$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft File: Bjfls4xh34PrszAgk7tXbLMdmxA.mft (raw, json) Hash identifier: kPCm0jhlUlvc9ZYwSyKCsxbcIZtyfXBnU1Dk47PISpk= Subject key identifier: 5C:F4:D4:3F:03:16:C3:E4:D5:A5:10:5F:38:BD:A6:DC:34:DF:25:94 Authority key identifier: 06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 Certificate issuer: /CN=A91CE821/serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft Manifest number: 18F3 Signing time: Mon 28 Apr 2025 17:06:15 +0000 Manifest this update: Mon 28 Apr 2025 17:06:15 +0000 Manifest next update: Mon 05 May 2025 17:06:15 +0000 Files and hashes: 1: Bjfls4xh34PrszAgk7tXbLMdmxA.crl (hash: rjWIfFabWZUu1oqLEmiIC0xq21TtXS0WnPgowEkBL6M=) 2: 2A53DA54332011EF89CABD61C4F9AE02.roa (hash: Abd49G7RtVTlPSdb6DqyRQ+OwPahZC8Bp+0hv7urT30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821, serialNumber=0637E5B38C61DF83EBB3302093BB576CB31D9B10 Validity Not Before: Apr 28 17:06:15 2025 GMT Not After : May 5 17:06:15 2025 GMT Subject: CN=680fb587-0ae3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ce:c9:dd:d6:e5:a4:d5:ed:b6:b8:d0:54:d3: b5:c6:bb:b1:1d:1b:f4:ad:79:70:a5:6b:c8:f0:3d: 21:07:f2:6d:81:e4:f1:e6:87:bc:ee:67:08:09:64: 55:e4:67:89:5b:df:be:96:45:08:bf:e9:10:f0:38: cb:3e:e1:a5:f1:38:df:cc:9e:71:54:04:e2:d1:4d: 83:7f:bb:b9:ae:5a:98:b9:ca:da:fa:49:b3:5a:e0: 6f:19:c9:f2:e2:4c:48:29:cc:2a:eb:92:31:72:62: 70:83:a0:32:32:ae:1f:f3:77:ee:46:ca:b8:ee:3d: 86:85:44:76:e1:3c:dd:0c:29:90:f3:39:94:53:ae: 44:ab:a7:67:e5:38:3d:08:f4:fe:90:b7:fe:69:e4: 52:6d:c9:b6:67:81:d5:e6:1b:6c:83:09:56:4e:79: 47:4b:fe:96:02:5a:c9:eb:70:b7:1f:af:e4:46:d2: 98:f0:f8:a2:7b:1c:ca:f1:31:55:5b:2e:7d:2c:a8: 3d:1f:af:cd:8b:38:c5:ac:97:15:e6:cb:21:46:96: b8:39:f4:b7:17:24:b0:46:e3:78:8f:db:16:d4:53: 86:11:60:f4:5f:7a:60:44:43:43:09:52:bb:3d:f3: 19:e4:f0:14:6a:f1:a5:0b:30:7e:1e:31:0a:42:af: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F4:D4:3F:03:16:C3:E4:D5:A5:10:5F:38:BD:A6:DC:34:DF:25:94 X509v3 Authority Key Identifier: keyid:06:37:E5:B3:8C:61:DF:83:EB:B3:30:20:93:BB:57:6C:B3:1D:9B:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bjfls4xh34PrszAgk7tXbLMdmxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/Bjfls4xh34PrszAgk7tXbLMdmxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:c7:08:ee:61:7f:28:01:9e:2d:a3:88:f2:2f:41:94:64:ab: 8d:13:6d:17:37:48:87:ac:61:4c:8e:90:33:07:bb:78:b0:87: db:ed:b3:98:71:4e:95:55:a9:34:33:72:98:aa:3a:93:ac:e9: ab:26:37:62:82:48:50:3a:87:61:2a:26:e9:81:e0:99:48:b9: af:37:64:6d:80:23:8f:79:a6:15:78:60:e7:6f:70:c7:72:2f: 46:14:10:2b:c5:12:33:d7:ab:96:42:01:dd:6e:f6:a8:04:44: 31:b3:a9:49:6f:dc:90:b5:bb:b5:bf:db:f6:a2:cd:d7:ba:a8: c0:7a:a4:94:10:3e:cb:14:19:30:68:7e:4c:88:ef:07:c9:02: e3:a2:bc:2d:e5:87:4a:0f:b7:cf:70:4c:d0:17:b3:53:c8:85: 04:28:eb:ff:9d:23:bf:90:de:f4:2d:5c:1d:64:5e:fc:e5:74: 62:60:77:e8:8a:bf:ff:c1:d5:0a:58:a4:2f:43:72:06:3b:b3: 74:81:af:74:07:8f:9a:e9:6d:f4:59:9a:31:10:4e:17:06:48: 4a:8d:85:e0:82:59:a2:45:0c:27:3e:20:bd:b8:c5:8c:45:f6: b7:81:40:29:d5:ad:e4:45:b1:05:0f:cd:85:98:7b:3a:b8:1f: f8:18:20:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKDA2MzdFNUIzOEM2MURGODNFQkIzMzAyMDkzQkI1NzZD QjMxRDlCMTAwHhcNMjUwNDI4MTcwNjE1WhcNMjUwNTA1MTcwNjE1WjAYMRYwFAYD VQQDEw02ODBmYjU4Ny0wYWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4M7J3dblpNXttrjQVNO1xruxHRv0rXlwpWvI8D0hB/JtgeTx5oe87mcICWRV 5GeJW9++lkUIv+kQ8DjLPuGl8TjfzJ5xVATi0U2Df7u5rlqYucra+kmzWuBvGcny 4kxIKcwq65IxcmJwg6AyMq4f83fuRsq47j2GhUR24TzdDCmQ8zmUU65Eq6dn5Tg9 CPT+kLf+aeRSbcm2Z4HV5htsgwlWTnlHS/6WAlrJ63C3H6/kRtKY8PiiexzK8TFV Wy59LKg9H6/NizjFrJcV5sshRpa4OfS3FySwRuN4j9sW1FOGEWD0X3pgRENDCVK7 PfMZ5PAUavGlCzB+HjEKQq9fVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFz01D8D FsPk1aUQXzi9ptw03yWUMB8GA1UdIwQYMBaAFAY35bOMYd+D67MwIJO7V2yzHZsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi9CamZsczR4aDM0UHJzekFnazd0WGJMTWRt eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JqZmxzNHhoMzRQcnN6QWdrN3RYYkxNZG14QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgyMS84MTFGQjU5MDYwNTExMUU4OENEOEVDNDdDNEY5QUUwMi9CamZsczR4aDM0 UHJzekFnazd0WGJMTWRteEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5xwjuYX8oAZ4to4jyL0GUZKuNE20XN0iHrGFMjpAzB7t4sIfb7bOY cU6VVak0M3KYqjqTrOmrJjdigkhQOodhKibpgeCZSLmvN2RtgCOPeaYVeGDnb3DH ci9GFBArxRIz16uWQgHdbvaoBEQxs6lJb9yQtbu1v9v2os3XuqjAeqSUED7LFBkw aH5MiO8HyQLjorwt5YdKD7fPcEzQF7NTyIUEKOv/nSO/kN70LVwdZF785XRiYHfo ir//wdUKWKQvQ3IGO7N0ga90B4+a6W30WZoxEE4XBkhKjYXgglmiRQwnPiC9uMWM Rfa3gUAp1a3kRbEFD82FmHs6uB/4GCBC -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:59 2025 by rpki-client on console.sobornost.net