$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: vxBmtwXfGbHKZZG10eEjRIl03478P3RE48Ur7RjKAt0= Subject key identifier: 75:2C:08:92:08:12:41:23:D6:06:69:6C:FD:19:D4:4D:EF:88:3F:B3 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: 64 Signing time: Sun 27 Apr 2025 05:50:38 +0000 Manifest this update: Sun 27 Apr 2025 05:50:37 +0000 Manifest next update: Sun 04 May 2025 05:50:37 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: RJUDhAsk42BnR839zLZhEhgHFekDLkuC2ebQ67+v814=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3, serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Apr 27 05:50:37 2025 GMT Not After : May 4 05:50:37 2025 GMT Subject: CN=680dc5ae-ae54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:b5:71:8e:75:0f:6a:0a:9d:ef:cd:c8:df: 95:cb:57:ab:67:0b:33:d7:c8:44:a3:85:67:94:f6: 2f:0e:52:de:cf:e4:e2:1a:03:90:9c:25:a6:5e:da: 1b:73:79:ae:8c:27:ff:2d:da:35:af:dc:b0:30:8d: d4:c8:f4:9e:ae:db:bc:1f:e5:52:22:d4:f8:5f:c2: 53:41:92:95:f6:99:ea:6a:9e:4f:7f:7d:06:fd:fa: 96:d8:37:70:2f:4e:e1:eb:2d:86:82:05:1f:c1:6c: 4b:77:eb:e2:c7:be:c9:7d:f3:c3:5c:a3:93:11:69: e2:f3:a6:31:ce:0e:ba:98:d8:e6:f8:9b:98:b2:75: b6:14:58:d5:73:57:fb:b6:09:19:f0:e8:76:0c:60: a4:09:d4:e1:1d:dc:c4:af:fd:5d:90:e5:b1:b9:1b: 8b:9d:25:59:13:5d:16:35:d6:c0:97:96:11:03:85: 3a:d7:5c:2f:59:10:bd:fd:15:06:52:b4:38:78:60: 2d:41:e7:90:ad:3d:cc:3a:19:77:36:2a:12:33:df: 2b:fa:12:1f:34:0b:a0:de:64:91:b8:4d:2d:ef:1f: 3f:51:a8:51:b7:d6:e7:32:16:7a:bc:b4:5f:65:b6: fc:12:a4:33:77:8d:d5:71:0c:ad:b6:b1:f5:a9:f4: 38:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:2C:08:92:08:12:41:23:D6:06:69:6C:FD:19:D4:4D:EF:88:3F:B3 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:64:7b:34:20:73:52:e2:95:43:9c:b4:0b:21:7d:ec:78:4e: d5:57:44:1e:a3:ea:ce:47:e2:70:35:86:04:6b:d6:fc:d6:12: 2e:07:bf:1e:a0:3c:b6:8a:69:58:70:cd:8f:dd:62:90:95:d8: 0e:b8:1e:93:1d:f0:c2:5e:38:ba:63:2f:e9:f6:f4:ab:a2:20: 28:1d:19:8b:fc:23:fa:1e:d4:ed:6c:9d:49:52:fb:33:05:11: 95:1c:01:8a:b6:13:1f:82:b0:8a:2d:ec:41:ed:87:e6:5e:b2: 98:05:17:07:8a:df:95:c2:c5:ea:3a:11:45:ee:f5:1f:a0:d4: a1:13:dc:d4:f3:5d:0d:a6:57:25:bc:b0:93:62:d6:ae:06:79: d5:56:07:f3:ba:ee:11:dd:83:aa:d5:59:5b:90:52:0f:e0:71: 10:e6:e5:c3:9c:2f:96:2b:f0:5d:e6:f5:82:c2:38:f5:10:e6: 1e:79:f9:7d:eb:f4:99:5a:e8:c5:ad:9f:77:1b:ad:78:7d:c8: c4:62:cc:b2:a0:7c:05:15:51:2e:d2:6f:58:51:4a:6f:52:93: cd:68:d3:a0:22:d8:d5:67:5c:f8:0e:a3:1e:e2:43:03:67:86: dd:6f:88:0d:8c:b7:16:8d:34:98:12:1e:0a:91:2b:1f:fd:9e: 9b:3c:50:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDBFMzExMC8GA1UEBRMoREJDNkYyMjU2RERFNUMyQzQ2QTgwRUIyNDMyRjI1NzJF REM1MzdENjAeFw0yNTA0MjcwNTUwMzdaFw0yNTA1MDQwNTUwMzdaMBgxFjAUBgNV BAMTDTY4MGRjNWFlLWFlNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+27VxjnUPagqd783I35XLV6tnCzPXyESjhWeU9i8OUt7P5OIaA5CcJaZe2htz ea6MJ/8t2jWv3LAwjdTI9J6u27wf5VIi1PhfwlNBkpX2mepqnk9/fQb9+pbYN3Av TuHrLYaCBR/BbEt36+LHvsl988Nco5MRaeLzpjHODrqY2Ob4m5iydbYUWNVzV/u2 CRnw6HYMYKQJ1OEd3MSv/V2Q5bG5G4udJVkTXRY11sCXlhEDhTrXXC9ZEL39FQZS tDh4YC1B55CtPcw6GXc2KhIz3yv6Eh80C6DeZJG4TS3vHz9RqFG31ucyFnq8tF9l tvwSpDN3jdVxDK22sfWp9DgTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdSwIkggS QSPWBmls/RnUTe+IP7MwHwYDVR0jBBgwFoAU28byJW3eXCxGqA6yQy8lcu3FN9Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMEUzL0IzNUFCOUZBOEM3 RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhieUpXM2VYQ3hHcUE2eVF5OGxjdTNGTjlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE MEUzL0IzNUFCOUZBOEM3RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4 R3FBNnlReThsY3UzRk45WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKRkezQgc1LilUOctAshfex4TtVXRB6j6s5H4nA1hgRr1vzWEi4Hvx6g PLaKaVhwzY/dYpCV2A64HpMd8MJeOLpjL+n29KuiICgdGYv8I/oe1O1snUlS+zMF EZUcAYq2Ex+CsIot7EHth+ZespgFFweK35XCxeo6EUXu9R+g1KET3NTzXQ2mVyW8 sJNi1q4GedVWB/O67hHdg6rVWVuQUg/gcRDm5cOcL5Yr8F3m9YLCOPUQ5h55+X3r 9Jla6MWtn3cbrXh9yMRizLKgfAUVUS7Sb1hRSm9Sk81o06Ai2NVnXPgOox7iQwNn ht1viA2MtxaNNJgSHgqRKx/9nps8ULs= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net