$ rpki-client -vvf rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.mft File: lF0JfyJj0Uw2t7ZcLcDCX57ncZI.mft (raw, json) Hash identifier: 4XSrJsmmpNTADt9apsdZYTdqQutzVhGUaYUjFhzQG5I= Subject key identifier: E4:B5:DD:2F:4E:D8:1C:51:57:37:16:2C:B0:C2:F3:94:BA:BD:3B:D3 Authority key identifier: 94:5D:09:7F:22:63:D1:4C:36:B7:B6:5C:2D:C0:C2:5F:9E:E7:71:92 Certificate issuer: /CN=A916DC92/serialNumber=945D097F2263D14C36B7B65C2DC0C25F9EE77192 Certificate serial: 0C31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.mft Manifest number: 0C21 Signing time: Mon 28 Apr 2025 18:52:59 +0000 Manifest this update: Mon 28 Apr 2025 18:52:59 +0000 Manifest next update: Mon 05 May 2025 18:52:59 +0000 Files and hashes: 1: lF0JfyJj0Uw2t7ZcLcDCX57ncZI.crl (hash: C3hEeseRJl/OrRZ0Iv3AUr5HjAS78ao5v8un6+jNjVM=) 2: CE15A7B409D911EA80E56E21C4F9AE02.roa (hash: gBEi2R13VWPv9ID88Yp79OfFGvAVYE/s6Ssf5W2fwwk=) 3: CCE5BAAA09D911EA80E56E21C4F9AE02.roa (hash: LEAp/LEvn2wmVSYlgep7H8tvqMhftOe6qW5nlWlQ4tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.crl rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3121 (0xc31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DC92, serialNumber=945D097F2263D14C36B7B65C2DC0C25F9EE77192 Validity Not Before: Apr 28 18:52:59 2025 GMT Not After : May 5 18:52:59 2025 GMT Subject: CN=680fce8b-3b43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e5:6f:d0:6d:bd:ee:5f:85:0c:c3:df:7a:25: b1:c5:25:e7:da:49:97:7d:3d:23:74:55:52:92:56: 21:ac:2b:38:aa:a9:e4:dc:1a:e3:7c:b0:c6:1a:61: d2:72:25:ec:0c:34:65:dd:13:05:24:60:f3:39:0f: b1:6c:16:dc:2f:96:35:69:23:25:5f:1e:fc:e2:b3: 9a:fd:a3:d8:8e:3d:90:f2:3f:41:11:f5:ba:a2:1a: 8c:93:76:84:71:83:49:1a:32:ed:d7:d4:00:e5:e3: 50:10:dd:b7:2b:9b:ac:e0:21:3b:0b:5a:c3:3c:ec: b0:ef:f5:7f:af:4f:96:7e:cf:57:69:7b:79:67:5c: c8:c1:02:c7:8d:a9:24:b1:e6:be:b8:56:17:30:68: 51:46:19:7d:e0:3f:e6:70:bf:bd:be:4c:ab:b7:fd: a5:f9:f7:d0:ae:1e:7c:27:bb:34:7d:69:42:1f:e8: 40:e0:c1:e2:6f:28:c3:7b:0e:ca:31:3d:84:cf:fe: 56:fb:53:a2:19:1a:0f:b4:26:b6:66:93:fe:02:39: ca:51:1f:5f:f2:21:9a:c6:23:36:66:9a:10:cf:c8: 44:18:0c:3f:ec:26:e8:da:11:38:e1:29:9d:d9:3e: 82:cb:89:5c:d1:a2:dc:af:4c:3d:1c:11:5f:35:98: cb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B5:DD:2F:4E:D8:1C:51:57:37:16:2C:B0:C2:F3:94:BA:BD:3B:D3 X509v3 Authority Key Identifier: keyid:94:5D:09:7F:22:63:D1:4C:36:B7:B6:5C:2D:C0:C2:5F:9E:E7:71:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DC92/0F4D7B4609D811EA9FE8DB1EC4F9AE02/lF0JfyJj0Uw2t7ZcLcDCX57ncZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a8:22:87:fd:09:eb:a1:b4:fb:88:99:54:a1:9a:a0:3e:95: