$ rpki-client -vvf rpki.apnic.net/member_repository/A91383B0/3D3FE9B6DBC211E38F55144F5911EA32/11KsJgWV3m0QKce5SPSUl-SD6s4.mft File: 11KsJgWV3m0QKce5SPSUl-SD6s4.mft (raw, json) Hash identifier: cJvk6AUm8DlaJGekR/PQem6/WjKvLT0GFlAscirSVl8= Subject key identifier: A1:2E:07:5C:BF:EA:D3:13:2A:FC:E5:A3:AE:C0:BA:E5:88:C8:EC:D7 Authority key identifier: D7:52:AC:26:05:95:DE:6D:10:29:C7:B9:48:F4:94:97:E4:83:EA:CE Certificate issuer: /CN=A91383B0/serialNumber=D752AC260595DE6D1029C7B948F49497E483EACE Certificate serial: 2B96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/11KsJgWV3m0QKce5SPSUl-SD6s4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383B0/3D3FE9B6DBC211E38F55144F5911EA32/11KsJgWV3m0QKce5SPSUl-SD6s4.mft Manifest number: 2B96 Signing time: Mon 28 Apr 2025 15:37:44 +0000 Manifest this update: Mon 28 Apr 2025 15:37:43 +0000 Manifest next update: Mon 05 May 2025 15:37:43 +0000 Files and hashes: 1: 11KsJgWV3m0QKce5SPSUl-SD6s4.crl (hash: NL1aIKKsLb58TQeXVMzChVtmYcHQa/CyZ1HkQxzmL4M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383B0/3D3FE9B6DBC211E38F55144F5911EA32/11KsJgWV3m0QKce5SPSUl-SD6s4.crl rsync://rpki.apnic.net/member_repository/A91383B0/3D3FE9B6DBC211E38F55144F5911EA32/11KsJgWV3m0QKce5SPSUl-SD6s4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/11KsJgWV3m0QKce5SPSUl-SD6s4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11158 (0x2b96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383B0, serialNumber=D752AC260595DE6D1029C7B948F49497E483EACE Validity Not Before: Apr 28 15:37:43 2025 GMT Not After : May 5 15:37:43 2025 GMT Subject: CN=680fa0c8-d980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:20:5f:4f:53:0d:9a:6f:9e:ad:05:38:3c:e9: a4:df:04:43:5a:80:34:06:b4:1d:2b:58:dc:ae:69: e2:7b:d9:42:2e:12:8e:24:08:0e:cc:18:d7:b6:de: b5:d3:59:6b:04:1b:1c:0a:3f:6a:e9:dd:f0:75:ee: 10:2a:74:46:aa:58:32:1f:2f:12:97:62:4e:0b:4c: cc:24:90:89:45:17:c5:4a:57:47:6f:95:b7:21:ef: 2d:13:ea:ea:44:ab:95:f6:76:dd:fd:d6:2e:86:88: d2:3a:14:92:3f:7f:ec:9a:53:c0:40:34:14:39:b1: e6:95:70:bb:fe:2c:97:97:f8:4a:c5:d0:80:f8:b2: 13:e0:95:09:e4:ea:23:d6:6f:68:2e:1a:95:99:3b: be:d1:47:e9:87:75:f0:4b:00:eb:40:2f:f0:c1:b4: cd:9f:fa:76:ad:e3:70:7a:8a:47:19:ad:3b:19:9a: f2:09:3f:50:27:f5:ad:11:19:be:da:bb:bc:58:9a: 9d:2b:6d:9f:b7:5b:89:1a:02:3a:67:2c:72:b3:f6: 69:67:69:23:0d:cc:9e:e0:b4:32:7a:3e:e3:d8:d8: ac:aa:bd:ff:6a:bb:de:1c:a6:e9:a5:67:1d:90:e9: 81:44:f8:30:99:77:49:5a:53:78:32:0c:7a:ca:62: bf:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:2E:07:5C:BF:EA:D3:13:2A:FC:E5:A3:AE:C0:BA:E5:88:C8:EC:D7 X509v3 Authority Key Identifier: