$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.mft File: LsRLn8Flw7yChYEsMTzHgBmI_zE.mft (raw, json) Hash identifier: rTVCjj5M9jtSKgThWOiDXWAY7wHfqZzbWlpZopso9sA= Subject key identifier: 42:B6:0E:CD:F0:BC:53:34:45:D0:BF:DB:77:61:D5:D7:2B:2D:ED:77 Authority key identifier: 2E:C4:4B:9F:C1:65:C3:BC:82:85:81:2C:31:3C:C7:80:19:88:FF:31 Certificate issuer: /CN=A91BA164/serialNumber=2EC44B9FC165C3BC8285812C313CC7801988FF31 Certificate serial: 11E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsRLn8Flw7yChYEsMTzHgBmI_zE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.mft Manifest number: 11C1 Signing time: Mon 28 Apr 2025 17:25:08 +0000 Manifest this update: Mon 28 Apr 2025 17:25:08 +0000 Manifest next update: Mon 05 May 2025 17:25:08 +0000 Files and hashes: 1: LsRLn8Flw7yChYEsMTzHgBmI_zE.crl (hash: CcWjymUpsjpPaiLf5C9WHuTZ965nUhn96BDRU2Izk0w=) 2: 96D571D41FEB11F0A2AEE444C4F9AE02.roa (hash: AHDoKb/llb+LLqKjO48bsoYIkNNC05Md7hDccepwp54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.crl rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsRLn8Flw7yChYEsMTzHgBmI_zE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4577 (0x11e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA164, serialNumber=2EC44B9FC165C3BC8285812C313CC7801988FF31 Validity Not Before: Apr 28 17:25:08 2025 GMT Not After : May 5 17:25:08 2025 GMT Subject: CN=680fb9f4-e021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a7:4c:a2:93:a0:28:4e:f7:9b:c9:04:3b:ee: 99:59:dc:fd:7b:45:35:8d:2d:d4:5b:5d:a4:ba:1a: bc:8b:53:46:99:58:f9:1e:4b:4d:73:71:5c:aa:e3: 89:3c:a4:cd:b8:ee:50:6a:33:02:2a:cf:10:91:ed: 55:66:b9:0e:ee:5d:b5:30:76:fc:3e:9b:7e:f9:f5: c8:e2:cc:c3:a9:b5:f2:5a:a3:f7:0a:51:81:67:2a: f2:19:fa:ad:22:79:e0:15:63:a0:7b:f5:58:fb:22: b7:6b:f6:b8:0d:92:93:28:55:00:08:26:40:c4:95: 33:bd:81:4f:9b:17:b0:c4:f2:2e:52:6e:57:d2:c3: 1e:95:14:62:83:45:c4:a7:2f:d6:9b:24:74:e2:ea: d1:7c:2c:be:b5:22:8b:33:36:87:d7:cf:b3:de:f1: 7f:a2:f2:2c:72:b8:08:08:16:c1:90:35:7a:2d:55: 4e:a8:4a:64:c1:87:4d:af:73:a5:e1:54:3a:29:32: 43:2a:0b:32:1c:22:6c:b0:f1:45:4a:c9:b5:c4:3e: cc:b4:3e:31:8b:ed:a0:f6:28:09:9c:8f:70:af:6b: 6d:ff:3c:f2:39:ff:81:46:7d:4c:08:4b:4f:72:07: db:7c:1c:d4:8c:7d:da:0b:96:45:bd:93:f6:ed:fe: 5b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B6:0E:CD:F0:BC:53:34:45:D0:BF:DB:77:61:D5:D7:2B:2D:ED:77 X509v3 Authority Key Identifier: keyid:2E:C4:4B:9F:C1:65:C3:BC:82:85:81:2C:31:3C:C7:80:19:88:FF:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsRLn8Flw7yChYEsMTzHgBmI_zE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:21:fd:0a:10:76:02:47:e2:d9:bc:bb:f7:1b:e2:fe:38:cb: 42:65:5d:ef:1d:21:2d:07:61:5b:15:9a:05:78:ce:52:ec:eb: b8:36:25:99:c4:9b:c1:e5:8e:05:48:84:8a:69:50:34:92:33: 4b:33:80:7f:68:89:5a:a4:48:e4:e2:17:e2:22:35:df:2b:83: 7c:b1:1a:b0:44:86:93:4a:34:2d:8b:c5:4a:0f:74:85:f8:3f: 09:a5:e8:8f:1f:3e:68:ea:b4:71:3c:55:1e:ae:a1:f6:8d:51: 45:a6:70:13:a0:ff:43:28:44:d7:0a:38:34:6b:46:84:22:3f: bf:5f:61:82:76:d7:b2:eb:43:fe:89:0b:81:36:40:69:7f:9d: cf:a2:87:4d:38:56:6b:92:03:44:63:25:7d:2f:32:8b:8d:61: cb:2a:15:ab:25:93:57:34:c7:e2:6b:27:57:a8:38:48:2a:d6: 23:a8:7c:82:ff:8b:b0:93:1e:a8:db:90:ab:1d:b8:66:76:ba: d9:a4:43:66:b0:8f:b1:5f:43:75:3b:28:17:a5:4b:c1:be:5e: f1:63:10:84:b2:9a:65:a6:ae:7e:54:c8:92:7e:d9:a2:d2:0d: 20:25:5f:a6:97:d6:d7:55:30:b0:21:7e:94:ad:bf:b1:1d:3c: cd:26:22:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExNjQxMTAvBgNVBAUTKDJFQzQ0QjlGQzE2NUMzQkM4Mjg1ODEyQzMxM0NDNzgw MTk4OEZGMzEwHhcNMjUwNDI4MTcyNTA4WhcNMjUwNTA1MTcyNTA4WjAYMRYwFAYD VQQDEw02ODBmYjlmNC1lMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qdMopOgKE73m8kEO+6ZWdz9e0U1jS3UW12kuhq8i1NGmVj5HktNc3FcquOJ PKTNuO5QajMCKs8Qke1VZrkO7l21MHb8Ppt++fXI4szDqbXyWqP3ClGBZyryGfqt InngFWOge/VY+yK3a/a4DZKTKFUACCZAxJUzvYFPmxewxPIuUm5X0sMelRRig0XE py/WmyR04urRfCy+tSKLMzaH18+z3vF/ovIscrgICBbBkDV6LVVOqEpkwYdNr3Ol 4VQ6KTJDKgsyHCJssPFFSsm1xD7MtD4xi+2g9igJnI9wr2tt/zzyOf+BRn1MCEtP cgfbfBzUjH3aC5ZFvZP27f5brQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEK2Ds3w vFM0RdC/23dh1dcrLe13MB8GA1UdIwQYMBaAFC7ES5/BZcO8goWBLDE8x4AZiP8x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTE2NC9BRkM1OTJFQ0Yz MUUxMUU4ODNFQjdCNzlDNEY5QUUwMi9Mc1JMbjhGbHc3eUNoWUVzTVR6SGdCbUlf ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xzUkxuOEZsdzd5Q2hZRXNNVHpIZ0JtSV96RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTE2NC9BRkM1OTJFQ0YzMUUxMUU4ODNFQjdCNzlDNEY5QUUwMi9Mc1JMbjhGbHc3 eUNoWUVzTVR6SGdCbUlfekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9If0KEHYCR+LZvLv3G+L+OMtCZV3vHSEtB2FbFZoFeM5S7Ou4NiWZ xJvB5Y4FSISKaVA0kjNLM4B/aIlapEjk4hfiIjXfK4N8sRqwRIaTSjQti8VKD3SF +D8JpeiPHz5o6rRxPFUerqH2jVFFpnAToP9DKETXCjg0a0aEIj+/X2GCdtey60P+ iQuBNkBpf53PoodNOFZrkgNEYyV9LzKLjWHLKhWrJZNXNMfiaydXqDhIKtYjqHyC /4uwkx6o25CrHbhmdrrZpENmsI+xX0N1OygXpUvBvl7xYxCEspplpq5+VMiSftmi 0g0gJV+ml9bXVTCwIX6Urb+xHTzNJiIc -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:55 2025 by rpki-client on console.sobornost.net