$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: Lxetoc9tpTZXcyL5/E3mzGM6EOogF6aCH/u/mQz/2z0= Subject key identifier: D8:5E:2E:4D:FD:01:E6:AF:3F:83:E8:46:FD:46:EB:D7:AE:B0:E4:D1 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: CD Signing time: Fri 25 Apr 2025 04:45:05 +0000 Manifest this update: Fri 25 Apr 2025 04:45:05 +0000 Manifest next update: Fri 02 May 2025 04:45:05 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: KpUjLKZDlZcLmSZT1Sujm9NN6IyJI940ZcKKvbGERWc=) 2: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (hash: CLLXrK2zzVLl1EYNQyxS+WzBqeRrVeVENVbUau48OSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Apr 25 04:45:05 2025 GMT Not After : May 2 04:45:05 2025 GMT Subject: CN=680b1351-fb4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ba:dc:dc:74:88:41:4e:ab:2a:fb:63:f9:96: 08:4b:6c:7f:67:ed:ae:ed:95:7b:33:86:da:ba:41: 61:e5:ed:9d:b4:60:b9:96:46:d8:6c:e3:6b:81:16: f7:cd:fe:2d:fc:2a:9e:7d:77:de:a6:4d:e4:56:61: 80:a1:05:25:31:ba:b7:30:6a:e8:64:2e:16:ee:40: 92:e4:f1:b1:01:b5:c5:f3:e2:6e:76:99:20:2c:3a: 0e:ed:d5:1f:46:5c:6f:e4:ba:eb:f4:12:27:97:8b: 5a:7d:d7:6c:68:08:a2:ab:d5:da:32:67:02:26:9a: 09:6e:50:fd:fc:3a:a2:be:16:3b:f0:25:71:d4:0d: 43:73:18:1a:83:9b:80:df:5b:74:6a:f5:be:72:91: 1c:7b:bf:28:95:bb:97:c0:b1:bd:4c:d6:b0:7a:27: 97:57:06:ed:2c:4c:7f:0a:24:4f:c5:72:2b:dd:80: 72:3e:09:78:6c:96:02:d8:e4:58:2f:45:bc:46:ba: 7e:00:1b:2a:02:ef:fa:37:43:94:ad:fb:68:f7:52: 9d:c7:70:ba:c8:e5:41:d7:90:c7:cb:d7:e3:ca:f2: 0a:56:be:31:21:da:67:91:8f:ad:d7:4b:d3:0d:bd: 9d:e7:72:b0:d0:f8:b2:6a:83:43:3c:65:6b:06:d5: 1e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5E:2E:4D:FD:01:E6:AF:3F:83:E8:46:FD:46:EB:D7:AE:B0:E4:D1 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:26:00:b3:c4:b1:15:2c:76:91:0b:f7:56:a4:a0:d7:c6:76: 1e:2f:02:2e:dd:60:26:b2:a7:b7:eb:dc:16:18:22:ec:10:8d: a4:52:bb:10:47:40:22:80:17:66:9a:25:c8:70:b3:92:e8:1c: 9d:b1:64:3b:06:f9:15:28:c8:ef:89:97:a4:2b:97:11:5a:a1: 0a:2c:7c:9f:e4:92:35:ff:7e:5a:5e:ac:f0:06:b7:6e:89:44: a1:be:35:98:76:f1:d3:84:7b:85:d1:9d:8c:4a:f1:54:9f:27: 1f:bd:94:82:82:50:9c:b3:d0:a4:49:32:ef:ae:09:66:60:f5: 19:84:24:cc:1b:08:78:5b:7c:b3:3a:09:51:f7:43:12:c7:3e: 73:2e:4d:25:7b:36:59:ab:e0:e8:1e:7d:71:f9:d8:86:6b:7f: 82:74:f5:6b:07:70:2b:9b:fe:c8:8a:6c:be:f0:c9:bd:43:9c: 6a:88:ff:1a:f1:40:be:e8:57:27:27:9e:47:f9:46:c5:83:74: cf:89:2e:94:12:93:90:52:00:2e:ea:c4:80:e6:7f:c7:ca:f9: 71:5f:59:13:53:21:e5:77:d5:87:c7:da:75:cb:8b:99:ec:13: d7:f3:fc:72:a7:c9:80:cd:1f:7e:20:7b:db:01:46:55:d5:d2: ca:80:78:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUwNDI1MDQ0NTA1WhcNMjUwNTAyMDQ0NTA1WjAYMRYwFAYD VQQDEw02ODBiMTM1MS1mYjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrrc3HSIQU6rKvtj+ZYIS2x/Z+2u7ZV7M4baukFh5e2dtGC5lkbYbONrgRb3 zf4t/CqefXfepk3kVmGAoQUlMbq3MGroZC4W7kCS5PGxAbXF8+JudpkgLDoO7dUf Rlxv5Lrr9BInl4tafddsaAiiq9XaMmcCJpoJblD9/DqivhY78CVx1A1Dcxgag5uA 31t0avW+cpEce78olbuXwLG9TNaweieXVwbtLEx/CiRPxXIr3YByPgl4bJYC2ORY L0W8Rrp+ABsqAu/6N0OUrfto91Kdx3C6yOVB15DHy9fjyvIKVr4xIdpnkY+t10vT Db2d53Kw0PiyaoNDPGVrBtUeRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNheLk39 AeavP4PoRv1G69eusOTRMB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8xODFCODIyMEU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0 NmxZQ2UwV292V2I1WjBmWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiJgCzxLEVLHaRC/dWpKDXxnYeLwIu3WAmsqe369wWGCLsEI2kUrsQ R0AigBdmmiXIcLOS6BydsWQ7BvkVKMjviZekK5cRWqEKLHyf5JI1/35aXqzwBrdu iUShvjWYdvHThHuF0Z2MSvFUnycfvZSCglCcs9CkSTLvrglmYPUZhCTMGwh4W3yz OglR90MSxz5zLk0lezZZq+DoHn1x+diGa3+CdPVrB3Arm/7Iimy+8Mm9Q5xqiP8a 8UC+6FcnJ55H+UbFg3TPiS6UEpOQUgAu6sSA5n/HyvlxX1kTUyHld9WHx9p1y4uZ 7BPX8/xyp8mAzR9+IHvbAUZV1dLKgHgr -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:04 2025 by rpki-client on console.sobornost.net