$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.mft File: b3fBnxHTKqqkLiaRb3SC77j5ehw.mft (raw, json) Hash identifier: I1bzG7q3ib31UP6dV7AWwxHrAYMiJe3E4TyZqmscRog= Subject key identifier: 00:46:B0:CE:5E:AE:E5:64:0A:18:41:3F:11:40:5B:F2:27:ED:DC:1B Authority key identifier: 6F:77:C1:9F:11:D3:2A:AA:A4:2E:26:91:6F:74:82:EF:B8:F9:7A:1C Certificate issuer: /CN=A913D125/serialNumber=6F77C19F11D32AAAA42E26916F7482EFB8F97A1C Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b3fBnxHTKqqkLiaRb3SC77j5ehw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.mft Manifest number: 3C Signing time: Fri 25 Apr 2025 06:31:24 +0000 Manifest this update: Fri 25 Apr 2025 06:31:23 +0000 Manifest next update: Fri 02 May 2025 06:31:23 +0000 Files and hashes: 1: b3fBnxHTKqqkLiaRb3SC77j5ehw.crl (hash: 2rQigaAkKX6JbnfQPjdCotJbRVuHR/h3TgXGsrBstlY=) 2: 62743016CC1111EFA5744A6FC4F9AE02.roa (hash: 6dXw7Y4MWNrxoZ0iMg2dM88R43+4l/3mUETzTfwLRvg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.crl rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b3fBnxHTKqqkLiaRb3SC77j5ehw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=6F77C19F11D32AAAA42E26916F7482EFB8F97A1C Validity Not Before: Apr 25 06:31:23 2025 GMT Not After : May 2 06:31:23 2025 GMT Subject: CN=680b2c3c-b199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:72:b7:47:45:9d:0a:f5:d0:db:53:48:8c:fc: d0:1f:e1:fa:54:d5:8d:15:59:e3:33:c9:6a:32:fe: 71:92:82:2c:bf:ec:b2:57:e8:8d:f2:46:f7:de:92: ff:57:a0:03:8c:6d:60:d1:56:9a:eb:f3:46:96:02: fc:a4:14:5a:a1:04:bc:1f:83:0c:17:4c:54:36:bb: bb:8e:9e:ef:29:0b:d2:42:a6:74:6c:11:6a:44:7f: e8:d3:8f:2f:1e:97:79:32:b2:9d:b8:84:65:bf:48: 4f:57:10:c9:bf:f2:77:e5:ab:e0:29:f8:f1:16:f7: e2:7f:8a:fb:a3:b8:2e:52:31:36:ce:09:60:ec:3e: e3:65:07:b7:6d:c0:dd:30:ce:ce:9a:1e:8a:4a:a1: f8:63:7d:fe:65:9d:3c:d7:dc:d1:b6:e4:7b:62:fe: cf:14:ac:66:20:77:17:77:ce:73:89:80:ae:67:be: 7f:a2:b3:24:f4:ef:e6:72:13:49:b5:0e:42:0d:d9: 21:b0:9c:fe:09:8c:19:c5:36:20:de:03:e1:ac:f7: 81:1c:16:1a:4b:ab:86:4d:ed:70:77:39:89:e2:e6: 6e:d1:72:42:db:6e:ce:a4:db:16:54:0a:85:2c:78: fe:4f:67:ed:24:a0:78:46:a3:62:f4:bd:af:6e:1c: f0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:46:B0:CE:5E:AE:E5:64:0A:18:41:3F:11:40:5B:F2:27:ED:DC:1B X509v3 Authority Key Identifier: keyid:6F:77:C1:9F:11:D3:2A:AA:A4:2E:26:91:6F:74:82:EF:B8:F9:7A:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b3fBnxHTKqqkLiaRb3SC77j5ehw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/F5F7878ACC1011EF87396A6EC4F9AE02/b3fBnxHTKqqkLiaRb3SC77j5ehw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:8f:88:10:59:f1:ad:97:8e:71:5a:1b:6b:0c:45:92:52:95: 