$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft File: 3aSfQfYYpV-cp8_FW66nthbZV2I.mft (raw, json) Hash identifier: 5EmTmURtj8iLxkd/apNrfo5JHZAmlWf7A333iUjBGBU= Subject key identifier: 96:DF:D1:1A:0D:B0:DC:71:7B:F0:94:4F:A5:A0:DE:CE:FF:71:77:0F Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft Manifest number: 29 Signing time: Sun 27 Apr 2025 06:33:16 +0000 Manifest this update: Sun 27 Apr 2025 06:33:16 +0000 Manifest next update: Sun 04 May 2025 06:33:15 +0000 Files and hashes: 1: 3aSfQfYYpV-cp8_FW66nthbZV2I.crl (hash: yrIoC5dF5tym0lHgEI7BojG0WkZEJi/uVY5yFLOYWwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Apr 27 06:33:16 2025 GMT Not After : May 4 06:33:15 2025 GMT Subject: CN=680dcfac-11c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3a:ea:73:34:9e:9f:68:17:ae:62:18:89:ee: 3f:63:b5:a3:be:d2:cf:fc:c7:21:e7:ef:3e:44:29: 05:c9:69:43:c3:78:e8:d8:24:a6:fc:34:1f:34:d2: 9a:28:b9:24:bb:67:64:b0:32:85:07:49:ca:a0:c3: 57:1b:71:d6:35:90:e9:fd:50:1a:c6:72:eb:19:b0: 2e:ca:17:31:2d:50:60:5a:95:fb:d2:4a:1e:37:cc: 22:30:0b:aa:96:ec:43:9b:93:40:46:fe:fa:6c:73: 1d:7d:0b:29:39:94:7c:01:56:1c:54:1e:07:c4:79: fb:97:55:37:75:ce:54:0c:b0:49:c9:09:e1:b6:81: d0:42:54:94:af:ee:df:86:cd:ab:ae:ee:ba:d5:ac: 6c:04:c0:d4:b3:b5:b0:af:d4:24:c9:69:1c:12:e0: 3b:5f:01:be:27:2f:5d:3d:46:ec:e6:30:05:ae:e1: 66:e4:c8:63:fd:77:8d:72:50:6e:03:c2:43:73:76: ed:fa:97:97:8c:6e:cb:4f:50:4a:64:a7:dc:f4:8a: 87:47:db:75:aa:62:b7:c3:6f:74:63:88:62:ef:bd: 18:6b:6c:d4:21:6a:f4:ad:02:14:bb:1f:a3:dd:3b: 31:d9:42:c7:d2:7b:b0:e3:30:a8:1e:97:15:2f:c7: 3f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:DF:D1:1A:0D:B0:DC:71:7B:F0:94:4F:A5:A0:DE:CE:FF:71:77:0F X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:8e:0b:01:42:07:e2:f0:db:a2:d2:76:fd:ff:67:d1:75:66: f5:e1:91:3a:61:72:91:d7:7f:26:7b:48:65:02:36:16:a7:34: 1c:8e:5e:db:1e:63:fb:95:16:18:75:86:d3:bd:26:b4:f5:fb: 86:1f:0a:75:6e:5e:27:16:53:b0:3d:a9:a5:02:e3:39:29:da: 6d:33:cd:75:0f:c3:a3:00:03:ce:81:4e:6e:89:f6:69:98:27: 22:f1:19:47:87:49:11:6a:00:de:dc:f8:6d:e0:7d:49:68:da: 2d:21:21:0c:47:aa:5c:3e:1b:f2:5b:63:5f:ae:64:1f:f1:0a: 27:65:43:d5:84:9e:42:95:94:16:a7:12:f1:03:f0:cc:33:e2: b8:f4:01:e4:75:7e:f1:57:07:cb:44:15:82:c5:08:43:11:4c: 3d:5c:9c:3a:16:0d:0d:31:b6:63:68:12:a2:56:e7:ab:8c:50: d8:28:68:db:19:dc:cc:04:b7:4b:a0:06:60:e6:5e:14:65:20: a5:2f:90:bb:26:c3:0e:93:e8:59:43:7f:6c:56:6c:59:3e:8c: bd:57:ee:c7:dd:4b:1f:fa:89:a9:92:0d:64:9f:2c:c9:0f:8b: 9d:3b:e6:91:0e:0b:70:13:cf:08:76:35:53:49:9d:78:5e:fb: 33:7e:70:d4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzI3MzExMC8GA1UEBRMoRERBNDlGNDFGNjE4QTU1RjlDQTdDRkM1NUJBRUE3QjYx NkQ5NTc2MjAeFw0yNTA0MjcwNjMzMTZaFw0yNTA1MDQwNjMzMTVaMBgxFjAUBgNV BAMTDTY4MGRjZmFjLTExYzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtOupzNJ6faBeuYhiJ7j9jtaO+0s/8xyHn7z5EKQXJaUPDeOjYJKb8NB800poo uSS7Z2SwMoUHScqgw1cbcdY1kOn9UBrGcusZsC7KFzEtUGBalfvSSh43zCIwC6qW 7EObk0BG/vpscx19Cyk5lHwBVhxUHgfEefuXVTd1zlQMsEnJCeG2gdBCVJSv7t+G zauu7rrVrGwEwNSztbCv1CTJaRwS4DtfAb4nL109RuzmMAWu4WbkyGP9d41yUG4D wkNzdu36l5eMbstPUEpkp9z0iodH23WqYrfDb3RjiGLvvRhrbNQhavStAhS7H6Pd OzHZQsfSe7DjMKgelxUvxz9DAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlt/RGg2w 3HF78JRPpaDezv9xdw8wHwYDVR0jBBgwFoAU3aSfQfYYpV+cp8/FW66nthbZV2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3MjczL0ZDNTA1MDBFRTc3 MTExRUY5REZCREQ1MEM0RjlBRTAyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2FTZlFmWVlwVi1jcDhfRlc2Nm50aGJaVjJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3 MjczL0ZDNTA1MDBFRTc3MTExRUY5REZCREQ1MEM0RjlBRTAyLzNhU2ZRZllZcFYt Y3A4X0ZXNjZudGhiWlYySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIKOCwFCB+Lw26LSdv3/Z9F1ZvXhkTphcpHXfyZ7SGUCNhanNByOXtse Y/uVFhh1htO9JrT1+4YfCnVuXicWU7A9qaUC4zkp2m0zzXUPw6MAA86BTm6J9mmY JyLxGUeHSRFqAN7c+G3gfUlo2i0hIQxHqlw+G/JbY1+uZB/xCidlQ9WEnkKVlBan EvED8Mwz4rj0AeR1fvFXB8tEFYLFCEMRTD1cnDoWDQ0xtmNoEqJW56uMUNgoaNsZ 3MwEt0ugBmDmXhRlIKUvkLsmww6T6FlDf2xWbFk+jL1X7sfdSx/6iamSDWSfLMkP i5075pEOC3ATzwh2NVNJnXhe+zN+cNQ= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net