ec:73:84:54:50:bc:ff:90:91:65:61:2f:ad:89:fe:5c:db:d7: 88:9e:51:52:ad:71:5a:32:ed:3f:28:4d:e6:29:e1:bf:1f:18: f8:4f:c5:e8:ea:45:d8:23:40:1d:10:49:4c:96:88:c8:c4:b1: 5d:11:b8:43:43:5b:e1:52:7a:6d:2b:a8:3e:41:c4:4b:b6:40: c1:29:15:97:42:57:3c:29:6a:2c:55:b9:ac:31:b3:ef:88:66: 0f:a5:5d:14:8f:50:61:22:f2:41:c2:d7:75:17:62:32:ce:0a: b2:5f:a5:d4:f8:71:85:33:56:1c:d6:ff:b2:6d:ab:2b:28:d6: 2b:d0:b6:26:e2:ac:ca:fd:10:cd:02:f7:d2:1a:4e:62:3c:b6: 75:c7:71:33:14:b5:43:f8:8a:df:f7:11:af:2a:a8:42:4e:35: 1f:30:c5:ff:15:a7:ea:02:63:12:21:22:93:b5:b1:5c:c3:3f: 5e:cb:19:d6:a7:cb:3f:44:23:61:4f:6b:02:af:c4:33:04:1b: 90:18:a1:75:57:51:c0:ae:88:e0:a2:ab:9d:fa:98:74:c5:3e: 15:99:26:6a:ff:3c:2d:d7:9a:88:a1:89:62:f8:73:0d:02:d5: cd:4b:43:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRDOTIxMTAvBgNVBAUTKDk0NUQwOTdGMjI2M0QxNEMzNkI3QjY1QzJEQzBDMjVG OUVFNzcxOTIwHhcNMjUwNDI4MTg1MjU5WhcNMjUwNTA1MTg1MjU5WjAYMRYwFAYD VQQDEw02ODBmY2U4Yi0zYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeVv0G297l+FDMPfeiWxxSXn2kmXfT0jdFVSklYhrCs4qqnk3BrjfLDGGmHS ciXsDDRl3RMFJGDzOQ+xbBbcL5Y1aSMlXx784rOa/aPYjj2Q8j9BEfW6ohqMk3aE cYNJGjLt19QA5eNQEN23K5us4CE7C1rDPOyw7/V/r0+Wfs9XaXt5Z1zIwQLHjakk sea+uFYXMGhRRhl94D/mcL+9vkyrt/2l+ffQrh58J7s0fWlCH+hA4MHibyjDew7K MT2Ez/5W+1OiGRoPtCa2ZpP+AjnKUR9f8iGaxiM2ZpoQz8hEGAw/7Cbo2hE44Smd 2T6Cy4lc0aLcr0w9HBFfNZjLWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOS13S9O 2BxRVzcWLLDC85S6vTvTMB8GA1UdIwQYMBaAFJRdCX8iY9FMNre2XC3Awl+e53GS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REM5Mi8wRjREN0I0NjA5 RDgxMUVBOUZFOERCMUVDNEY5QUUwMi9sRjBKZnlKajBVdzJ0N1pjTGNEQ1g1N25j WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xGMEpmeUpqMFV3MnQ3WmNMY0RDWDU3bmNaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REM5Mi8wRjREN0I0NjA5RDgxMUVBOUZFOERCMUVDNEY5QUUwMi9sRjBKZnlKajBV dzJ0N1pjTGNEQ1g1N25jWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqqCKH/QnrobT7iJlUoZqgPpXsc4RUULz/kJFlYS+tif5c29eInlFS rXFaMu0/KE3mKeG/Hxj4T8Xo6kXYI0AdEElMlojIxLFdEbhDQ1vhUnptK6g+QcRL tkDBKRWXQlc8KWosVbmsMbPviGYPpV0Uj1BhIvJBwtd1F2IyzgqyX6XU+HGFM1Yc 1v+ybasrKNYr0LYm4qzK/RDNAvfSGk5iPLZ1x3EzFLVD+Irf9xGvKqhCTjUfMMX/ FafqAmMSISKTtbFcwz9eyxnWp8s/RCNhT2sCr8QzBBuQGKF1V1HArojgoqud+ph0 xT4VmSZq/zwt15qIoYli+HMNAtXNS0Nq -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:23 2025 by rpki-client on console.sobornost.net