$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: 3nWkTzHkjJdyqIXqPb0PKT2zmE4tXdMDKPWFW3ZD5c4= Subject key identifier: 63:7E:5E:9D:45:39:DD:F9:5A:09:54:10:DA:E5:7E:AE:5E:BF:E9:7C Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 09EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 09D2 Signing time: Mon 28 Apr 2025 20:24:36 +0000 Manifest this update: Mon 28 Apr 2025 20:24:36 +0000 Manifest next update: Mon 05 May 2025 20:24:36 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: 4+XuLc8HqKvjpujT4soj56ec91nkP6qK4tMLv3Wpvmw=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: QybxAW0JZTcm7NugQTpG8Jw3MBZeFtzVHU/nStVlT58=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: STg8SBnaSzWjKmwuI5mayylMKelnZKOmUJFv9qSfaQw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Apr 28 20:24:36 2025 GMT Not After : May 5 20:24:36 2025 GMT Subject: CN=680fe404-b846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7f:96:48:4c:32:f4:06:7e:f5:40:f3:a6:0b: 3a:93:5f:fc:cb:48:96:3b:cb:9b:ac:37:1b:d0:c4: 88:d5:45:10:ae:f5:72:80:02:20:2c:df:c5:55:d7: 58:e1:dc:3c:7d:0c:f0:ff:54:cc:83:71:fd:53:4b: ce:40:c2:86:cc:11:96:76:f3:3c:9a:3b:43:52:d6: bb:1c:94:7f:a8:ab:65:88:a0:99:1f:af:5e:30:82: 8c:67:5b:6d:16:8e:bd:4c:f0:67:ea:c9:1b:66:b3: 2c:19:6e:1b:04:e3:77:ec:cf:97:44:65:5e:1a:55: bd:ce:a6:94:da:21:45:43:6d:56:90:86:dd:ce:19: 3f:93:e6:52:27:2b:88:b4:7d:eb:26:ab:f9:db:d7: 3d:ea:b3:b7:05:9e:b9:6f:2d:12:29:f3:84:b9:4f: c3:04:b9:f0:da:ef:85:f9:19:33:73:bf:78:dd:45: 85:1f:9d:d3:5f:9a:82:48:5e:09:b5:90:d1:92:81: b5:59:9a:7b:de:64:6f:46:69:af:79:e9:04:72:61: ab:a2:e1:d7:48:d3:84:47:a2:81:65:1f:c3:59:16: bf:ba:80:7f:89:fa:29:f1:c1:b9:31:09:85:bb:74: 1b:06:a8:97:f6:af:4f:94:e1:87:91:91:20:31:3c: 5e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7E:5E:9D:45:39:DD:F9:5A:09:54:10:DA:E5:7E:AE:5E:BF:E9:7C X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:6e:05:70:4b:3a:27:ce:76:eb:5f:89:96:49:16:63:5a:3c: 8e:79:fc:4b:6b:61:04:8c:db:f0:59:b5:93:48:e8:f4:c2:f0: 97:57:ba:b8:5d:47:58:69:54:1e:a1:f0:fd:0d:78:16:c9:b5: 27:8e:41:51:3e:9a:3a:dc:f7:9b:9f:ac:64:61:34:38:49:7f: 4d:65:02:d7:83:6c:be:14:d7:a0:23:8e:9a:f7:be:68:1f:94: 1e:e2:cc:70:4e:2f:6b:ed:c0:f7:94:9b:2c:c1:2f:58:bf:3b: 54:d2:8a:40:39:9e:8b:98:8d:eb:88:b9:a0:df:d1:b7:60:d1: 22:03:17:08:38:fa:5e:35:66:07:04:76:0a:e9:1d:54:01:48: 7d:60:8a:59:17:15:d6:23:2f:ab:7d:8f:e5:c4:7a:72:40:10: ad:87:46:a1:a4:17:e9:da:32:ec:b0:18:d9:fc:9b:39:a2:b1: 28:53:0f:32:f5:1a:06:3e:28:23:2e:cf:dc:79:28:7a:bf:a0: 2b:1a:1d:9c:5c:a1:92:fa:6c:1e:ca:89:3f:57:ab:f3:4d:6e: 01:95:d7:22:39:0f:9f:3d:64:88:cb:58:fe:e4:bc:a6:35:df: cb:c5:12:8f:b5:9a:a0:1a:db:df:2a:ef:c7:6c:28:e5:86:de: 19:7c:74:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUwNDI4MjAyNDM2WhcNMjUwNTA1MjAyNDM2WjAYMRYwFAYD VQQDEw02ODBmZTQwNC1iODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3+WSEwy9AZ+9UDzpgs6k1/8y0iWO8ubrDcb0MSI1UUQrvVygAIgLN/FVddY 4dw8fQzw/1TMg3H9U0vOQMKGzBGWdvM8mjtDUta7HJR/qKtliKCZH69eMIKMZ1tt Fo69TPBn6skbZrMsGW4bBON37M+XRGVeGlW9zqaU2iFFQ21WkIbdzhk/k+ZSJyuI tH3rJqv529c96rO3BZ65by0SKfOEuU/DBLnw2u+F+Rkzc7943UWFH53TX5qCSF4J tZDRkoG1WZp73mRvRmmveekEcmGrouHXSNOER6KBZR/DWRa/uoB/ifop8cG5MQmF u3QbBqiX9q9PlOGHkZEgMTxefQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN+Xp1F Od35WglUENrlfq5ev+l8MB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRbgVwSzonznbrX4mWSRZjWjyOefxLa2EEjNvwWbWTSOj0wvCXV7q4 XUdYaVQeofD9DXgWybUnjkFRPpo63Pebn6xkYTQ4SX9NZQLXg2y+FNegI46a975o H5Qe4sxwTi9r7cD3lJsswS9YvztU0opAOZ6LmI3riLmg39G3YNEiAxcIOPpeNWYH BHYK6R1UAUh9YIpZFxXWIy+rfY/lxHpyQBCth0ahpBfp2jLssBjZ/Js5orEoUw8y 9RoGPigjLs/ceSh6v6ArGh2cXKGS+mweyok/V6vzTW4BldciOQ+fPWSIy1j+5Lym Nd/LxRKPtZqgGtvfKu/HbCjlht4ZfHST -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:42 2025 by rpki-client on console.sobornost.net