$ rpki-client -vvf rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.mft File: cx4n4S-z2wtszAsg8YaAm6CNCRU.mft (raw, json) Hash identifier: H+Pm+g6sIMnsVJm8YI//vo7FkQCxrtvvp2YpjKbsaq0= Subject key identifier: 82:A6:D7:16:84:2F:7A:91:BE:30:AE:99:79:9E:D6:CC:01:54:A8:5D Authority key identifier: 73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15 Certificate issuer: /CN=A91D58EC/serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915 Certificate serial: 0EED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.mft Manifest number: 0EDE Signing time: Mon 28 Apr 2025 17:54:37 +0000 Manifest this update: Mon 28 Apr 2025 17:54:36 +0000 Manifest next update: Mon 05 May 2025 17:54:36 +0000 Files and hashes: 1: cx4n4S-z2wtszAsg8YaAm6CNCRU.crl (hash: FzkMvaXe0CdkAKu/5cK5f1yXZ8MbPY6N68q/XXNJ0IA=) 2: 76C782CC836811E9B8830935C4F9AE02.roa (hash: S6BUVTLFR5ykemKBBu8dE6BaxtUQEDDw3K/csPghGJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:54:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3821 (0xeed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D58EC, serialNumber=731E27E12FB3DB0B6CCC0B20F186809BA08D0915 Validity Not Before: Apr 28 17:54:36 2025 GMT Not After : May 5 17:54:36 2025 GMT Subject: CN=680fc0dd-d3d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:08:57:98:02:8c:66:68:aa:eb:a2:9d:38:17: c7:dd:15:b6:2f:e0:44:64:c8:37:e8:99:a4:0b:55: cf:54:b0:0c:bc:8c:77:20:88:62:0a:e8:5a:05:72: 71:af:21:41:8f:59:cf:4e:94:8f:7a:24:da:8c:77: 6b:1c:78:c2:ec:f7:06:3b:2d:ff:e6:82:6c:31:a0: 77:02:1b:a5:54:f4:ff:93:87:c5:6d:23:e0:3d:2b: 99:a1:0c:bc:5d:80:a0:a4:63:04:da:b9:2b:ba:e8: 62:dd:48:30:91:53:1e:b6:3c:ec:38:68:28:10:b6: b5:db:84:2b:59:2a:02:de:fa:3e:29:af:55:26:ae: 59:f3:31:01:97:77:4d:f4:11:0f:19:f2:ee:e9:c1: e7:28:0d:f5:0f:73:4f:60:13:4b:9a:04:c6:4f:b1: 27:b4:6b:3c:b6:f6:05:f7:d6:62:d8:28:b8:16:2a: c1:82:d4:c3:75:5c:f6:3f:cc:e5:4b:9a:69:5b:a1: 14:3c:3c:49:b7:05:0e:5c:ab:0e:4f:42:92:bb:78: da:20:24:53:ed:9f:50:f7:8c:87:f6:95:9d:27:32: 6b:01:99:3b:4d:91:80:bc:d7:75:13:04:b1:9a:47: 15:a2:6e:68:07:af:ae:7a:9d:e0:99:21:94:14:bb: 56:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A6:D7:16:84:2F:7A:91:BE:30:AE:99:79:9E:D6:CC:01:54:A8:5D X509v3 Authority Key Identifier: keyid:73:1E:27:E1:2F:B3:DB:0B:6C:CC:0B:20:F1:86:80:9B:A0:8D:09:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx4n4S-z2wtszAsg8YaAm6CNCRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D58EC/AF50A0E8836711E984437734C4F9AE02/cx4n4S-z2wtszAsg8YaAm6CNCRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:b8:50:b1:ba:dd:72:b3:1c:9d:bf:6c:cf:5b:59:77:72:f8: