$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft File: NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft (raw, json) Hash identifier: 79cV0EOr6F760A/qVCtVYYCEuSPj6bQATZjgzBPeTjM= Subject key identifier: A8:36:04:B1:AC:C6:70:F3:ED:9C:93:54:7E:EE:0D:CF:72:1E:14:95 Authority key identifier: 37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A Certificate issuer: /CN=A91DE7DE/serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Certificate serial: 11A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft Manifest number: 117A Signing time: Mon 28 Apr 2025 17:28:12 +0000 Manifest this update: Mon 28 Apr 2025 17:28:11 +0000 Manifest next update: Mon 05 May 2025 17:28:11 +0000 Files and hashes: 1: NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl (hash: mXcMaXoQP2Ib6QxOBx+M0iX02zNtEuWlNzNKYS4Q3K8=) 2: 7F7F1470091D11F0B7E95627C4F9AE02.roa (hash: hpmM9pfcrUFnNRets4Cm3b/cVvffA5StG3HyqAHQxOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4521 (0x11a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE7DE, serialNumber=371273CFD8C2C908B691D6BEA175E8DE82BD439A Validity Not Before: Apr 28 17:28:11 2025 GMT Not After : May 5 17:28:11 2025 GMT Subject: CN=680fbaac-0c34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:65:18:00:c4:bb:64:56:9d:ec:eb:ce:5f:59: 8e:01:0b:84:bb:ff:c0:58:b7:a1:8d:db:71:a1:33: 1f:e3:43:11:84:7a:49:4b:53:0e:dd:b7:c8:c4:35: e9:d6:57:33:b8:93:e9:87:c7:ac:e4:01:25:30:48: 39:45:b2:78:bc:b0:d0:2f:49:5f:0d:d4:7e:38:2a: d8:98:ac:1b:f5:88:21:a5:3e:6c:84:78:c2:6a:44: 75:93:49:47:59:7b:b5:72:2b:0d:f3:96:4c:cf:b9: d9:f8:90:a7:d2:75:dc:05:89:30:49:13:ec:34:0c: 82:c8:58:3c:2c:35:dc:38:a6:24:6c:d0:00:e6:93: 46:e3:13:eb:22:e1:40:e0:7c:30:aa:2a:92:89:80: bb:6b:3b:ca:51:31:08:77:cc:fc:a3:94:d2:21:4e: ba:79:7b:64:2c:f4:f9:df:fd:fa:f4:f9:24:ef:49: 14:f5:20:16:f7:47:fc:26:c8:6d:3a:e8:6d:ec:13: cd:46:85:22:3f:6c:66:45:d7:d9:5d:be:86:ab:80: 90:06:1d:54:5b:d4:d1:8b:87:07:bf:aa:b7:a0:16: f3:a9:52:92:4d:36:ba:55:4c:66:36:4e:df:23:3d: 0e:df:49:c2:00:9b:15:b0:a6:75:ea:bb:e5:0c:1b: 1b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:36:04:B1:AC:C6:70:F3:ED:9C:93:54:7E:EE:0D:CF:72:1E:14:95 X509v3 Authority Key Identifier: keyid:37:12:73:CF:D8:C2:C9:08:B6:91:D6:BE:A1:75:E8:DE:82:BD:43:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NxJzz9jCyQi2kda-oXXo3oK9Q5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE7DE/CEE3D71804E111E98EA7D872C4F9AE02/NxJzz9jCyQi2kda-oXXo3oK9Q5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:64:8e:92:d2:76:da:4c:a0:f0:11:3f:8b:7f:a9:cf:7d:0f: 