$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE8D7/54666B3CF93F11EFB7EAB425C4F9AE02/nnH7cbZwDEBFpcNAwY8TDwhgqjk.mft File: nnH7cbZwDEBFpcNAwY8TDwhgqjk.mft (raw, json) Hash identifier: jzcAFdx8EulrrblvJ4WyUWoZxlbQeZ4/dsOn7TVvdVw= Subject key identifier: 74:C7:3E:02:82:B1:07:83:36:8B:2B:50:DD:08:D6:6F:23:CC:06:FE Authority key identifier: 9E:71:FB:71:B6:70:0C:40:45:A5:C3:40:C1:8F:13:0F:08:60:AA:39 Certificate issuer: /CN=A91AE8D7/serialNumber=9E71FB71B6700C4045A5C340C18F130F0860AA39 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nnH7cbZwDEBFpcNAwY8TDwhgqjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE8D7/54666B3CF93F11EFB7EAB425C4F9AE02/nnH7cbZwDEBFpcNAwY8TDwhgqjk.mft Manifest number: 1D Signing time: Sun 27 Apr 2025 06:42:00 +0000 Manifest this update: Sun 27 Apr 2025 06:41:59 +0000 Manifest next update: Sun 04 May 2025 06:41:59 +0000 Files and hashes: 1: nnH7cbZwDEBFpcNAwY8TDwhgqjk.crl (hash: M1GEY4NY24uA96jCf2YHHTx0l6fwRWJogSHEcVGGCo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE8D7/54666B3CF93F11EFB7EAB425C4F9AE02/nnH7cbZwDEBFpcNAwY8TDwhgqjk.crl rsync://rpki.apnic.net/member_repository/A91AE8D7/54666B3CF93F11EFB7EAB425C4F9AE02/nnH7cbZwDEBFpcNAwY8TDwhgqjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nnH7cbZwDEBFpcNAwY8TDwhgqjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE8D7, serialNumber=9E71FB71B6700C4045A5C340C18F130F0860AA39 Validity Not Before: Apr 27 06:41:59 2025 GMT Not After : May 4 06:41:59 2025 GMT Subject: CN=680dd1b8-cc5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4e:d3:75:67:00:3f:56:c2:50:0e:5b:33:4d: 27:18:72:ed:0f:95:94:19:32:0f:8b:2a:a0:09:b4: 60:40:60:8a:56:b8:07:f3:e2:89:8d:09:a9:b8:7b: f9:cb:88:85:49:65:21:25:d8:b7:cf:3e:e5:27:aa: cd:f7:26:ca:b3:40:da:57:7d:59:c5:a6:fd:b5:d0: 23:24:c7:95:0f:0a:3a:d5:15:16:c5:92:46:04:70: f4:fb:8f:ce:18:d6:a6:0e:fa:6b:f0:81:74:53:de: 03:9c:61:d1:39:4c:bd:c4:42:a4:33:99:f4:33:0a: eb:b8:1d:6f:93:23:42:18:e9:34:bd:c4:68:0d:3a: 5c:64:d5:93:88:6c:aa:55:29:0e:16:fc:98:6c:b8: 40:b9:5d:66:07:fb:b6:2f:69:68:06:c1:c1:42:26: c3:6a:e5:ba:67:b5:45:6d:9d:fe:9b:a9:ad:1f:0e: 40:29:52:43:fd:9f:5e:4a:7b:23:6d:fe:8b:78:a4: cc:84:ea:67:52:92:ef:ef:41:60:0e:c0:ef:d8:e7: f0:bd:a3:74:ef:1f:6b:0c:98:1e:7c:13:09:a5:84: 15:65:ba:b8:3e:fd:d0:c9:dc:aa:48:fb:eb:ba:8b: e2:75:42:1e:c5:a9:74:8c:19:d2:bd:41:44:70:b1: a5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C7:3E:02:82:B1:07:83:36:8B:2B:50:DD:08:D6:6F:23:CC:06:FE X509v3 Authority Key Identifier: keyid:9E:71:FB:71:B6:70:0C:40:45:A5:C3:40:C1:8F:13:0F:08:60:AA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE8D7/54666B3CF93F11EFB7EAB425C4F9AE02/nnH7cbZwDEBFpcNAwY8TDwhgqjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nnH7cbZwDEBFpcNAwY8TDwhgqjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE8D7/54666B3CF93F11EFB7EAB425C4F9AE02/nnH7cbZwDEBFpcNAwY8TDwhgqjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:05:81:94:13:04:3f:42:27:47:c2:10:a6:6d:31:0e:b4:4f: 51:6e:56:ae:cc:c1:20:56:26:4e:81:2c:d3:8d:25:47:7d:78: 12:35:11:ef:04:8f:62:9a:9d:d0:ba:31:b8:cd:8d:95:56:df: 68:2a:88:9c:a8:47:af:a9:76:83:6f:de:87:fb:c9:f5:fa:8f: b1:1f:f6:1a:6b:47:97:66:f7:d0:5b:c8:59:e0:f8:f9:db:cc: 47:06:98:2f:f8:e8:2b:0e:3f:4a:93:2d:88:e0:c3:17:ac:c3: a5:d8:2d:d8:5a:c2:fa:da:e1:5f:59:39:83:ef:52:c2:73:b2: a0:3c:e2:3e:1f:53:2d:18:bd:77:51:47:37:e6:d3:d1:21:7d: ca:61:f4:bd:da:96:81:5e:8f:88:86:92:25:ce:57:7c:37:fd: ac:32:54:45:76:5d:b0:8f:ae:77:f0:44:97:f0:17:15:5a:a0: a2:09:27:d4:8c:c2:96:f9:e2:7e:52:37:ed:3b:28:34:39:af: 42:fa:6b:50:72:7f:02:cd:4c:64:f0:cd:af:51:06:d1:fc:c1: ba:eb:86:5e:49:33:1f:2f:29:e9:86:62:ed:8d:07:cb:e6:3d: 37:71:e1:cf:40:c9:47:7a:44:ca:d1:9e:09:a4:a3:36:e4:72: 67:ff:37:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RThENzExMC8GA1UEBRMoOUU3MUZCNzFCNjcwMEM0MDQ1QTVDMzQwQzE4RjEzMEYw ODYwQUEzOTAeFw0yNTA0MjcwNjQxNTlaFw0yNTA1MDQwNjQxNTlaMBgxFjAUBgNV BAMTDTY4MGRkMWI4LWNjNWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkTtN1ZwA/VsJQDlszTScYcu0PlZQZMg+LKqAJtGBAYIpWuAfz4omNCam4e/nL iIVJZSEl2LfPPuUnqs33JsqzQNpXfVnFpv210CMkx5UPCjrVFRbFkkYEcPT7j84Y 1qYO+mvwgXRT3gOcYdE5TL3EQqQzmfQzCuu4HW+TI0IY6TS9xGgNOlxk1ZOIbKpV KQ4W/JhsuEC5XWYH+7YvaWgGwcFCJsNq5bpntUVtnf6bqa0fDkApUkP9n15KeyNt /ot4pMyE6mdSku/vQWAOwO/Y5/C9o3TvH2sMmB58EwmlhBVlurg+/dDJ3KpI++u6 i+J1Qh7FqXSMGdK9QURwsaXTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdMc+AoKx B4M2iytQ3QjWbyPMBv4wHwYDVR0jBBgwFoAUnnH7cbZwDEBFpcNAwY8TDwhgqjkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFFOEQ3LzU0NjY2QjNDRjkz RjExRUZCN0VBQjQyNUM0RjlBRTAyL25uSDdjYlp3REVCRnBjTkF3WThURHdoZ3Fq ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbm5IN2NiWndERUJGcGNOQXdZOFREd2hncWprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFF OEQ3LzU0NjY2QjNDRjkzRjExRUZCN0VBQjQyNUM0RjlBRTAyL25uSDdjYlp3REVC RnBjTkF3WThURHdoZ3Fqay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAAFgZQTBD9CJ0fCEKZtMQ60T1FuVq7MwSBWJk6BLNONJUd9eBI1Ee8E j2KandC6MbjNjZVW32gqiJyoR6+pdoNv3of7yfX6j7Ef9hprR5dm99BbyFng+Pnb zEcGmC/46CsOP0qTLYjgwxesw6XYLdhawvra4V9ZOYPvUsJzsqA84j4fUy0YvXdR Rzfm09Ehfcph9L3aloFej4iGkiXOV3w3/awyVEV2XbCPrnfwRJfwFxVaoKIJJ9SM wpb54n5SN+07KDQ5r0L6a1ByfwLNTGTwza9RBtH8wbrrhl5JMx8vKemGYu2NB8vm PTdx4c9AyUd6RMrRngmkozbkcmf/N6c= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net