$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft File: Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft (raw, json) Hash identifier: Ukvr1lY1Z8AqftSU7QlebN/E9g9tLDuBtYTeWlWrZWc= Subject key identifier: B8:EE:BD:BB:74:A8:5E:0E:7B:9D:03:95:3A:01:F0:F9:1A:42:33:8E Authority key identifier: 2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 Certificate issuer: /CN=A91CDF83/serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Certificate serial: 02B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft Manifest number: 02B3 Signing time: Sun 27 Apr 2025 01:06:20 +0000 Manifest this update: Sun 27 Apr 2025 01:06:19 +0000 Manifest next update: Sun 04 May 2025 01:06:19 +0000 Files and hashes: 1: Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl (hash: 5okeLT9d2SnYFuEJkk+LMAGTNAbLFS64+UUMcYWPQb0=) 2: A8A44B84F13511ECB096F867C4F9AE02.roa (hash: lNppuM2/IdxAAhctCe7rRBT4xZtGXRvN8aRrKBnWfmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDF83, serialNumber=2EF876A664E5D8B6CDE01CF08410DBAD96BC4998 Validity Not Before: Apr 27 01:06:19 2025 GMT Not After : May 4 01:06:19 2025 GMT Subject: CN=680d830b-160f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:79:be:f1:6e:76:6a:29:d3:43:bf:8a:9d: c2:47:a9:79:7e:7e:47:7d:be:b6:e2:f2:99:7f:fc: 76:44:dd:c4:52:2f:74:6d:28:02:6f:60:89:7e:47: 56:59:b5:df:2e:e2:9e:b5:49:97:ee:63:12:f8:28: 97:da:22:9b:ac:7e:41:c7:f3:61:82:af:03:67:8d: 58:35:14:c3:75:a0:c4:53:cf:e5:41:0c:3b:4d:b5: 15:47:16:cc:fd:93:aa:20:7f:07:ac:1f:75:53:42: 2a:1f:80:87:a5:2c:0f:fc:52:d8:47:23:e4:7c:8a: 6d:88:dd:3a:ca:1b:7c:77:6f:e5:aa:37:c9:78:f5: 39:43:3d:ff:ba:95:3b:a9:f0:12:33:0a:34:fc:93: 13:83:98:20:8c:00:99:db:16:84:22:8e:00:72:57: 9f:95:21:a5:d3:99:e3:f8:b9:7d:45:d7:cb:d1:66: 40:ad:ed:1e:99:fa:2a:4c:42:e9:1c:f0:e2:08:b0: ea:4d:73:72:d5:fd:52:ba:50:f0:f3:b7:67:1e:7a: 82:98:1e:d1:2b:5d:e9:7f:05:25:e1:78:cf:0c:46: e5:1d:67:ab:b6:48:dd:89:36:e1:39:e2:14:f9:0e: 11:de:f4:3e:9b:e8:38:01:72:bc:fb:ea:58:ee:41: f4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EE:BD:BB:74:A8:5E:0E:7B:9D:03:95:3A:01:F0:F9:1A:42:33:8E X509v3 Authority Key Identifier: keyid:2E:F8:76:A6:64:E5:D8:B6:CD:E0:1C:F0:84:10:DB:AD:96:BC:49:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDF83/E2AE3B0AF13011EC86DE7D63C4F9AE02/Lvh2pmTl2LbN4BzwhBDbrZa8SZg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c0:2f:52:9f:84:30:61:19:58:95:6d:10:3b:a6:be:74:c1: a0:24:47:de:25:3f:4d:4a:65:b4:cf:f6:70:b2:06:72:62:71: 61:47:62:4e:1b:0f:47:ae:3f:7f:90:6f:ec:08:ef:ce:1c:e0: 2b:74:c8:fc:de:ed:7c:a5:77:d4:82:17:fb:e7:be:0c:18:69: 9e:70:d4:c6:52:ac:28:7b:a2:34:4c:22:8b:0f:54:8f:9d:d2: a6:8a:6d:1d:b5:bf:5e:d2:cd:ec:ac:e3:9c:82:7a:92:46:c7: 47:51:d7:18:54:28:10:8e:3d:3b:fc:48:1f:24:07:7a:14:d3: 48:bb:be:b5:99:16:73:9e:9b:96:ef:9f:86:53:60:69:9e:9a: 8e:1a:19:35:c5:1b:c5:03:ff:46:53:1f:0f:cf:a6:a7:19:5f: 90:e5:a3:17:69:3e:8c:0a:ba:23:cf:b5:f3:5a:ea:43:1b:ef: 97:88:78:3a:71:fb:70:de:1c:aa:15:d9:6f:4e:b9:9e:29:74: 6c:c9:07:4e:30:73:e0:cf:b3:24:e1:e9:b7:13:51:29:00:46: 5f:7f:b5:06:c0:75:02:79:35:a3:3a:e7:97:17:e3:42:28:50: ab:ed:c9:4b:47:e8:97:d5:e9:05:74:ce:57:0a:17:74:77:b5: 36:c1:2a:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RGODMxMTAvBgNVBAUTKDJFRjg3NkE2NjRFNUQ4QjZDREUwMUNGMDg0MTBEQkFE OTZCQzQ5OTgwHhcNMjUwNDI3MDEwNjE5WhcNMjUwNTA0MDEwNjE5WjAYMRYwFAYD VQQDEw02ODBkODMwYi0xNjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTl5vvFudmop00O/ip3CR6l5fn5Hfb624vKZf/x2RN3EUi90bSgCb2CJfkdW WbXfLuKetUmX7mMS+CiX2iKbrH5Bx/Nhgq8DZ41YNRTDdaDEU8/lQQw7TbUVRxbM /ZOqIH8HrB91U0IqH4CHpSwP/FLYRyPkfIptiN06yht8d2/lqjfJePU5Qz3/upU7 qfASMwo0/JMTg5ggjACZ2xaEIo4AcleflSGl05nj+Ll9RdfL0WZAre0emfoqTELp HPDiCLDqTXNy1f1SulDw87dnHnqCmB7RK13pfwUl4XjPDEblHWertkjdiTbhOeIU +Q4R3vQ+m+g4AXK8++pY7kH0LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjuvbt0 qF4Oe50DlToB8PkaQjOOMB8GA1UdIwQYMBaAFC74dqZk5di2zeAc8IQQ262WvEmY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREY4My9FMkFFM0IwQUYx MzAxMUVDODZERTdENjNDNEY5QUUwMi9MdmgycG1UbDJMYk40Qnp3aEJEYnJaYThT WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x2aDJwbVRsMkxiTjRCendoQkRiclphOFNaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD REY4My9FMkFFM0IwQUYxMzAxMUVDODZERTdENjNDNEY5QUUwMi9MdmgycG1UbDJM Yk40Qnp3aEJEYnJaYThTWmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6wC9Sn4QwYRlYlW0QO6a+dMGgJEfeJT9NSmW0z/ZwsgZyYnFhR2JO Gw9Hrj9/kG/sCO/OHOArdMj83u18pXfUghf7574MGGmecNTGUqwoe6I0TCKLD1SP ndKmim0dtb9e0s3srOOcgnqSRsdHUdcYVCgQjj07/EgfJAd6FNNIu761mRZznpuW 75+GU2BpnpqOGhk1xRvFA/9GUx8Pz6anGV+Q5aMXaT6MCrojz7XzWupDG++XiHg6 cftw3hyqFdlvTrmeKXRsyQdOMHPgz7Mk4em3E1EpAEZff7UGwHUCeTWjOueXF+NC KFCr7clLR+iX1ekFdM5XChd0d7U2wSp7 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net