$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: qzi3+tlZq7HlEfdllh7izulZjDFuQa/OVWhSbWkP54E= Subject key identifier: 4B:45:B6:FE:84:39:A0:0D:86:46:33:63:F3:FB:77:4F:4B:16:B9:75 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 0648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 0643 Signing time: Sat 26 Apr 2025 22:13:07 +0000 Manifest this update: Sat 26 Apr 2025 22:13:07 +0000 Manifest next update: Sat 03 May 2025 22:13:07 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: q1Nmb1LP6I59o95bD6BcgaIQhEHV9EfdGa5/EunXpzc=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: y7fGqG2zMTlsWUgwcSbG/aCOa1G0W3pseNmyoJID29o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF, serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Apr 26 22:13:07 2025 GMT Not After : May 3 22:13:07 2025 GMT Subject: CN=680d5a73-2e72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:a4:8c:7d:00:90:84:c1:05:76:35:a5:89: a7:c4:1e:cc:7f:7f:18:75:17:9a:aa:bb:0b:70:06: a6:28:e4:2c:7c:7b:53:6f:4e:f5:18:ba:3b:ca:c7: b2:b6:65:84:f6:a3:4c:6a:ba:b9:60:ba:58:f7:86: de:18:e1:47:13:62:c7:dc:84:07:a7:44:a3:6d:df: 65:73:8a:87:c0:c5:85:b3:79:1d:a5:c0:06:5b:6c: 02:66:e3:f6:20:e1:5c:ce:6f:11:50:d5:f3:65:c9: 40:6c:f0:ee:30:4d:93:4e:60:ee:f1:66:b3:7e:ba: ff:4a:c0:89:c3:a7:94:24:a1:e8:66:93:86:76:bd: 2e:ff:5f:56:1a:dc:22:89:0e:05:bd:8d:c3:7d:ea: 7f:22:46:ae:26:52:6b:83:e0:0b:31:d4:f2:54:6a: 67:e8:ed:6e:de:89:73:e6:fb:53:60:cb:af:f8:8a: c1:01:91:19:7b:81:22:3f:be:c0:24:39:c3:92:ce: ac:a7:17:7a:81:50:f2:5f:51:35:29:15:96:0f:2e: 41:83:e0:ae:b0:37:de:bb:3b:dc:25:31:55:04:a6: 80:4a:a3:f5:71:44:d5:10:c9:82:dc:93:7c:49:c2: 29:6d:08:2a:36:f7:88:37:a4:b5:07:17:87:2c:89: 7e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:45:B6:FE:84:39:A0:0D:86:46:33:63:F3:FB:77:4F:4B:16:B9:75 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:cc:24:95:d2:f5:2b:09:de:bb:14:d3:11:09:ef:7e:57:30: 7f:49:04:3d:92:65:c6:ad:fa:96:a1:85:ff:fd:0a:45:b2:fc: ce:db:e9:7c:24:ea:81:98:af:24:ce:5b:29:ee:10:05:5c:26: 14:7e:43:a1:49:f2:1c:75:ce:6b:b4:0e:ae:cf:cf:f9:a4:fc: 1e:a3:9b:25:98:23:72:80:c5:eb:1b:8b:da:9e:11:7f:fe:fc: 45:39:29:c1:d3:8e:2c:bc:76:2b:1a:2b:ef:94:49:f2:c5:42: b5:0a:c8:9a:be:73:35:dd:da:67:d0:d8:0f:12:58:77:89:2b: 1d:29:50:1c:67:70:8c:4a:2f:ce:2d:a4:9c:16:c4:93:2f:15: d9:89:d8:e2:ca:f8:19:c3:fe:a5:2e:95:ac:ed:0a:89:0a:10: 4c:85:42:9f:41:b1:97:2b:cf:36:51:b1:fc:60:9f:15:2f:57: 9a:8a:36:25:a8:3d:bd:0b:95:13:f9:51:e2:72:50:27:ab:9c: 6e:ac:eb:f3:89:02:9e:a2:0c:8e:f9:2f:9c:14:5a:eb:0f:e6: 32:0e:6c:79:72:ba:d0:f8:e1:17:e7:d9:7d:21:fd:bc:cc:b8: c4:03:1e:83:25:40:73:da:27:38:68:14:1a:2a:e8:98:58:5e: 78:a9:88:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjUwNDI2MjIxMzA3WhcNMjUwNTAzMjIxMzA3WjAYMRYwFAYD VQQDEw02ODBkNWE3My0yZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZekjH0AkITBBXY1pYmnxB7Mf38YdReaqrsLcAamKOQsfHtTb071GLo7ysey tmWE9qNMarq5YLpY94beGOFHE2LH3IQHp0Sjbd9lc4qHwMWFs3kdpcAGW2wCZuP2 IOFczm8RUNXzZclAbPDuME2TTmDu8Wazfrr/SsCJw6eUJKHoZpOGdr0u/19WGtwi iQ4FvY3Dfep/IkauJlJrg+ALMdTyVGpn6O1u3olz5vtTYMuv+IrBAZEZe4EiP77A JDnDks6spxd6gVDyX1E1KRWWDy5Bg+CusDfeuzvcJTFVBKaASqP1cUTVEMmC3JN8 ScIpbQgqNveIN6S1BxeHLIl+XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtFtv6E OaANhkYzY/P7d09LFrl1MB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFzCSV0vUrCd67FNMRCe9+VzB/SQQ9kmXGrfqWoYX//QpFsvzO2+l8 JOqBmK8kzlsp7hAFXCYUfkOhSfIcdc5rtA6uz8/5pPweo5slmCNygMXrG4vanhF/ /vxFOSnB044svHYrGivvlEnyxUK1CsiavnM13dpn0NgPElh3iSsdKVAcZ3CMSi/O LaScFsSTLxXZidjiyvgZw/6lLpWs7QqJChBMhUKfQbGXK882UbH8YJ8VL1eaijYl qD29C5UT+VHiclAnq5xurOvziQKeogyO+S+cFFrrD+YyDmx5crrQ+OEX59l9If28 zLjEAx6DJUBz2ic4aBQaKuiYWF54qYgl -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:12 2025 by rpki-client on console.sobornost.net