$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft File: 4z23k7vv5Gy8912zTnCUJ6cu8PM.mft (raw, json) Hash identifier: cWHck9eVlIOT+sDcXayS+P1peoKCrdQoS90/+vfL2Ig= Subject key identifier: C2:64:3A:C1:51:DE:F5:84:57:77:05:91:5B:14:0B:A1:63:FC:94:FB Authority key identifier: E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 Certificate issuer: /CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft Manifest number: 01B9 Signing time: Fri 25 Apr 2025 02:16:54 +0000 Manifest this update: Fri 25 Apr 2025 02:16:53 +0000 Manifest next update: Fri 02 May 2025 02:16:53 +0000 Files and hashes: 1: 4z23k7vv5Gy8912zTnCUJ6cu8PM.crl (hash: T3kjd3+mDFQFgU8r09wW6Bun5tekAOQE/rSEbBr8F+E=) 2: 81D5DEE47F5D11EDB4309B54C4F9AE02.roa (hash: zRdos/o+mb+OSdMpMggoSh17MEeYkJt0eDW/UfdGZq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7F6A, serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Validity Not Before: Apr 25 02:16:53 2025 GMT Not After : May 2 02:16:53 2025 GMT Subject: CN=680af096-ff93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:27:e4:b7:fb:84:bd:89:c7:29:07:02:64:01: d4:89:a5:51:18:de:96:82:79:3e:dc:85:2e:82:bf: 17:ae:a7:73:f1:e2:5d:fa:f3:f0:5d:88:fa:71:3c: 60:14:14:47:a9:c4:4d:ad:1a:be:ad:e3:43:79:01: 4c:ed:5d:0b:10:55:7b:e8:f2:78:8e:07:64:fa:24: 4d:94:1c:67:aa:52:89:e7:77:87:be:9f:b5:c8:69: 2d:59:7e:34:49:47:21:b1:bb:10:5a:33:3f:cb:97: 37:22:0e:3b:d7:e3:d5:8d:d7:10:f9:28:4f:cd:fa: b7:29:ad:13:66:98:e0:e4:b7:e6:2e:63:29:37:e9: ec:08:64:b5:bb:a7:78:9a:9d:28:db:b8:6f:cb:68: 12:eb:cb:92:02:3d:3e:50:73:bd:c7:c1:05:bb:7d: 8a:4a:72:11:6f:36:e8:3a:6e:bd:76:fb:e7:59:27: 56:93:4e:7a:1a:7e:68:66:66:24:b2:34:6a:24:43: 11:2a:c8:1c:27:35:e2:3e:ad:7f:04:8a:ba:76:f6: 88:0a:7b:1d:43:2b:10:bc:f8:07:e4:ca:78:73:2f: 87:3e:e2:3f:ce:3f:f3:d8:d2:62:cd:9f:fe:04:44: 35:ac:3c:a6:c8:cd:cb:51:73:4c:55:a5:af:5b:ef: 3c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:64:3A:C1:51:DE:F5:84:57:77:05:91:5B:14:0B:A1:63:FC:94:FB X509v3 Authority Key Identifier: keyid:E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4b:05:09:d8:d9:8e:25:24:70:af:ab:7e:77:cf:2c:d0:92: 24:90:b2:9a:d4:43:fa:cf:17:90:b8:e9:79:f4:51:0f:77:31: 0a:0c:a5:b8:e4:bf:68:43:e0:50:5c:09:57:8e:ac:81:85:3e: 71:37:ec:c7:ab:f8:5d:3f:93:a5:0b:29:3f:c3:86:d8:ed:9b: b1:4a:93:92:49:d7:d5:1b:2d:70:c0:b7:58:54:e3:5e:8c:a0: 4c:ce:0d:2f:b4:9c:41:23:27:e6:2d:e1:92:c5:f5:f2:dd:40: b4:34:8e:01:2e:95:63:06:67:eb:b6:80:d7:37:7d:fd:79:fd: 7b:1f:11:9c:ef:ba:dc:2d:9e:34:87:45:45:5c:6c:3e:38:1a: 6c:29:f6:61:66:f0:d1:a1:68:d1:07:09:fc:c4:22:28:61:d0: 6e:4a:ac:db:c9:a1:81:c8:f8:93:23:68:ae:52:9f:79:93:9e: 2b:83:25:6c:19:47:2e:27:5b:96:e7:a1:cb:a3:07:fa:d6:73: 48:1f:8c:7a:94:20:5d:73:bc:07:aa:f1:37:b9:1c:f2:57:5c: 5f:2c:87:d6:14:01:04:83:bd:61:f5:a0:2c:c0:69:f6:09:15: 96:d7:f9:57:78:c7:9f:1e:96:6c:2e:8c:c8:fd:ad:50:55:dc: 5e:b9:e5:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdGNkExMTAvBgNVBAUTKEUzM0RCNzkzQkJFRkU0NkNCQ0Y3NURCMzRFNzA5NDI3 QTcyRUYwRjMwHhcNMjUwNDI1MDIxNjUzWhcNMjUwNTAyMDIxNjUzWjAYMRYwFAYD VQQDEw02ODBhZjA5Ni1mZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArifkt/uEvYnHKQcCZAHUiaVRGN6Wgnk+3IUugr8Xrqdz8eJd+vPwXYj6cTxg FBRHqcRNrRq+reNDeQFM7V0LEFV76PJ4jgdk+iRNlBxnqlKJ53eHvp+1yGktWX40 SUchsbsQWjM/y5c3Ig471+PVjdcQ+ShPzfq3Ka0TZpjg5LfmLmMpN+nsCGS1u6d4 mp0o27hvy2gS68uSAj0+UHO9x8EFu32KSnIRbzboOm69dvvnWSdWk056Gn5oZmYk sjRqJEMRKsgcJzXiPq1/BIq6dvaICnsdQysQvPgH5Mp4cy+HPuI/zj/z2NJizZ/+ BEQ1rDymyM3LUXNMVaWvW+88VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJkOsFR 3vWEV3cFkVsUC6Fj/JT7MB8GA1UdIwQYMBaAFOM9t5O77+RsvPdds05wlCenLvDz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0Y2QS8wNjc5MjUwMDdG NDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVHeTg5MTJ6VG5DVUo2Y3U4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzR6MjNrN3Z2NUd5ODkxMnpUbkNVSjZjdThQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0Y2QS8wNjc5MjUwMDdGNDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVH eTg5MTJ6VG5DVUo2Y3U4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+SwUJ2NmOJSRwr6t+d88s0JIkkLKa1EP6zxeQuOl59FEPdzEKDKW4 5L9oQ+BQXAlXjqyBhT5xN+zHq/hdP5OlCyk/w4bY7ZuxSpOSSdfVGy1wwLdYVONe jKBMzg0vtJxBIyfmLeGSxfXy3UC0NI4BLpVjBmfrtoDXN339ef17HxGc77rcLZ40 h0VFXGw+OBpsKfZhZvDRoWjRBwn8xCIoYdBuSqzbyaGByPiTI2iuUp95k54rgyVs GUcuJ1uW56HLowf61nNIH4x6lCBdc7wHqvE3uRzyV1xfLIfWFAEEg71h9aAswGn2 CRWW1/lXeMefHpZsLozI/a1QVdxeueVu -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:09 2025 by rpki-client on console.sobornost.net