$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: krLPY1LX98y3coNnStPjKG2Lnba+6JZazZKKO4WBmpM= Subject key identifier: BC:0A:8F:83:45:96:E9:24:6C:0E:F5:CD:BF:8C:16:96:7D:CD:24:87 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1107 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 10FD Signing time: Sat 26 Apr 2025 17:13:12 +0000 Manifest this update: Sat 26 Apr 2025 17:13:11 +0000 Manifest next update: Sat 03 May 2025 17:13:11 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: MNh/tjjMc+g4yb7WfMyUr2qLGfF4CzhGWfAV7rhP+eY=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: y9Ue7Mqnzr2Y9oHbpxdCKjDeFirsk0PRqFHYUCwvvtk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4359 (0x1107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: Apr 26 17:13:11 2025 GMT Not After : May 3 17:13:11 2025 GMT Subject: CN=680d1427-cbaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7b:be:4e:14:99:d5:8a:bf:4c:52:0c:69:d0: ce:c8:0e:ab:7c:41:52:ee:00:d5:2d:9d:c2:9e:a1: b8:e7:79:45:12:e7:1f:c4:ec:0d:97:cc:9c:49:af: ad:09:f4:9f:9d:9b:e9:d4:2a:e0:08:7d:e4:52:37: c8:a4:4d:e6:6c:c4:16:76:3b:f9:38:bf:5d:a2:ff: e7:18:41:74:fa:1e:c5:3a:5d:0b:f7:ac:d1:af:2f: 0d:11:75:71:e3:38:41:9d:0b:25:0d:74:56:a3:57: 30:8f:d1:ec:89:ea:4d:24:1d:8d:b7:c8:69:76:86: 41:c4:b2:40:c8:c2:e2:7e:b0:6f:60:4b:ad:3f:ab: fe:74:50:4b:69:95:25:6b:c3:a8:6d:8c:e9:18:3d: 2b:d2:1e:30:b4:e8:0d:ae:92:2b:a3:6c:07:3c:5c: 20:77:10:98:7e:ab:ff:97:71:38:b2:ba:54:6f:fb: 96:2c:04:cb:68:1d:95:a7:5f:b4:e8:bf:0e:b5:96: a6:36:60:91:73:e0:7a:ee:13:89:ba:34:c1:03:56: 72:20:67:00:d0:db:bb:d6:67:64:23:a6:68:42:5e: 0b:07:a5:7d:62:d6:7a:7f:fe:4d:32:d1:53:fa:f5: f6:c7:6d:32:4d:f8:90:bd:af:e3:0e:22:a3:a0:9b: 46:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0A:8F:83:45:96:E9:24:6C:0E:F5:CD:BF:8C:16:96:7D:CD:24:87 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:a7:b8:a3:b9:b3:71:7d:5d:c8:dd:4f:df:44:0a:7b:53:99: b7:0b:35:1d:0f:ab:b2:ed:93:ea:09:3b:32:1a:2b:4d:76:0f: 15:c3:82:98:a5:1d:ba:1b:69:96:2a:d1:e5:eb:d8:25:1b:67: 08:93:ab:27:7e:68:0e:13:9a:2d:0e:9a:5d:27:b3:34:23:26: b2:89:52:3b:c0:c7:8a:99:2b:80:95:90:51:89:45:24:ff:6a: bc:36:1c:1a:ef:0c:33:81:f1:01:2e:2c:cf:82:9d:48:21:08: 3c:cf:36:66:f8:98:e0:d3:94:6e:6c:15:42:b3:a6:f7:a3:06: 57:84:0c:94:a9:e4:22:a7:f1:b4:8c:4b:e4:d5:e4:ed:aa:32: 39:64:69:13:f6:08:90:99:ef:c7:07:0d:d2:28:4f:c4:59:56: ce:59:95:94:d5:dd:4a:c0:39:96:2f:52:cf:67:7b:a3:e3:81: af:4c:b7:41:d6:47:e5:88:57:d9:a4:0f:af:86:d3:20:b6:55: e5:e7:d1:84:64:95:34:b3:7e:b4:ab:6d:56:e7:10:33:87:f3: 65:9e:9c:98:cd:74:d8:d2:74:c3:33:cf:6c:76:07:1d:09:00: 44:14:2f:db:cf:99:82:12:f9:57:47:79:1d:c4:fa:be:51:7a: de:21:97:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjUwNDI2MTcxMzExWhcNMjUwNTAzMTcxMzExWjAYMRYwFAYD VQQDEw02ODBkMTQyNy1jYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHu+ThSZ1Yq/TFIMadDOyA6rfEFS7gDVLZ3CnqG453lFEucfxOwNl8ycSa+t CfSfnZvp1CrgCH3kUjfIpE3mbMQWdjv5OL9dov/nGEF0+h7FOl0L96zRry8NEXVx 4zhBnQslDXRWo1cwj9HsiepNJB2Nt8hpdoZBxLJAyMLifrBvYEutP6v+dFBLaZUl a8OobYzpGD0r0h4wtOgNrpIro2wHPFwgdxCYfqv/l3E4srpUb/uWLATLaB2Vp1+0 6L8OtZamNmCRc+B67hOJujTBA1ZyIGcA0Nu71mdkI6ZoQl4LB6V9YtZ6f/5NMtFT +vX2x20yTfiQva/jDiKjoJtGFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwKj4NF lukkbA71zb+MFpZ9zSSHMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAp7ijubNxfV3I3U/fRAp7U5m3CzUdD6uy7ZPqCTsyGitNdg8Vw4KY pR26G2mWKtHl69glG2cIk6snfmgOE5otDppdJ7M0IyayiVI7wMeKmSuAlZBRiUUk /2q8Nhwa7wwzgfEBLizPgp1IIQg8zzZm+Jjg05RubBVCs6b3owZXhAyUqeQip/G0 jEvk1eTtqjI5ZGkT9giQme/HBw3SKE/EWVbOWZWU1d1KwDmWL1LPZ3uj44GvTLdB 1kfliFfZpA+vhtMgtlXl59GEZJU0s360q21W5xAzh/NlnpyYzXTY0nTDM89sdgcd CQBEFC/bz5mCEvlXR3kdxPq+UXreIZfm -----END CERTIFICATE-----Generated at Sat Apr 26 21:01:58 2025 by rpki-client on console.sobornost.net