$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.mft File: RxDk3mQVxI6LUxtZzUekHNeTRV4.mft (raw, json) Hash identifier: TmxFmjZlfr4uPr/I0J8DEFY+G1+VxhmGwqFV0eebcY8= Subject key identifier: 1D:A7:00:AE:84:53:E6:2D:DB:53:95:7A:58:BB:D0:F9:80:C6:9E:06 Authority key identifier: 47:10:E4:DE:64:15:C4:8E:8B:53:1B:59:CD:47:A4:1C:D7:93:45:5E Certificate issuer: /CN=A91D9A24/serialNumber=4710E4DE6415C48E8B531B59CD47A41CD793455E Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.mft Manifest number: CF Signing time: Sun 27 Apr 2025 04:32:59 +0000 Manifest this update: Sun 27 Apr 2025 04:32:59 +0000 Manifest next update: Sun 04 May 2025 04:32:59 +0000 Files and hashes: 1: RxDk3mQVxI6LUxtZzUekHNeTRV4.crl (hash: FxInpNrC4vqRxxGNDYf7o0oxr44w7MFMaLMztW91nps=) 2: A18158C6E64611EE95C0CE78C4F9AE02.roa (hash: OhwAMmDXpoUwiIlu+NNwWEG2Mjf5q973vVgDZWZTt/I=) 3: FE2FF9B0E64611EEA8AE7979C4F9AE02.roa (hash: zTFWSulVee4Ly8DKhZ3WsgppSiRMvqo0mmrNlUemSBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.crl rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9A24, serialNumber=4710E4DE6415C48E8B531B59CD47A41CD793455E Validity Not Before: Apr 27 04:32:59 2025 GMT Not After : May 4 04:32:59 2025 GMT Subject: CN=680db37b-be4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0b:4b:97:57:b9:bd:5d:eb:e1:7e:dd:ea:15: 57:0f:77:7a:12:54:8e:cd:bd:0e:77:38:4a:84:b0: d7:75:67:b3:96:72:02:df:86:e4:23:4e:bc:08:d6: af:c9:f4:0f:af:e8:ad:ae:72:ab:e9:39:55:d5:ae: 02:cc:ed:85:e0:29:91:5d:10:e0:4f:1b:93:83:8b: e4:0a:19:92:23:1d:33:ad:6c:f3:e4:fb:3c:05:9d: be:dc:fb:8f:b4:26:18:4e:17:6b:78:ba:63:b4:20: ea:0f:01:24:81:da:b2:31:e0:26:72:a0:1a:b4:ed: 5f:38:14:39:8a:2f:78:7e:e3:47:72:84:3f:bb:3a: 0a:02:ff:85:87:b6:9b:01:8d:c0:4f:86:ef:6e:11: 11:df:37:76:21:cb:b5:0b:71:77:1b:ba:e4:e9:66: be:41:7a:f6:04:4f:28:21:6f:e7:a9:3e:20:0b:c2: 52:39:15:c7:39:0a:48:3e:3f:0a:dd:34:db:93:39: b4:7e:f1:c7:f9:ed:04:3f:53:05:2e:b0:1f:eb:f6: 71:6c:08:6c:ae:6d:d1:d0:9f:33:8e:5e:8a:e2:53: ff:16:ba:51:e5:3c:5b:92:e9:37:cc:bb:4c:91:90: e3:7b:6c:ca:2e:81:a3:a9:72:3c:e0:b9:f1:be:67: db:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:A7:00:AE:84:53:E6:2D:DB:53:95:7A:58:BB:D0:F9:80:C6:9E:06 X509v3 Authority Key Identifier: keyid:47:10:E4:DE:64:15:C4:8E:8B:53:1B:59:CD:47:A4:1C:D7:93:45:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxDk3mQVxI6LUxtZzUekHNeTRV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9A24/93984CF2E64511EEB5A73577C4F9AE02/RxDk3mQVxI6LUxtZzUekHNeTRV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:21:67:53:ac:be:2c:b5:c8:ec:66:b7:0e:db:10:a8:bc:fc: 