$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: ESkfXdLykcWd6N2cAC6oQpSP2zwtMbWB/2+HqVQvZA8= Subject key identifier: CD:B4:1F:54:9E:1C:D7:19:83:39:62:5F:FE:6C:DC:DE:A0:04:F5:C7 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2C2A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2C27 Signing time: Mon 28 Apr 2025 14:28:39 +0000 Manifest this update: Mon 28 Apr 2025 14:28:38 +0000 Manifest next update: Mon 05 May 2025 14:28:38 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: pJesZZv7BlookqEN2bxWkO2ZMukoGYh48zLyC7YYMe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:28:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11306 (0x2c2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D, serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: Apr 28 14:28:38 2025 GMT Not After : May 5 14:28:38 2025 GMT Subject: CN=680f9096-6684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f8:78:f6:9d:5d:b8:5a:4b:85:5f:57:6e:b2: 04:b8:d9:23:b2:9a:01:a2:9c:b2:22:b1:67:25:e4: 8c:22:fb:68:0d:82:57:8b:b4:63:93:fb:91:cb:dd: 6f:ab:f0:0d:3c:b0:0f:9e:fc:13:b4:e9:ac:10:8b: ae:97:f9:dc:63:17:86:62:d4:ea:98:32:83:ca:4e: 5e:f5:e2:f3:dd:61:cf:26:e7:50:43:2d:c8:49:c5: a5:f4:8d:8b:72:0c:3f:71:ce:c9:06:a2:21:5e:01: 4b:84:9f:6d:79:7d:05:bb:74:a4:53:70:de:6f:55: 2d:d2:db:1a:13:a6:46:c6:ef:e8:fa:ee:c8:22:44: 72:f0:4f:a3:84:00:f5:be:f9:2b:6c:e7:60:16:d1: 17:65:fe:33:fb:14:13:96:16:6d:ed:89:86:92:02: 7b:e4:6f:ba:92:e1:2b:ee:7f:1f:2d:d3:c0:4e:b8: 0a:27:23:fd:22:5e:dc:f4:69:d9:be:b3:ec:56:20: 40:d6:47:02:d7:5f:a7:7e:d1:f8:8b:bd:01:e6:97: 32:d5:98:99:35:69:c5:56:98:fc:d8:ab:98:bb:88: 50:2b:4d:46:2e:c2:fb:f7:4e:75:81:24:65:15:c3: 8f:38:ed:47:7f:86:22:04:90:2a:1d:a9:08:27:1e: 2a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B4:1F:54:9E:1C:D7:19:83:39:62:5F:FE:6C:DC:DE:A0:04:F5:C7 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:50:d2:5f:06:5f:9f:3d:f0:93:6c:2a:8f:00:89:73:3d:ba: c7:04:14:6c:e2:f1:0c:ac:68:14:f8:22:42:6d:37:04:6d:dc: b3:69:1a:72:1d:ac:25:8a:f1:df:97:d7:d1:76:bb:b8:30:82: 7c:58:06:f6:3d:16:c6:34:88:3f:2e:63:89:20:68:1a:11:05: a6:af:ea:ca:71:ee:be:1b:9e:3b:e4:09:ca:bf:f7:56:e9:17: 77:e2:38:0c:83:4f:80:5f:c0:65:ee:f7:d6:eb:e9:9e:b0:21: 80:66:12:a6:87:d3:e6:43:35:69:3b:4c:65:c7:96:b8:03:d4: 40:b7:f8:a8:ac:43:dd:15:07:43:b2:3e:fd:bd:50:e9:e8:c2: c8:64:22:40:4c:51:a1:47:b4:58:12:d7:c3:61:55:86:56:2c: 2b:7a:c4:db:05:3e:2a:d3:05:d9:1e:b5:2f:76:41:fd:ee:b2: bf:8e:05:8d:aa:e5:f4:0b:06:4f:49:9d:31:fe:c7:da:8c:61: bb:26:ab:0e:70:57:f3:64:b1:f3:a0:c0:b9:80:82:62:b1:14: cf:b3:71:aa:e5:89:ab:6a:9f:eb:3e:93:14:66:ba:e9:e5:8b: 3c:d0:2c:98:ee:39:f5:85:81:d7:81:79:ee:69:40:61:7f:bb: 4c:b5:12:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLCowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjUwNDI4MTQyODM4WhcNMjUwNTA1MTQyODM4WjAYMRYwFAYD VQQDEw02ODBmOTA5Ni02Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/h49p1duFpLhV9XbrIEuNkjspoBopyyIrFnJeSMIvtoDYJXi7Rjk/uRy91v q/ANPLAPnvwTtOmsEIuul/ncYxeGYtTqmDKDyk5e9eLz3WHPJudQQy3IScWl9I2L cgw/cc7JBqIhXgFLhJ9teX0Fu3SkU3Deb1Ut0tsaE6ZGxu/o+u7IIkRy8E+jhAD1 vvkrbOdgFtEXZf4z+xQTlhZt7YmGkgJ75G+6kuEr7n8fLdPATrgKJyP9Il7c9GnZ vrPsViBA1kcC11+nftH4i70B5pcy1ZiZNWnFVpj82KuYu4hQK01GLsL79051gSRl FcOPOO1Hf4YiBJAqHakIJx4qAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM20H1Se HNcZgzliX/5s3N6gBPXHMB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwUNJfBl+fPfCTbCqPAIlzPbrHBBRs4vEMrGgU+CJCbTcEbdyzaRpy HawlivHfl9fRdru4MIJ8WAb2PRbGNIg/LmOJIGgaEQWmr+rKce6+G5475AnKv/dW 6Rd34jgMg0+AX8Bl7vfW6+mesCGAZhKmh9PmQzVpO0xlx5a4A9RAt/iorEPdFQdD sj79vVDp6MLIZCJATFGhR7RYEtfDYVWGViwresTbBT4q0wXZHrUvdkH97rK/jgWN quX0CwZPSZ0x/sfajGG7JqsOcFfzZLHzoMC5gIJisRTPs3Gq5Ymrap/rPpMUZrrp 5Ys80CyY7jn1hYHXgXnuaUBhf7tMtRKg -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:43 2025 by rpki-client on console.sobornost.net