$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: E2jOWOP0SYaPmQrWNCalI+MYTNqdBCRusFUcIjCOcA0= Subject key identifier: 67:74:83:0A:9B:5C:D2:8C:D4:9A:E5:16:19:E4:B5:7A:77:8F:5C:74 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 23 Signing time: Sun 27 Apr 2025 06:41:31 +0000 Manifest this update: Sun 27 Apr 2025 06:41:31 +0000 Manifest next update: Sun 04 May 2025 06:41:31 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: Is38EHqSOYgwe9P19tNQSko3P/D4A6toUITvYK/kSyw=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: Apr 27 06:41:31 2025 GMT Not After : May 4 06:41:31 2025 GMT Subject: CN=680dd19b-2752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:93:ac:8b:8c:c1:4e:f7:e1:7b:7f:ae:bd:4d: ad:73:d8:eb:db:36:61:1f:74:17:a7:7b:ed:62:1c: 74:24:1e:e5:f2:c4:a8:a6:14:f0:e0:d9:4c:ce:76: ee:68:78:59:55:27:79:e4:ed:dc:14:c3:01:bd:69: 27:b8:a9:09:da:19:72:43:3a:5b:14:77:8c:98:f6: d1:42:4b:06:6b:ac:b6:d3:1f:85:fc:94:c3:bd:2d: 6a:60:c1:85:01:2b:ae:db:b9:d4:22:08:b9:0e:63: be:05:fd:96:43:81:f4:08:a4:83:ca:ef:ef:21:7c: 6b:c7:53:11:a1:92:cb:7f:e1:b7:d5:9a:40:50:a3: 7b:f0:d1:b7:78:7b:11:bf:4e:73:fa:66:de:4a:de: fa:fd:83:27:cd:62:f5:b2:4b:02:30:74:e9:c4:df: 4f:6c:1f:4d:78:fa:57:83:af:01:63:2d:a1:f7:43: 68:18:7c:2a:5e:1e:2e:5c:3f:f6:a1:ed:10:5d:68: 5e:47:91:70:8c:43:84:6e:6e:a7:22:c5:41:ce:e3: c9:12:72:c4:38:0b:bb:b5:6e:a4:36:a1:5f:9c:ee: 8d:10:08:f5:59:2d:cf:ae:38:fa:dc:b5:e9:88:78: 99:44:4e:23:3f:7f:c0:d3:48:29:93:47:0a:4d:43: 84:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:74:83:0A:9B:5C:D2:8C:D4:9A:E5:16:19:E4:B5:7A:77:8F:5C:74 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:57:ef:f7:a3:ca:ed:c0:8f:65:6f:3c:86:fe:87:c3:03:c9: 9f:ae:6a:df:6d:e7:fb:2e:03:d1:b7:3e:13:db:af:eb:37:a7: fd:bb:86:2d:61:e6:cf:7a:04:00:89:3c:e7:ce:47:59:ec:98: bc:0c:bc:7a:59:6f:93:e2:0a:27:08:be:b7:d9:18:0e:43:df: ad:8a:73:e3:a3:53:dc:5d:37:48:43:87:47:ef:c4:2c:0b:76: 40:85:31:b8:1a:51:97:0f:8c:64:34:55:c3:eb:d6:fe:bf:fa: f6:53:8f:06:d1:ba:2d:b6:f3:d7:41:71:52:30:31:bc:f0:99: f5:ba:d6:4c:bc:d5:17:73:aa:42:f6:e8:80:d4:f0:35:45:29: b0:d8:67:3c:bf:36:8b:5f:bc:ff:fa:5c:db:2d:a8:cf:76:46: b4:b2:71:14:8d:f8:cd:92:3a:87:11:55:a4:42:1d:27:f7:3c: ef:70:4e:c8:0b:ff:64:ee:39:7e:f2:65:0e:e1:4b:4a:01:24: 24:03:8c:48:7c:da:f4:ec:13:d1:27:8c:90:e1:da:af:87:ad: 94:26:c3:52:a6:f8:df:c1:2a:3e:8b:29:4e:fd:54:ab:b9:ed: 4a:9b:b8:d5:b7:86:b7:1a:f1:34:2d:1c:00:cc:ac:18:a0:6a: 36:d8:21:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTA0MjcwNjQxMzFaFw0yNTA1MDQwNjQxMzFaMBgxFjAUBgNV BAMTDTY4MGRkMTliLTI3NTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEk6yLjMFO9+F7f669Ta1z2OvbNmEfdBene+1iHHQkHuXyxKimFPDg2UzOdu5o eFlVJ3nk7dwUwwG9aSe4qQnaGXJDOlsUd4yY9tFCSwZrrLbTH4X8lMO9LWpgwYUB K67budQiCLkOY74F/ZZDgfQIpIPK7+8hfGvHUxGhkst/4bfVmkBQo3vw0bd4exG/ TnP6Zt5K3vr9gyfNYvWySwIwdOnE309sH014+leDrwFjLaH3Q2gYfCpeHi5cP/ah 7RBdaF5HkXCMQ4RubqcixUHO48kScsQ4C7u1bqQ2oV+c7o0QCPVZLc+uOPrctemI eJlETiM/f8DTSCmTRwpNQ4RRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ3SDCptc 0ozUmuUWGeS1enePXHQwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABdX7/ejyu3Aj2VvPIb+h8MDyZ+uat9t5/suA9G3PhPbr+s3p/27hi1h 5s96BACJPOfOR1nsmLwMvHpZb5PiCicIvrfZGA5D362Kc+OjU9xdN0hDh0fvxCwL dkCFMbgaUZcPjGQ0VcPr1v6/+vZTjwbRui2289dBcVIwMbzwmfW61ky81RdzqkL2 6IDU8DVFKbDYZzy/NotfvP/6XNstqM92RrSycRSN+M2SOocRVaRCHSf3PO9wTsgL /2TuOX7yZQ7hS0oBJCQDjEh82vTsE9EnjJDh2q+HrZQmw1Km+N/BKj6LKU79VKu5 7UqbuNW3hrca8TQtHADMrBigajbYIWo= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net