$ rpki-client -vvf rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft File: EawzZ40YMzz-vUmJK1aJnifqY0g.mft (raw, json) Hash identifier: /B2rE0abXc4y6VRu/9RnJ7JA8y0ZF/NcDDOoER65OFE= Subject key identifier: A1:61:9F:2B:0D:70:8D:0E:D2:01:70:18:47:69:9F:41:A7:59:2B:9A Authority key identifier: 11:AC:33:67:8D:18:33:3C:FE:BD:49:89:2B:56:89:9E:27:EA:63:48 Certificate issuer: /CN=A919DA26/serialNumber=11AC33678D18333CFEBD49892B56899E27EA6348 Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EawzZ40YMzz-vUmJK1aJnifqY0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft Manifest number: 01AF Signing time: Sun 27 Apr 2025 02:13:45 +0000 Manifest this update: Sun 27 Apr 2025 02:13:44 +0000 Manifest next update: Sun 04 May 2025 02:13:44 +0000 Files and hashes: 1: EawzZ40YMzz-vUmJK1aJnifqY0g.crl (hash: qh94uCw/uY2mJI7Up81QU/wgEzLUIqnDFlnp2Hs+2kU=) 2: A7119C2E8FEE11ED83F3C543C4F9AE02.roa (hash: +93D0eusWWNntkjGYUSo149HmgTU1FPvVrCP6VBiF1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.crl rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EawzZ40YMzz-vUmJK1aJnifqY0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DA26, serialNumber=11AC33678D18333CFEBD49892B56899E27EA6348 Validity Not Before: Apr 27 02:13:44 2025 GMT Not After : May 4 02:13:44 2025 GMT Subject: CN=680d92d9-1743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:d4:49:a0:e2:23:54:02:85:83:fa:21:95: 19:a1:65:e2:d9:c8:aa:59:43:f9:fc:12:aa:12:49: 49:63:9a:29:be:b5:80:53:62:a1:69:0e:49:df:2a: 7f:e0:f8:f4:07:f0:ef:a7:3f:27:1e:7e:6f:22:97: 5e:7b:bc:40:ca:e0:f6:9e:38:2f:f5:ed:f8:56:80: d0:4c:61:38:83:0d:59:17:4c:41:8f:99:01:62:a9: 09:90:c8:cd:94:e2:86:d5:75:f4:fc:d2:8f:d1:e8: 9e:6e:08:9d:c5:de:e4:cc:dc:1a:69:09:32:d6:86: 00:25:7f:98:52:74:90:2d:50:5d:c5:c9:26:c5:14: f7:0e:d3:e9:7f:a5:f5:af:43:58:99:33:ed:40:fc: 5b:23:73:ac:b7:fb:fe:d8:f7:41:b7:cf:2e:f7:68: 06:16:45:ba:ef:72:18:8a:e4:83:5e:d3:34:3e:1a: 5e:22:ec:78:17:29:21:10:9c:8b:83:6d:01:ba:86: c4:95:55:50:9a:42:80:65:a3:95:8f:e2:3d:4a:2e: 2c:8d:40:4e:f0:4e:da:43:83:f8:7d:d4:7a:1d:31: 89:80:54:97:93:66:11:e6:1c:41:ba:05:20:00:ab: 4b:0d:32:ad:6c:34:b9:73:f1:7e:b9:e8:82:49:7b: 91:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:61:9F:2B:0D:70:8D:0E:D2:01:70:18:47:69:9F:41:A7:59:2B:9A X509v3 Authority Key Identifier: keyid:11:AC:33:67:8D:18:33:3C:FE:BD:49:89:2B:56:89:9E:27:EA:63:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EawzZ40YMzz-vUmJK1aJnifqY0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DA26/9B0720A48FEC11EDB901A743C4F9AE02/EawzZ40YMzz-vUmJK1aJnifqY0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:0c:76:28:05:7d:b1:e1:fa:62:dd:72:b7:02:30:fe:eb:cc: