$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: adeYmt4oHtoP8e28SOWqoiKViJk6oEn+8cIQZKrEni8= Subject key identifier: 18:90:36:07:E7:86:E0:36:A8:AE:26:02:10:DA:5E:47:02:B0:A0:09 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 0122 Signing time: Sun 27 Apr 2025 03:37:49 +0000 Manifest this update: Sun 27 Apr 2025 03:37:48 +0000 Manifest next update: Sun 04 May 2025 03:37:48 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: YHH4jqZtXM9H65fashdWWR1Obz+Ej4I4GxkOkZT9ty8=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: YxGxJeshNnV3Vuuq1mbiFcEZbIJHwrpzAcTYwU5uciY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Apr 27 03:37:48 2025 GMT Not After : May 4 03:37:48 2025 GMT Subject: CN=680da68d-b25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8a:9d:b4:e5:aa:c2:2f:9c:54:13:77:f0:94: 28:01:f7:2e:0b:d2:1b:b0:2b:52:cb:e9:f2:8b:85: d6:50:85:04:05:09:02:d0:dc:84:9b:f9:7c:fb:93: 08:37:23:5e:c6:4b:ca:35:7e:d2:95:5a:7e:25:65: 6c:b8:d7:5d:3d:fc:a4:c7:9b:1e:1c:0e:c6:23:92: 48:4b:98:cc:58:8d:8c:1e:ef:c2:71:d8:60:dd:88: 2c:74:83:78:bd:4e:a1:cb:46:71:a2:36:b0:61:55: 83:6b:e5:e5:a7:8f:9d:a9:f2:09:50:67:79:ba:f4: ee:a1:5c:57:25:03:e5:cb:82:d4:92:76:e3:63:f1: fb:6c:bb:c7:bb:f5:03:0e:e2:86:40:20:e4:bb:10: 24:63:c1:f5:59:ff:4a:09:27:3f:5e:d6:8b:1b:65: a1:46:d1:40:dc:f8:18:65:5f:a0:d0:c0:90:d4:8e: de:76:6f:db:b2:2e:55:b7:dd:d7:88:4f:a5:a6:4e: dc:3d:e4:ba:5c:bd:c7:01:f4:f9:20:4a:4b:9c:86: 29:42:40:40:6f:af:27:8c:66:50:22:e1:e2:1d:3e: 6a:df:ec:5c:7f:4f:69:f4:93:78:c7:e0:ec:7d:ff: 15:06:94:1e:00:c6:70:f2:5a:97:d7:0b:55:e7:de: 52:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:90:36:07:E7:86:E0:36:A8:AE:26:02:10:DA:5E:47:02:B0:A0:09 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:18:ad:c0:27:51:2c:d8:cb:ad:22:84:e3:3b:a1:0c:62:31: 81:4d:a8:de:41:57:a0:af:82:21:fb:ea:8b:f0:30:b6:94:c8: 18:66:93:c2:0a:33:47:da:fe:5c:8b:b2:5b:1e:89:f5:dd:f9: 59:7b:fd:1a:aa:ab:85:38:9d:03:3d:ec:08:52:51:6f:b4:4c: 27:ba:d5:2a:eb:46:ef:24:19:87:c2:e8:f9:c0:26:67:19:20: ae:79:b5:4c:e8:f6:18:55:09:98:0e:bb:cf:08:78:eb:a5:5b: 4a:4f:11:b7:c1:1b:e5:31:db:89:13:ed:a5:07:51:cb:ab:9c: cf:7f:04:8e:91:34:3f:a4:f5:a0:2a:2d:3b:77:bb:00:3b:22: b2:6b:a1:d8:af:b9:57:b9:5b:58:e4:ae:6d:8f:df:6a:81:65: 14:3e:7a:51:ae:25:05:49:28:ba:46:70:c7:cf:96:df:db:92: 75:f6:49:f6:a9:db:c1:30:f3:98:6f:55:4f:b9:27:f5:26:68: 80:e9:2a:05:9e:7b:e8:b9:6d:af:f2:12:cc:1c:4a:1b:60:37: 2f:03:77:46:a1:75:a1:29:11:79:16:c3:3b:47:bc:e9:b7:67: 95:bb:87:b7:c9:2f:d2:f0:1e:5a:2e:6b:0a:6d:a2:19:fa:1c: e1:17:00:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwNDI3MDMzNzQ4WhcNMjUwNTA0MDMzNzQ4WjAYMRYwFAYD VQQDEw02ODBkYTY4ZC1iMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIqdtOWqwi+cVBN38JQoAfcuC9IbsCtSy+nyi4XWUIUEBQkC0NyEm/l8+5MI NyNexkvKNX7SlVp+JWVsuNddPfykx5seHA7GI5JIS5jMWI2MHu/Ccdhg3YgsdIN4 vU6hy0ZxojawYVWDa+Xlp4+dqfIJUGd5uvTuoVxXJQPly4LUknbjY/H7bLvHu/UD DuKGQCDkuxAkY8H1Wf9KCSc/XtaLG2WhRtFA3PgYZV+g0MCQ1I7edm/bsi5Vt93X iE+lpk7cPeS6XL3HAfT5IEpLnIYpQkBAb68njGZQIuHiHT5q3+xcf09p9JN4x+Ds ff8VBpQeAMZw8lqX1wtV595S2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiQNgfn huA2qK4mAhDaXkcCsKAJMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhGK3AJ1Es2MutIoTjO6EMYjGBTajeQVegr4Ih++qL8DC2lMgYZpPC CjNH2v5ci7JbHon13flZe/0aqquFOJ0DPewIUlFvtEwnutUq60bvJBmHwuj5wCZn GSCuebVM6PYYVQmYDrvPCHjrpVtKTxG3wRvlMduJE+2lB1HLq5zPfwSOkTQ/pPWg Ki07d7sAOyKya6HYr7lXuVtY5K5tj99qgWUUPnpRriUFSSi6RnDHz5bf25J19kn2 qdvBMPOYb1VPuSf1JmiA6SoFnnvouW2v8hLMHEobYDcvA3dGoXWhKRF5FsM7R7zp t2eVu4e3yS/S8B5aLmsKbaIZ+hzhFwC2 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:13 2025 by rpki-client on console.sobornost.net