$ rpki-client -vvf rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.mft File: ZeUkJf-EHg40jVL7EXypaQogvlQ.mft (raw, json) Hash identifier: I7/kqPSamUBQzFGWYSNgRad/xNTxVG6csDBznr+gg7c= Subject key identifier: CF:07:55:8A:1D:6B:01:E4:26:89:4E:9E:3E:10:67:CE:D8:E0:CD:1A Authority key identifier: 65:E5:24:25:FF:84:1E:0E:34:8D:52:FB:11:7C:A9:69:0A:20:BE:54 Certificate issuer: /CN=A91889C2/serialNumber=65E52425FF841E0E348D52FB117CA9690A20BE54 Certificate serial: 02E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.mft Manifest number: 02DA Signing time: Fri 25 Apr 2025 01:08:28 +0000 Manifest this update: Fri 25 Apr 2025 01:08:27 +0000 Manifest next update: Fri 02 May 2025 01:08:27 +0000 Files and hashes: 1: ZeUkJf-EHg40jVL7EXypaQogvlQ.crl (hash: 5GvQqvhBQDq24Uwaps6HA6nusXbYsomT+PmrlmmX5PM=) 2: 463D6908E2BE11EFB6E1E780C4F9AE02.roa (hash: z/U3Mkt9VwxVqDogBYYiVzyvbWpXlgorgYhnUU244UM=) 3: 0B014EBA408E11EDA80A5272C4F9AE02.roa (hash: saU/mKblZfuPXjfaCBZNvJjF3cnnkkpxvAWRjd4uqyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.crl rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:08:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 741 (0x2e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91889C2, serialNumber=65E52425FF841E0E348D52FB117CA9690A20BE54 Validity Not Before: Apr 25 01:08:27 2025 GMT Not After : May 2 01:08:27 2025 GMT Subject: CN=680ae08b-3e8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:12:17:6a:70:ed:4d:b5:f1:ea:f0:36:f7:0c: 45:74:78:6c:d1:c4:1e:e9:15:63:36:1a:e9:1f:ae: 29:6b:2e:6e:37:44:c5:70:9c:24:c1:82:10:e5:93: ee:65:04:c3:54:12:e8:18:a3:6a:45:64:6d:b8:ca: 93:5e:5c:8e:75:68:aa:ce:71:8b:8c:60:29:17:ca: fa:14:20:25:f8:c5:10:2d:37:4d:d1:f7:2e:dc:8e: 6b:c6:8f:57:4e:76:44:bb:a3:5e:53:50:40:36:e9: f8:fd:62:09:30:f1:9b:98:b3:14:24:92:21:17:93: f5:6a:e1:c0:eb:5e:de:0f:e6:39:5a:4a:d1:0d:02: b7:e1:8f:00:33:ae:f3:58:0a:e3:14:6c:12:cd:60: 85:0c:27:80:cb:e5:ef:3f:b4:30:8a:90:a0:f6:06: cc:bd:fb:d1:a8:93:b1:fa:dd:a9:87:12:bf:62:07: 5b:04:be:86:6f:8c:5e:11:93:3a:43:30:b8:fa:fa: ae:60:33:ba:36:35:f2:e1:46:44:1e:45:2d:c4:a2: 22:c4:a3:fe:9f:47:a7:ab:86:ac:de:63:00:b2:8f: 12:86:35:8b:65:be:5d:e5:a9:f5:df:f6:e7:a7:16: 3d:e8:85:0b:10:ea:ff:f9:b1:af:e2:e7:98:f2:99: 37:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:07:55:8A:1D:6B:01:E4:26:89:4E:9E:3E:10:67:CE:D8:E0:CD:1A X509v3 Authority Key Identifier: keyid:65:E5:24:25:FF:84:1E:0E:34:8D:52:FB:11:7C:A9:69:0A:20:BE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeUkJf-EHg40jVL7EXypaQogvlQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91889C2/BD736044E23611EC8C7F8520C4F9AE02/ZeUkJf-EHg40jVL7EXypaQogvlQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:14:82:31:d5:18:83:8b:51:2f:08:a7:15:bd:ef:51:78:88: 99:14:c1:19:40:16:b2:be:97:73:93:18:71:ee:00:c3:4e:1f: 93:78:0f:af:c5:a5:96:53:ed:f8:6e:2d:47:a4:ed:b5:33:5e: bf:3c:bf:87:c7:ae:ad:d2:73:ba:40:a9:13:31:cf:21:9e:4f: a4:29:a0:8f:cd:32:ca:d6:4e:de:ac:ce:02:c2:5c:f6:d2:ad: 51:28:18:a5:86:da:b1:5d:37:db:c4:27:fe:3b:6a:36:92:88: 99:a4:c9:c3:51:d3:2b:71:cb:5a:1f:98:27:ed:95:8d:66:63: 87:96:cc:42:22:d9:cb:fd:db:86:dd:93:d2:17:27:93:ff:08: f4:7c:0b:30:4c:19:8c:ac:32:b9:0c:03:a3:65:99:fb:6d:5e: 93:b1:f1:47:c4:91:10:03:35:19:87:0f:60:04:c0:99:23:6a: 3c:2a:24:db:68:1f:20:66:da:12:8f:fb:87:f1:6e:0a:32:30: d9:cb:73:53:af:56:e1:50:91:1e:45:cf:7a:b8:4f:d0:ce:ae: 4a:de:74:43:5e:6d:57:b1:a1:0d:db:b0:8e:cd:a5:58:23:ce: 37:f0:22:1c:ea:1c:1d:30:a7:7f:05:d2:e4:b7:71:54:08:e2: 83:f9:7b:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg5QzIxMTAvBgNVBAUTKDY1RTUyNDI1RkY4NDFFMEUzNDhENTJGQjExN0NBOTY5 MEEyMEJFNTQwHhcNMjUwNDI1MDEwODI3WhcNMjUwNTAyMDEwODI3WjAYMRYwFAYD VQQDEw02ODBhZTA4Yi0zZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRIXanDtTbXx6vA29wxFdHhs0cQe6RVjNhrpH64pay5uN0TFcJwkwYIQ5ZPu ZQTDVBLoGKNqRWRtuMqTXlyOdWiqznGLjGApF8r6FCAl+MUQLTdN0fcu3I5rxo9X TnZEu6NeU1BANun4/WIJMPGbmLMUJJIhF5P1auHA617eD+Y5WkrRDQK34Y8AM67z WArjFGwSzWCFDCeAy+XvP7QwipCg9gbMvfvRqJOx+t2phxK/YgdbBL6Gb4xeEZM6 QzC4+vquYDO6NjXy4UZEHkUtxKIixKP+n0enq4as3mMAso8ShjWLZb5d5an13/bn pxY96IULEOr/+bGv4ueY8pk30wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8HVYod awHkJolOnj4QZ87Y4M0aMB8GA1UdIwQYMBaAFGXlJCX/hB4ONI1S+xF8qWkKIL5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODlDMi9CRDczNjA0NEUy MzYxMUVDOEM3Rjg1MjBDNEY5QUUwMi9aZVVrSmYtRUhnNDBqVkw3RVh5cGFRb2d2 bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1plVWtKZi1FSGc0MGpWTDdFWHlwYVFvZ3ZsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODlDMi9CRDczNjA0NEUyMzYxMUVDOEM3Rjg1MjBDNEY5QUUwMi9aZVVrSmYtRUhn NDBqVkw3RVh5cGFRb2d2bFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKFIIx1RiDi1EvCKcVve9ReIiZFMEZQBayvpdzkxhx7gDDTh+TeA+v xaWWU+34bi1HpO21M16/PL+Hx66t0nO6QKkTMc8hnk+kKaCPzTLK1k7erM4Cwlz2 0q1RKBilhtqxXTfbxCf+O2o2koiZpMnDUdMrcctaH5gn7ZWNZmOHlsxCItnL/duG 3ZPSFyeT/wj0fAswTBmMrDK5DAOjZZn7bV6TsfFHxJEQAzUZhw9gBMCZI2o8KiTb aB8gZtoSj/uH8W4KMjDZy3NTr1bhUJEeRc96uE/Qzq5K3nRDXm1XsaEN27COzaVY I8438CIc6hwdMKd/BdLkt3FUCOKD+XsM -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:05 2025 by rpki-client on console.sobornost.net