$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: lawZae0bDmU2Gi9xzmF5QrvliwiVQHI7HjtN2BSQoeA= Subject key identifier: 1E:02:CE:4D:E1:57:B5:8A:46:1B:99:92:19:B1:35:76:86:67:73:B7 Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: 4B Signing time: Sun 27 Apr 2025 06:10:08 +0000 Manifest this update: Sun 27 Apr 2025 06:10:08 +0000 Manifest next update: Sun 04 May 2025 06:10:08 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: +5/bOI0NMoIwsf8tgaVXLBYxIRJMqefUyD/47cdyJok=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: 7UFK5IvMzRZ9oqAbFOWW72hTsQEiovxWyIoXLKQd8RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Apr 27 06:10:08 2025 GMT Not After : May 4 06:10:08 2025 GMT Subject: CN=680dca40-991d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e9:6c:29:1f:9a:7a:88:06:08:ce:a7:19:53: a5:5b:6a:bf:12:b9:30:f8:0c:07:6b:c1:d6:3f:8a: 80:07:96:9b:2d:91:e6:3d:44:f3:1a:79:5b:d2:f2: a1:a4:7c:31:63:d2:5a:7b:d9:55:16:0a:26:12:e2: e8:f6:09:ba:06:d9:11:f2:43:aa:1e:0e:ed:a6:bc: 21:5c:39:29:cc:b2:09:19:3e:9d:46:b3:a7:1a:14: f4:c5:fd:5c:cb:29:9e:73:f7:93:16:2e:4c:b4:d1: 17:ab:be:f8:05:88:81:33:91:7b:15:41:fd:ec:f7: ed:46:dc:1b:73:f9:03:8c:17:03:7c:f0:77:a9:84: 55:57:57:3a:bc:11:76:d4:84:12:ea:cd:e0:b9:f4: ed:3b:fb:95:62:23:a5:cf:fd:85:1c:75:11:6d:df: 8c:ce:8d:2d:bc:5d:87:52:6d:d0:81:26:d9:00:82: 3b:07:63:cc:2e:d9:b6:5b:f4:bc:7b:6c:8d:86:4d: 53:05:c8:f7:d1:f1:95:28:85:8e:5a:a5:7b:09:27: d5:d9:a2:b7:23:fb:71:f6:6e:a8:ba:e1:7f:f1:b4: d3:47:63:17:91:12:08:6f:e2:29:aa:8f:cc:6b:b5: e3:f5:66:d0:5b:26:fb:32:34:b2:c2:9e:58:77:11: 46:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:02:CE:4D:E1:57:B5:8A:46:1B:99:92:19:B1:35:76:86:67:73:B7 X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:80:9a:d6:5d:3e:3d:27:ed:3c:b9:8e:32:95:d3:2d:94:3a: e9:f0:77:dc:87:43:da:ca:84:1a:ed:19:f8:ba:a4:2b:76:ad: 94:38:00:70:27:a1:3d:bc:3e:1b:6b:bc:30:fc:2e:ff:29:9f: d6:43:af:01:d5:11:b6:cf:54:1c:b3:b2:de:4c:02:44:30:bd: c1:ce:b1:dc:b6:fc:ff:5e:07:8d:a3:0b:a2:04:5f:4e:a2:7b: f9:d7:61:87:97:07:7a:5c:17:ad:e0:3d:9a:93:a4:4d:31:95: 31:2a:21:93:f5:b0:b1:82:45:c7:23:5e:0a:ca:9a:22:8e:9e: 96:03:46:97:70:9b:dd:77:97:82:0f:2f:54:5e:5b:06:da:d2: de:59:8d:45:dc:5a:cd:b7:11:11:e5:81:b0:98:a7:41:b7:4b: f4:08:ac:1a:55:3d:ac:26:70:46:37:39:f3:63:59:c8:df:ea: 59:aa:00:d3:80:38:9f:c3:4c:ef:29:c9:28:f8:09:a7:28:92: ea:69:42:30:23:72:c9:ca:dd:34:ba:66:40:6b:38:6f:c2:64: e9:7f:aa:8f:e2:45:48:e3:81:94:85:55:67:a6:76:5c:b1:a0: c6:b7:fc:aa:f4:8a:dd:8b:82:15:67:bc:d7:67:8b:4d:0d:46: 48:7c:89:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTdDRjExMC8GA1UEBRMoRUMzRDgwN0Y3OTNDOUNGNUZDRTMzNUVFMTVFMDk4NDQ0 OUI0MzA5NjAeFw0yNTA0MjcwNjEwMDhaFw0yNTA1MDQwNjEwMDhaMBgxFjAUBgNV BAMTDTY4MGRjYTQwLTk5MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC36WwpH5p6iAYIzqcZU6Vbar8SuTD4DAdrwdY/ioAHlpstkeY9RPMaeVvS8qGk fDFj0lp72VUWCiYS4uj2CboG2RHyQ6oeDu2mvCFcOSnMsgkZPp1Gs6caFPTF/VzL KZ5z95MWLky00RervvgFiIEzkXsVQf3s9+1G3Btz+QOMFwN88HephFVXVzq8EXbU hBLqzeC59O07+5ViI6XP/YUcdRFt34zOjS28XYdSbdCBJtkAgjsHY8wu2bZb9Lx7 bI2GTVMFyPfR8ZUohY5apXsJJ9XZorcj+3H2bqi64X/xtNNHYxeREghv4imqj8xr teP1ZtBbJvsyNLLCnlh3EUbFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHgLOTeFX tYpGG5mSGbE1doZnc7cwHwYDVR0jBBgwFoAU7D2Af3k8nPX84zXuFeCYREm0MJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxN0NGL0I0MTU1NDU4QjJD NzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1K WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN0QyQWYzazhuUFg4NHpYdUZlQ1lSRW0wTUpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUx N0NGL0I0MTU1NDU4QjJDNzExRUY5MTZCQjY3RkM0RjlBRTAyLzdEMkFmM2s4blBY ODR6WHVGZUNZUkVtME1KWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEOAmtZdPj0n7Ty5jjKV0y2UOunwd9yHQ9rKhBrtGfi6pCt2rZQ4AHAn oT28PhtrvDD8Lv8pn9ZDrwHVEbbPVByzst5MAkQwvcHOsdy2/P9eB42jC6IEX06i e/nXYYeXB3pcF63gPZqTpE0xlTEqIZP1sLGCRccjXgrKmiKOnpYDRpdwm913l4IP L1ReWwba0t5ZjUXcWs23ERHlgbCYp0G3S/QIrBpVPawmcEY3OfNjWcjf6lmqANOA OJ/DTO8pySj4CacokuppQjAjcsnK3TS6ZkBrOG/CZOl/qo/iRUjjgZSFVWemdlyx oMa3/Kr0it2LghVnvNdni00NRkh8iXU= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:46 2025 by rpki-client on console.sobornost.net