7a:b5:20:ad:42:40:d9:94:69:83:88:a1:a2:2c:a7:98:27:74: a8:c2:90:35:27:b1:a1:78:25:bf:8e:17:cf:18:cc:cb:2c:aa: b2:d3:48:4f:69:f1:57:10:73:e6:fc:5c:63:fe:39:28:12:5e: c6:a2:7f:e8:69:b7:3b:5e:9d:84:d8:18:4e:45:46:94:4c:fa: 30:64:ac:20:bf:b7:4b:6e:bb:f5:81:d2:bd:52:f7:e1:fa:5b: e2:67:9e:22:77:fe:4f:65:af:ff:42:3e:e8:c7:8b:46:c4:45: d1:fc:06:fe:60:0d:3d:be:9f:a3:f0:72:55:99:29:a1:b2:90: d1:48:88:fa:19:98:fc:d1:ed:88:cd:54:e0:4a:32:99:8f:39: 9a:0c:c0:e6:78:5d:0e:3a:b0:a6:c0:34:4c:fa:b2:06:de:3c: c2:e0:bc:e6:27:23:44:42:e9:4a:fa:5c:ab:e1:42:88:86:dd: 09:f9:72:97:5a:1e:35:8f:60:03:68:b0:a2:83:b6:e2:9d:0c: d7:3f:da:92:da:3d:6d:85:b9:32:95:5c:23:ee:c5:02:1b:b0: 13:2b:ca:ea:f4:40:21:39:a1:6d:49:2f:34:96:c9:27:c2:50: 0e:03:68:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RDEyNTExMC8GA1UEBRMoNkY3N0MxOUYxMUQzMkFBQUE0MkUyNjkxNkY3NDgyRUZC OEY5N0ExQzAeFw0yNTA0MjUwNjMxMjNaFw0yNTA1MDIwNjMxMjNaMBgxFjAUBgNV BAMTDTY4MGIyYzNjLWIxOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmcrdHRZ0K9dDbU0iM/NAf4fpU1Y0VWeMzyWoy/nGSgiy/7LJX6I3yRvfekv9X oAOMbWDRVprr80aWAvykFFqhBLwfgwwXTFQ2u7uOnu8pC9JCpnRsEWpEf+jTjy8e l3kysp24hGW/SE9XEMm/8nflq+Ap+PEW9+J/ivujuC5SMTbOCWDsPuNlB7dtwN0w zs6aHopKofhjff5lnTzX3NG25Hti/s8UrGYgdxd3znOJgK5nvn+isyT07+ZyE0m1 DkIN2SGwnP4JjBnFNiDeA+Gs94EcFhpLq4ZN7XB3OYni5m7RckLbbs6k2xZUCoUs eP5PZ+0koHhGo2L0va9uHPC/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAEawzl6u 5WQKGEE/EUBb8ift3BswHwYDVR0jBBgwFoAUb3fBnxHTKqqkLiaRb3SC77j5ehww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEMTI1L0Y1Rjc4NzhBQ0Mx MDExRUY4NzM5NkE2RUM0RjlBRTAyL2IzZkJueEhUS3Fxa0xpYVJiM1NDNzdqNWVo dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjNmQm54SFRLcXFrTGlhUmIzU0M3N2o1ZWh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNE MTI1L0Y1Rjc4NzhBQ0MxMDExRUY4NzM5NkE2RUM0RjlBRTAyL2IzZkJueEhUS3Fx a0xpYVJiM1NDNzdqNWVody5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIePiBBZ8a2XjnFaG2sMRZJSlXq1IK1CQNmUaYOIoaIsp5gndKjCkDUn saF4Jb+OF88YzMssqrLTSE9p8VcQc+b8XGP+OSgSXsaif+hptztenYTYGE5FRpRM +jBkrCC/t0tuu/WB0r1S9+H6W+JnniJ3/k9lr/9CPujHi0bERdH8Bv5gDT2+n6Pw clWZKaGykNFIiPoZmPzR7YjNVOBKMpmPOZoMwOZ4XQ46sKbANEz6sgbePMLgvOYn I0RC6Ur6XKvhQoiG3Qn5cpdaHjWPYANosKKDtuKdDNc/2pLaPW2FuTKVXCPuxQIb sBMryur0QCE5oW1JLzSWySfCUA4DaEo= -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:43 2025 by rpki-client on console.sobornost.net