a6:2c:d8:5c:2b:70:c7:05:18:ec:7e:00:79:af:aa:4c:29:3f: 36:6b:08:c2:28:52:a7:e4:7d:a9:39:e9:90:0a:13:6d:be:68: 5b:d8:91:66:1f:ef:b8:ca:ea:f6:d2:01:1d:ac:58:db:99:cd: 57:60:41:59:98:38:34:bb:d9:b9:75:d7:5e:14:d1:9d:6e:a7: 70:ea:da:1d:93:05:65:49:3d:9c:4f:67:a2:0d:cb:87:4b:45: d8:c1:bf:96:0c:90:74:f4:0c:55:ef:1d:0a:11:73:f4:04:ce: 27:12:c3:6c:3e:98:f0:e0:fb:11:8c:8f:b1:13:3b:a9:d8:29: 66:d6:4b:e7:88:e5:14:c8:db:92:15:b0:cb:9f:2f:12:26:b0: c8:ab:e9:a7:f5:f1:5f:f2:24:d0:a5:32:88:30:a3:02:95:88: 76:96:a5:ec:9c:0f:ba:0c:ac:de:3d:bb:11:91:39:6a:63:dd: a9:a0:e0:e8:15:4d:76:94:c7:52:0d:9a:5a:b3:83:f6:fb:9a: f6:4e:6e:b7:cc:c0:97:2e:ba:c2:00:ca:85:c0:52:6a:a7:a9: 82:6b:44:d1:d8:31:37:b6:36:1d:b6:17:4c:2a:80:90:10:cd: 5d:dd:f8:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBMjYxMTAvBgNVBAUTKDExQUMzMzY3OEQxODMzM0NGRUJENDk4OTJCNTY4OTlF MjdFQTYzNDgwHhcNMjUwNDI3MDIxMzQ0WhcNMjUwNTA0MDIxMzQ0WjAYMRYwFAYD VQQDEw02ODBkOTJkOS0xNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJLUSaDiI1QChYP6IZUZoWXi2ciqWUP5/BKqEklJY5opvrWAU2KhaQ5J3yp/ 4Pj0B/Dvpz8nHn5vIpdee7xAyuD2njgv9e34VoDQTGE4gw1ZF0xBj5kBYqkJkMjN lOKG1XX0/NKP0eiebgidxd7kzNwaaQky1oYAJX+YUnSQLVBdxckmxRT3DtPpf6X1 r0NYmTPtQPxbI3Ost/v+2PdBt88u92gGFkW673IYiuSDXtM0PhpeIux4FykhEJyL g20BuobElVVQmkKAZaOVj+I9Si4sjUBO8E7aQ4P4fdR6HTGJgFSXk2YR5hxBugUg AKtLDTKtbDS5c/F+ueiCSXuRkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFhnysN cI0O0gFwGEdpn0GnWSuaMB8GA1UdIwQYMBaAFBGsM2eNGDM8/r1JiStWiZ4n6mNI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REEyNi85QjA3MjBBNDhG RUMxMUVEQjkwMUE3NDNDNEY5QUUwMi9FYXd6WjQwWU16ei12VW1KSzFhSm5pZnFZ MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Vhd3paNDBZTXp6LXZVbUpLMWFKbmlmcVkwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 REEyNi85QjA3MjBBNDhGRUMxMUVEQjkwMUE3NDNDNEY5QUUwMi9FYXd6WjQwWU16 ei12VW1KSzFhSm5pZnFZMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFDHYoBX2x4fpi3XK3AjD+68ymLNhcK3DHBRjsfgB5r6pMKT82awjC KFKn5H2pOemQChNtvmhb2JFmH++4yur20gEdrFjbmc1XYEFZmDg0u9m5dddeFNGd bqdw6todkwVlST2cT2eiDcuHS0XYwb+WDJB09AxV7x0KEXP0BM4nEsNsPpjw4PsR jI+xEzup2Clm1kvniOUUyNuSFbDLny8SJrDIq+mn9fFf8iTQpTKIMKMClYh2lqXs nA+6DKzePbsRkTlqY92poODoFU12lMdSDZpas4P2+5r2Tm63zMCXLrrCAMqFwFJq p6mCa0TR2DE3tjYdthdMKoCQEM1d3fgh -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:01 2025 by rpki-client on console.sobornost.net