$ rpki-client -vvf rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft File: L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft (raw, json) Hash identifier: x5tkL6vZa7Edi+zE1IznajmvT1XXsV9NASCUxDI8jGg= Subject key identifier: FB:C9:52:5B:0E:7F:43:B4:4D:79:93:D6:7F:2D:2E:7F:BB:33:0E:5C Authority key identifier: 2F:7A:EB:DC:70:17:9D:71:69:4F:C6:99:D5:F3:E4:0E:58:4A:B3:69 Certificate issuer: /CN=A9192EE9/serialNumber=2F7AEBDC70179D71694FC699D5F3E40E584AB369 Certificate serial: 07F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft Manifest number: 07E5 Signing time: Sat 26 Apr 2025 20:43:28 +0000 Manifest this update: Sat 26 Apr 2025 20:43:27 +0000 Manifest next update: Sat 03 May 2025 20:43:27 +0000 Files and hashes: 1: L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl (hash: /6Qga8INdJiE3SY+iIBBk93o888a4sKFizR1kmpWCN8=) 2: A29A7DF20E2011EB81D90E2EC4F9AE02.roa (hash: b+h/ppjl5OqZ84YHWzvHgFGwffNA/fcx3GbK/0z0P+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192EE9, serialNumber=2F7AEBDC70179D71694FC699D5F3E40E584AB369 Validity Not Before: Apr 26 20:43:27 2025 GMT Not After : May 3 20:43:27 2025 GMT Subject: CN=680d456f-e223 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:02:43:cd:d5:bf:d2:1f:ee:6c:c5:b2:ef:9a: 2b:13:cd:b3:a6:8d:1e:93:be:8c:c6:f4:e7:df:08: e9:c4:a4:f2:50:a7:67:a5:5c:e7:d6:19:fa:e4:9a: bf:72:99:96:a5:94:de:ac:2b:7b:cf:2c:17:11:8e: ab:de:e5:ac:e0:14:38:ee:0e:99:2f:e1:c8:6c:5c: cd:78:f3:15:50:d6:5d:ca:fa:1d:44:8e:fd:e9:e0: b7:0b:4e:dd:69:df:35:db:9c:67:f4:82:d4:5b:29: c0:f7:f1:6c:cb:24:78:e6:83:64:f9:a7:98:59:b9: 77:7c:e0:1b:2b:80:84:10:5d:b0:74:59:ef:c5:6b: 3f:9e:fa:29:15:f5:a0:3d:39:8f:7f:33:3e:33:2a: 1b:d6:57:fb:fd:06:2f:49:80:22:a4:03:59:7c:b5: 26:19:72:39:40:c7:f6:f5:e5:b2:1c:cc:60:dd:be: 25:59:cc:a0:df:4a:f7:53:fe:7d:02:d1:74:e0:1b: b0:c6:65:e3:c9:80:6e:dc:22:d4:d2:d8:8b:af:d5: 86:45:29:a6:bb:0f:cb:c0:c2:d7:28:b2:ef:35:1e: 3e:4f:ba:84:e1:7d:44:50:61:5f:d4:62:fc:92:35: 0b:4b:08:f0:37:5a:a1:c6:33:25:38:0c:a9:ec:48: 7a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C9:52:5B:0E:7F:43:B4:4D:79:93:D6:7F:2D:2E:7F:BB:33:0E:5C X509v3 Authority Key Identifier: keyid:2F:7A:EB:DC:70:17:9D:71:69:4F:C6:99:D5:F3:E4:0E:58:4A:B3:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192EE9/324841F4E6FE11EA838EA148C4F9AE02/L3rr3HAXnXFpT8aZ1fPkDlhKs2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b6:10:d7:2e:d3:f7:56:3f:30:55:6c:3c:0d:ed:86:15:59: 