$ rpki-client -vvf rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft File: 4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft (raw, json) Hash identifier: SKynrbmNcY+5kRo3DiZXw5rZqsn35DItICOEI+UL0Kw= Subject key identifier: D2:59:9D:7D:CC:04:36:80:31:52:B2:A5:89:EA:B2:9E:EE:51:9F:A5 Authority key identifier: E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 Certificate issuer: /CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Certificate serial: 0ABF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft Manifest number: 0AA3 Signing time: Mon 28 Apr 2025 19:56:22 +0000 Manifest this update: Mon 28 Apr 2025 19:56:21 +0000 Manifest next update: Mon 05 May 2025 19:56:21 +0000 Files and hashes: 1: 4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl (hash: WRMyfhgRzV2MPzDOPcASWLvEqajxqMD/RiKoIP+CzYA=) 2: 19D0C9444D6A11EFB5578F3AC4F9AE02.roa (hash: 3+4YIvZgcCdVrPM39eq8U0b37BVdz2kxEm0TdnodkbE=) 3: 2BACE2284D6B11EF9595843FC4F9AE02.roa (hash: z2Amob3XsDPHZrT5Wf5AplgGB0ayushklt2PBfRRMGk=) 4: 76D38708D64611EE98C44371C4F9AE02.roa (hash: b8sKlJgxC+LgU3RKdElF+rtjQy5KxRCgzXpaFbzf9q0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2751 (0xabf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91278D5, serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Validity Not Before: Apr 28 19:56:21 2025 GMT Not After : May 5 19:56:21 2025 GMT Subject: CN=680fdd66-3f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ba:af:72:d4:e1:7e:08:7c:2c:bd:3a:5e:44: f3:b5:95:79:b9:06:ce:47:17:78:40:4f:06:21:ac: fb:d8:b0:ab:6e:36:75:9c:93:1c:33:d1:41:90:42: 0f:2e:47:f8:7a:86:56:9b:d8:fd:d4:ba:4f:2b:f7: ce:cf:84:c0:1a:68:7c:67:83:e6:64:33:a4:9b:33: c0:5b:e8:83:ee:fc:2d:8d:b0:c6:38:fc:34:1b:12: b5:3e:92:e1:da:57:0b:52:10:d0:d4:8e:82:45:e2: c5:8c:68:1f:8c:38:08:a7:21:a0:4f:93:f4:93:8d: 82:5c:06:46:ed:ef:2f:8b:ba:26:59:ea:1d:52:af: b7:99:03:32:0a:67:81:28:2d:4f:46:a9:16:70:74: 5f:91:bc:de:68:2e:ec:67:aa:23:b4:8b:d8:41:18: 2d:7a:42:87:f2:a2:f1:9f:67:f0:98:7f:fe:5f:db: e1:c6:f0:cb:79:4c:13:23:cd:32:66:63:d7:9b:56: 54:e8:4c:b6:3d:dc:c1:36:6a:54:fd:0f:bd:64:04: 71:d9:7d:71:cc:86:cd:f0:26:1c:fb:6a:59:eb:e9: 8c:53:4b:29:1d:6c:84:64:9a:30:a3:4a:38:df:94: 16:b2:b2:a8:75:12:ec:53:c6:4e:c2:29:5c:ea:0e: 35:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:59:9D:7D:CC:04:36:80:31:52:B2:A5:89:EA:B2:9E:EE:51:9F:A5 X509v3 Authority Key Identifier: