$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft File: IwN4FncHnC-7R0lkDwZXociO20Q.mft (raw, json) Hash identifier: g0jG1XSUNPdVPcbcBzKUFj5WUvKSbMXONXgPuve8QCM= Subject key identifier: 90:83:DD:16:DC:D1:5E:4A:46:49:41:B5:29:7A:87:C6:E0:7E:23:61 Authority key identifier: 23:03:78:16:77:07:9C:2F:BB:47:49:64:0F:06:57:A1:C8:8E:DB:44 Certificate issuer: /CN=A911E0B4/serialNumber=2303781677079C2FBB4749640F0657A1C88EDB44 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft Manifest number: 4D Signing time: Sun 27 Apr 2025 06:08:20 +0000 Manifest this update: Sun 27 Apr 2025 06:08:19 +0000 Manifest next update: Sun 04 May 2025 06:08:19 +0000 Files and hashes: 1: IwN4FncHnC-7R0lkDwZXociO20Q.crl (hash: eQf/Om0oI5aWo3G8DwXmcYbNmp9CH4dM24b0Bxa5jhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.crl rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=2303781677079C2FBB4749640F0657A1C88EDB44 Validity Not Before: Apr 27 06:08:19 2025 GMT Not After : May 4 06:08:19 2025 GMT Subject: CN=680dc9d3-65e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:eb:20:f9:bb:37:41:99:0c:f2:c3:ea:e3:56: 86:51:a7:4f:f3:63:10:0c:1b:32:88:a1:60:04:50: c9:fb:dd:9a:24:48:f3:62:8d:f1:3d:f8:73:69:67: 52:3f:e3:9b:bb:b8:03:6e:e8:14:ef:ad:a1:97:e7: 38:ad:bb:63:e6:9a:2f:82:96:74:03:d4:32:1e:39: 5d:ad:bf:90:99:51:57:4f:68:84:ba:6d:a4:ff:c7: 8e:84:3e:c1:82:0f:67:72:d4:7e:89:99:bd:b8:09: 32:9f:38:cf:b4:96:86:59:4e:69:9e:e7:cd:a5:b0: 12:12:0d:0d:e5:e6:ae:0b:99:73:71:1a:ff:f4:8c: 04:b8:e5:af:03:32:89:6a:cd:ac:3a:53:a7:de:f5: 03:ee:23:1a:55:06:39:50:a9:4d:db:79:45:42:48: 84:0c:30:b5:05:47:23:6d:78:16:c8:bb:e2:55:4f: ef:f7:10:2d:4c:1d:43:ad:25:07:25:c2:38:a7:38: 05:06:2d:6b:96:c9:48:1e:20:87:bb:f3:c0:f8:f4: 2e:ff:b5:a9:be:f8:a6:a8:88:35:fb:b3:5f:18:a4: 5c:96:96:9a:db:d8:48:8c:7f:88:18:e3:ee:a9:1a: f0:08:29:02:15:ab:4e:6d:b3:bd:05:92:da:a8:39: 0f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:83:DD:16:DC:D1:5E:4A:46:49:41:B5:29:7A:87:C6:E0:7E:23:61 X509v3 Authority Key Identifier: keyid:23:03:78:16:77:07:9C:2F:BB:47:49:64:0F:06:57:A1:C8:8E:DB:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IwN4FncHnC-7R0lkDwZXociO20Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/F2231DE4AF3811EFA20DD013C4F9AE02/IwN4FncHnC-7R0lkDwZXociO20Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:04:3a:9b:d6:76:c4:39:4e:30:8f:c2:5a:96:53:1b:37:8e: da:35:88:03:b0:74:13:ba:16:9b:8a:5c:2a:ea:0c:16:56:f2: 24:f2:a2:81:ca:01:41:05:5a:d9:be:a5:a4:2a:0d:d4:f9:ca: 95:e0:43:1e:7b:70:df:fd:27:d8:7f:e6:2c:94:f0:0f:0d:55: 26:6d:e0:74:64:ef:f8:3e:3a:05:13:e6:28:55:d0:2b:99:f0: ee:c0:75:ae:81:d3:50:e1:19:0c:c9:a2:7a:c3:4e:fc:4e:cb: 9b:a5:b8:93:44:33:84:56:1e:c1:07:50:f4:a5:23:13:ac:b4: ea:ed:70:e3:0d:4a:57:67:cc:53:29:46:cb:40:fd:41:ab:d1: c3:1e:1e:d7:f2:e1:9c:47:0c:4a:5a:b9:d9:aa:69:b7:ba:bc: 36:43:82:4d:fe:a0:57:fd:01:18:85:b3:36:97:8c:e0:76:4f: b8:1c:37:8c:31:6f:7e:88:f2:41:8b:7d:76:e5:76:95:61:b8: f5:80:5e:98:af:38:be:79:e9:8e:fd:01:49:d5:7a:9a:64:3a: a4:22:b3:c5:5c:dd:ce:7a:5f:05:68:d0:74:ed:ab:e2:7d:e5: e6:45:4a:85:73:ef:6a:5c:1f:bc:6d:40:49:64:71:0a:ac:09: 92:9c:ba:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMjMwMzc4MTY3NzA3OUMyRkJCNDc0OTY0MEYwNjU3QTFD ODhFREI0NDAeFw0yNTA0MjcwNjA4MTlaFw0yNTA1MDQwNjA4MTlaMBgxFjAUBgNV BAMTDTY4MGRjOWQzLTY1ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCR6yD5uzdBmQzyw+rjVoZRp0/zYxAMGzKIoWAEUMn73ZokSPNijfE9+HNpZ1I/ 45u7uANu6BTvraGX5zitu2Pmmi+ClnQD1DIeOV2tv5CZUVdPaIS6baT/x46EPsGC D2dy1H6Jmb24CTKfOM+0loZZTmme582lsBISDQ3l5q4LmXNxGv/0jAS45a8DMolq zaw6U6fe9QPuIxpVBjlQqU3beUVCSIQMMLUFRyNteBbIu+JVT+/3EC1MHUOtJQcl wjinOAUGLWuWyUgeIIe788D49C7/tam++KaoiDX7s18YpFyWlprb2EiMf4gY4+6p GvAIKQIVq05ts70FktqoOQ+XAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkIPdFtzR XkpGSUG1KXqHxuB+I2EwHwYDVR0jBBgwFoAUIwN4FncHnC+7R0lkDwZXociO20Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0YyMjMxREU0QUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0l3TjRGbmNIbkMtN1IwbGtEd1pYb2NpTzIw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXdONEZuY0huQy03UjBsa0R3WlhvY2lPMjBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0YyMjMxREU0QUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0l3TjRGbmNIbkMt N1IwbGtEd1pYb2NpTzIwUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIsEOpvWdsQ5TjCPwlqWUxs3jto1iAOwdBO6FpuKXCrqDBZW8iTyooHK AUEFWtm+paQqDdT5ypXgQx57cN/9J9h/5iyU8A8NVSZt4HRk7/g+OgUT5ihV0CuZ 8O7Ada6B01DhGQzJonrDTvxOy5uluJNEM4RWHsEHUPSlIxOstOrtcOMNSldnzFMp RstA/UGr0cMeHtfy4ZxHDEpaudmqabe6vDZDgk3+oFf9ARiFszaXjOB2T7gcN4wx b36I8kGLfXbldpVhuPWAXpivOL556Y79AUnVeppkOqQis8Vc3c56XwVo0HTtq+J9 5eZFSoVz72pcH7xtQElkcQqsCZKculE= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net