$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft File: dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft (raw, json) Hash identifier: KPH/gwaDvIy6GsK6uwS4O1vA4XvVcRQDzqjPYBHCfZs= Subject key identifier: 1A:9A:79:A0:5C:58:43:92:1A:8C:90:CB:21:C6:28:4E:81:9C:83:FA Authority key identifier: 75:7C:DD:98:84:42:03:E9:CB:41:3D:7E:5C:58:08:D1:5E:54:B1:CF Certificate issuer: /CN=A91972B6/serialNumber=757CDD98844203E9CB413D7E5C5808D15E54B1CF Certificate serial: 1FF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dXzdmIRCA-nLQT1-XFgI0V5Usc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft Manifest number: 1873 Signing time: Mon 28 Apr 2025 17:31:30 +0000 Manifest this update: Mon 28 Apr 2025 17:31:30 +0000 Manifest next update: Mon 05 May 2025 17:31:30 +0000 Files and hashes: 1: dXzdmIRCA-nLQT1-XFgI0V5Usc8.crl (hash: tKUHphsNP9WrqRojXX9VtQxmm/dTSPwHgihg3h933is=) 2: BB676D067C9B11EBB1A0BD0FC4F9AE02.roa (hash: EHblWN/sQZKLg9HDhv2zyoanKhtnruUlRN2jtd5a8fY=) 3: C3F52172A3E611EAA751A46EC4F9AE02.roa (hash: vkLbx3UKTR9g9Nkc39hdbcDwUn28d/ORpVf5hXTtd6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.crl rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dXzdmIRCA-nLQT1-XFgI0V5Usc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8180 (0x1ff4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6, serialNumber=757CDD98844203E9CB413D7E5C5808D15E54B1CF Validity Not Before: Apr 28 17:31:30 2025 GMT Not After : May 5 17:31:30 2025 GMT Subject: CN=680fbb72-8f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:62:5b:95:83:e0:9d:3d:1a:76:b6:93:8a:29: 19:a6:68:c3:41:60:3c:f5:46:dd:bc:a1:8a:1c:25: 85:20:3f:d0:b5:63:9c:8f:fa:23:67:ea:94:b5:9b: 5c:2f:57:2d:c2:f1:75:96:f7:bc:68:2c:2d:ea:1e: c0:ba:7e:21:3a:16:7e:c1:cb:72:10:bc:10:35:38: 4d:4f:1c:a9:fa:f4:95:9a:1c:7e:60:b8:ae:0e:6c: c9:e3:12:cd:d3:f9:25:ad:98:3c:37:f8:62:80:91: 82:30:aa:af:23:01:7f:3c:97:79:81:b3:ff:a7:e3: 92:64:dc:c7:0d:60:1c:7a:b1:c2:4a:08:4b:bd:bc: d7:3b:96:12:31:e6:1d:ce:e2:88:1d:7e:53:c8:4e: 7e:6c:b3:93:30:44:8e:7d:6c:1c:d4:8a:1e:54:b4: f9:fe:36:e0:6a:15:bf:71:00:d3:d8:b5:91:72:fb: 0e:24:12:53:93:11:40:95:0a:5f:27:8c:01:30:1d: 6c:4f:33:5b:47:8e:5e:4f:10:fa:5e:18:2a:f9:d2: ca:2b:bc:b9:d4:6f:d3:b2:7e:ca:55:5b:4a:32:7d: df:c6:59:8d:58:32:ac:a1:7e:82:b9:98:d7:05:b4: e4:22:10:7e:c6:b3:25:38:22:7e:bc:69:9d:a2:47: 11:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:9A:79:A0:5C:58:43:92:1A:8C:90:CB:21:C6:28:4E:81:9C:83:FA X509v3 Authority Key Identifier: keyid:75:7C:DD:98:84:42:03:E9:CB:41:3D:7E:5C:58:08:D1:5E:54:B1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dXzdmIRCA-nLQT1-XFgI0V5Usc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:4e:ef:0d:d2:93:1f:22:9f:82:9e:bf:b1:0f:05:f2:48:17: 4b:4a:c3:1d:f0:6b:65:6d:14:b5:b5:1c:61:e9:c1:65:ba:84: ab:c9:8e:9b:08:3f:42:b3:68:51:09:e7:e5:92:45:c8:77:88: 32:cf:8f:55:14:3f:6b:6b:27:c6:5b:5c:97:b7:1f:69:54:61: ed:4c:bb:04:08:61:08:73:f3:59:d2:eb:19:ed:11:62:b4:7f: 1a:25:ae:df:fe:64:ca:01:e5:aa:72:9c:cf:f0:c1:33:a8:f3: 46:23:2c:b8:22:c1:ac:66:ce:64:94:7c:ca:db:fe:9c:87:d1: 4b:2a:34:c4:44:fd:1d:cb:55:43:0d:59:85:86:aa:7e:9d:e8: 09:a4:4c:68:0d:88:15:bb:4b:70:70:14:b5:73:73:e0:b9:b2: 70:2a:c1:59:60:03:8b:de:9d:2f:76:b2:2d:98:c2:a7:f0:af: ef:ef:9c:ae:ea:78:ab:37:99:7c:d4:d6:a1:81:b4:cc:96:f8: 59:a3:ba:87:9d:8e:86:6b:51:68:64:17:53:3f:21:5c:f2:c4: 0a:40:fe:a7:4b:9e:ba:ee:8a:4f:77:e6:65:9f:37:eb:87:ef: ba:9e:f8:12:c1:55:11:6e:87:18:69:3f:ad:6a:e2:38:c1:6c: 16:67:bd:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDc1N0NERDk4ODQ0MjAzRTlDQjQxM0Q3RTVDNTgwOEQx NUU1NEIxQ0YwHhcNMjUwNDI4MTczMTMwWhcNMjUwNTA1MTczMTMwWjAYMRYwFAYD VQQDEw02ODBmYmI3Mi04ZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02JblYPgnT0adraTiikZpmjDQWA89UbdvKGKHCWFID/QtWOcj/ojZ+qUtZtc L1ctwvF1lve8aCwt6h7Aun4hOhZ+wctyELwQNThNTxyp+vSVmhx+YLiuDmzJ4xLN 0/klrZg8N/higJGCMKqvIwF/PJd5gbP/p+OSZNzHDWAcerHCSghLvbzXO5YSMeYd zuKIHX5TyE5+bLOTMESOfWwc1IoeVLT5/jbgahW/cQDT2LWRcvsOJBJTkxFAlQpf J4wBMB1sTzNbR45eTxD6Xhgq+dLKK7y51G/Tsn7KVVtKMn3fxlmNWDKsoX6CuZjX BbTkIhB+xrMlOCJ+vGmdokcRAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqaeaBc WEOSGoyQyyHGKE6BnIP6MB8GA1UdIwQYMBaAFHV83ZiEQgPpy0E9flxYCNFeVLHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi9GMkI5RTBBNDEz MkExMUU5QUU3N0FEN0JDNEY5QUUwMi9kWHpkbUlSQ0EtbkxRVDEtWEZnSTBWNVVz YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RYemRtSVJDQS1uTFFUMS1YRmdJMFY1VXNjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi9GMkI5RTBBNDEzMkExMUU5QUU3N0FEN0JDNEY5QUUwMi9kWHpkbUlSQ0Et bkxRVDEtWEZnSTBWNVVzYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgTu8N0pMfIp+Cnr+xDwXySBdLSsMd8GtlbRS1tRxh6cFluoSryY6b CD9Cs2hRCeflkkXId4gyz49VFD9rayfGW1yXtx9pVGHtTLsECGEIc/NZ0usZ7RFi tH8aJa7f/mTKAeWqcpzP8MEzqPNGIyy4IsGsZs5klHzK2/6ch9FLKjTERP0dy1VD DVmFhqp+negJpExoDYgVu0twcBS1c3PgubJwKsFZYAOL3p0vdrItmMKn8K/v75yu 6nirN5l81NahgbTMlvhZo7qHnY6Ga1FoZBdTPyFc8sQKQP6nS5667opPd+Zlnzfr h++6nvgSwVURbocYaT+tauI4wWwWZ70b -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:49 2025 by rpki-client on console.sobornost.net