keyid:E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:0e:b4:01:a4:4a:72:ac:91:16:b2:07:23:0e:b7:e5:50:7c: 04:ef:ab:70:6e:57:a5:e1:96:ff:3d:61:23:5b:30:41:de:51: 04:56:16:4e:ae:e7:0d:f4:ce:2b:54:00:06:a9:cd:81:4d:ef: 73:34:89:84:6a:21:d8:68:9b:b8:30:35:43:43:b2:88:86:1f: 56:a9:e9:36:4d:0e:fe:9f:19:ef:74:03:3a:db:ce:1b:e2:f4: 42:98:82:39:ae:d7:16:58:7a:a4:70:5d:9f:fa:f0:df:8f:8a: fb:ef:26:ee:9a:28:f3:de:25:e7:96:59:52:62:18:3b:5d:f4: 05:55:d8:aa:8e:06:3d:e2:f3:8d:81:db:84:1c:7b:47:00:e3: 75:21:e9:dc:ac:61:63:2f:5c:4f:c6:63:e0:b6:63:9d:9f:92: 85:d8:9e:5c:d6:e9:3b:d2:35:b7:be:56:85:ba:07:bf:9b:20: 39:0e:b2:f6:b8:d1:64:ab:d6:e2:f5:75:4e:ce:78:f7:84:9a: e3:b2:90:c8:01:0f:58:02:ed:1a:2e:1a:d3:f1:62:7f:51:a5: 6e:49:4b:71:be:ed:90:38:c4:55:46:f7:29:60:c0:22:a6:e3: 84:ac:c1:97:f9:99:a5:06:30:f2:42:84:5c:23:28:96:5d:a4: a3:4a:47:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4RDUxMTAvBgNVBAUTKEUwMTBBRjJFMTE0QTRBOUZENTA4NUJFNDQ2NjA1MjEz OTBGQjEzMzEwHhcNMjUwNDI4MTk1NjIxWhcNMjUwNTA1MTk1NjIxWjAYMRYwFAYD VQQDEw02ODBmZGQ2Ni0zZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LqvctThfgh8LL06XkTztZV5uQbORxd4QE8GIaz72LCrbjZ1nJMcM9FBkEIP Lkf4eoZWm9j91LpPK/fOz4TAGmh8Z4PmZDOkmzPAW+iD7vwtjbDGOPw0GxK1PpLh 2lcLUhDQ1I6CReLFjGgfjDgIpyGgT5P0k42CXAZG7e8vi7omWeodUq+3mQMyCmeB KC1PRqkWcHRfkbzeaC7sZ6ojtIvYQRgtekKH8qLxn2fwmH/+X9vhxvDLeUwTI80y ZmPXm1ZU6Ey2PdzBNmpU/Q+9ZARx2X1xzIbN8CYc+2pZ6+mMU0spHWyEZJowo0o4 35QWsrKodRLsU8ZOwilc6g416wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJZnX3M BDaAMVKypYnqsp7uUZ+lMB8GA1UdIwQYMBaAFOAQry4RSkqf1Qhb5EZgUhOQ+xMx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzhENS82MDEzMjE2MDU2 QzgxMUVBQjY2NTdBNDBDNEY5QUUwMi80QkN2TGhGS1NwX1ZDRnZrUm1CU0U1RDdF ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCQ3ZMaEZLU3BfVkNGdmtSbUJTRTVEN0V6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzhENS82MDEzMjE2MDU2QzgxMUVBQjY2NTdBNDBDNEY5QUUwMi80QkN2TGhGS1Nw X1ZDRnZrUm1CU0U1RDdFekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVDrQBpEpyrJEWsgcjDrflUHwE76twblel4Zb/PWEjWzBB3lEEVhZO rucN9M4rVAAGqc2BTe9zNImEaiHYaJu4MDVDQ7KIhh9Wqek2TQ7+nxnvdAM6284b 4vRCmII5rtcWWHqkcF2f+vDfj4r77ybumijz3iXnlllSYhg7XfQFVdiqjgY94vON gduEHHtHAON1IencrGFjL1xPxmPgtmOdn5KF2J5c1uk70jW3vlaFuge/myA5DrL2 uNFkq9bi9XVOznj3hJrjspDIAQ9YAu0aLhrT8WJ/UaVuSUtxvu2QOMRVRvcpYMAi puOErMGX+ZmlBjDyQoRcIyiWXaSjSkfX -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:57 2025 by rpki-client on console.sobornost.net