:49:90:03: 3b:bc:8d:5e:dd:0e:90:78:4f:38:55:1c:26:a3:4d:73:1a:78: 15:4c:a0:31:ab:19:0e:ad:28:d9:b4:42:de:5b:c7:41:42:e6: c2:88:76:cd:25:1b:50:39:5b:a8:38:12:35:8d:09:9f:33:a2: c1:62:be:b0:67:6c:60:92:e8:03:ee:3c:f5:ff:03:fe:f0:75: 61:0b:85:6f:0d:73:63:d8:bb:9e:a4:0e:06:17:f3:37:78:0b: 43:af:f2:6a:61:78:05:fc:9c:7e:2f:b6:bc:78:77:fe:cf:7f: b0:31:1d:bf:83:8f:29:b6:3b:bd:78:32:aa:45:f4:65:ed:2b: 12:0b:88:a3:75:c8:f2:e4:fc:3b:17:75:df:0b:b8:ac:22:55: e3:1b:c9:09:bb:ad:e6:56:3b:c4:eb:75:ce:6b:04:bd:a0:86: d8:92:2d:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMUIxMTAvBgNVBAUTKDgyMDY0QTEwM0NGNTBGMDFEMTk0NTMwMDZBMzg2Q0Qz ODczOTFCRTYwHhcNMjUwNDI3MDIwNDE2WhcNMjUwNTA0MDIwNDE2WjAYMRYwFAYD VQQDEw02ODBkOTBhMC01OTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKlbuhnEjAPnceIdB8PtxbvZVTfqhw6LYOieEnh5yjZjLx2EhN/X59wfh1To rIl9jat1CFhz/RXrCZimQmFovi1NBbTvyiQY37EFAr80w59tUNwjth1r+YT/td50 4MyhhwibP+hUqxIIpdedu7L/TwDAPDHpfPE11Z6bBWGjFf1ehzYP6dKVqROaSpBm SQ24hWHYr/N392jkLolXwEXnlYFhb53UDqRcmdyGSniOTYTZHSzNeUfDBA8VoI5s Uly7qywFguChx+J/usXsIoGu+4qWXoPOgWMOA8Xx2jZuWJ0TZAK960O7nAiVYXQ1 mXH+Mb9fbnc9/lqybfz3q0it0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIW8g7si 5BBaJGGo7O2EjvaTKNQaMB8GA1UdIwQYMBaAFIIGShA89Q8B0ZRTAGo4bNOHORvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExQi8xNDQ3ODI5QTc2 QkQxMUVEQkI0ODk0N0RDNEY5QUUwMi9nZ1pLRUR6MUR3SFJsRk1BYWpoczA0YzVH LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnWktFRHoxRHdIUmxGTUFhamhzMDRjNUctWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0ExQi8xNDQ3ODI5QTc2QkQxMUVEQkI0ODk0N0RDNEY5QUUwMi9nZ1pLRUR6MUR3 SFJsRk1BYWpoczA0YzVHLVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM5SicJeSDiuzF2YFDovwoyKM0jLB/JFoXrGfRJpw8ftkv4wJ8pSuV jPtym853Ef3SL3ZBQk2Ru3s3S6P9c2QHGqwNCsAbkY1H2KWGu+0KUKGjWq3Ivg1J kAM7vI1e3Q6QeE84VRwmo01zGngVTKAxqxkOrSjZtELeW8dBQubCiHbNJRtQOVuo OBI1jQmfM6LBYr6wZ2xgkugD7jz1/wP+8HVhC4VvDXNj2LuepA4GF/M3eAtDr/Jq YXgF/Jx+L7a8eHf+z3+wMR2/g48ptju9eDKqRfRl7SsSC4ijdcjy5Pw7F3XfC7is IlXjG8kJu63mVjvE63XOawS9oIbYki1A -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:01 2025 by rpki-client on console.sobornost.net