$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: fZ9O/+cCAu99ImRGBW4P01mWxSe7w949YIutAG0b70k= Subject key identifier: 82:59:E9:27:C3:DD:FB:79:8A:D3:FE:A9:89:C3:63:E9:82:93:4E:21 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0F7C Signing time: Mon 28 Apr 2025 18:05:11 +0000 Manifest this update: Mon 28 Apr 2025 18:05:11 +0000 Manifest next update: Mon 05 May 2025 18:05:11 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: E/BJHisO6IDMLGz/XEDroEy0b7OhuUULxDyqrl6pEuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3592 (0xe08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Apr 28 18:05:11 2025 GMT Not After : May 5 18:05:11 2025 GMT Subject: CN=680fc357-b152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:95:f4:d8:22:75:27:98:e5:d2:a2:04:43:05: 08:4b:6a:cb:f4:34:41:dd:78:f9:d9:af:22:37:18: 4a:b2:86:72:e0:2a:f1:96:ac:3e:b7:20:c1:0c:b0: b4:b5:20:62:8d:85:26:99:3e:1f:f5:bb:44:ec:f1: 9b:7d:d5:2e:b0:a9:fa:ad:7d:24:bd:da:c2:2c:c7: cf:8b:2f:3a:04:14:90:9c:61:a6:cb:a8:ac:e5:f9: a7:45:a2:96:38:45:2f:15:c3:17:d8:ff:ac:2a:67: 43:35:0d:c1:e3:1a:8f:81:a4:ed:54:b8:3a:2e:b4: 11:2c:33:4a:c6:c7:d8:ab:3e:d0:ea:b6:30:52:1d: 21:e8:80:e3:14:56:05:d0:be:21:58:3d:9a:a8:5f: f7:32:e0:ef:15:42:a8:f6:9d:1e:95:96:73:75:1c: 2a:3b:ff:ea:5b:79:ff:d7:d4:54:59:a6:3b:4b:4d: 64:b2:fe:4d:19:7f:4a:cf:4b:d1:94:4c:c2:51:b2: b8:fd:c9:e1:67:47:24:87:9a:55:6e:2a:0e:4c:86: e6:5f:e7:fb:57:36:7d:3e:ee:88:b1:c3:0c:44:3f: b9:26:e9:0e:fd:4e:bd:e0:ce:cb:dc:19:5c:c7:89: c0:d7:6a:7c:cc:55:cf:74:c5:3f:63:7a:88:3c:53: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:59:E9:27:C3:DD:FB:79:8A:D3:FE:A9:89:C3:63:E9:82:93:4E:21 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:cb:3c:89:ed:9d:ca:ab:7c:36:44:1e:00:1b:f8:f1:ec:06: 1f:e5:4b:c7:c3:2a:85:28:2d:82:7e:54:28:ef:40:cf:bf:78: 0a:b2:eb:cc:7c:a7:7e:7b:e1:28:87:92:72:87:cc:fa:82:f7: 68:01:b0:f9:54:bf:fe:75:21:18:4f:6f:18:16:e0:15:22:6e: d1:9c:ad:6f:17:76:25:f4:bb:54:7f:ea:46:b4:19:f9:46:0d: ca:b6:fa:95:ea:cc:f6:df:56:20:c0:dc:40:0a:89:3b:2c:fa: 41:9b:7d:45:34:4d:5e:84:e4:0a:b1:0a:f2:5a:99:3b:c0:67: 07:45:c4:a6:e7:13:79:f9:9d:d6:0a:18:2c:52:70:d2:c5:27: 0a:4d:05:c1:66:a0:2e:9f:2b:03:ae:43:6a:42:cf:6e:bc:3e: 0c:ae:98:b5:a7:97:53:46:21:2b:ff:92:22:e6:1c:a2:bf:55: a1:f5:8d:52:b5:c5:b6:ba:d2:ea:45:17:b6:a2:bc:d6:9a:0c: ca:17:c4:f2:4a:2c:07:de:49:b3:d3:12:a0:e2:01:af:3e:db: 6d:90:e2:38:43:5c:df:e5:e9:35:41:04:4f:ae:a0:c8:79:ad: c5:0a:0a:33:2e:52:2a:20:5c:ea:9d:b9:2b:6e:a2:4b:41:2a: 0a:04:c3:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwNDI4MTgwNTExWhcNMjUwNTA1MTgwNTExWjAYMRYwFAYD VQQDEw02ODBmYzM1Ny1iMTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pX02CJ1J5jl0qIEQwUIS2rL9DRB3Xj52a8iNxhKsoZy4Crxlqw+tyDBDLC0 tSBijYUmmT4f9btE7PGbfdUusKn6rX0kvdrCLMfPiy86BBSQnGGmy6is5fmnRaKW OEUvFcMX2P+sKmdDNQ3B4xqPgaTtVLg6LrQRLDNKxsfYqz7Q6rYwUh0h6IDjFFYF 0L4hWD2aqF/3MuDvFUKo9p0elZZzdRwqO//qW3n/19RUWaY7S01ksv5NGX9Kz0vR lEzCUbK4/cnhZ0ckh5pVbioOTIbmX+f7VzZ9Pu6IscMMRD+5JukO/U694M7L3Blc x4nA12p8zFXPdMU/Y3qIPFOk6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJZ6SfD 3ft5itP+qYnDY+mCk04hMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEyzyJ7Z3Kq3w2RB4AG/jx7AYf5UvHwyqFKC2CflQo70DPv3gKsuvM fKd+e+Eoh5Jyh8z6gvdoAbD5VL/+dSEYT28YFuAVIm7RnK1vF3Yl9LtUf+pGtBn5 Rg3KtvqV6sz231YgwNxACok7LPpBm31FNE1ehOQKsQryWpk7wGcHRcSm5xN5+Z3W ChgsUnDSxScKTQXBZqAunysDrkNqQs9uvD4Mrpi1p5dTRiEr/5Ii5hyiv1Wh9Y1S tcW2utLqRRe2orzWmgzKF8TySiwH3kmz0xKg4gGvPtttkOI4Q1zf5ek1QQRPrqDI ea3FCgozLlIqIFzqnbkrbqJLQSoKBMMK -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:58 2025 by rpki-client on console.sobornost.net