$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft File: mGsNU3ZLyD3A4HLsrzacefIqOdc.mft (raw, json) Hash identifier: 67/DITw+/AYpjKolAxdDZYZNPnysSaAfJpZlZ7riEN4= Subject key identifier: 54:A7:3D:BE:12:39:BE:25:FD:30:44:15:DB:4C:27:2C:B9:6E:38:2A Authority key identifier: 98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 Certificate issuer: /CN=A91DD799/serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft Manifest number: 06F9 Signing time: Thu 24 Apr 2025 14:47:32 +0000 Manifest this update: Thu 24 Apr 2025 14:47:31 +0000 Manifest next update: Thu 01 May 2025 14:47:31 +0000 Files and hashes: 1: mGsNU3ZLyD3A4HLsrzacefIqOdc.crl (hash: 0PdNnDjymkdWxzszTyDpU7cF+IIm1XnSSANPQ9cAAYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=986B0D53764BC83DC0E072ECAF369C79F22A39D7 Validity Not Before: Apr 24 14:47:31 2025 GMT Not After : May 1 14:47:31 2025 GMT Subject: CN=680a4f04-dafe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e1:cc:f5:4f:00:66:bd:b1:66:ba:97:52:40: 47:fd:3c:5c:ae:f9:01:ef:70:f7:60:05:67:37:7e: 3e:8c:7e:6c:18:e3:88:60:3e:40:73:ec:49:ed:3d: 9e:3c:9e:79:4c:ba:c0:c6:41:4a:dc:90:9f:59:ae: 68:73:be:dd:fb:f5:d2:0e:17:ce:5e:0a:62:64:0e: 04:0a:80:88:68:21:03:b0:07:ec:43:12:1f:56:11: 9b:f5:14:5e:06:70:bd:27:35:a3:ee:ca:54:29:d0: d0:7f:f3:79:6c:c3:09:5a:0c:21:91:31:76:ed:c3: 17:e7:84:92:ce:68:02:fa:fe:ad:87:0e:79:43:f0: c8:36:de:37:92:b8:d2:e8:c2:d7:dc:38:f4:c5:34: 00:b0:20:a4:5b:95:6a:b9:4e:a8:96:74:49:5f:2e: 04:d1:bc:3c:08:34:fd:eb:76:de:47:ad:d0:c8:02: 00:1b:a2:4a:64:b7:0c:50:60:0d:2a:29:aa:78:b7: 8a:17:fa:eb:54:9f:72:21:95:ef:cb:16:32:0f:b8: d0:41:6d:67:6b:6e:0c:80:93:4d:2a:6d:95:4e:90: 5b:1a:62:97:df:79:a7:0a:88:a6:cc:62:d2:2f:9f: f9:f7:00:4b:f4:7f:91:70:70:b4:db:08:67:80:26: b5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A7:3D:BE:12:39:BE:25:FD:30:44:15:DB:4C:27:2C:B9:6E:38:2A X509v3 Authority Key Identifier: keyid:98:6B:0D:53:76:4B:C8:3D:C0:E0:72:EC:AF:36:9C:79:F2:2A:39:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mGsNU3ZLyD3A4HLsrzacefIqOdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/13CA82FA43FB11EB9F73D63CC4F9AE02/mGsNU3ZLyD3A4HLsrzacefIqOdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:5f:5c:71:77:13:fd:97:9d:f2:4e:2e:fd:60:52:33:cd:9e: 3d:07:54:36:3e:05:78:06:3f:71:34:01:ac:b4:2e:ea:5c:e6: f6:09:03:da:18:ad:ae:6b:20:f9:53:4d:45:f9:5c:9d:3e:5a: 33:85:97:51:c4:0e:1f:67:1d:d4:93:70:e5:6b:c6:77:be:26: 73:ad:65:a7:6f:89:8d:80:35:c1:ea:8d:55:52:f9:f1:85:59: 77:53:fe:37:56:91:73:4b:60:0a:eb:59:df:47:2a:e5:23:c2: 87:a5:4c:1e:e0:72:a1:7c:39:94:16:82:81:db:52:5d:28:8e: 27:5c:33:88:53:52:d8:2a:bf:97:dd:f7:e7:4d:fe:e5:63:48: e3:5b:3c:a4:0e:75:4e:e1:68:ff:90:a9:78:ca:bb:f9:f2:68: 27:78:1e:e9:2b:dd:b2:63:2b:09:0e:b5:d2:20:05:aa:78:07: 61:b9:38:92:1c:49:6c:20:53:b8:55:c5:a3:74:08:ba:76:d2: 24:da:1e:2d:7e:94:11:5b:84:f6:e6:a1:99:47:3e:40:13:48: 1d:3a:fa:4f:9b:b4:bb:3e:dd:f3:01:b0:0d:a5:69:fe:6d:fd: 9f:fc:af:02:71:2d:b5:97:0b:80:fc:fa:a5:2a:fb:0f:3d:0f: a1:58:4a:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKDk4NkIwRDUzNzY0QkM4M0RDMEUwNzJFQ0FGMzY5Qzc5 RjIyQTM5RDcwHhcNMjUwNDI0MTQ0NzMxWhcNMjUwNTAxMTQ0NzMxWjAYMRYwFAYD VQQDEw02ODBhNGYwNC1kYWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+HM9U8AZr2xZrqXUkBH/TxcrvkB73D3YAVnN34+jH5sGOOIYD5Ac+xJ7T2e PJ55TLrAxkFK3JCfWa5oc77d+/XSDhfOXgpiZA4ECoCIaCEDsAfsQxIfVhGb9RRe BnC9JzWj7spUKdDQf/N5bMMJWgwhkTF27cMX54SSzmgC+v6thw55Q/DINt43krjS 6MLX3Dj0xTQAsCCkW5VquU6olnRJXy4E0bw8CDT963beR63QyAIAG6JKZLcMUGAN KimqeLeKF/rrVJ9yIZXvyxYyD7jQQW1na24MgJNNKm2VTpBbGmKX33mnCoimzGLS L5/59wBL9H+RcHC02whngCa1WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSnPb4S Ob4l/TBEFdtMJyy5bjgqMB8GA1UdIwQYMBaAFJhrDVN2S8g9wOBy7K82nHnyKjnX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xM0NBODJGQTQz RkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlEM0E0SExzcnphY2VmSXFP ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Hc05VM1pMeUQzQTRITHNyemFjZWZJcU9kYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDc5OS8xM0NBODJGQTQzRkIxMUVCOUY3M0Q2M0NDNEY5QUUwMi9tR3NOVTNaTHlE M0E0SExzcnphY2VmSXFPZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARX1xxdxP9l53yTi79YFIzzZ49B1Q2PgV4Bj9xNAGstC7qXOb2CQPa GK2uayD5U01F+VydPlozhZdRxA4fZx3Uk3Dla8Z3viZzrWWnb4mNgDXB6o1VUvnx hVl3U/43VpFzS2AK61nfRyrlI8KHpUwe4HKhfDmUFoKB21JdKI4nXDOIU1LYKr+X 3ffnTf7lY0jjWzykDnVO4Wj/kKl4yrv58mgneB7pK92yYysJDrXSIAWqeAdhuTiS HElsIFO4VcWjdAi6dtIk2h4tfpQRW4T25qGZRz5AE0gdOvpPm7S7Pt3zAbANpWn+ bf2f/K8CcS21lwuA/PqlKvsPPQ+hWEoB -----END CERTIFICATE-----Generated at Thu Apr 24 18:09:23 2025 by rpki-client on console.sobornost.net