$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABE54/A5C150AC68D611ECBCD63C54C4F9AE02/LXzpTxPYLlT4NCPGHrljOvlAWSQ.mft File: LXzpTxPYLlT4NCPGHrljOvlAWSQ.mft (raw, json) Hash identifier: 20zbQffcDUKeQ6XU1wRK602spPl6/OyTu2C+JDsuDL0= Subject key identifier: ED:39:36:FA:B5:8F:B6:06:E5:C5:06:F3:92:F6:A9:61:EA:A6:8A:B1 Authority key identifier: 2D:7C:E9:4F:13:D8:2E:54:F8:34:23:C6:1E:B9:63:3A:F9:40:59:24 Certificate issuer: /CN=A91ABE54/serialNumber=2D7CE94F13D82E54F83423C61EB9633AF9405924 Certificate serial: 041A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LXzpTxPYLlT4NCPGHrljOvlAWSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABE54/A5C150AC68D611ECBCD63C54C4F9AE02/LXzpTxPYLlT4NCPGHrljOvlAWSQ.mft Manifest number: 040F Signing time: Sun 27 Apr 2025 00:06:07 +0000 Manifest this update: Sun 27 Apr 2025 00:06:07 +0000 Manifest next update: Sun 04 May 2025 00:06:07 +0000 Files and hashes: 1: LXzpTxPYLlT4NCPGHrljOvlAWSQ.crl (hash: KGA+LkBG0aTA0LCa0D6XvdWEkz8dJEspmDN6n7DI68E=) 2: A69224164EAE11EDBF0D8256C4F9AE02.roa (hash: tNJLz/05MhN+kNpDsEpSvyxEjiBHI8/Qy5MZGniM9So=) 3: A60006804EAE11EDBF0D8256C4F9AE02.roa (hash: PeSRHrlXLPWq0OR7M6KoyLAqMUZOAeVzYm1KrZ/ISG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABE54/A5C150AC68D611ECBCD63C54C4F9AE02/LXzpTxPYLlT4NCPGHrljOvlAWSQ.crl rsync://rpki.apnic.net/member_repository/A91ABE54/A5C150AC68D611ECBCD63C54C4F9AE02/LXzpTxPYLlT4NCPGHrljOvlAWSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LXzpTxPYLlT4NCPGHrljOvlAWSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:06:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1050 (0x41a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABE54, serialNumber=2D7CE94F13D82E54F83423C61EB9633AF9405924 Validity Not Before: Apr 27 00:06:07 2025 GMT Not After : May 4 00:06:07 2025 GMT Subject: CN=680d74ef-fdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:7b:8d:9a:d5:48:fd:22:c9:ea:6a:f0:bd:cc: 93:7e:d4:44:a0:7a:6b:1c:e2:d6:89:e4:ff:21:8f: ea:bb:34:0d:cb:11:df:78:72:16:20:51:8f:9f:5d: 4e:b9:80:96:64:bd:1c:98:a3:cc:7a:ac:2a:12:1a: fa:16:e9:f7:9d:cf:df:ee:6e:f8:e7:d2:67:56:0f: 94:f1:bc:0f:fe:db:8e:c1:56:fe:1c:18:68:73:cb: 2a:96:f5:68:f3:a2:6d:2f:dd:6b:c1:f0:a1:cf:b0: 71:13:4c:2c:62:97:73:1e:d3:e0:38:75:9f:ad:e5: ed:55:73:52:59:8f:d9:78:41:66:ac:19:94:97:32: 69:84:9a:67:e7:6c:4e:51:31:e4:1b:3d:b6:0e:e3: 40:bd:16:e6:59:75:d0:79:e3:74:0d:c9:41:62:13: d0:78:bb:42:54:03:61:9b:d2:2f:cf:89:5d:ca:86: 6f:cc:92:e2:44:54:ec:58:f3:99:9d:71:12:99:d5: c1:77:df:e0:18:74:f1:c6:cf:8c:3b:e8:b3:08:e5: 81:8a:87:23:8f:8c:2d:12:d0:3e:ad:87:4c:8a:30: ab:fe:79:60:d0:2a:4d:52:87:18:a8:c1:5e:43:30: 89:48:2b:33:0d:4a:50:d5:70:d1:f4:13:a8:c3:b3: 24:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:39:36:FA:B5:8F:B6:06:E5:C5:06:F3:92:F6:A9:61:EA:A6:8A:B1 X509v3 Authority Key Identifier: keyid:2D:7C:E9:4F:13:D8:2E:54:F8:34:23:C6:1E:B9:63:3A:F9:40:59:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABE54/A5C150AC68D611ECBCD63C54C4F9AE02/LXzpTxPYLlT4NCPGHrljOvlAWSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LXzpTxPYLlT4NCPGHrljOvlAWSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABE54/A5C150AC68D611ECBCD63C54C4F9AE02/LXzpTxPYLlT4NCPGHrljOvlAWSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:60:89:87:01:43:96:32:7b:4f:57:fe:1b:4c:0f:98:88:9a: 8e:7e:ca:38:93:dd:a0:68:97:44:07:26:85:25:e7:f2:47:40: 9a:1f:eb:f1:1d:a9:21:42:82:d1:a4:f6:84:e0:03:3a:6e:32: ea:89:20:4d:82:90:6d:a9:52:9d:ec:2f:db:66:b4:60:cf:a4: 67:cd:c3:2a:51:a2:ec:43:25:d4:11:00:18:62:a9:25:cc:57: 7b:a4:6c:7a:c5:59:99:ae:1f:76:c9:c9:53:8c:e8:ce:5f:11: 81:6b:7c:0c:34:01:1e:f3:65:36:3c:bf:83:39:d1:1d:7d:ee: 0c:b3:a7:73:7b:9e:4e:f7:18:12:a2:8b:77:a1:f1:98:a2:f0: 51:4f:cf:bb:f1:1e:ba:a8:55:30:b1:0f:d4:4b:1d:c1:c5:91: 9b:dd:3f:a4:35:90:51:65:8d:8c:c0:c6:a9:74:f0:38:43:4d: 49:50:f0:1d:9e:30:5b:97:62:b5:60:5c:f9:c6:94:86:1d:30: 19:a5:51:aa:34:94:0c:12:42:cc:d4:5d:b0:5b:1b:6e:62:28: c6:8b:1f:a9:9d:8d:7c:d8:be:73:ff:e2:58:62:e8:66:bc:96: 06:be:39:91:24:11:f6:95:40:2d:2e:77:b5:e2:8b:08:2c:da: 87:96:cf:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJFNTQxMTAvBgNVBAUTKDJEN0NFOTRGMTNEODJFNTRGODM0MjNDNjFFQjk2MzNB Rjk0MDU5MjQwHhcNMjUwNDI3MDAwNjA3WhcNMjUwNTA0MDAwNjA3WjAYMRYwFAYD VQQDEw02ODBkNzRlZi1mZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynuNmtVI/SLJ6mrwvcyTftREoHprHOLWieT/IY/quzQNyxHfeHIWIFGPn11O uYCWZL0cmKPMeqwqEhr6Fun3nc/f7m7459JnVg+U8bwP/tuOwVb+HBhoc8sqlvVo 86JtL91rwfChz7BxE0wsYpdzHtPgOHWfreXtVXNSWY/ZeEFmrBmUlzJphJpn52xO UTHkGz22DuNAvRbmWXXQeeN0DclBYhPQeLtCVANhm9Ivz4ldyoZvzJLiRFTsWPOZ nXESmdXBd9/gGHTxxs+MO+izCOWBiocjj4wtEtA+rYdMijCr/nlg0CpNUocYqMFe QzCJSCszDUpQ1XDR9BOow7MksQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO05Nvq1 j7YG5cUG85L2qWHqpoqxMB8GA1UdIwQYMBaAFC186U8T2C5U+DQjxh65Yzr5QFkk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkU1NC9BNUMxNTBBQzY4 RDYxMUVDQkNENjNDNTRDNEY5QUUwMi9MWHpwVHhQWUxsVDROQ1BHSHJsak92bEFX U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xYenBUeFBZTGxUNE5DUEdIcmxqT3ZsQVdTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkU1NC9BNUMxNTBBQzY4RDYxMUVDQkNENjNDNTRDNEY5QUUwMi9MWHpwVHhQWUxs VDROQ1BHSHJsak92bEFXU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuYImHAUOWMntPV/4bTA+YiJqOfso4k92gaJdEByaFJefyR0CaH+vx HakhQoLRpPaE4AM6bjLqiSBNgpBtqVKd7C/bZrRgz6RnzcMqUaLsQyXUEQAYYqkl zFd7pGx6xVmZrh92yclTjOjOXxGBa3wMNAEe82U2PL+DOdEdfe4Ms6dze55O9xgS oot3ofGYovBRT8+78R66qFUwsQ/USx3BxZGb3T+kNZBRZY2MwMapdPA4Q01JUPAd njBbl2K1YFz5xpSGHTAZpVGqNJQMEkLM1F2wWxtuYijGix+pnY182L5z/+JYYuhm vJYGvjmRJBH2lUAtLne14osILNqHls8U -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:07 2025 by rpki-client on console.sobornost.net