$ rpki-client -vvf rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft File: nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft (raw, json) Hash identifier: UL8fxg7KH3vhQzBFizIYsg9Fcec1H/y0Lr3D16Lb0RU= Subject key identifier: B4:B6:87:E3:08:65:2A:2F:A8:7C:ED:65:E1:3D:6C:69:99:0F:B3:98 Authority key identifier: 9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 Certificate issuer: /CN=A9175906/serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft Manifest number: 03C9 Signing time: Fri 25 Apr 2025 00:23:55 +0000 Manifest this update: Fri 25 Apr 2025 00:23:55 +0000 Manifest next update: Fri 02 May 2025 00:23:55 +0000 Files and hashes: 1: nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl (hash: bt7xp00IK8v27Bc8x/CsY5WXuSEb2/VRKHAxvJFD1PY=) 2: 27A6D5CAAF1C11EC94FF9534C4F9AE02.roa (hash: tuiOvz0EtN5gYIcDBljazRXB+32WdpyvWw0LqnkHLT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175906, serialNumber=9D1BACD40A8259924CD2C56951A43E0BF872D686 Validity Not Before: Apr 25 00:23:55 2025 GMT Not After : May 2 00:23:55 2025 GMT Subject: CN=680ad61b-c841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:43:fa:89:57:fe:e0:c2:ab:a5:78:37:61:9b: 59:0e:a0:83:c8:5b:39:4a:9f:5b:92:33:54:75:74: b8:65:86:8e:07:02:a4:10:58:cf:d4:4f:f3:bb:50: 15:30:f6:cc:cf:f8:75:6d:e3:1f:6a:71:5a:38:82: 28:b8:57:e1:ee:ae:12:bc:81:c5:89:62:02:da:9e: eb:2f:b9:87:41:c0:f9:8a:e7:eb:d5:44:3c:1f:14: ec:3a:9f:b5:26:33:d9:41:d6:fa:21:09:5c:4c:f7: 63:fb:90:45:b1:46:93:b9:40:c7:f6:6f:a3:06:09: 6e:88:96:51:b6:8e:26:fb:1f:2a:33:c0:f9:64:cc: d4:76:df:5b:b3:76:a8:81:4a:a7:8e:1e:71:97:d4: bd:b8:84:ec:6b:42:77:45:ee:44:8f:28:6a:6d:87: a4:79:33:04:27:97:fb:39:58:78:37:1c:1e:8e:6e: c3:9c:1d:3f:0c:dd:d3:e6:4c:a1:cd:10:14:2d:4b: 26:d4:c6:31:65:dc:7d:5c:50:40:37:b1:f7:96:07: 4e:24:28:e7:7a:83:8b:38:ce:a0:10:6d:c6:fd:f9: 14:57:cc:d2:25:9c:7b:25:53:15:bd:d1:e6:e3:c2: 32:a6:fc:5f:e8:0b:6a:0c:b4:86:1b:b6:ab:7b:be: f9:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B6:87:E3:08:65:2A:2F:A8:7C:ED:65:E1:3D:6C:69:99:0F:B3:98 X509v3 Authority Key Identifier: keyid:9D:1B:AC:D4:0A:82:59:92:4C:D2:C5:69:51:A4:3E:0B:F8:72:D6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nRus1AqCWZJM0sVpUaQ-C_hy1oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175906/8CCCCBA483E711ECA0034F6BC4F9AE02/nRus1AqCWZJM0sVpUaQ-C_hy1oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:35:ad:e0:9f:78:30:27:9d:e5:d4:69:cb:a9:19:c8:71:da: 