$ rpki-client -vvf rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft File: 4TxHTdRFcajO9AZpTgStasYbJWY.mft (raw, json) Hash identifier: kTTxBo81xAQDCJfdsp5lUICoptn3z3AGoy0StRURYZI= Subject key identifier: 1F:CC:3A:6B:A4:0C:9F:51:3B:37:C1:F5:4A:D4:EA:C7:06:75:67:A5 Authority key identifier: E1:3C:47:4D:D4:45:71:A8:CE:F4:06:69:4E:04:AD:6A:C6:1B:25:66 Certificate issuer: /CN=A919D313/serialNumber=E13C474DD44571A8CEF406694E04AD6AC61B2566 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft Manifest number: 011E Signing time: Sun 27 Apr 2025 03:41:02 +0000 Manifest this update: Sun 27 Apr 2025 03:41:01 +0000 Manifest next update: Sun 04 May 2025 03:41:01 +0000 Files and hashes: 1: 4TxHTdRFcajO9AZpTgStasYbJWY.crl (hash: WHJ0aL/M6aTtunOJL3PeJOIFsQHVjXpwuAU1NXNlY+4=) 2: 658CF9F2721411EEAC707910C4F9AE02.roa (hash: ZZDUXnqWBktvzLbgCqaw7CbFJvjtpkfDVEMt//M7XVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.crl rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D313, serialNumber=E13C474DD44571A8CEF406694E04AD6AC61B2566 Validity Not Before: Apr 27 03:41:01 2025 GMT Not After : May 4 03:41:01 2025 GMT Subject: CN=680da74d-9eaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e5:0f:46:57:b8:3c:78:fa:c9:0f:54:83:15: 5b:67:00:1b:b8:41:dd:87:f5:47:39:b9:e9:b8:d8: 63:7f:59:25:5a:5a:b0:cd:15:78:7f:70:6f:80:37: 70:2b:4c:bd:42:ea:f6:a4:74:8b:3c:f5:24:7b:05: fe:72:17:66:95:05:cc:38:7c:69:ff:df:23:d4:64: d3:fa:25:8c:53:76:b2:c0:e2:16:ca:78:fb:69:02: 00:e7:02:2a:54:a4:41:dd:fa:21:98:b0:ba:4c:fb: b5:d3:3b:ca:81:48:22:f9:1e:00:5d:41:36:ce:aa: 83:a4:9c:f6:f1:86:e2:ec:67:7f:fd:95:9d:07:dc: cd:b3:76:d4:d3:81:c0:07:af:b2:71:83:aa:2d:ef: 6e:2d:73:39:16:c7:be:61:b0:f5:10:2e:43:67:69: 6d:e5:ae:ca:e4:d3:b5:60:e7:da:c8:75:fe:5b:c8: 54:ae:5a:a5:2e:2b:34:6a:2e:4e:7a:70:e3:db:5f: ce:c5:8e:90:dd:0d:39:4e:03:b1:85:36:c0:f1:78: 15:9f:bc:4e:ff:c7:83:69:ea:7f:b0:5b:6d:0a:e5: de:1b:a8:03:77:39:56:08:01:fd:ec:93:36:67:e6: 7f:9c:18:08:1d:6e:d7:49:ea:14:5b:33:ba:f6:07: f5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:CC:3A:6B:A4:0C:9F:51:3B:37:C1:F5:4A:D4:EA:C7:06:75:67:A5 X509v3 Authority Key Identifier: keyid:E1:3C:47:4D:D4:45:71:A8:CE:F4:06:69:4E:04:AD:6A:C6:1B:25:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:b6:52:35:75:06:fa:ce:b3:b5:5e:8f:92:88:cf:d3:b8:3f: d4:b4:66:11:8c:2d:b5:e1:45:af:52:3a:7e:1c:53:35:d5:76: c3:2e:02:e1:b2:6f:43:75:b2:89:6f:40:30:48:ab:e0:8b:6d: e4:35:d3:62:b4:0c:33:e4:ff:43:0c:c0:72:d0:09:0e:4c:87: 1f:d6:0f:0c:dd:20:7d:5d:05:d4:8d:71:0e:b2:a7:1a:6b:98: 51:1a:cd:a2:a4:05:7b:a9:23:a4:ec:6f:fe:f4:4e:d6:5b:6f: ba:cf:c0:4e:5c:c0:e5:62:c2:fb:8f:bb:95:a7:d7:a6:37:81: e1:90:dd:ee:e1:cd:4f:12:f5:e0:b6:8b:4e:f1:a0:a1:56:ab: 07:cf:8f:1d:3e:e0:a2:7c:8c:07:10:1f:3e:f8:5c:a9:72:e8: 9d:97:c2:38:f3:f1:28:3a:f5:89:90:1e:9c:3e:18:fe:c4:a6: 6a:d4:7f:b1:b2:38:68:5f:84:ac:13:31:d4:7d:1a:6f:f1:74: c7:0e:d1:e7:01:d0:92:2b:cf:44:2e:2c:2d:0c:cf:7a:f0:d9: 87:67:51:14:a4:79:80:2c:57:b9:0b:59:6c:bb:31:39:9b:4b: 9a:0d:f9:94:b5:36:0d:2a:ca:c1:4a:09:d9:ca:98:a3:0d:e0: c6:db:35:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzMTMxMTAvBgNVBAUTKEUxM0M0NzRERDQ0NTcxQThDRUY0MDY2OTRFMDRBRDZB QzYxQjI1NjYwHhcNMjUwNDI3MDM0MTAxWhcNMjUwNTA0MDM0MTAxWjAYMRYwFAYD VQQDEw02ODBkYTc0ZC05ZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeUPRle4PHj6yQ9UgxVbZwAbuEHdh/VHObnpuNhjf1klWlqwzRV4f3BvgDdw K0y9Qur2pHSLPPUkewX+chdmlQXMOHxp/98j1GTT+iWMU3aywOIWynj7aQIA5wIq VKRB3fohmLC6TPu10zvKgUgi+R4AXUE2zqqDpJz28Ybi7Gd//ZWdB9zNs3bU04HA B6+ycYOqLe9uLXM5Fse+YbD1EC5DZ2lt5a7K5NO1YOfayHX+W8hUrlqlLis0ai5O enDj21/OxY6Q3Q05TgOxhTbA8XgVn7xO/8eDaep/sFttCuXeG6gDdzlWCAH97JM2 Z+Z/nBgIHW7XSeoUWzO69gf1MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/MOmuk DJ9ROzfB9UrU6scGdWelMB8GA1UdIwQYMBaAFOE8R03URXGozvQGaU4ErWrGGyVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDMxMy8wRjIwNzk3NjZF RjUxMUVFODREQTY5ODJDNEY5QUUwMi80VHhIVGRSRmNhak85QVpwVGdTdGFzWWJK V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRUeEhUZFJGY2FqTzlBWnBUZ1N0YXNZYkpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDMxMy8wRjIwNzk3NjZFRjUxMUVFODREQTY5ODJDNEY5QUUwMi80VHhIVGRSRmNh ak85QVpwVGdTdGFzWWJKV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGtlI1dQb6zrO1Xo+SiM/TuD/UtGYRjC214UWvUjp+HFM11XbDLgLh sm9DdbKJb0AwSKvgi23kNdNitAwz5P9DDMBy0AkOTIcf1g8M3SB9XQXUjXEOsqca a5hRGs2ipAV7qSOk7G/+9E7WW2+6z8BOXMDlYsL7j7uVp9emN4HhkN3u4c1PEvXg totO8aChVqsHz48dPuCifIwHEB8++Fypcuidl8I48/EoOvWJkB6cPhj+xKZq1H+x sjhoX4SsEzHUfRpv8XTHDtHnAdCSK89ELiwtDM968NmHZ1EUpHmALFe5C1lsuzE5 m0uaDfmUtTYNKsrBSgnZypijDeDG2zWx -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:01 2025 by rpki-client on console.sobornost.net