$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft File: 3BEw2GFrq8bOCI9fIOaXGamcMrs.mft (raw, json) Hash identifier: lM6JDYiDwyIPYiHcafSdj9bXp9vvDvuDnFTikMQvux8= Subject key identifier: 39:41:B1:78:1C:AD:DC:24:32:F5:52:D7:36:F6:0C:82:17:7A:C0:30 Authority key identifier: DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB Certificate issuer: /CN=A91B732A/serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft Manifest number: 49 Signing time: Sun 27 Apr 2025 06:12:08 +0000 Manifest this update: Sun 27 Apr 2025 06:12:08 +0000 Manifest next update: Sun 04 May 2025 06:12:08 +0000 Files and hashes: 1: 3BEw2GFrq8bOCI9fIOaXGamcMrs.crl (hash: rrz325QqHko9LCDeNqU3zd+o25AZR2GXZB9OOMHco5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=DC1130D8616BABC6CE088F5F20E69719A99C32BB Validity Not Before: Apr 27 06:12:08 2025 GMT Not After : May 4 06:12:08 2025 GMT Subject: CN=680dcab8-2763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:23:cd:01:bb:f1:50:d3:b3:8f:57:b9:70:7f: c3:58:e7:49:0e:9c:25:f6:c3:d2:75:b2:e4:e3:1f: 29:e3:5c:d3:52:b7:c8:04:95:4a:64:53:50:20:59: cc:e0:87:88:c0:2c:da:2d:1a:5d:c2:82:10:0c:35: d3:97:2b:d9:c8:0c:e8:1c:19:95:63:32:d8:a1:09: b4:46:bd:be:ca:be:7a:e7:14:6c:b1:d9:77:89:cf: 3e:81:ea:27:64:db:18:c8:e9:ba:0e:75:1f:dd:de: 68:fe:1d:76:6e:f2:2e:40:8e:7a:b3:7b:83:31:6a: 8a:1d:f5:e9:d3:88:d8:fa:5c:b5:b8:3f:1a:4f:6a: c9:89:49:12:99:45:05:18:5e:1c:fe:29:9c:5b:9d: 16:82:05:96:1b:ca:fc:93:2c:4c:fe:72:ec:92:45: 9c:3c:f0:48:76:d9:9b:7c:39:bb:ea:95:d0:f5:5d: 99:c2:43:bd:27:3d:21:1c:1c:71:5f:dd:dd:f2:eb: b6:f4:c7:80:b4:e5:69:ee:97:d3:bd:97:2f:71:eb: 45:2f:17:50:cc:63:5a:40:5d:3c:1e:bc:2f:44:ea: 0d:4b:f1:1e:46:b1:32:e0:24:20:87:f6:62:b2:b2: b9:1e:c4:ed:48:9f:60:50:2f:f7:ab:8f:8b:a3:ca: 3c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:41:B1:78:1C:AD:DC:24:32:F5:52:D7:36:F6:0C:82:17:7A:C0:30 X509v3 Authority Key Identifier: keyid:DC:11:30:D8:61:6B:AB:C6:CE:08:8F:5F:20:E6:97:19:A9:9C:32:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3BEw2GFrq8bOCI9fIOaXGamcMrs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/089BC4E6B63111EFA2D7FB63C4F9AE02/3BEw2GFrq8bOCI9fIOaXGamcMrs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:88:49:70:35:d9:af:7f:4a:58:fd:cb:ce:d1:13:20:28:83: 11:5d:fb:c5:13:76:7e:fb:a9:11:92:34:fa:8e:29:20:0f:a5: 5a:9a:fa:5a:c2:76:9c:62:b4:cd:1d:12:d3:0b:bd:3f:d3:c3: 28:af:83:fa:2e:80:a0:69:f2:91:72:3d:4d:b4:5b:52:c8:6f: d0:54:c6:5b:f1:f5:1b:13:06:5a:07:9c:bd:6a:78:e2:69:62: 5e:7b:46:be:51:c9:1b:5d:f0:de:1d:0a:0b:c7:3a:bc:f9:5c: 3f:ea:12:62:ca:8c:26:b8:8c:43:b8:e4:65:fc:a0:c5:41:2e: b7:23:12:63:0f:3d:dc:d3:7d:9a:81:a0:44:69:d3:30:ce:2f: 53:59:53:a5:a6:ca:4f:13:bd:8f:44:66:37:e6:9d:d7:33:b4: 8a:82:70:5f:df:70:23:64:68:e9:0a:6d:92:dc:fd:90:0c:a8: f8:94:2f:66:12:bf:2b:5d:5a:dd:02:cf:d8:ab:62:b0:9a:86: 49:9f:bc:ca:63:3e:39:55:4a:07:50:c3:87:3f:c1:f1:18:c7: de:ae:86:f5:dd:4f:18:38:28:93:1d:a3:98:b5:b8:3a:a4:a7: ed:2e:42:33:6e:2b:0d:28:15:31:d4:e9:a8:38:03:7a:a0:eb: 49:b7:52:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoREMxMTMwRDg2MTZCQUJDNkNFMDg4RjVGMjBFNjk3MTlB OTlDMzJCQjAeFw0yNTA0MjcwNjEyMDhaFw0yNTA1MDQwNjEyMDhaMBgxFjAUBgNV BAMTDTY4MGRjYWI4LTI3NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0I80Bu/FQ07OPV7lwf8NY50kOnCX2w9J1suTjHynjXNNSt8gElUpkU1AgWczg h4jALNotGl3CghAMNdOXK9nIDOgcGZVjMtihCbRGvb7KvnrnFGyx2XeJzz6B6idk 2xjI6boOdR/d3mj+HXZu8i5Ajnqze4Mxaood9enTiNj6XLW4PxpPasmJSRKZRQUY Xhz+KZxbnRaCBZYbyvyTLEz+cuySRZw88Eh22Zt8ObvqldD1XZnCQ70nPSEcHHFf 3d3y67b0x4C05Wnul9O9ly9x60UvF1DMY1pAXTwevC9E6g1L8R5GsTLgJCCH9mKy srkexO1In2BQL/erj4ujyjyDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOUGxeByt 3CQy9VLXNvYMghd6wDAwHwYDVR0jBBgwFoAU3BEw2GFrq8bOCI9fIOaXGamcMrsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBLzA4OUJDNEU2QjYz MTExRUZBMkQ3RkI2M0M0RjlBRTAyLzNCRXcyR0ZycThiT0NJOWZJT2FYR2FtY01y cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM0JFdzJHRnJxOGJPQ0k5ZklPYVhHYW1jTXJzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 MzJBLzA4OUJDNEU2QjYzMTExRUZBMkQ3RkI2M0M0RjlBRTAyLzNCRXcyR0ZycThi T0NJOWZJT2FYR2FtY01ycy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH6ISXA12a9/Slj9y87REyAogxFd+8UTdn77qRGSNPqOKSAPpVqa+lrC dpxitM0dEtMLvT/Twyivg/ougKBp8pFyPU20W1LIb9BUxlvx9RsTBloHnL1qeOJp Yl57Rr5RyRtd8N4dCgvHOrz5XD/qEmLKjCa4jEO45GX8oMVBLrcjEmMPPdzTfZqB oERp0zDOL1NZU6Wmyk8TvY9EZjfmndcztIqCcF/fcCNkaOkKbZLc/ZAMqPiUL2YS vytdWt0Cz9irYrCahkmfvMpjPjlVSgdQw4c/wfEYx96uhvXdTxg4KJMdo5i1uDqk p+0uQjNuKw0oFTHU6ag4A3qg60m3UqM= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net