$ rpki-client -vvf rpki.apnic.net/member_repository/A9129023/FCF64740228011EFA7283C14C4F9AE02/F-lBr577tRXXwktBjmn5hnx6FMo.mft File: F-lBr577tRXXwktBjmn5hnx6FMo.mft (raw, json) Hash identifier: Dt5JfngVJn6RKwzPO3a8h8LMS5lLmXWnFTJLJQh5tm4= Subject key identifier: 68:FB:F1:38:E0:65:89:65:C8:78:34:BD:40:0B:D5:5C:DC:52:A1:B3 Authority key identifier: 17:E9:41:AF:9E:FB:B5:15:D7:C2:4B:41:8E:69:F9:86:7C:7A:14:CA Certificate issuer: /CN=A9129023/serialNumber=17E941AF9EFBB515D7C24B418E69F9867C7A14CA Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F-lBr577tRXXwktBjmn5hnx6FMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129023/FCF64740228011EFA7283C14C4F9AE02/F-lBr577tRXXwktBjmn5hnx6FMo.mft Manifest number: A7 Signing time: Sun 27 Apr 2025 04:58:34 +0000 Manifest this update: Sun 27 Apr 2025 04:58:33 +0000 Manifest next update: Sun 04 May 2025 04:58:33 +0000 Files and hashes: 1: F-lBr577tRXXwktBjmn5hnx6FMo.crl (hash: CWVGsxeH32QdsodVAxl+TZp+ytMo1VmGAe+hoks/ZPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129023/FCF64740228011EFA7283C14C4F9AE02/F-lBr577tRXXwktBjmn5hnx6FMo.crl rsync://rpki.apnic.net/member_repository/A9129023/FCF64740228011EFA7283C14C4F9AE02/F-lBr577tRXXwktBjmn5hnx6FMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F-lBr577tRXXwktBjmn5hnx6FMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129023, serialNumber=17E941AF9EFBB515D7C24B418E69F9867C7A14CA Validity Not Before: Apr 27 04:58:33 2025 GMT Not After : May 4 04:58:33 2025 GMT Subject: CN=680db979-f073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:cc:2c:fb:9f:e5:4a:56:0e:67:e5:dc:55:ac: 7a:2c:da:8e:19:03:54:e6:06:98:99:78:74:6f:62: 37:6a:4b:00:1d:a7:49:c3:ce:be:a6:b2:5c:81:9d: e5:fa:64:78:68:28:8f:6d:ba:0b:c1:9d:7d:00:a3: 73:e9:bb:56:2b:81:5b:c7:3e:28:99:0f:87:e2:f3: 1b:25:43:71:b2:4d:d4:8a:9a:c3:c3:ce:f4:dc:58: d4:9c:b0:d0:e0:a3:31:08:3f:00:0b:f5:98:67:92: ef:07:a8:9a:4b:5b:fa:d8:93:fc:9b:d0:95:8a:8a: 21:2c:0a:4d:0d:14:a6:05:19:8c:fb:24:bc:bf:e0: d9:67:8f:be:5e:71:71:23:c2:70:bf:55:e8:26:cb: a4:61:b9:a9:1d:53:73:32:ef:f3:59:94:3b:7c:2c: 17:97:77:52:53:f3:cc:d2:b6:77:43:d3:69:a0:be: ad:96:d2:78:de:09:12:cf:51:a3:6e:a4:24:f7:08: ba:69:37:71:5e:cb:a1:36:c1:7f:9a:39:38:84:5e: 4e:0e:8e:0c:a5:b1:0a:f4:92:c5:57:e2:5f:58:67: ae:26:18:b6:9a:97:6a:c8:65:51:99:a0:c4:c7:8a: 07:8d:db:d2:69:4c:3c:c3:26:8b:e1:0e:5b:01:e4: 5d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:FB:F1:38:E0:65:89:65:C8:78:34:BD:40:0B:D5:5C:DC:52:A1:B3 X509v3 Authority Key Identifier: