$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: GY/9JtSanr2cvmx6poTIV2Upjm1T6Mfxeq9dacsOFJE= Subject key identifier: 53:4A:B4:56:E9:E0:2D:27:A2:97:D9:A2:6A:AC:91:90:B9:10:C0:58 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0A28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0A1E Signing time: Mon 28 Apr 2025 20:12:23 +0000 Manifest this update: Mon 28 Apr 2025 20:12:23 +0000 Manifest next update: Mon 05 May 2025 20:12:23 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: WmtZ+Yor4mZVdmasibLROyVMvULVVqNZhLGZeYXXdXc=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: LPVTnB/0GHrJCLpXZVzzn+Fi+J75+p11hdRea2Hs9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27, serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Apr 28 20:12:23 2025 GMT Not After : May 5 20:12:23 2025 GMT Subject: CN=680fe127-fc02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9e:fc:0b:79:1e:51:64:c2:21:a4:58:e5:fc: 26:26:00:4b:38:a3:7a:52:68:41:aa:ff:50:53:57: 2a:38:95:1e:af:fe:99:d6:9a:e5:19:af:2f:65:c2: 72:a1:c4:67:cc:11:8d:c3:a9:9e:19:d6:2c:37:3e: 19:0f:7a:72:74:52:64:bc:21:88:eb:65:12:f6:ef: 0f:29:51:7f:6b:6e:26:23:56:99:57:58:19:8b:30: c8:53:8f:96:fa:3f:36:f3:01:1f:81:95:9e:96:48: 8e:63:dd:53:ee:8e:d0:20:cb:ef:d0:c7:da:1a:be: 53:c6:66:26:83:58:59:5f:0c:26:25:ce:a9:0b:06: 44:8f:38:53:d4:c4:89:0f:38:4c:cc:98:fa:e0:91: 25:4a:85:e3:24:fe:80:a4:dd:ae:1c:c5:42:a5:48: 6f:48:a2:2f:3a:55:0d:87:19:9b:80:40:90:7c:93: d3:e6:49:bd:8b:e7:3d:84:56:49:63:39:cc:1c:29: 9e:ca:2c:4b:c0:9d:68:da:9a:9b:10:cd:40:d7:2c: 7b:70:ec:0f:b0:e9:14:1a:e5:aa:c8:6f:52:b9:a8: bf:84:a5:62:f6:82:e3:22:e9:50:f8:e3:a1:3d:75: fa:c3:31:aa:40:35:bb:a3:f4:ec:11:65:bc:13:06: e5:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4A:B4:56:E9:E0:2D:27:A2:97:D9:A2:6A:AC:91:90:B9:10:C0:58 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:96:8e:e8:8c:23:48:41:48:9d:bf:4d:d3:c6:1a:6b:cd:44: 61:0f:35:36:c6:9a:69:0b:ed:5f:6e:76:1c:7c:17:ac:7c:52: 26:a6:68:bb:77:cf:27:f8:55:b0:19:82:03:8b:6c:6a:8e:bf: eb:fd:fe:18:ec:6e:18:74:bc:c7:13:65:3f:3b:a7:25:fd:d4: e8:0c:73:45:21:d1:0c:ec:2e:5c:ca:f2:e5:d7:7d:86:bd:d6: 83:39:24:18:b9:f2:c4:90:8f:6a:f7:08:6c:a1:58:2c:8b:69: b7:fd:d7:cd:2e:c0:78:fd:e6:c8:0b:fb:c5:c5:be:e9:8a:92: 59:88:c6:ae:dd:a5:1f:a6:98:2f:ec:bd:ba:70:c4:ed:82:ad: ff:d5:ee:15:82:bb:6d:59:15:54:6f:5e:0f:47:3d:7d:b2:6c: 05:1f:22:b5:7a:11:bf:71:05:63:0c:0b:fb:68:a3:5a:c6:35: 98:40:27:ab:80:94:ea:d7:59:3e:93:eb:b3:16:64:9d:ee:a4: a9:ff:bd:5c:6e:17:90:34:04:72:9a:1f:aa:14:45:d2:f6:b0: 10:c8:bf:f1:50:b0:a6:3d:e0:79:a2:44:ef:6e:87:68:97:45: 24:14:cf:5b:ad:99:ba:d3:c1:89:3a:e7:4a:7a:6d:a4:cc:bc: 82:9a:8e:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjUwNDI4MjAxMjIzWhcNMjUwNTA1MjAxMjIzWjAYMRYwFAYD VQQDEw02ODBmZTEyNy1mYzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z78C3keUWTCIaRY5fwmJgBLOKN6UmhBqv9QU1cqOJUer/6Z1prlGa8vZcJy ocRnzBGNw6meGdYsNz4ZD3pydFJkvCGI62US9u8PKVF/a24mI1aZV1gZizDIU4+W +j828wEfgZWelkiOY91T7o7QIMvv0MfaGr5TxmYmg1hZXwwmJc6pCwZEjzhT1MSJ DzhMzJj64JElSoXjJP6ApN2uHMVCpUhvSKIvOlUNhxmbgECQfJPT5km9i+c9hFZJ YznMHCmeyixLwJ1o2pqbEM1A1yx7cOwPsOkUGuWqyG9Suai/hKVi9oLjIulQ+OOh PXX6wzGqQDW7o/TsEWW8EwblLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNKtFbp 4C0nopfZomqskZC5EMBYMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9lo7ojCNIQUidv03TxhprzURhDzU2xpppC+1fbnYcfBesfFImpmi7 d88n+FWwGYIDi2xqjr/r/f4Y7G4YdLzHE2U/O6cl/dToDHNFIdEM7C5cyvLl132G vdaDOSQYufLEkI9q9whsoVgsi2m3/dfNLsB4/ebIC/vFxb7pipJZiMau3aUfppgv 7L26cMTtgq3/1e4VgrttWRVUb14PRz19smwFHyK1ehG/cQVjDAv7aKNaxjWYQCer gJTq11k+k+uzFmSd7qSp/71cbheQNARymh+qFEXS9rAQyL/xULCmPeB5okTvbodo l0UkFM9brZm608GJOudKem2kzLyCmo6z -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:46 2025 by rpki-client on console.sobornost.net