$ rpki-client -vvf rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft File: nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft (raw, json) Hash identifier: CceJ0vZDqqtRNKdmOtChOi/HXl69iUWc0cStt6iTEbU= Subject key identifier: 61:9E:16:71:5A:F5:C0:14:B9:3A:F3:8C:A6:F6:A5:A3:21:42:56:1E Authority key identifier: 9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 Certificate issuer: /CN=A9175906/serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft Manifest number: 03E2 Signing time: Sun 15 Jun 2025 00:16:24 +0000 Manifest this update: Sun 15 Jun 2025 00:16:24 +0000 Manifest next update: Sun 22 Jun 2025 00:16:24 +0000 Files and hashes: 1: nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl (hash: lB2ibaBrBIz/UcTqWy4U0oPUogEg3WiauZLuvOLbbBg=) 2: 27A6D5CAAF1C11EC94FF9534C4F9AE02.roa (hash: tuiOvz0EtN5gYIcDBljazRXB+32WdpyvWw0LqnkHLT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175906, serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Validity Not Before: Jun 15 00:16:24 2025 GMT Not After : Jun 22 00:16:24 2025 GMT Subject: CN=684e10d8-9119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:d0:b0:cb:86:6f:23:1d:41:39:8f:dd:56: c2:26:ab:7d:4e:e3:39:e2:2c:75:af:68:8a:70:74: f4:cc:0f:0b:71:60:5c:ff:ef:ac:1a:ed:c7:2f:02: fb:01:3b:94:17:99:56:e8:32:b5:f9:bd:a3:24:2a: 3f:ea:53:1c:db:57:1b:60:e9:2e:27:88:33:af:ba: 0f:b8:7a:e9:32:ed:f8:eb:fb:74:91:d8:02:0e:cd: 28:c4:03:c6:53:89:a2:e6:e3:39:59:ae:e2:c7:15: 92:96:34:ed:fa:74:64:fd:d2:e0:d4:50:f9:18:39: 29:20:eb:33:44:19:40:4b:4b:02:68:72:fd:53:c0: 6c:00:fb:33:ac:fc:c0:90:7f:73:f9:3d:f3:e0:34: 92:44:44:93:6a:21:f0:ba:2b:a3:09:7d:7d:e6:73: 55:cb:02:43:d2:5d:94:e6:fa:af:77:c1:3e:b2:8d: 57:b2:c8:f3:69:b6:3c:97:2e:08:f1:0c:2c:3d:8b: 33:76:d9:fe:08:30:65:06:49:0d:1b:a0:aa:af:1c: a7:b6:ec:28:e9:bb:f0:84:c0:d6:ff:bc:be:3a:62: 8c:38:44:0e:16:52:a5:bc:ea:0e:0b:4b:1f:9c:a9: 7a:17:f3:3c:57:68:c1:bd:ec:bf:b9:ee:cb:92:ec: 58:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:9E:16:71:5A:F5:C0:14:B9:3A:F3:8C:A6:F6:A5:A3:21:42:56:1E X509v3 Authority Key Identifier: keyid:9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:5d:6f:10:ec:7e:34:9c:34:f7:e0:0c:d1:a0:e9:2d:bf:ac: c1:d6:a0:3d:73:a2:db:55:c3:ea:8f:f1:05:17:20:8f:c5:40: c6:01:1b:d6:ed:5c:18:ef:64:91:94:ed:f7:ed:28:2e:59:a2: 1c:a4:5a:24:8d:bc:e4:e4:fb:0d:af:a2:04:51:8f:9e:94:b9: 70:4a:0a:c5:0d:8a:c4:22:76:98:a2:4f:13:a6:62:d5:78:0d: 09:29:7e:f0:4f:0c:7e:63:27:40:21:cc:d3:c7:1a:b5:4b:1c: d0:f9:fb:0a:77:e6:21:cd:e4:f7:03:98:4f:db:12:94:19:1d: fd:26:6c:a8:4f:b7:88:2a:f1:96:16:12:3c:7b:a6:a7:34:92: 36:ee:eb:44:86:82:3d:01:7a:11:15:5c:b2:e4:00:a8:9b:34: 13:bf:e4:26:b8:23:53:28:b7:3b:37:58:b9:65:c9:53:6b:9d: 40:54:b1:06:38:e4:da:c0:a2:bd:9a:ee:22:54:5d:99:11:48: 83:63:f1:92:1e:22:68:8f:6c:96:e3:97:be:03:4f:f3:6c:7f: 09:d4:d5:23:14:02:b5:27:be:81:fe:7f:ca:72:ff:9c:6a:3d: 14:f3:5d:09:f1:73:3a:18:0b:72:18:3c:ce:91:de:c4:25:5e: 4f:d3:f6:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5MDYxMTAvBgNVBAUTKDlEMUJBQ0Q0MEE4MjU5OTI0Q0QyQzU2OTUxQTQzRTBC Rjg3MkQ2ODYwHhcNMjUwNjE1MDAxNjI0WhcNMjUwNjIyMDAxNjI0WjAYMRYwFAYD VQQDEw02ODRlMTBkOC05MTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu93QsMuGbyMdQTmP3VbCJqt9TuM54ix1r2iKcHT0zA8LcWBc/++sGu3HLwL7 ATuUF5lW6DK1+b2jJCo/6lMc21cbYOkuJ4gzr7oPuHrpMu346/t0kdgCDs0oxAPG U4mi5uM5Wa7ixxWSljTt+nRk/dLg1FD5GDkpIOszRBlAS0sCaHL9U8BsAPszrPzA kH9z+T3z4DSSRESTaiHwuiujCX195nNVywJD0l2U5vqvd8E+so1XssjzabY8ly4I 8QwsPYszdtn+CDBlBkkNG6Cqrxyntuwo6bvwhMDW/7y+OmKMOEQOFlKlvOoOC0sf nKl6F/M8V2jBvey/ue7LkuxYhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGeFnFa 9cAUuTrzjKb2paMhQlYeMB8GA1UdIwQYMBaAFJ0brNQKglmSTNLFaVGkPgv4ctaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTkwNi84Q0NDQ0JBNDgz RTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1daSk0wc1ZwVWFRLUNfaHkx b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25SdXMxQXFDV1pKTTBzVnBVYVEtQ19oeTFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTkwNi84Q0NDQ0JBNDgzRTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1da Sk0wc1ZwVWFRLUNfaHkxb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKXW8Q7H40nDT34AzRoOktv6zB1qA9c6LbVcPqj/EFFyCPxUDGARvW 7VwY72SRlO337SguWaIcpFokjbzk5PsNr6IEUY+elLlwSgrFDYrEInaYok8TpmLV eA0JKX7wTwx+YydAIczTxxq1SxzQ+fsKd+YhzeT3A5hP2xKUGR39JmyoT7eIKvGW FhI8e6anNJI27utEhoI9AXoRFVyy5AComzQTv+QmuCNTKLc7N1i5ZclTa51AVLEG OOTawKK9mu4iVF2ZEUiDY/GSHiJoj2yW45e+A0/zbH8J1NUjFAK1J76B/n/Kcv+c aj0U810J8XM6GAtyGDzOkd7EJV5P0/bC -----END CERTIFICATE-----Generated at Sun Jun 15 08:37:33 2025 by rpki-client