$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: 9cQC+zbPiniUwPx8xQ3EazqTrJ+FMj59WUhOfmFB9Q4= Subject key identifier: 15:68:12:00:12:D6:7E:46:56:D6:2F:10:CB:E5:1A:6B:C7:69:C2:CC Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: 4B Signing time: Fri 25 Apr 2025 06:22:56 +0000 Manifest this update: Fri 25 Apr 2025 06:22:56 +0000 Manifest next update: Fri 02 May 2025 06:22:56 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: N23jhXDhOH9K4+WD6lgQag8L0SGNcQ681CWE2xQi0Mo=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Apr 25 06:22:56 2025 GMT Not After : May 2 06:22:56 2025 GMT Subject: CN=680b2a40-c262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b4:90:6b:c3:09:a1:05:a6:23:87:f2:22:ea: f4:20:af:86:e6:91:57:27:a1:da:82:73:96:c4:0a: 82:26:e2:55:19:1e:d3:48:7c:5a:8e:a8:fa:7d:c9: b5:51:71:b1:86:74:aa:70:c0:bd:b4:11:bf:07:0f: 36:d0:98:48:1e:56:d3:1a:1c:3d:5a:0a:c5:b7:40: fe:c0:d0:a7:e2:1b:2b:35:08:34:05:c6:a2:8c:24: cc:cc:db:f4:ff:e7:08:f6:b2:5e:1f:77:ff:ce:a0: 84:cc:b1:b5:41:e4:38:57:de:18:69:df:01:54:ef: bc:2f:16:72:d9:9d:d6:9c:d9:32:3c:d0:5e:55:2d: d1:27:2c:28:48:fc:f7:f6:5b:12:9f:15:75:a3:a0: a4:c7:55:b2:3e:76:c1:38:26:6f:f3:1a:02:f3:4c: 0a:ae:51:65:db:9d:54:f3:9b:e7:fc:10:a2:a1:52: 42:58:c0:6c:df:0b:3d:bb:6f:dd:f6:0a:6d:0d:a3: 37:c7:f9:a8:91:af:64:16:63:75:6f:5d:3e:d4:a1: 81:ec:7e:c0:89:5b:91:0e:cc:aa:63:40:3f:46:23: 8c:36:70:01:75:57:28:3a:42:10:be:e6:34:40:9e: 9c:b3:00:e2:06:d7:35:15:a6:89:6d:8c:1b:f3:90: 2a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:68:12:00:12:D6:7E:46:56:D6:2F:10:CB:E5:1A:6B:C7:69:C2:CC X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:7d:e0:db:2f:35:6b:bb:d2:bf:38:59:6a:fb:b3:8b:09:5d: 26:bc:1e:c4:e0:35:69:a7:81:a7:d4:54:4f:7f:73:82:75:04: db:08:f8:e3:6d:ea:fe:5e:41:8b:b9:8d:f1:21:3a:58:01:34: b0:eb:23:fd:20:88:18:4e:03:ee:21:3f:da:4d:69:f3:01:3c: 75:a6:43:23:e9:12:ed:60:41:67:bc:32:60:7a:39:40:20:f1: 36:13:92:2f:13:58:ca:61:77:23:ac:63:f7:65:9d:dc:37:92: 21:16:fa:39:1e:f9:3a:c7:9d:8b:65:c0:a4:19:bd:1c:e9:10: 70:74:28:6f:81:97:2d:97:0c:08:c4:6d:83:15:06:9d:06:36: c6:d8:9b:98:51:a0:85:57:ca:40:66:f4:10:2e:7a:d7:38:93: 59:c3:85:e7:85:45:3c:ec:4d:18:c8:40:b9:0b:ea:d9:88:3a: 14:cb:6c:f5:82:92:39:e3:b8:c1:34:04:4f:c5:2b:6c:05:73: dd:d5:d3:44:0f:a9:e6:47:ad:db:eb:89:2b:cd:53:3e:22:44: 8c:5b:86:4c:6d:ac:4a:e1:19:d0:44:65:78:6b:36:c8:b1:f2: 5d:80:9e:1d:9b:04:4a:8d:d5:4b:03:ab:7c:61:5f:99:69:25: d3:4a:30:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzMyQTExMC8GA1UEBRMoNkYzRTAyNjIwMEQ1NTM5RjI3RTBGM0FBNTBEMzIwQTI0 NTI4RDU3RDAeFw0yNTA0MjUwNjIyNTZaFw0yNTA1MDIwNjIyNTZaMBgxFjAUBgNV BAMTDTY4MGIyYTQwLWMyNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwtJBrwwmhBaYjh/Ii6vQgr4bmkVcnodqCc5bECoIm4lUZHtNIfFqOqPp9ybVR cbGGdKpwwL20Eb8HDzbQmEgeVtMaHD1aCsW3QP7A0KfiGys1CDQFxqKMJMzM2/T/ 5wj2sl4fd//OoITMsbVB5DhX3hhp3wFU77wvFnLZndac2TI80F5VLdEnLChI/Pf2 WxKfFXWjoKTHVbI+dsE4Jm/zGgLzTAquUWXbnVTzm+f8EKKhUkJYwGzfCz27b932 Cm0NozfH+aiRr2QWY3VvXT7UoYHsfsCJW5EOzKpjQD9GI4w2cAF1Vyg6QhC+5jRA npyzAOIG1zUVpoltjBvzkCr7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFWgSABLW fkZW1i8Qy+Uaa8dpwswwHwYDVR0jBBgwFoAUbz4CYgDVU58n4POqUNMgokUo1X0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3MzJBL0ZGRjJFNkE4QjYz MDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFY MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYno0Q1lnRFZVNThuNFBPcVVOTWdva1VvMVgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 MzJBL0ZGRjJFNkE4QjYzMDExRUZBMkQ3RkI2M0M0RjlBRTAyL2J6NENZZ0RWVTU4 bjRQT3FVTk1nb2tVbzFYMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANt94NsvNWu70r84WWr7s4sJXSa8HsTgNWmngafUVE9/c4J1BNsI+ONt 6v5eQYu5jfEhOlgBNLDrI/0giBhOA+4hP9pNafMBPHWmQyPpEu1gQWe8MmB6OUAg 8TYTki8TWMphdyOsY/dlndw3kiEW+jke+TrHnYtlwKQZvRzpEHB0KG+Bly2XDAjE bYMVBp0GNsbYm5hRoIVXykBm9BAuetc4k1nDheeFRTzsTRjIQLkL6tmIOhTLbPWC kjnjuME0BE/FK2wFc93V00QPqeZHrdvriSvNUz4iRIxbhkxtrErhGdBEZXhrNsix 8l2Anh2bBEqN1UsDq3xhX5lpJdNKMBg= -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:59 2025 by rpki-client on console.sobornost.net