$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: LVPY1l8ujKW9/2C3k9S5cYDootegs5HPPbWag3awWn0= Subject key identifier: EA:19:16:BC:23:6D:7E:B5:5F:EB:DC:0A:E0:F6:DA:5F:4C:AF:1A:87 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 1891 Signing time: Mon 28 Apr 2025 16:40:21 +0000 Manifest this update: Mon 28 Apr 2025 16:40:20 +0000 Manifest next update: Mon 05 May 2025 16:40:20 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: Q0S8V+AE/GhjbSiuH5d+lMlC07iIAkPkljOhb4twodY=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:40:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6311 (0x18a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Apr 28 16:40:20 2025 GMT Not After : May 5 16:40:20 2025 GMT Subject: CN=680faf75-7db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:bb:3c:f1:98:01:18:4e:72:c6:26:8f:01:64: d3:50:d0:8d:0a:b8:c8:84:31:0a:04:4c:59:ef:08: da:c7:47:4e:56:97:f2:e5:4e:38:b1:4c:0a:a4:60: 9c:b7:98:87:3c:a5:2a:80:2a:54:d3:32:3a:62:b2: ad:1a:2e:be:fe:ad:05:67:5e:7d:ac:70:82:8f:37: 53:66:9d:c9:c8:cc:eb:98:75:5e:42:49:90:66:0a: ba:f5:39:72:f6:01:d9:2a:f7:03:92:94:ac:d6:26: 7b:36:0c:93:2f:34:ad:4d:55:34:26:1c:cb:c2:4d: 37:9a:26:91:3c:bc:7d:b7:d8:30:e5:cc:b9:63:2c: ac:40:a2:f8:84:75:e0:28:3c:b9:2a:9f:0c:9d:4d: 43:a7:dd:ad:8a:9a:8a:81:da:93:1c:11:33:59:7d: ad:5f:88:75:d0:80:e6:27:48:dd:71:01:be:fe:a1: d6:41:fe:ea:0c:1e:2b:c4:33:32:94:8e:b1:40:7d: 66:85:f6:c8:ff:93:1a:93:cd:eb:61:74:d4:ab:5a: d7:6a:4d:de:25:49:7e:f0:5b:47:d9:35:9c:ab:1a: e4:46:af:d1:33:83:9e:81:46:7f:c0:4b:77:c3:96: de:46:f2:32:1c:ac:2e:1d:3e:a2:ab:e6:03:25:4b: e1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:19:16:BC:23:6D:7E:B5:5F:EB:DC:0A:E0:F6:DA:5F:4C:AF:1A:87 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:38:a2:79:fa:fd:46:8f:d5:06:ad:bf:f3:a7:43:c0:d7:79: e4:eb:5e:8f:0a:d0:75:19:c1:7d:e7:a4:f3:23:ac:7e:cb:ff: a1:b1:83:22:35:df:6e:8c:26:0a:ac:a3:f8:51:6d:e5:51:b8: 55:8a:a7:71:d6:42:db:dc:69:1b:ac:a3:61:eb:f1:ea:3d:e2: ad:e1:59:49:38:eb:4a:5e:cb:be:23:95:a0:56:af:10:1b:90: a2:76:93:c4:39:51:94:35:1c:40:5c:c2:5f:59:6b:17:72:63: 95:be:0b:9a:c2:f3:ec:79:4e:ad:1d:be:79:df:4c:34:49:69: f8:9d:6d:4a:61:0d:cc:05:69:01:f6:fb:32:13:81:54:65:2b: 85:ad:b1:25:d6:54:df:11:9c:6b:0c:78:95:ca:66:d1:c5:84: cf:6e:d8:be:eb:7b:e9:6d:74:c2:0b:d4:fe:08:ca:c7:a6:17: ea:9d:a3:38:67:7a:9f:57:86:88:0f:04:af:20:fe:4a:b9:f9: 83:3b:69:a8:6b:e7:c0:ed:73:8c:1c:3c:27:e5:1c:77:5a:6d: 55:f3:f3:45:fd:de:83:d1:57:72:92:f2:6d:ea:f6:5c:3b:1d: 0f:67:35:a9:da:db:5e:ec:76:89:76:10:11:0a:d8:b3:a1:77: 55:a0:d1:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwNDI4MTY0MDIwWhcNMjUwNTA1MTY0MDIwWjAYMRYwFAYD VQQDEw02ODBmYWY3NS03ZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7s88ZgBGE5yxiaPAWTTUNCNCrjIhDEKBExZ7wjax0dOVpfy5U44sUwKpGCc t5iHPKUqgCpU0zI6YrKtGi6+/q0FZ159rHCCjzdTZp3JyMzrmHVeQkmQZgq69Tly 9gHZKvcDkpSs1iZ7NgyTLzStTVU0JhzLwk03miaRPLx9t9gw5cy5YyysQKL4hHXg KDy5Kp8MnU1Dp92tipqKgdqTHBEzWX2tX4h10IDmJ0jdcQG+/qHWQf7qDB4rxDMy lI6xQH1mhfbI/5Mak83rYXTUq1rXak3eJUl+8FtH2TWcqxrkRq/RM4OegUZ/wEt3 w5beRvIyHKwuHT6iq+YDJUvhKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoZFrwj bX61X+vcCuD22l9MrxqHMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALOKJ5+v1Gj9UGrb/zp0PA13nk616PCtB1GcF956TzI6x+y/+hsYMi Nd9ujCYKrKP4UW3lUbhViqdx1kLb3GkbrKNh6/HqPeKt4VlJOOtKXsu+I5WgVq8Q G5CidpPEOVGUNRxAXMJfWWsXcmOVvguawvPseU6tHb5530w0SWn4nW1KYQ3MBWkB 9vsyE4FUZSuFrbEl1lTfEZxrDHiVymbRxYTPbti+63vpbXTCC9T+CMrHphfqnaM4 Z3qfV4aIDwSvIP5KufmDO2moa+fA7XOMHDwn5Rx3Wm1V8/NF/d6D0VdykvJt6vZc Ox0PZzWp2tte7HaJdhARCtizoXdVoNE1 -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:35 2025 by rpki-client on console.sobornost.net