$ rpki-client -vvf rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft File: zz57dCpMUuD49_jnQF-yu7z0yqM.mft (raw, json) Hash identifier: pWR1iA+3AIoIgaiQKo2yxSA5jlIZkAHivC9uO0+n610= Subject key identifier: F9:F2:25:43:27:2C:7F:D4:E7:06:45:5C:A8:FB:D3:11:0D:00:F1:E0 Authority key identifier: CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 Certificate issuer: /CN=A912C2B1/serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Certificate serial: 0D44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft Manifest number: 0D23 Signing time: Mon 28 Apr 2025 18:16:03 +0000 Manifest this update: Mon 28 Apr 2025 18:16:02 +0000 Manifest next update: Mon 05 May 2025 18:16:02 +0000 Files and hashes: 1: zz57dCpMUuD49_jnQF-yu7z0yqM.crl (hash: ZAX3LtwsH/xVTrPHXVRCFbxUqWndccbyseli6W+3oYA=) 2: 73E16BB27C4711EFACFB1228C4F9AE02.roa (hash: 8LOnykbqINKaZ+L5my3UzBmhmDiX2dGDooRzuen4vMo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:16:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3396 (0xd44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C2B1, serialNumber=CF3E7B742A4C52E0F8F7F8E7405FB2BBBCF4CAA3 Validity Not Before: Apr 28 18:16:02 2025 GMT Not After : May 5 18:16:02 2025 GMT Subject: CN=680fc5e2-7793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a0:61:c3:99:56:ed:5f:16:73:5d:e5:be:ac: 79:8d:6e:ff:77:a6:83:4e:b0:20:ac:ed:3a:60:db: 2f:a6:49:fa:21:29:75:a1:9a:eb:32:c8:89:41:dd: fb:f5:ff:ba:12:fe:33:b0:9c:2e:af:75:7c:00:ac: 0e:43:d9:d0:79:df:fd:db:28:95:c5:fc:9b:aa:c7: a7:2b:ba:b1:b2:19:93:f4:99:33:8b:66:c6:e1:ae: e3:f2:c8:fc:86:2a:56:7d:73:db:88:54:2f:53:b5: 6e:99:80:18:7f:09:2a:f1:a2:c9:e6:86:f2:25:16: fe:04:c6:50:73:2b:39:d4:3d:97:93:1a:80:b0:65: f8:b3:4f:52:6d:30:55:b3:16:c0:aa:60:2e:42:24: f1:a9:fc:45:b6:9e:0a:99:55:f4:e8:40:7b:75:08: 27:35:d2:ad:72:0a:67:88:7a:b8:f4:93:c6:6f:9a: db:c8:40:48:e1:36:10:43:44:c3:6e:44:17:5d:e4: e5:7a:61:aa:97:e0:32:a0:7c:5a:32:12:a8:6a:69: 3d:4b:19:11:f3:6a:76:44:9b:7a:ef:38:09:1a:91: d1:25:88:90:af:fa:cb:6f:c2:9e:1f:1e:ea:0f:14: 85:a8:a0:86:4b:85:b3:29:0a:02:45:79:fd:63:90: 34:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F2:25:43:27:2C:7F:D4:E7:06:45:5C:A8:FB:D3:11:0D:00:F1:E0 X509v3 Authority Key Identifier: keyid:CF:3E:7B:74:2A:4C:52:E0:F8:F7:F8:E7:40:5F:B2:BB:BC:F4:CA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zz57dCpMUuD49_jnQF-yu7z0yqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C2B1/1DAEA22CD9FA11E98942894DC4F9AE02/zz57dCpMUuD49_jnQF-yu7z0yqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:55:69:34:73:20:d3:24:88:2b:68:cb:7f:50:4b:e5:dc:2c: 