$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: hsudg9nNaV4sioCxt6CanuAFH0HMxEJX/s180UxCQdA= Subject key identifier: 88:8F:A0:12:0B:D0:7D:5A:7A:E7:F5:50:57:46:16:E7:59:01:F1:29 Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 066E Signing time: Mon 28 Apr 2025 17:08:10 +0000 Manifest this update: Mon 28 Apr 2025 17:08:09 +0000 Manifest next update: Mon 05 May 2025 17:08:09 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: Z4l5qR9/FQdo7+Xu+iIiIwhk8cwRLENL6Z7jq3DE4sc=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: M9JBLSmTZK+WGHWP4PBl4vCGB8OpE/d5KiAWANLVB54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Apr 28 17:08:09 2025 GMT Not After : May 5 17:08:09 2025 GMT Subject: CN=680fb5f9-9ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:e2:53:86:6c:98:65:5e:30:56:c8:59:62:21: 05:4e:f4:d5:9b:9c:70:6e:34:89:a8:7e:50:44:49: 78:0f:e8:9b:bd:c9:c3:8d:2b:70:43:13:c1:2d:19: ea:ac:cd:d1:13:bb:64:d8:f1:0a:20:b0:c5:c8:db: fa:88:dc:3d:e7:62:b8:d4:1b:67:c9:97:ff:d7:d8: ea:25:e8:63:d5:28:06:6c:38:3e:ec:8e:b3:ef:43: cc:01:95:62:b8:c3:02:5f:0e:3f:19:04:9d:9b:ca: 53:98:a2:78:17:17:89:30:58:e0:49:9b:af:19:47: 80:dc:18:ff:cd:b4:f1:f5:b9:22:2a:d1:15:9d:9c: 26:62:ac:88:44:30:72:4a:b4:00:e5:df:93:e8:db: 71:96:6e:23:ab:53:7b:b3:10:8d:9e:ef:0f:42:09: 41:3c:35:70:d2:22:5d:73:04:4b:29:dc:72:c0:56: e2:29:f0:50:34:e8:d4:cd:27:a4:7d:9d:84:09:bb: 8f:8d:fa:32:34:38:5b:62:1e:9e:e4:6e:28:e9:ea: 28:46:22:98:c9:ab:59:4f:1c:fd:ca:bd:43:18:8b: 2e:45:c9:c4:ac:46:6f:92:c0:05:53:5a:14:fb:f9: a7:21:e6:16:0d:35:1d:6a:d8:3e:aa:c9:44:cc:b0: 07:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8F:A0:12:0B:D0:7D:5A:7A:E7:F5:50:57:46:16:E7:59:01:F1:29 X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:10:89:24:ae:83:d9:6e:f5:e1:6b:f9:48:41:5f:b8:9f:12: d2:92:86:96:7b:a3:07:60:db:ef:75:3e:e5:a4:3a:8b:a0:88: 38:5e:f0:45:62:0a:ac:f1:71:53:0e:ba:e5:a6:ab:62:b9:6d: c8:fe:98:84:8b:46:f4:69:64:6f:91:b1:0d:94:49:f9:e4:91: bb:6a:33:75:e1:d5:6c:0c:74:7b:65:f9:4d:e2:df:60:d8:5f: ab:1d:1d:c8:8c:7f:ad:a1:10:63:f2:43:fc:26:10:14:be:f3: 62:61:b2:36:7d:fb:b8:01:bc:d6:db:09:d5:18:8c:d6:26:a3: b7:29:69:aa:d3:df:39:a9:b6:96:de:b9:48:e3:4d:cf:53:22: 13:88:7e:40:0e:c1:e6:d6:01:e0:15:6b:72:0b:7f:91:1f:a5: 52:36:df:42:c2:fc:af:5b:8b:98:9e:36:3f:2c:98:8d:ee:1d: a9:29:fd:3b:7e:83:31:98:c7:7b:2c:dc:0c:11:d0:50:64:0f: f5:33:88:80:bf:c2:55:15:00:8b:2f:d2:6c:8b:91:2f:d0:73: 7b:ef:66:db:56:98:f9:11:74:b7:8a:5b:94:5e:fc:9e:cc:68: 24:30:67:a1:b7:52:e0:ef:d1:75:8f:60:25:36:4a:fa:be:54: f1:04:27:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwNDI4MTcwODA5WhcNMjUwNTA1MTcwODA5WjAYMRYwFAYD VQQDEw02ODBmYjVmOS05YWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/eJThmyYZV4wVshZYiEFTvTVm5xwbjSJqH5QREl4D+ibvcnDjStwQxPBLRnq rM3RE7tk2PEKILDFyNv6iNw952K41BtnyZf/19jqJehj1SgGbDg+7I6z70PMAZVi uMMCXw4/GQSdm8pTmKJ4FxeJMFjgSZuvGUeA3Bj/zbTx9bkiKtEVnZwmYqyIRDBy SrQA5d+T6Ntxlm4jq1N7sxCNnu8PQglBPDVw0iJdcwRLKdxywFbiKfBQNOjUzSek fZ2ECbuPjfoyNDhbYh6e5G4o6eooRiKYyatZTxz9yr1DGIsuRcnErEZvksAFU1oU +/mnIeYWDTUdatg+qslEzLAHPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiPoBIL 0H1aeuf1UFdGFudZAfEpMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTEIkkroPZbvXha/lIQV+4nxLSkoaWe6MHYNvvdT7lpDqLoIg4XvBF Ygqs8XFTDrrlpqtiuW3I/piEi0b0aWRvkbENlEn55JG7ajN14dVsDHR7ZflN4t9g 2F+rHR3IjH+toRBj8kP8JhAUvvNiYbI2ffu4AbzW2wnVGIzWJqO3KWmq0985qbaW 3rlI403PUyITiH5ADsHm1gHgFWtyC3+RH6VSNt9CwvyvW4uYnjY/LJiN7h2pKf07 foMxmMd7LNwMEdBQZA/1M4iAv8JVFQCLL9Jsi5Ev0HN772bbVpj5EXS3iluUXvye zGgkMGeht1Lg79F1j2AlNkr6vlTxBCem -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:44 2025 by rpki-client on console.sobornost.net