$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft File: C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft (raw, json) Hash identifier: 1Dk58qyhQ1iTh7dqKTspEBucYUxdCZefZWJaXKkVn/g= Subject key identifier: BC:D4:07:3F:20:78:83:0E:A6:42:B4:E7:10:53:5F:96:3E:2F:1D:E1 Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 249E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft Manifest number: 2489 Signing time: Mon 28 Apr 2025 15:52:37 +0000 Manifest this update: Mon 28 Apr 2025 15:52:36 +0000 Manifest next update: Mon 05 May 2025 15:52:36 +0000 Files and hashes: 1: C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl (hash: 385UChjx8stPI88V8KnwPdT5UnLzrhnn/LyQUz7ncmU=) 2: EBC23D9A041E11ECA959B779C4F9AE02.roa (hash: CE+jGBv1hmvPpnjcj/lZMkYxYBXBElFQLbmvrCZoU3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9374 (0x249e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4, serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: Apr 28 15:52:36 2025 GMT Not After : May 5 15:52:36 2025 GMT Subject: CN=680fa445-d80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6a:4c:0f:01:f8:1e:93:3b:c4:e3:da:89:52: 95:80:88:9c:d3:d1:79:6d:89:34:d6:49:6d:0e:cc: 16:61:7e:27:97:e5:68:f5:11:3e:96:13:d7:cf:72: 0d:50:5b:9d:f4:6e:49:7a:0d:23:6e:04:55:e9:ec: a5:96:64:ad:0f:77:ce:1c:13:89:ff:1e:8a:e5:2a: b5:db:54:bd:6f:d2:16:b7:6f:76:14:b8:f3:6f:11: 21:97:48:40:9f:5f:b9:03:89:52:a0:cd:42:fb:3c: 5e:53:9f:a0:31:79:a5:8e:ea:9b:59:3c:fb:bf:b4: df:69:0d:9f:f3:58:84:bf:24:f0:a8:28:9a:3b:56: 65:23:9f:83:8b:bf:12:a7:14:95:a3:57:44:1e:a1: df:d1:a4:a7:5e:5f:90:46:af:d9:6c:db:f4:9a:e0: 20:be:d1:d3:b5:46:2d:46:dd:3d:99:16:0c:f6:9a: 15:b1:6b:5b:e6:80:5f:88:2d:50:73:94:fb:ec:8a: 49:ad:9c:2a:bf:bb:b5:5a:95:cf:73:1c:a2:a2:fb: 16:fe:f8:cf:89:e9:65:f5:29:bc:9a:3f:f2:78:35: 6f:92:3b:ca:85:cb:88:ae:ec:41:bf:62:f4:cb:ed: a7:8a:60:15:74:b2:e9:7e:1c:29:7e:41:aa:1e:39: 99:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D4:07:3F:20:78:83:0E:A6:42:B4:E7:10:53:5F:96:3E:2F:1D:E1 X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:81:58:32:11:a0:c6:7b:40:5d:09:11:8a:8c:58:30:b0:70: 61:ac:82:0d:b5:0e:4a:02:5a:81:0f:57:de:e3:b3:9d:05:6e: 52:21:e6:fa:73:bb:6b:3d:36:dd:14:40:6b:37:9d:8a:37:d8: 96:37:13:cc:5d:7b:04:7c:5f:eb:cb:18:0d:b9:fb:d1:a3:b7: 43:31:bb:09:33:dd:d0:2e:da:f4:fe:ad:17:88:f5:db:ad:a9: 64:aa:e1:0c:85:d6:fc:54:f3:1b:12:dd:73:c8:49:38:20:e2: d6:0e:f8:b9:46:fd:e7:17:f3:79:f3:97:6c:d8:f4:4e:11:df: 2b:86:2a:c2:92:41:57:dc:11:44:48:e4:c0:38:3e:cd:93:bf: d8:5c:b2:52:48:66:37:b8:bb:50:8e:81:95:b9:ea:9d:27:4a: 5e:07:57:a5:38:de:83:da:5b:82:b6:6e:cc:ad:10:b2:14:45: af:c3:b9:50:db:ba:25:02:81:f4:29:25:a0:11:3b:f9:4c:8b: fa:e6:88:b7:e2:62:92:51:df:c0:79:73:8f:eb:31:df:88:9c: a5:24:10:83:42:5d:e5:98:8c:d4:a0:ce:8f:23:63:8a:24:7e: 85:ef:ba:10:a8:57:ac:d0:fd:e0:96:a8:43:6b:dc:8d:c0:da: 79:c9:25:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjUwNDI4MTU1MjM2WhcNMjUwNTA1MTU1MjM2WjAYMRYwFAYD VQQDEw02ODBmYTQ0NS1kODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WpMDwH4HpM7xOPaiVKVgIic09F5bYk01kltDswWYX4nl+Vo9RE+lhPXz3IN UFud9G5Jeg0jbgRV6eyllmStD3fOHBOJ/x6K5Sq121S9b9IWt292FLjzbxEhl0hA n1+5A4lSoM1C+zxeU5+gMXmljuqbWTz7v7TfaQ2f81iEvyTwqCiaO1ZlI5+Di78S pxSVo1dEHqHf0aSnXl+QRq/ZbNv0muAgvtHTtUYtRt09mRYM9poVsWtb5oBfiC1Q c5T77IpJrZwqv7u1WpXPcxyiovsW/vjPiell9Sm8mj/yeDVvkjvKhcuIruxBv2L0 y+2nimAVdLLpfhwpfkGqHjmZAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzUBz8g eIMOpkK05xBTX5Y+Lx3hMB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNGNC8xN0FDMkE3MDQxOUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1 UE11Wk1PajJ5TTdNSkZpMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQgVgyEaDGe0BdCRGKjFgwsHBhrIINtQ5KAlqBD1fe47OdBW5SIeb6 c7trPTbdFEBrN52KN9iWNxPMXXsEfF/ryxgNufvRo7dDMbsJM93QLtr0/q0XiPXb ralkquEMhdb8VPMbEt1zyEk4IOLWDvi5Rv3nF/N585ds2PROEd8rhirCkkFX3BFE SOTAOD7Nk7/YXLJSSGY3uLtQjoGVueqdJ0peB1elON6D2luCtm7MrRCyFEWvw7lQ 27olAoH0KSWgETv5TIv65oi34mKSUd/AeXOP6zHfiJylJBCDQl3lmIzUoM6PI2OK JH6F77oQqFes0P3glqhDa9yNwNp5ySVJ -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net