keyid:17:E9:41:AF:9E:FB:B5:15:D7:C2:4B:41:8E:69:F9:86:7C:7A:14:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129023/FCF64740228011EFA7283C14C4F9AE02/F-lBr577tRXXwktBjmn5hnx6FMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F-lBr577tRXXwktBjmn5hnx6FMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129023/FCF64740228011EFA7283C14C4F9AE02/F-lBr577tRXXwktBjmn5hnx6FMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:43:65:85:a5:93:7f:4a:13:56:a0:60:e6:fe:d2:83:ec:79: 41:4d:1f:e9:2d:d1:e9:48:6b:8e:f4:18:67:ec:d4:b1:1d:f1: 80:0f:6a:b5:8a:1e:56:fc:be:7d:6b:be:d4:e7:24:68:e0:3a: 40:19:d0:19:66:e4:aa:47:00:0c:1a:bd:33:79:36:04:c1:89: c5:9b:3a:92:66:a7:5d:e9:88:b7:c1:32:50:6f:51:47:b3:fb: a8:09:5a:f6:73:93:6b:9e:0f:3b:cc:05:57:7e:be:1f:f7:06: 51:ab:42:c1:dd:84:83:38:76:a3:e3:7d:30:9e:c2:af:f4:68: 55:6f:84:08:01:27:44:1f:10:cc:3a:32:9d:01:e0:5d:8a:a9: 24:ab:ec:a2:0f:a1:5e:18:e0:51:e3:86:9d:39:35:23:b8:0a: b6:1c:6c:1a:04:d6:84:2e:b8:29:da:26:a7:fc:ff:fe:3c:01: f6:af:90:a5:1c:88:e4:84:da:01:fd:ca:32:87:70:9c:d8:5e: d2:1e:0b:55:d2:0e:25:4b:3a:d4:cf:40:66:58:5b:a0:94:12: a5:31:1d:b8:11:42:07:dc:aa:5c:68:4b:20:27:87:9f:cc:04: e0:b7:74:5f:ad:51:a9:e9:0d:42:ec:02:87:9a:2d:69:de:5e: 48:b3:72:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkwMjMxMTAvBgNVBAUTKDE3RTk0MUFGOUVGQkI1MTVEN0MyNEI0MThFNjlGOTg2 N0M3QTE0Q0EwHhcNMjUwNDI3MDQ1ODMzWhcNMjUwNTA0MDQ1ODMzWjAYMRYwFAYD VQQDEw02ODBkYjk3OS1mMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMws+5/lSlYOZ+XcVax6LNqOGQNU5gaYmXh0b2I3aksAHadJw86+prJcgZ3l +mR4aCiPbboLwZ19AKNz6btWK4Fbxz4omQ+H4vMbJUNxsk3UiprDw8703FjUnLDQ 4KMxCD8AC/WYZ5LvB6iaS1v62JP8m9CVioohLApNDRSmBRmM+yS8v+DZZ4++XnFx I8Jwv1XoJsukYbmpHVNzMu/zWZQ7fCwXl3dSU/PM0rZ3Q9NpoL6tltJ43gkSz1Gj bqQk9wi6aTdxXsuhNsF/mjk4hF5ODo4MpbEK9JLFV+JfWGeuJhi2mpdqyGVRmaDE x4oHjdvSaUw8wyaL4Q5bAeRdJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGj78Tjg ZYllyHg0vUAL1VzcUqGzMB8GA1UdIwQYMBaAFBfpQa+e+7UV18JLQY5p+YZ8ehTK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTAyMy9GQ0Y2NDc0MDIy ODAxMUVGQTcyODNDMTRDNEY5QUUwMi9GLWxCcjU3N3RSWFh3a3RCam1uNWhueDZG TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0YtbEJyNTc3dFJYWHdrdEJqbW41aG54NkZNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTAyMy9GQ0Y2NDc0MDIyODAxMUVGQTcyODNDMTRDNEY5QUUwMi9GLWxCcjU3N3RS WFh3a3RCam1uNWhueDZGTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKQ2WFpZN/ShNWoGDm/tKD7HlBTR/pLdHpSGuO9Bhn7NSxHfGAD2q1 ih5W/L59a77U5yRo4DpAGdAZZuSqRwAMGr0zeTYEwYnFmzqSZqdd6Yi3wTJQb1FH s/uoCVr2c5Nrng87zAVXfr4f9wZRq0LB3YSDOHaj430wnsKv9GhVb4QIASdEHxDM OjKdAeBdiqkkq+yiD6FeGOBR44adOTUjuAq2HGwaBNaELrgp2ian/P/+PAH2r5Cl HIjkhNoB/coyh3Cc2F7SHgtV0g4lSzrUz0BmWFuglBKlMR24EUIH3KpcaEsgJ4ef zATgt3RfrVGp6Q1C7AKHmi1p3l5Is3IV -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:41 2025 by rpki-client on console.sobornost.net