$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: WtP/5Fa40iQz+sO+BX6t89sqI8TX0mN24s7mvhAAIpU= Subject key identifier: 7A:3C:DE:32:8F:68:E2:03:21:81:BB:F2:4F:56:BE:8C:F8:11:F2:41 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: 59 Signing time: Sun 27 Apr 2025 05:59:32 +0000 Manifest this update: Sun 27 Apr 2025 05:59:32 +0000 Manifest next update: Sun 04 May 2025 05:59:32 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: K+YOb84sbcMfiT1cnlBalSvxyaSGiuWmyqt37d6B+w0=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: +tAlw28NvGVDo5cCezaQKFVIMHfW8hqdMwBD9HYIeLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Apr 27 05:59:32 2025 GMT Not After : May 4 05:59:32 2025 GMT Subject: CN=680dc7c4-6184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e4:16:4a:cb:ea:15:48:72:e1:c1:ee:37:3c: 53:3d:74:af:6d:17:ec:a1:d9:25:a1:e3:02:4f:f0: 05:57:7a:87:f6:64:91:98:60:5c:9d:15:e9:32:90: d7:d7:ed:a0:f3:95:9c:0c:5d:91:d2:c8:a3:42:df: 8f:4b:de:a0:0c:3c:b3:cb:d3:3a:4a:ac:75:64:ce: 77:b7:85:65:ee:0d:07:85:4f:0c:cb:b3:d1:a2:93: cc:bb:f8:92:0a:56:bc:25:d6:03:4e:2a:ee:86:68: 0a:5b:d2:f4:fa:dc:36:e6:2b:98:db:82:66:71:ae: ff:89:cb:e2:65:d6:48:a6:af:e3:17:d6:4e:52:48: d9:38:bf:aa:5b:36:d6:6b:5d:dd:26:c5:0f:6d:dc: 95:cb:90:d6:1a:66:9d:80:b7:8f:f8:11:a6:84:da: da:55:46:87:56:e8:3e:a1:d9:fe:ce:7d:9b:40:94: 12:39:2a:b4:e2:76:c9:a9:d8:17:84:cb:7e:78:f7: eb:d3:ec:d6:55:51:49:2e:ba:79:f5:6d:c3:32:2a: e9:10:f8:9d:29:2a:1f:ee:3b:ab:f8:f8:e7:0d:25: 74:53:3e:12:27:c5:63:6d:ab:41:9b:48:c8:4e:9e: e4:90:a2:73:12:95:f6:ac:9c:7d:62:e3:02:ef:4a: fd:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:3C:DE:32:8F:68:E2:03:21:81:BB:F2:4F:56:BE:8C:F8:11:F2:41 X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:1d:b2:10:a4:3e:bc:54:94:e5:3f:1d:15:e2:e0:77:df:c0: 9d:d4:a9:6e:14:8d:47:24:5f:c1:ac:3d:b5:e9:3a:c2:1d:bf: ac:9c:71:96:1a:cf:e9:b6:60:9c:ec:73:a4:30:5c:73:07:16: cb:0f:de:e3:c8:8c:de:bd:ee:56:90:2c:b6:a8:7b:9d:6a:c4: 10:15:65:64:e8:0a:90:57:7e:95:09:4a:d0:07:c8:75:3e:56: 5a:d8:86:1a:15:8e:44:da:13:07:eb:8d:b4:9a:11:4f:ce:61: 8e:4d:95:82:ed:a7:28:62:e9:3d:d7:34:06:6e:56:eb:0e:58: 89:b1:be:d5:0a:65:12:d5:72:0d:e8:3d:4a:50:f5:0e:c1:d8: 77:d3:0a:77:80:3f:53:26:0a:c4:8d:e0:f0:ee:35:85:41:f0: 88:7d:56:be:a2:40:27:9c:84:66:0b:35:fe:29:91:c2:15:66: 1c:ca:05:5f:fa:a1:de:04:0c:21:c7:43:31:be:3f:bd:70:14: 57:50:76:3f:53:ec:5a:69:b6:98:95:d8:5d:10:3c:68:2b:83: 49:4c:cf:79:c6:6d:a5:dd:fa:08:49:c2:7e:24:b1:7e:ea:67: 0e:c9:49:66:ae:09:a1:96:9e:6c:91:88:a6:42:be:fb:36:d6: dc:a3:e2:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNTA0MjcwNTU5MzJaFw0yNTA1MDQwNTU5MzJaMBgxFjAUBgNV BAMTDTY4MGRjN2M0LTYxODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv5BZKy+oVSHLhwe43PFM9dK9tF+yh2SWh4wJP8AVXeof2ZJGYYFydFekykNfX 7aDzlZwMXZHSyKNC349L3qAMPLPL0zpKrHVkzne3hWXuDQeFTwzLs9Gik8y7+JIK Vrwl1gNOKu6GaApb0vT63DbmK5jbgmZxrv+Jy+Jl1kimr+MX1k5SSNk4v6pbNtZr Xd0mxQ9t3JXLkNYaZp2At4/4EaaE2tpVRodW6D6h2f7OfZtAlBI5KrTidsmp2BeE y3549+vT7NZVUUkuunn1bcMyKukQ+J0pKh/uO6v4+OcNJXRTPhInxWNtq0GbSMhO nuSQonMSlfasnH1i4wLvSv0dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUejzeMo9o 4gMhgbvyT1a+jPgR8kEwHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB OTQxLzlCM0QyNTQ4QTBBMDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQ TmxxZ1FTNVRlRDZSMUlSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABQdshCkPrxUlOU/HRXi4HffwJ3UqW4UjUckX8GsPbXpOsIdv6yccZYa z+m2YJzsc6QwXHMHFssP3uPIjN697laQLLaoe51qxBAVZWToCpBXfpUJStAHyHU+ VlrYhhoVjkTaEwfrjbSaEU/OYY5NlYLtpyhi6T3XNAZuVusOWImxvtUKZRLVcg3o PUpQ9Q7B2HfTCneAP1MmCsSN4PDuNYVB8Ih9Vr6iQCechGYLNf4pkcIVZhzKBV/6 od4EDCHHQzG+P71wFFdQdj9T7FpptpiV2F0QPGgrg0lMz3nGbaXd+ghJwn4ksX7q Zw7JSWauCaGWnmyRiKZCvvs21tyj4po= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net