6a:5e:bd:21:e4:a4:fd:39:9c:c1:05:3f:1c:3b:9b:43:28:16: 74:e3:fe:ac:33:0f:a5:a5:7b:a9:1c:94:ce:c3:58:77:c1:bb: 39:d7:b3:42:59:0c:a8:08:8b:af:8d:64:8f:88:d5:d5:fb:be: e5:0b:7e:07:13:15:85:06:28:02:dd:03:8a:8f:72:ce:6a:a0: 78:19:19:2b:aa:70:54:fb:b9:df:b2:d2:d3:f6:49:5d:43:08: 38:0e:a1:97:a0:f2:73:5f:7a:a2:b1:2f:19:f7:22:8b:f1:4c: 3d:eb:36:20:64:4c:ec:f0:81:59:a2:83:cd:39:77:15:7d:a6: 34:92:25:7b:dd:10:43:4b:1b:9b:e1:32:eb:2c:a2:e9:bf:33: 03:9d:9e:97:40:96:60:ef:68:e3:8a:51:f1:cc:20:5c:92:c1: 07:39:d9:58:59:42:83:b1:f6:6b:6d:de:ab:3e:30:47:e1:24: 20:2a:97:7b:eb:95:10:8c:bf:62:c5:1f:45:fb:b3:e7:9e:ee: 11:9a:e2:ce:76:bb:f7:46:05:59:07:0b:6e:82:0c:5c:19:9b: 08:20:a6:5f:4b:29:45:a5:8b:33:b9:86:be:3f:f8:46:d6:ad: 1a:a4:d5:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlBMjQxMTAvBgNVBAUTKDQ3MTBFNERFNjQxNUM0OEU4QjUzMUI1OUNENDdBNDFD RDc5MzQ1NUUwHhcNMjUwNDI3MDQzMjU5WhcNMjUwNTA0MDQzMjU5WjAYMRYwFAYD VQQDEw02ODBkYjM3Yi1iZTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwtLl1e5vV3r4X7d6hVXD3d6ElSOzb0OdzhKhLDXdWezlnIC34bkI068CNav yfQPr+itrnKr6TlV1a4CzO2F4CmRXRDgTxuTg4vkChmSIx0zrWzz5Ps8BZ2+3PuP tCYYThdreLpjtCDqDwEkgdqyMeAmcqAatO1fOBQ5ii94fuNHcoQ/uzoKAv+Fh7ab AY3AT4bvbhER3zd2Icu1C3F3G7rk6Wa+QXr2BE8oIW/nqT4gC8JSORXHOQpIPj8K 3TTbkzm0fvHH+e0EP1MFLrAf6/ZxbAhsrm3R0J8zjl6K4lP/FrpR5Txbkuk3zLtM kZDje2zKLoGjqXI84LnxvmfbTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2nAK6E U+Yt21OVeli70PmAxp4GMB8GA1UdIwQYMBaAFEcQ5N5kFcSOi1MbWc1HpBzXk0Ve MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUEyNC85Mzk4NENGMkU2 NDUxMUVFQjVBNzM1NzdDNEY5QUUwMi9SeERrM21RVnhJNkxVeHRaelVla0hOZVRS VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J4RGszbVFWeEk2TFV4dFp6VWVrSE5lVFJWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUEyNC85Mzk4NENGMkU2NDUxMUVFQjVBNzM1NzdDNEY5QUUwMi9SeERrM21RVnhJ NkxVeHRaelVla0hOZVRSVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9IWdTrL4stcjsZrcO2xCovPxqXr0h5KT9OZzBBT8cO5tDKBZ04/6s Mw+lpXupHJTOw1h3wbs517NCWQyoCIuvjWSPiNXV+77lC34HExWFBigC3QOKj3LO aqB4GRkrqnBU+7nfstLT9kldQwg4DqGXoPJzX3qisS8Z9yKL8Uw96zYgZEzs8IFZ ooPNOXcVfaY0kiV73RBDSxub4TLrLKLpvzMDnZ6XQJZg72jjilHxzCBcksEHOdlY WUKDsfZrbd6rPjBH4SQgKpd765UQjL9ixR9F+7Pnnu4RmuLOdrv3RgVZBwtuggxc GZsIIKZfSylFpYszuYa+P/hG1q0apNVl -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:57 2025 by rpki-client on console.sobornost.net