07:a4:95:9d:2c:f0:33:36:d9:24:30:cf:1e:b2:81:79:a5:ae: be:e0:ae:df:1c:94:f5:b4:78:d0:01:a2:2f:57:4a:4f:9f:5f: c0:c6:1e:f8:df:26:6e:8e:a9:26:1c:63:a0:2b:fa:52:8c:05: 20:3f:a4:15:23:4f:eb:3a:d4:03:25:46:2a:05:24:46:f1:66: 45:07:74:d9:f3:f1:d4:ab:0d:31:c4:04:50:fc:f6:2f:e7:4f: c8:7f:73:79:81:56:ae:8d:be:9f:10:b5:f5:cc:f0:5f:e4:dc: 39:c1:48:fb:e6:5e:cb:8d:b0:ca:e8:54:5e:3c:b9:be:bd:e3: bc:45:34:31:6f:c5:72:99:85:10:c7:ba:45:87:e4:5c:48:1f: 15:1d:1f:f1:4c:11:db:d6:b6:4b:1c:a5:02:fd:67:d4:ca:2b: 5d:0c:b2:67:a1:1b:1f:e3:e3:12:b6:f9:2f:b7:ce:cd:9b:df: 6c:f8:27:5e:02:24:b4:34:f4:73:47:dc:95:09:02:f5:05:ab: 79:77:0b:2e:50:1d:f7:5d:33:58:3f:f4:05:8f:55:37:c2:be: 5e:0a:36:87:db:cc:91:98:a0:c6:eb:48:6d:6d:8a:34:16:f8: 63:0f:af:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU3REUxMTAvBgNVBAUTKDM3MTI3M0NGRDhDMkM5MDhCNjkxRDZCRUExNzVFOERF ODJCRDQzOUEwHhcNMjUwNDI4MTcyODExWhcNMjUwNTA1MTcyODExWjAYMRYwFAYD VQQDEw02ODBmYmFhYy0wYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2UYAMS7ZFad7OvOX1mOAQuEu//AWLehjdtxoTMf40MRhHpJS1MO3bfIxDXp 1lczuJPph8es5AElMEg5RbJ4vLDQL0lfDdR+OCrYmKwb9YghpT5shHjCakR1k0lH WXu1cisN85ZMz7nZ+JCn0nXcBYkwSRPsNAyCyFg8LDXcOKYkbNAA5pNG4xPrIuFA 4HwwqiqSiYC7azvKUTEId8z8o5TSIU66eXtkLPT53/369Pkk70kU9SAW90f8Jsht Ouht7BPNRoUiP2xmRdfZXb6Gq4CQBh1UW9TRi4cHv6q3oBbzqVKSTTa6VUxmNk7f Iz0O30nCAJsVsKZ16rvlDBsbAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKg2BLGs xnDz7ZyTVH7uDc9yHhSVMB8GA1UdIwQYMBaAFDcSc8/YwskItpHWvqF16N6CvUOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTdERS9DRUUzRDcxODA0 RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lRaTJrZGEtb1hYbzNvSzlR NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL054Snp6OWpDeVFpMmtkYS1vWFhvM29LOVE1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTdERS9DRUUzRDcxODA0RTExMUU5OEVBN0Q4NzJDNEY5QUUwMi9OeEp6ejlqQ3lR aTJrZGEtb1hYbzNvSzlRNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiZI6S0nbaTKDwET+Lf6nPfQ8HpJWdLPAzNtkkMM8esoF5pa6+4K7f HJT1tHjQAaIvV0pPn1/Axh743yZujqkmHGOgK/pSjAUgP6QVI0/rOtQDJUYqBSRG 8WZFB3TZ8/HUqw0xxARQ/PYv50/If3N5gVaujb6fELX1zPBf5Nw5wUj75l7LjbDK 6FRePLm+veO8RTQxb8VymYUQx7pFh+RcSB8VHR/xTBHb1rZLHKUC/WfUyitdDLJn oRsf4+MStvkvt87Nm99s+CdeAiS0NPRzR9yVCQL1Bat5dwsuUB33XTNYP/QFj1U3 wr5eCjaH28yRmKDG60htbYo0FvhjD6+7 -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:11 2025 by rpki-client on console.sobornost.net