$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft File: xzON8bdowFB0za7Q_bGkwUrfuLU.mft (raw, json) Hash identifier: HyjyhpBGwi6+CgxeLT+Ggo133ulCJJA66gLOYAEo9s4= Subject key identifier: 4D:87:67:D6:EC:A0:F9:37:AD:3C:B4:FA:64:A6:32:A7:83:2D:6A:80 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft Manifest number: 0109 Signing time: Sun 27 Apr 2025 04:18:27 +0000 Manifest this update: Sun 27 Apr 2025 04:18:27 +0000 Manifest next update: Sun 04 May 2025 04:18:27 +0000 Files and hashes: 1: xzON8bdowFB0za7Q_bGkwUrfuLU.crl (hash: 1FzPs8D+X9v92hfgDo9YjhfgZ+kx2tW4XwrKm0ZQjZY=) 2: A2516E42DE4511EF8C37E320C4F9AE02.roa (hash: XfIHm/MhIPSh6jZecIK72twugLDWV563OBM4HVySVuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Apr 27 04:18:27 2025 GMT Not After : May 4 04:18:27 2025 GMT Subject: CN=680db013-ac6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:48:03:db:52:f1:6a:9a:ae:89:11:fa:ee:6a: f8:1c:46:15:b8:4d:24:9a:73:73:e8:2b:00:f8:2f: 79:46:7b:85:2d:87:c6:c5:ed:99:7b:4a:d4:a7:89: 33:e9:87:86:9d:7d:50:fe:ff:01:24:d8:14:1c:75: ca:9b:6b:d6:1c:3f:3c:8e:b4:75:21:7a:40:76:fd: 94:39:db:e5:81:05:85:f4:3a:3e:09:39:34:7e:0c: 66:50:77:ff:ca:e1:de:11:d1:96:71:28:74:eb:17: fc:d6:be:b9:44:7e:75:42:8f:75:50:26:43:4d:b5: 40:be:17:d5:a5:34:fb:13:1d:31:c1:53:e8:4a:a2: f5:e7:27:ad:db:aa:00:5b:8e:51:f2:29:ad:47:4f: 8f:de:09:3f:15:1e:92:fa:09:31:75:fb:be:d3:cb: 9a:76:c3:ad:90:4b:32:75:f8:3f:64:c1:ae:95:8c: de:a5:1e:32:03:cc:4d:98:42:64:ce:bf:9f:63:e3: b7:28:50:77:44:8f:a6:09:d6:55:eb:b2:5c:15:f5: 1d:fd:ce:da:c5:69:c7:88:ab:83:29:d9:d7:01:1b: 04:cf:c4:49:8b:da:b3:f0:68:f4:4a:16:9f:b8:44: 33:48:c4:81:f8:af:bc:00:39:70:35:3e:be:49:9d: f7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:87:67:D6:EC:A0:F9:37:AD:3C:B4:FA:64:A6:32:A7:83:2D:6A:80 X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:60:50:5f:63:93:6c:67:22:c0:65:d4:39:52:d6:34:37:ff: b0:61:9f:f2:80:25:e5:65:3d:7f:1e:83:a9:73:17:cc:4b:e8: 61:b1:40:4c:83:6c:dd:48:82:4d:e2:07:31:9a:d7:32:f4:96: e6:29:28:76:e6:36:57:4a:3b:63:8c:a8:9c:45:3c:29:16:3a: ca:82:c6:90:0d:03:4b:70:2c:0a:6d:44:01:6f:77:86:71:a7: dd:a0:f4:ee:c5:4e:8d:59:b3:97:be:da:cc:52:93:96:76:bb: fe:8c:6a:2c:c4:c7:42:a7:7c:bd:fd:3a:8d:17:ce:2a:bc:23: 07:ef:0a:f7:5a:f3:38:a9:4d:a3:40:f5:18:b4:91:08:1e:d8: 7e:13:8a:fb:f3:d2:46:da:08:e9:61:ed:fc:bf:c0:17:87:8a: da:9a:3f:d1:ba:e3:b9:f0:4d:ee:ca:88:b6:bf:83:c3:ee:e2: ec:73:00:ed:2c:ac:ef:52:02:a1:1a:a3:41:c8:e0:26:92:8b: 99:aa:4e:0b:70:c9:d5:e4:1d:30:ac:3f:11:01:02:0e:a1:d4: 03:14:ef:71:b3:14:01:c0:20:13:88:12:3a:12:2c:e3:96:6c: 13:f7:01:37:e6:7e:88:32:8b:8a:71:cf:13:6c:be:81:9e:e7: 18:20:09:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUwNDI3MDQxODI3WhcNMjUwNTA0MDQxODI3WjAYMRYwFAYD VQQDEw02ODBkYjAxMy1hYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUgD21LxapquiRH67mr4HEYVuE0kmnNz6CsA+C95RnuFLYfGxe2Ze0rUp4kz 6YeGnX1Q/v8BJNgUHHXKm2vWHD88jrR1IXpAdv2UOdvlgQWF9Do+CTk0fgxmUHf/ yuHeEdGWcSh06xf81r65RH51Qo91UCZDTbVAvhfVpTT7Ex0xwVPoSqL15yet26oA W45R8imtR0+P3gk/FR6S+gkxdfu+08uadsOtkEsydfg/ZMGulYzepR4yA8xNmEJk zr+fY+O3KFB3RI+mCdZV67JcFfUd/c7axWnHiKuDKdnXARsEz8RJi9qz8Gj0Shaf uEQzSMSB+K+8ADlwNT6+SZ33XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2HZ9bs oPk3rTy0+mSmMqeDLWqAMB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri80QUFCN0JDQUM0N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dG QjB6YTdRX2JHa3dVcmZ1TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2YFBfY5NsZyLAZdQ5UtY0N/+wYZ/ygCXlZT1/HoOpcxfMS+hhsUBM g2zdSIJN4gcxmtcy9JbmKSh25jZXSjtjjKicRTwpFjrKgsaQDQNLcCwKbUQBb3eG cafdoPTuxU6NWbOXvtrMUpOWdrv+jGosxMdCp3y9/TqNF84qvCMH7wr3WvM4qU2j QPUYtJEIHth+E4r789JG2gjpYe38v8AXh4ramj/RuuO58E3uyoi2v4PD7uLscwDt LKzvUgKhGqNByOAmkouZqk4LcMnV5B0wrD8RAQIOodQDFO9xsxQBwCATiBI6Eizj lmwT9wE35n6IMouKcc8TbL6BnucYIAln -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net