$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft File: lAiiAfAOWP6SWY7gOTkHi673d5U.mft (raw, json) Hash identifier: EdEDrw2F1n8ZUpVyoeoBqbFpHbpBLbMTDFqbZrY6FaM= Subject key identifier: DF:9A:38:03:19:B1:9F:11:F5:8E:D2:D9:B8:8C:D7:9E:47:6B:3C:29 Authority key identifier: 94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 Certificate issuer: /CN=A91A6F68/serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft Manifest number: 2F Signing time: Sun 27 Apr 2025 06:29:41 +0000 Manifest this update: Sun 27 Apr 2025 06:29:40 +0000 Manifest next update: Sun 04 May 2025 06:29:40 +0000 Files and hashes: 1: lAiiAfAOWP6SWY7gOTkHi673d5U.crl (hash: haB8HwxjkNszCudmMNSqOJIYlngs4eoCvOIu4vKnHhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F68, serialNumber=9408A201F00E58FE92598EE03939078BAEF77795 Validity Not Before: Apr 27 06:29:40 2025 GMT Not After : May 4 06:29:40 2025 GMT Subject: CN=680dced4-16a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:22:62:88:4c:0e:b7:88:ff:a9:7d:60:9c: 23:2e:42:a2:73:20:66:d0:c6:11:f7:19:74:6b:41: 04:4c:02:03:92:9f:4d:18:e6:14:0e:e3:93:a7:05: e4:c0:c0:29:f5:83:93:f9:b9:27:bc:f1:46:5a:f2: c2:86:16:18:93:cd:28:2c:ac:27:fe:4b:65:48:29: cf:38:33:43:5d:9d:60:3e:3a:e2:d2:b8:12:1f:80: 66:6d:fe:b2:68:09:f2:c9:b9:80:1d:0e:14:13:70: f6:18:73:43:3b:4e:8b:c1:e9:2f:3f:e7:2e:31:64: a1:0e:8e:a1:16:b6:6c:1c:94:d0:7d:34:2d:d1:25: 23:21:17:da:89:b4:5b:af:c5:fd:c6:9a:15:15:cf: 7b:8a:ed:f4:48:17:08:a0:00:a9:88:bc:67:d2:2e: e9:7e:ce:a5:8d:1a:2b:14:87:4f:da:19:da:08:f1: 6e:34:bc:72:5d:a5:a4:f4:c7:c7:91:24:e0:2a:bc: 14:78:d4:02:28:62:27:fb:92:7f:37:43:0b:f0:97: ce:4c:7a:b9:79:e0:ff:b6:54:d8:1a:88:04:d8:16: 32:7f:8f:a4:73:8d:b7:f0:b0:27:d8:65:4f:74:72: 42:72:d2:e6:64:aa:9a:d3:7a:58:e9:39:0e:99:6a: f8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:9A:38:03:19:B1:9F:11:F5:8E:D2:D9:B8:8C:D7:9E:47:6B:3C:29 X509v3 Authority Key Identifier: keyid:94:08:A2:01:F0:0E:58:FE:92:59:8E:E0:39:39:07:8B:AE:F7:77:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lAiiAfAOWP6SWY7gOTkHi673d5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F68/BA565F5CDF2111EF833F4F2CC4F9AE02/lAiiAfAOWP6SWY7gOTkHi673d5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:67:1c:43:d9:79:40:0e:18:de:08:25:ec:fd:2e:b1:79:75: 18:97:f6:da:a8:cd:e6:91:3b:31:41:e6:32:a0:1a:c8:f5:ea: ca:16:b9:77:41:66:d4:af:4f:ef:3a:1a:83:df:26:1a:fc:5d: df:07:38:2d:ff:8d:ab:c3:82:aa:3b:0b:e9:dd:de:fc:f1:6a: 8e:c1:32:be:03:3a:71:e4:08:73:8e:63:e8:72:02:6b:4e:9b: d2:0b:06:9e:d5:36:b0:e9:ec:44:73:4a:b4:2f:ee:cf:b7:99: dd:d8:53:ae:62:39:cd:5c:b4:8e:14:b3:38:95:82:e7:6a:1a: 5d:a7:a0:41:cc:43:e2:1c:bd:af:ec:5c:07:29:ed:af:91:40: ac:a6:a8:83:e9:9a:85:38:ba:96:d4:bd:ba:b0:e1:03:25:b8: d6:88:a7:75:5e:55:56:c0:be:a7:cf:3e:2d:65:bb:32:66:b6: 01:63:6c:c5:fd:a5:fd:4a:e3:e0:e7:36:a5:1d:15:99:c9:8d: 8a:70:6e:a6:a4:5f:e2:6a:93:40:09:f9:6a:ad:ec:9f:d3:cc: 8d:fd:cd:7e:c1:6b:6b:33:9d:b4:5a:fe:c8:b9:1f:43:47:75: 03:ea:0a:27:db:a2:15:e8:a1:e5:03:f2:c0:15:c0:d6:e0:ae: d1:d7:29:44 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkY2ODExMC8GA1UEBRMoOTQwOEEyMDFGMDBFNThGRTkyNTk4RUUwMzkzOTA3OEJB RUY3Nzc5NTAeFw0yNTA0MjcwNjI5NDBaFw0yNTA1MDQwNjI5NDBaMBgxFjAUBgNV BAMTDTY4MGRjZWQ0LTE2YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKzCJiiEwOt4j/qX1gnCMuQqJzIGbQxhH3GXRrQQRMAgOSn00Y5hQO45OnBeTA wCn1g5P5uSe88UZa8sKGFhiTzSgsrCf+S2VIKc84M0NdnWA+OuLSuBIfgGZt/rJo CfLJuYAdDhQTcPYYc0M7TovB6S8/5y4xZKEOjqEWtmwclNB9NC3RJSMhF9qJtFuv xf3GmhUVz3uK7fRIFwigAKmIvGfSLul+zqWNGisUh0/aGdoI8W40vHJdpaT0x8eR JOAqvBR41AIoYif7kn83Qwvwl85Merl54P+2VNgaiATYFjJ/j6RzjbfwsCfYZU90 ckJy0uZkqprTeljpOQ6ZavjxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU35o4Axmx nxH1jtLZuIzXnkdrPCkwHwYDVR0jBBgwFoAUlAiiAfAOWP6SWY7gOTkHi673d5Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjY4L0JBNTY1RjVDREYy MTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2U1dZN2dPVGtIaTY3M2Q1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvbEFpaUFmQU9XUDZTV1k3Z09Ua0hpNjczZDVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2 RjY4L0JBNTY1RjVDREYyMTExRUY4MzNGNEYyQ0M0RjlBRTAyL2xBaWlBZkFPV1A2 U1dZN2dPVGtIaTY3M2Q1VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFtnHEPZeUAOGN4IJez9LrF5dRiX9tqozeaROzFB5jKgGsj16soWuXdB ZtSvT+86GoPfJhr8Xd8HOC3/javDgqo7C+nd3vzxao7BMr4DOnHkCHOOY+hyAmtO m9ILBp7VNrDp7ERzSrQv7s+3md3YU65iOc1ctI4UsziVgudqGl2noEHMQ+Icva/s XAcp7a+RQKymqIPpmoU4upbUvbqw4QMluNaIp3VeVVbAvqfPPi1luzJmtgFjbMX9 pf1K4+DnNqUdFZnJjYpwbqakX+Jqk0AJ+Wqt7J/TzI39zX7Ba2sznbRa/si5H0NH dQPqCifbohXooeUD8sAVwNbgrtHXKUQ= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net