$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft File: lX5Qp1--UC844-2_P0qq5mWuFIs.mft (raw, json) Hash identifier: l2EnuH3eXhqXlDKUISVvQPHLeJ7NN3BdDnJ26zmQhes= Subject key identifier: 10:2B:E4:DE:D4:25:F1:C9:39:B8:B7:0D:71:2F:EF:A7:57:EA:2E:C8 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft Manifest number: 6D Signing time: Sun 27 Apr 2025 05:42:49 +0000 Manifest this update: Sun 27 Apr 2025 05:42:49 +0000 Manifest next update: Sun 04 May 2025 05:42:49 +0000 Files and hashes: 1: lX5Qp1--UC844-2_P0qq5mWuFIs.crl (hash: QM7NBG3sPgdLcy9UJp5Yxgg1MAMp7vzJavUoGs6XCNk=) 2: A0A9D60C807511EFAD8C4257C4F9AE02.roa (hash: QmeMLe3zHSz7gk9gq16CkmBIAgYCod6kVBmzDpdZxiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Apr 27 05:42:49 2025 GMT Not After : May 4 05:42:49 2025 GMT Subject: CN=680dc3d9-276d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:82:e0:6a:5c:e4:e5:42:83:64:62:62:c8:dd: 4f:2a:3b:10:b2:48:25:67:23:e6:d8:db:3c:dd:d8: 00:5a:55:18:34:93:76:b2:aa:bc:87:fa:bd:08:49: 74:33:10:eb:58:be:55:85:ce:cf:d1:21:df:ec:92: 0c:10:66:3a:1f:8f:be:3d:32:50:68:88:7c:bb:bc: 8a:53:89:bf:28:c1:d3:a3:23:7a:39:f9:e7:c1:af: 5b:b2:a1:38:80:48:fc:56:f0:8e:6f:9f:60:b1:f8: 22:7e:d1:10:b9:58:7b:3e:54:7f:fb:74:b3:21:1b: de:2e:60:3f:2d:1f:a2:cb:8a:ef:36:04:da:38:6a: d8:6a:fa:ec:3a:d0:1d:4f:2c:21:4e:eb:da:86:68: 3a:22:e6:12:73:69:1b:06:42:3d:d5:d5:77:87:a0: 94:9c:52:85:10:ba:2e:e8:be:48:59:8e:2c:02:80: 27:15:bd:32:13:e1:ab:75:09:dd:a7:82:34:d7:70: b7:cb:df:e5:6f:c7:6c:5e:95:a6:ab:d6:d2:7c:6c: 11:a8:27:9f:c2:87:ad:51:aa:83:88:62:bc:35:d8: 65:ce:1a:cc:68:c8:3b:53:c6:b6:54:6b:3b:e7:20: 8e:93:73:46:bb:0d:58:10:3b:b8:c7:ea:e2:e6:62: 91:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:2B:E4:DE:D4:25:F1:C9:39:B8:B7:0D:71:2F:EF:A7:57:EA:2E:C8 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:68:c9:fe:79:1b:f3:28:19:de:ca:58:2d:dc:94:b7:c9:c0: 62:8f:2d:1a:d6:eb:d1:9d:28:df:a6:35:a4:82:b9:aa:de:87: 64:60:62:77:04:9b:34:f9:08:6b:f4:93:c2:b7:50:d4:f2:f3: 29:34:b7:72:1f:e3:73:fa:18:6d:d3:a0:07:94:60:df:f1:b3: 21:41:4e:21:ba:cd:70:cc:9b:a4:f9:7e:80:4e:f0:15:32:2a: 96:74:a1:af:9c:84:0c:0b:19:65:57:ff:ff:35:0c:67:dc:28: c9:7d:d3:b5:45:4a:9c:4a:3d:d9:33:68:b8:54:60:1b:89:3c: 8c:40:be:45:cb:7a:aa:e5:b2:ac:0f:6b:b8:88:18:6b:1d:ee: a7:4b:f3:60:3e:19:88:c4:a7:cd:45:66:a8:8f:77:d0:c0:eb: 89:8a:c6:5d:ae:d8:e9:c4:1b:05:71:e5:0e:2d:6d:e3:cc:f0: b8:f6:c0:fd:15:5e:92:a6:a3:b2:77:6f:ba:a7:5f:0f:b0:41: 4d:39:e2:34:43:ba:fd:3e:9a:96:4b:c0:14:9a:ea:74:bb:f4: 0c:a7:dd:a0:f0:b8:32:45:28:41:5e:e0:5a:c5:04:33:57:fe: 7d:dd:4c:79:55:ae:54:86:fe:91:be:7c:4c:07:32:2d:ae:4c: ed:2d:21:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoOTU3RTUwQTc1RkJFNTAyRjM4RTNFREJGM0Y0QUFBRTY2 NUFFMTQ4QjAeFw0yNTA0MjcwNTQyNDlaFw0yNTA1MDQwNTQyNDlaMBgxFjAUBgNV BAMTDTY4MGRjM2Q5LTI3NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMguBqXOTlQoNkYmLI3U8qOxCySCVnI+bY2zzd2ABaVRg0k3ayqryH+r0ISXQz EOtYvlWFzs/RId/skgwQZjofj749MlBoiHy7vIpTib8owdOjI3o5+efBr1uyoTiA SPxW8I5vn2Cx+CJ+0RC5WHs+VH/7dLMhG94uYD8tH6LLiu82BNo4athq+uw60B1P LCFO69qGaDoi5hJzaRsGQj3V1XeHoJScUoUQui7ovkhZjiwCgCcVvTIT4at1Cd2n gjTXcLfL3+Vvx2xelaar1tJ8bBGoJ5/Ch61RqoOIYrw12GXOGsxoyDtTxrZUazvn II6Tc0a7DVgQO7jH6uLmYpH1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUECvk3tQl 8ck5uLcNcS/vp1fqLsgwHwYDVR0jBBgwFoAUlX5Qp1++UC844+2/P0qq5mWuFIsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzRFNkNCNEY2ODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJ cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFg1UXAxLS1VQzg0NC0yX1AwcXE1bVd1RklzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzRFNkNCNEY2ODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2xYNVFwMS0tVUM4 NDQtMl9QMHFxNW1XdUZJcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABFoyf55G/MoGd7KWC3clLfJwGKPLRrW69GdKN+mNaSCuareh2RgYncE mzT5CGv0k8K3UNTy8yk0t3If43P6GG3ToAeUYN/xsyFBTiG6zXDMm6T5foBO8BUy KpZ0oa+chAwLGWVX//81DGfcKMl907VFSpxKPdkzaLhUYBuJPIxAvkXLeqrlsqwP a7iIGGsd7qdL82A+GYjEp81FZqiPd9DA64mKxl2u2OnEGwVx5Q4tbePM8Lj2wP0V XpKmo7J3b7qnXw+wQU054jRDuv0+mpZLwBSa6nS79Ayn3aDwuDJFKEFe4FrFBDNX /n3dTHlVrlSG/pG+fEwHMi2uTO0tIXY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:56 2025 by rpki-client on console.sobornost.net