keyid:D7:52:AC:26:05:95:DE:6D:10:29:C7:B9:48:F4:94:97:E4:83:EA:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383B0/3D3FE9B6DBC211E38F55144F5911EA32/11KsJgWV3m0QKce5SPSUl-SD6s4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/11KsJgWV3m0QKce5SPSUl-SD6s4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383B0/3D3FE9B6DBC211E38F55144F5911EA32/11KsJgWV3m0QKce5SPSUl-SD6s4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:4a:db:42:c4:69:38:cc:99:80:be:22:7e:30:3a:7b:60:d8: 7d:12:a8:c8:73:64:e5:10:b1:74:dc:f0:f6:69:bf:9c:59:8e: 54:27:31:30:aa:38:64:71:d2:e6:ed:b9:90:19:86:2d:03:c7: a0:cc:11:4d:79:a8:ea:a8:48:bc:70:a0:a8:56:64:08:a2:34: bb:1e:24:a7:66:5d:9d:2a:c8:e9:74:53:22:a6:fc:03:8c:94: b4:61:b3:cc:ce:e4:89:75:91:a4:c0:48:f9:37:a0:90:f5:3c: 20:2a:19:fc:81:35:a7:86:17:b0:40:b4:e8:eb:62:cf:06:20: 71:5d:15:e5:00:84:8e:ab:a5:67:3f:3e:23:f0:7b:7e:42:9c: 92:f3:8b:78:ba:87:f8:98:7d:9d:73:ed:0a:97:2a:13:e0:7f: b3:96:55:37:2a:55:a5:7e:25:65:03:cc:01:67:96:f4:ca:92: 39:3d:63:06:86:29:0d:c2:41:fd:f3:57:c3:5a:f4:79:4a:44: c5:5d:4e:4b:4e:38:89:40:06:6c:35:7b:fb:d2:d3:d4:a4:fa: bd:a2:42:22:85:51:8b:b5:ae:c0:ed:73:b1:f4:d5:50:79:be: c1:9b:67:aa:fa:2e:a9:46:90:6d:35:3f:02:53:db:a9:c9:b9: 40:ff:31:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzQjAxMTAvBgNVBAUTKEQ3NTJBQzI2MDU5NURFNkQxMDI5QzdCOTQ4RjQ5NDk3 RTQ4M0VBQ0UwHhcNMjUwNDI4MTUzNzQzWhcNMjUwNTA1MTUzNzQzWjAYMRYwFAYD VQQDEw02ODBmYTBjOC1kOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSBfT1MNmm+erQU4POmk3wRDWoA0BrQdK1jcrmnie9lCLhKOJAgOzBjXtt61 01lrBBscCj9q6d3wde4QKnRGqlgyHy8Sl2JOC0zMJJCJRRfFSldHb5W3Ie8tE+rq RKuV9nbd/dYuhojSOhSSP3/smlPAQDQUObHmlXC7/iyXl/hKxdCA+LIT4JUJ5Ooj 1m9oLhqVmTu+0Ufph3XwSwDrQC/wwbTNn/p2reNweopHGa07GZryCT9QJ/WtERm+ 2ru8WJqdK22ft1uJGgI6Zyxys/ZpZ2kjDcye4LQyej7j2Nisqr3/arveHKbppWcd kOmBRPgwmXdJWlN4Mgx6ymK/rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEuB1y/ 6tMTKvzlo67AuuWIyOzXMB8GA1UdIwQYMBaAFNdSrCYFld5tECnHuUj0lJfkg+rO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNCMC8zRDNGRTlCNkRC QzIxMUUzOEY1NTE0NEY1OTExRUEzMi8xMUtzSmdXVjNtMFFLY2U1U1BTVWwtU0Q2 czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzExS3NKZ1dWM20wUUtjZTVTUFNVbC1TRDZzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODNCMC8zRDNGRTlCNkRCQzIxMUUzOEY1NTE0NEY1OTExRUEzMi8xMUtzSmdXVjNt MFFLY2U1U1BTVWwtU0Q2czQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3SttCxGk4zJmAviJ+MDp7YNh9EqjIc2TlELF03PD2ab+cWY5UJzEw qjhkcdLm7bmQGYYtA8egzBFNeajqqEi8cKCoVmQIojS7HiSnZl2dKsjpdFMipvwD jJS0YbPMzuSJdZGkwEj5N6CQ9TwgKhn8gTWnhhewQLTo62LPBiBxXRXlAISOq6Vn Pz4j8Ht+QpyS84t4uof4mH2dc+0KlyoT4H+zllU3KlWlfiVlA8wBZ5b0ypI5PWMG hikNwkH981fDWvR5SkTFXU5LTjiJQAZsNXv70tPUpPq9okIihVGLta7A7XOx9NVQ eb7Bm2eq+i6pRpBtNT8CU9upyblA/zGp -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:48 2025 by rpki-client on console.sobornost.net