$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: fE98A9YWwwZsH0BR8kJkLaDAlakAGvjMp2W28g/hYBo= Subject key identifier: E4:64:3C:7F:8F:6A:21:0E:DD:E5:70:F6:16:23:FB:58:45:39:45:01 Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: 41 Signing time: Sun 27 Apr 2025 06:16:11 +0000 Manifest this update: Sun 27 Apr 2025 06:16:11 +0000 Manifest next update: Sun 04 May 2025 06:16:11 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: Wl4zxiY+gCD4CyKov9mCedtzVnJHtIyY0r8hd7EjzAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Apr 27 06:16:11 2025 GMT Not After : May 4 06:16:11 2025 GMT Subject: CN=680dcbab-42d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e0:e8:c6:78:48:38:e4:cf:4c:0f:ca:84:29: 8c:e4:d1:ef:70:7f:df:31:6a:4c:74:af:8d:52:e8: c9:6e:d0:2f:92:73:77:a7:7c:c1:ef:0b:75:7a:fc: a1:67:81:f0:58:f9:6c:ea:f7:79:8f:bb:6c:aa:6b: d1:1b:8c:16:23:6e:75:4b:10:3b:0b:ed:b4:0b:9a: 01:cb:39:9e:ef:ff:f3:2a:cb:f6:a7:df:26:ec:a3: b5:44:f6:dc:05:22:cf:b0:3c:2d:dc:8f:e4:b6:35: 82:11:3d:75:7a:c5:8a:c0:33:71:f2:f9:ad:40:ff: eb:12:99:88:fd:26:26:df:9b:16:7a:d3:27:99:49: 4c:14:72:44:68:60:5a:bb:f9:3d:58:9d:b3:90:2d: 75:1c:6c:ec:d2:b9:e2:b4:6a:15:58:54:15:04:05: 35:bb:03:d0:1d:be:b5:22:b1:92:97:03:e8:53:a5: 88:b3:3a:32:84:30:b1:09:6d:1d:2b:0a:1c:36:ba: 78:5d:99:6e:46:59:c0:19:e5:5f:5a:74:8e:ee:fd: 04:3f:89:fc:40:b7:04:5e:b2:0f:7e:ee:a9:67:f1: 94:86:a0:42:ff:35:e8:6d:cb:81:18:0c:85:ff:2c: 73:02:50:38:ca:1e:96:a2:67:3f:6f:a8:bc:70:5d: 9d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:64:3C:7F:8F:6A:21:0E:DD:E5:70:F6:16:23:FB:58:45:39:45:01 X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:14:7e:cc:70:07:5e:e2:4f:53:89:e8:31:38:94:8e:49:9b: f9:53:bf:48:99:4f:6d:69:c0:fd:d9:ff:22:70:8e:e1:f6:99: 9c:e4:61:56:c7:30:34:a7:24:d6:2b:5a:73:98:b6:49:10:42: 7a:e5:ab:74:14:19:12:c4:de:14:ab:f8:0d:d1:34:86:ba:74: 3b:04:9c:32:2c:fa:50:7f:92:b7:a9:eb:c4:6e:82:0d:75:ca: 24:a2:02:f0:7d:61:13:16:89:53:b2:c0:ec:f4:6a:a4:62:9b: ee:cf:56:4a:9e:bd:e6:c8:a2:97:0d:aa:db:a1:ed:ba:7b:fd: f5:1f:34:28:70:3d:0f:a8:6f:e0:73:31:7d:92:42:ed:cd:2c: 52:1f:0d:12:7e:66:23:d0:1f:7e:20:cb:d8:85:f0:f5:c8:f0: 5b:17:a3:85:25:66:68:d0:4f:79:4a:0b:c5:da:26:39:de:f4: bf:14:b0:7b:59:c5:b5:a0:51:30:1b:23:d6:78:27:17:c2:98: 60:93:52:f5:53:6d:c0:22:94:fa:2f:64:8c:7b:2e:c3:e1:e7: 51:48:b0:a5:7a:2f:a2:b3:5e:d3:8b:5c:2e:5f:11:69:12:9f: e6:a5:a5:65:f1:8c:65:5c:7c:2a:15:40:35:14:2e:df:1e:97: 6e:7b:9b:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjIwNzExMC8GA1UEBRMoNzc3REI4OTc0NTcwRTlCNkMwNEUyNjU3RTZEMEE1MDM3 QzcxODg2QjAeFw0yNTA0MjcwNjE2MTFaFw0yNTA1MDQwNjE2MTFaMBgxFjAUBgNV BAMTDTY4MGRjYmFiLTQyZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZ4OjGeEg45M9MD8qEKYzk0e9wf98xakx0r41S6Mlu0C+Sc3enfMHvC3V6/KFn gfBY+Wzq93mPu2yqa9EbjBYjbnVLEDsL7bQLmgHLOZ7v//Mqy/an3ybso7VE9twF Is+wPC3cj+S2NYIRPXV6xYrAM3Hy+a1A/+sSmYj9JibfmxZ60yeZSUwUckRoYFq7 +T1YnbOQLXUcbOzSueK0ahVYVBUEBTW7A9AdvrUisZKXA+hTpYizOjKEMLEJbR0r Chw2unhdmW5GWcAZ5V9adI7u/QQ/ifxAtwResg9+7qln8ZSGoEL/Nehty4EYDIX/ LHMCUDjKHpaiZz9vqLxwXZ05AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5GQ8f49q IQ7d5XD2FiP7WEU5RQEwHwYDVR0jBBgwFoAUd324l0Vw6bbATiZX5tClA3xxiGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGMjA3L0I0ODg2MUM2QzIy ODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDMyNGwwVnc2YmJBVGlaWDV0Q2xBM3h4aUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG MjA3L0I0ODg2MUM2QzIyODExRUY4NkUzNDg0RkM0RjlBRTAyL2QzMjRsMFZ3NmJi QVRpWlg1dENsQTN4eGlHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH8UfsxwB17iT1OJ6DE4lI5Jm/lTv0iZT21pwP3Z/yJwjuH2mZzkYVbH MDSnJNYrWnOYtkkQQnrlq3QUGRLE3hSr+A3RNIa6dDsEnDIs+lB/krep68Rugg11 yiSiAvB9YRMWiVOywOz0aqRim+7PVkqevebIopcNqtuh7bp7/fUfNChwPQ+ob+Bz MX2SQu3NLFIfDRJ+ZiPQH34gy9iF8PXI8FsXo4UlZmjQT3lKC8XaJjne9L8UsHtZ xbWgUTAbI9Z4JxfCmGCTUvVTbcAilPovZIx7LsPh51FIsKV6L6KzXtOLXC5fEWkS n+alpWXxjGVcfCoVQDUULt8el257myo= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net