$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: pFFcZaqdYlIcMeZleY9ieDE9au8Wg2wT7FHyD797QgE= Subject key identifier: 4D:E1:60:B8:06:C7:D9:4F:ED:6A:01:60:95:60:8C:FF:D3:DE:7C:96 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01A2 Signing time: Sun 27 Apr 2025 02:23:55 +0000 Manifest this update: Sun 27 Apr 2025 02:23:55 +0000 Manifest next update: Sun 04 May 2025 02:23:55 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: 0kKQdUjjCVt4sGZl1ZC985W9ojcFHR/Ytws0ETjaql4=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: gp0c0TAvNcGzlWuq4DB/NpWsaDumiulUkd34eH+poTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:23:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Apr 27 02:23:55 2025 GMT Not After : May 4 02:23:55 2025 GMT Subject: CN=680d953b-1d13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ba:65:58:ba:2f:63:4c:e6:18:99:84:6d:bc: 6b:93:81:08:db:87:ac:f5:e5:44:02:78:4d:b5:61: 9e:c5:dc:52:d7:87:6d:b5:d3:e3:1f:50:7c:19:a7: 03:8e:aa:99:aa:a5:2c:08:49:f4:8d:ad:b9:a4:6b: 8b:1e:b5:00:c4:90:37:5f:77:f5:ac:ee:4e:3a:77: f6:70:8e:d2:72:8e:d9:bc:fc:95:71:39:f8:b3:40: 57:3a:4a:a6:36:53:0e:c0:b2:50:34:2a:15:3b:30: a3:63:6b:d8:56:ec:00:cf:c6:64:6f:ea:6b:65:b1: 9e:dd:d7:50:f3:5b:3f:f2:99:f7:9f:cf:2c:b0:3f: 45:1a:e4:bb:45:ea:9d:b6:77:06:11:2c:12:dd:98: 84:12:b2:71:af:f2:e9:1b:9b:50:1e:c5:5b:ad:4d: e7:25:1f:e6:e2:49:01:55:a3:1e:1e:b0:a3:ab:a9: 74:ee:b2:c3:38:94:74:25:cb:3d:93:52:eb:6e:5a: 54:56:89:11:09:b7:03:91:40:c7:47:c8:b9:fc:bb: fb:44:22:95:01:4a:22:9c:7b:5e:47:fa:98:67:a1: b1:44:35:81:0b:47:fa:4f:ea:2e:93:c6:ab:67:31: 57:2f:cd:33:da:c6:87:ed:ad:69:f0:ee:c4:b5:66: 83:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E1:60:B8:06:C7:D9:4F:ED:6A:01:60:95:60:8C:FF:D3:DE:7C:96 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:50:75:31:c4:2d:42:c4:e6:9f:79:30:ba:87:90:fc:f0:a0: fc:6a:d8:a3:64:b1:6d:81:a2:19:4d:5c:af:e6:6e:c5:5c:42: 85:ad:3c:ec:f0:a1:9e:a3:2f:9f:dd:4e:3b:2d:8e:b7:8d:c1: 89:92:a1:94:f8:9e:24:1d:6d:0c:5e:a0:c4:2f:55:06:1a:0e: 92:fa:32:fc:34:bb:a4:3e:ea:58:c6:c0:5e:a0:3d:22:63:09: c8:41:8a:cf:f3:b6:73:22:da:44:4e:3a:b0:82:90:13:7b:57: 63:33:ed:33:18:5b:3f:04:23:b0:da:d4:8e:48:8a:90:d4:71: bc:c3:68:e7:f2:2c:fb:b1:a2:c4:60:91:07:7a:47:8c:9d:1a: 43:50:c1:5f:d6:95:2d:37:c1:41:8d:13:24:7d:7a:cf:43:65: c9:c0:94:b3:4c:2d:04:e6:d5:45:ec:29:1d:95:53:ce:5a:69: c4:00:da:53:35:42:d3:57:7e:ed:2c:a2:35:9e:05:24:98:cd: f8:6f:ec:af:55:61:30:b9:18:ae:81:9b:9e:0e:fe:46:91:f6: 77:f5:56:6f:f8:49:1d:91:8c:dc:ac:c7:f3:c4:7a:f9:ce:f9: e8:17:76:87:79:c4:57:73:62:ae:ae:b0:ae:b2:09:40:2f:c7: fc:b0:63:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUwNDI3MDIyMzU1WhcNMjUwNTA0MDIyMzU1WjAYMRYwFAYD VQQDEw02ODBkOTUzYi0xZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7plWLovY0zmGJmEbbxrk4EI24es9eVEAnhNtWGexdxS14dttdPjH1B8GacD jqqZqqUsCEn0ja25pGuLHrUAxJA3X3f1rO5OOnf2cI7Sco7ZvPyVcTn4s0BXOkqm NlMOwLJQNCoVOzCjY2vYVuwAz8Zkb+prZbGe3ddQ81s/8pn3n88ssD9FGuS7Reqd tncGESwS3ZiEErJxr/LpG5tQHsVbrU3nJR/m4kkBVaMeHrCjq6l07rLDOJR0Jcs9 k1LrblpUVokRCbcDkUDHR8i5/Lv7RCKVAUoinHteR/qYZ6GxRDWBC0f6T+ouk8ar ZzFXL80z2saH7a1p8O7EtWaDMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3hYLgG x9lP7WoBYJVgjP/T3nyWMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKUHUxxC1CxOafeTC6h5D88KD8atijZLFtgaIZTVyv5m7FXEKFrTzs 8KGeoy+f3U47LY63jcGJkqGU+J4kHW0MXqDEL1UGGg6S+jL8NLukPupYxsBeoD0i YwnIQYrP87ZzItpETjqwgpATe1djM+0zGFs/BCOw2tSOSIqQ1HG8w2jn8iz7saLE YJEHekeMnRpDUMFf1pUtN8FBjRMkfXrPQ2XJwJSzTC0E5tVF7CkdlVPOWmnEANpT NULTV37tLKI1ngUkmM34b+yvVWEwuRiugZueDv5GkfZ39VZv+EkdkYzcrMfzxHr5 zvnoF3aHecRXc2KurrCusglAL8f8sGOD -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:45 2025 by rpki-client on console.sobornost.net