43:73:49:3b:78:c4:98:d8:27:88:91:a9:07:11:b7:79:43:8e: 7c:ff:45:7b:47:cf:1e:32:79:9f:e8:0c:64:8b:4d:f7:1e:c5: 50:0f:21:7e:12:04:40:94:cc:fa:5b:87:a7:8e:2c:83:b8:35: c9:27:82:a3:66:8f:cc:f2:09:db:fa:cf:73:5a:ca:c8:ac:5b: 70:fc:76:96:93:cc:3c:d1:54:21:6f:fe:b8:f9:c2:b3:5f:cb: 0b:be:02:8d:fb:22:7b:fe:3d:f4:38:18:3b:9c:9e:bd:30:a8: 07:66:dc:5b:56:6c:19:44:52:8b:4d:ad:d3:4d:f6:0c:df:6b: c3:61:70:c5:f0:1d:9c:fb:a5:5e:82:f1:2e:8b:15:50:ba:eb: 52:1f:2f:56:6d:38:d0:73:61:a0:a1:3f:37:12:db:58:fa:af: b7:2c:7d:ed:d9:06:53:be:c5:10:2e:e1:08:9b:e0:08:da:c0: 1e:bf:78:30:57:f7:26:ee:a2:6f:25:93:4e:82:e2:d6:4d:3a: 73:e4:98:9c:e9:3d:55:f5:f9:dc:b8:b3:57:96:db:b3:82:71: bd:39:58:8a:38:21:7a:0f:c3:63:de:a5:6e:c2:ca:0e:ec:fe: fd:b6:79:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJFRTkxMTAvBgNVBAUTKDJGN0FFQkRDNzAxNzlENzE2OTRGQzY5OUQ1RjNFNDBF NTg0QUIzNjkwHhcNMjUwNDI2MjA0MzI3WhcNMjUwNTAzMjA0MzI3WjAYMRYwFAYD VQQDEw02ODBkNDU2Zi1lMjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AJDzdW/0h/ubMWy75orE82zpo0ek76MxvTn3wjpxKTyUKdnpVzn1hn65Jq/ cpmWpZTerCt7zywXEY6r3uWs4BQ47g6ZL+HIbFzNePMVUNZdyvodRI796eC3C07d ad8125xn9ILUWynA9/FsyyR45oNk+aeYWbl3fOAbK4CEEF2wdFnvxWs/nvopFfWg PTmPfzM+Myob1lf7/QYvSYAipANZfLUmGXI5QMf29eWyHMxg3b4lWcyg30r3U/59 AtF04BuwxmXjyYBu3CLU0tiLr9WGRSmmuw/LwMLXKLLvNR4+T7qE4X1EUGFf1GL8 kjULSwjwN1qhxjMlOAyp7Eh6RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvJUlsO f0O0TXmT1n8tLn+7Mw5cMB8GA1UdIwQYMBaAFC9669xwF51xaU/GmdXz5A5YSrNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkVFOS8zMjQ4NDFGNEU2 RkUxMUVBODM4RUExNDhDNEY5QUUwMi9MM3JyM0hBWG5YRnBUOGFaMWZQa0RsaEtz MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzcnIzSEFYblhGcFQ4YVoxZlBrRGxoS3Myay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkVFOS8zMjQ4NDFGNEU2RkUxMUVBODM4RUExNDhDNEY5QUUwMi9MM3JyM0hBWG5Y RnBUOGFaMWZQa0RsaEtzMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWthDXLtP3Vj8wVWw8De2GFVlDc0k7eMSY2CeIkakHEbd5Q458/0V7 R88eMnmf6Axki033HsVQDyF+EgRAlMz6W4enjiyDuDXJJ4KjZo/M8gnb+s9zWsrI rFtw/HaWk8w80VQhb/64+cKzX8sLvgKN+yJ7/j30OBg7nJ69MKgHZtxbVmwZRFKL Ta3TTfYM32vDYXDF8B2c+6VegvEuixVQuutSHy9WbTjQc2GgoT83EttY+q+3LH3t 2QZTvsUQLuEIm+AI2sAev3gwV/cm7qJvJZNOguLWTTpz5Jic6T1V9fncuLNXltuz gnG9OViKOCF6D8Nj3qVuwsoO7P79tnkt -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:06 2025 by rpki-client on console.sobornost.net