10:37:4f:c0:de:e9:49:7a:12:9d:cb:a4:7e:1a:0a:57:cd:0e: 70:9b:56:f6:ec:f8:b8:d8:05:fa:b4:18:6d:c6:01:ce:5c:db: f6:b1:36:a5:5a:ae:8e:2d:f6:3c:bf:96:68:ea:ba:56:11:6a: 72:c9:a7:fc:fd:d2:21:30:4d:9c:76:d4:c4:c9:93:29:80:70: 87:c6:2e:27:41:6c:09:f1:cb:63:a7:1e:fd:77:0c:ba:d7:31: 02:2d:43:a0:d3:db:47:77:1a:a8:9a:1b:2a:f7:6f:c8:74:9a: 43:a9:16:7b:82:fc:80:fb:9b:ec:c6:4a:b5:17:86:e5:bf:85: da:ac:18:44:af:7a:10:a1:e5:73:67:ef:4b:65:b8:e3:a7:6a: 09:5e:fd:ab:70:35:c1:98:3f:53:95:ef:99:6a:61:b4:71:21: 28:f8:6c:87:89:2e:2b:30:16:be:fe:fa:07:4b:37:e6:b3:61: 02:8a:27:7b:6b:00:14:dd:c1:97:08:3d:1c:9c:d4:10:68:4c: 57:f5:37:72:19:6b:01:e8:63:1d:67:12:cf:1f:fe:3b:b7:ba: f2:73:fc:38:ee:41:ab:98:fa:59:e4:a2:04:ac:3d:89:5c:a8: 87:9b:3f:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkMyQjExMTAvBgNVBAUTKENGM0U3Qjc0MkE0QzUyRTBGOEY3RjhFNzQwNUZCMkJC QkNGNENBQTMwHhcNMjUwNDI4MTgxNjAyWhcNMjUwNTA1MTgxNjAyWjAYMRYwFAYD VQQDEw02ODBmYzVlMi03NzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKBhw5lW7V8Wc13lvqx5jW7/d6aDTrAgrO06YNsvpkn6ISl1oZrrMsiJQd37 9f+6Ev4zsJwur3V8AKwOQ9nQed/92yiVxfybqsenK7qxshmT9Jkzi2bG4a7j8sj8 hipWfXPbiFQvU7VumYAYfwkq8aLJ5obyJRb+BMZQcys51D2XkxqAsGX4s09SbTBV sxbAqmAuQiTxqfxFtp4KmVX06EB7dQgnNdKtcgpniHq49JPGb5rbyEBI4TYQQ0TD bkQXXeTlemGql+AyoHxaMhKoamk9SxkR82p2RJt67zgJGpHRJYiQr/rLb8KeHx7q DxSFqKCGS4WzKQoCRXn9Y5A0CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnyJUMn LH/U5wZFXKj70xENAPHgMB8GA1UdIwQYMBaAFM8+e3QqTFLg+Pf450Bfsru89Mqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzJCMS8xREFFQTIyQ0Q5 RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1RDQ5X2puUUYteXU3ejB5 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p6NTdkQ3BNVXVENDlfam5RRi15dTd6MHlxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzJCMS8xREFFQTIyQ0Q5RkExMUU5ODk0Mjg5NERDNEY5QUUwMi96ejU3ZENwTVV1 RDQ5X2puUUYteXU3ejB5cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArVWk0cyDTJIgraMt/UEvl3CwQN0/A3ulJehKdy6R+GgpXzQ5wm1b2 7Pi42AX6tBhtxgHOXNv2sTalWq6OLfY8v5Zo6rpWEWpyyaf8/dIhME2cdtTEyZMp gHCHxi4nQWwJ8ctjpx79dwy61zECLUOg09tHdxqomhsq92/IdJpDqRZ7gvyA+5vs xkq1F4blv4XarBhEr3oQoeVzZ+9LZbjjp2oJXv2rcDXBmD9Tle+ZamG0cSEo+GyH iS4rMBa+/voHSzfms2ECiid7awAU3cGXCD0cnNQQaExX9TdyGWsB6GMdZxLPH/47 t7ryc/w47kGrmPpZ5KIErD2JXKiHmz8/ -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:26 2025 by rpki-client on console.sobornost.net