14:8b:6e:39:4d:be:d6:66:36:26:76:f7:82:d3:2e:5b:0a:7f: dc:8c:70:2c:9d:84:8a:6a:7b:32:56:da:bb:c8:4e:ca:b9:8f: 07:93:90:f8:d7:74:93:dc:36:dd:e5:98:c0:24:c6:a4:74:c5: ef:4f:cd:19:7f:a0:c2:f5:5e:b3:3d:05:9d:ae:64:8c:86:21: db:0e:ba:d2:6a:4b:fe:13:c6:e7:8f:89:50:5f:53:42:cb:08: 7b:1f:6c:3a:c8:ff:5e:a9:c7:cf:55:bd:3c:1a:81:53:ba:26: 74:fd:14:45:3a:f5:40:7e:65:45:27:e2:4e:de:31:f0:d5:28: fc:55:0d:0b:a2:0a:65:af:d8:5b:6d:8d:69:f6:e7:1e:2e:a9: f1:a6:bd:69:a0:d9:cc:64:e7:0d:e6:d7:20:49:66:76:78:a3: 78:72:3b:db:3c:8e:90:b3:c7:c6:19:d9:69:fb:bb:a1:e0:05: 4f:63:f2:33:80:0c:f9:3f:05:48:19:3f:28:45:01:f3:a1:f0: 82:b1:a1:38:b4:04:3c:c8:04:61:e5:e2:9b:e4:73:99:8e:56: 7f:a9:1e:69:d5:02:21:46:82:84:ee:70:89:02:7f:4b:e4:f4: f2:2f:1e:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU5MDYxMTAvBgNVBAUTKDlEMUJBQ0Q0MEE4MjU5OTI0Q0QyQzU2OTUxQTQzRTBC Rjg3MkQ2ODYwHhcNMjUwNDI1MDAyMzU1WhcNMjUwNTAyMDAyMzU1WjAYMRYwFAYD VQQDEw02ODBhZDYxYi1jODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0P6iVf+4MKrpXg3YZtZDqCDyFs5Sp9bkjNUdXS4ZYaOBwKkEFjP1E/zu1AV MPbMz/h1beMfanFaOIIouFfh7q4SvIHFiWIC2p7rL7mHQcD5iufr1UQ8HxTsOp+1 JjPZQdb6IQlcTPdj+5BFsUaTuUDH9m+jBgluiJZRto4m+x8qM8D5ZMzUdt9bs3ao gUqnjh5xl9S9uITsa0J3Re5EjyhqbYekeTMEJ5f7OVh4Nxwejm7DnB0/DN3T5kyh zRAULUsm1MYxZdx9XFBAN7H3lgdOJCjneoOLOM6gEG3G/fkUV8zSJZx7JVMVvdHm 48Iypvxf6AtqDLSGG7are7756wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLS2h+MI ZSovqHztZeE9bGmZD7OYMB8GA1UdIwQYMBaAFJ0brNQKglmSTNLFaVGkPgv4ctaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTkwNi84Q0NDQ0JBNDgz RTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1daSk0wc1ZwVWFRLUNfaHkx b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25SdXMxQXFDV1pKTTBzVnBVYVEtQ19oeTFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTkwNi84Q0NDQ0JBNDgzRTcxMUVDQTAwMzRGNkJDNEY5QUUwMi9uUnVzMUFxQ1da Sk0wc1ZwVWFRLUNfaHkxb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Na3gn3gwJ53l1GnLqRnIcdoUi245Tb7WZjYmdveC0y5bCn/cjHAs nYSKansyVtq7yE7KuY8Hk5D413ST3Dbd5ZjAJMakdMXvT80Zf6DC9V6zPQWdrmSM hiHbDrrSakv+E8bnj4lQX1NCywh7H2w6yP9eqcfPVb08GoFTuiZ0/RRFOvVAfmVF J+JO3jHw1Sj8VQ0Logplr9hbbY1p9uceLqnxpr1poNnMZOcN5tcgSWZ2eKN4cjvb PI6Qs8fGGdlp+7uh4AVPY/IzgAz5PwVIGT8oRQHzofCCsaE4tAQ8yARh5eKb5HOZ jlZ/qR5p1QIhRoKE7nCJAn9L5PTyLx5z -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:21 2025 by rpki-client