a6:53:67:0d:28:df:a0:e1:93:00:81:d5:4e:61:37:59:33:e2: 80:c6:a4:e3:54:44:d6:80:9e:3b:85:fe:86:da:bf:23:6a:90: 61:e5:8c:7d:7b:75:d6:0b:e2:e9:56:10:e8:03:14:6e:fb:7c: bc:29:1b:1f:2b:78:fd:bf:cf:fe:f2:00:bb:b6:56:ed:d7:28: 0f:9e:7e:99:ac:59:41:31:d5:d3:fb:4c:20:fb:43:9b:b7:f7: 99:c1:30:a5:4a:16:b1:5a:ba:54:fd:a1:29:13:72:b2:54:c8: 71:9c:2d:33:66:eb:82:97:50:52:44:dc:2a:03:c1:5e:1b:2a: ba:5e:51:74:f0:1b:e5:53:1b:e0:03:a2:29:5d:df:4e:c9:bf: 89:92:e7:cc:46:61:50:d1:ee:f1:17:13:c1:00:7a:17:24:f5: c2:89:58:f6:fc:c8:54:8d:ec:61:62:cf:aa:51:34:51:e3:ab: f1:6e:00:e9:fd:26:a5:1f:18:ac:36:36:5f:f6:0b:87:6f:c4: 21:1d:3e:f8:bf:20:ed:e1:4c:fa:5e:a6:cc:e5:0c:3c:53:40: 9e:1c:89:95:e1:71:16:27:f0:d6:e7:08:33:a8:65:a6:77:c1: 92:b0:62:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU4RUMxMTAvBgNVBAUTKDczMUUyN0UxMkZCM0RCMEI2Q0NDMEIyMEYxODY4MDlC QTA4RDA5MTUwHhcNMjUwNDI4MTc1NDM2WhcNMjUwNTA1MTc1NDM2WjAYMRYwFAYD VQQDEw02ODBmYzBkZC1kM2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAhXmAKMZmiq66KdOBfH3RW2L+BEZMg36JmkC1XPVLAMvIx3IIhiCuhaBXJx ryFBj1nPTpSPeiTajHdrHHjC7PcGOy3/5oJsMaB3AhulVPT/k4fFbSPgPSuZoQy8 XYCgpGME2rkruuhi3UgwkVMetjzsOGgoELa124QrWSoC3vo+Ka9VJq5Z8zEBl3dN 9BEPGfLu6cHnKA31D3NPYBNLmgTGT7EntGs8tvYF99Zi2Ci4FirBgtTDdVz2P8zl S5ppW6EUPDxJtwUOXKsOT0KSu3jaICRT7Z9Q94yH9pWdJzJrAZk7TZGAvNd1EwSx mkcVom5oB6+uep3gmSGUFLtWrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKm1xaE L3qRvjCumXme1swBVKhdMB8GA1UdIwQYMBaAFHMeJ+Evs9sLbMwLIPGGgJugjQkV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENThFQy9BRjUwQTBFODgz NjcxMUU5ODQ0Mzc3MzRDNEY5QUUwMi9jeDRuNFMtejJ3dHN6QXNnOFlhQW02Q05D UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NG40Uy16Mnd0c3pBc2c4WWFBbTZDTkNSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NThFQy9BRjUwQTBFODgzNjcxMUU5ODQ0Mzc3MzRDNEY5QUUwMi9jeDRuNFMtejJ3 dHN6QXNnOFlhQW02Q05DUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFuFCxut1ysxydv2zPW1l3cvimU2cNKN+g4ZMAgdVOYTdZM+KAxqTj VETWgJ47hf6G2r8japBh5Yx9e3XWC+LpVhDoAxRu+3y8KRsfK3j9v8/+8gC7tlbt 1ygPnn6ZrFlBMdXT+0wg+0Obt/eZwTClShaxWrpU/aEpE3KyVMhxnC0zZuuCl1BS RNwqA8FeGyq6XlF08BvlUxvgA6IpXd9Oyb+JkufMRmFQ0e7xFxPBAHoXJPXCiVj2 /MhUjexhYs+qUTRR46vxbgDp/SalHxisNjZf9guHb8QhHT74vyDt4Uz6XqbM5Qw8 U0CeHImV4XEWJ/DW5wgzqGWmd8GSsGJl -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:01 2025 by rpki-client on console.sobornost.net