$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft File: CZyBX8poKm4oYE_pYv0QcVgn6V0.mft (raw, json) Hash identifier: Pus0/yZf5GfRjUiAr4T1t7/3NQeIX40ABSrNT9aIST4= Subject key identifier: A1:1B:06:9F:F7:C0:CE:96:AE:DA:C3:69:9A:01:B7:04:9A:02:1B:FC Authority key identifier: 09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D Certificate issuer: /CN=A91DEB2E/serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft Manifest number: 01B4 Signing time: Sun 27 Apr 2025 02:11:43 +0000 Manifest this update: Sun 27 Apr 2025 02:11:43 +0000 Manifest next update: Sun 04 May 2025 02:11:43 +0000 Files and hashes: 1: CZyBX8poKm4oYE_pYv0QcVgn6V0.crl (hash: 9lST57CnNkPFxIatyniWSgeIKp5Y+8PG3eZJxmfhOMk=) 2: 3CB103648C2511EDB64DB410C4F9AE02.roa (hash: MmbQus/ep65NlWLekYokD81GuyXquRa4J0H16aokObA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB2E, serialNumber=099C815FCA682A6E28604FE962FD10715827E95D Validity Not Before: Apr 27 02:11:43 2025 GMT Not After : May 4 02:11:43 2025 GMT Subject: CN=680d925f-0a0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:67:c9:38:ac:54:e2:06:6d:0d:e9:96:75:2c: 68:50:e8:80:e8:b9:2d:ff:59:35:3f:d7:09:b6:aa: 32:80:a2:e3:83:08:79:ce:33:57:4f:9e:cc:d2:e6: 5c:5a:46:88:87:68:03:d5:8e:cd:18:c0:95:5e:cd: 6d:1a:63:87:f0:99:63:8c:2c:75:ee:35:84:31:5b: 91:cf:b2:71:f0:a4:c6:fb:ec:83:8b:44:b5:35:7c: a2:ed:67:62:37:5e:5d:14:e2:5d:d4:6e:0d:9f:bf: eb:eb:1f:e2:15:e5:09:23:db:0c:bd:39:60:14:bd: 8a:0f:81:85:73:f4:53:7f:4b:38:d5:19:23:c9:96: 9d:f4:74:d9:8e:77:0f:35:21:1c:8d:4f:53:f1:92: 62:3c:bc:bc:5a:d3:6f:a2:48:01:e3:db:5f:39:ff: a7:1d:cc:4d:2a:31:29:32:ef:c1:9e:ed:a0:bf:ed: 0c:16:cf:7a:8f:2f:fd:35:94:e5:5e:f8:ab:6d:e0: 85:fa:7f:3b:5e:08:b4:1c:76:63:0f:58:0d:11:78: 4b:90:6e:7c:db:13:ef:3e:cd:4a:40:d0:0f:10:9c: 1a:e1:0b:40:d7:ff:b5:33:a6:34:fc:0b:dd:3d:9b: 12:e9:78:ed:7c:29:18:28:2d:11:16:d8:46:99:1f: 95:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:1B:06:9F:F7:C0:CE:96:AE:DA:C3:69:9A:01:B7:04:9A:02:1B:FC X509v3 Authority Key Identifier: keyid:09:9C:81:5F:CA:68:2A:6E:28:60:4F:E9:62:FD:10:71:58:27:E9:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZyBX8poKm4oYE_pYv0QcVgn6V0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB2E/6FC8BFDE8C2111EDB2B2F30AC4F9AE02/CZyBX8poKm4oYE_pYv0QcVgn6V0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:4f:9d:e0:4f:92:06:c3:f3:22:61:88:9a:33:7c:7b:bb:8c: 1f:8d:8e:d6:fc:b5:9b:dc:d8:91:9c:fa:ed:fd:a3:ba:2a:7e: 77:58:c7:a4:35:b9:ee:2c:cb:ae:d1:6f:f5:39:c2:a3:78:4a: f9:b4:1d:47:fc:89:a1:b1:e9:b6:5b:be:7b:05:8f:a2:45:7d: 0d:cf:42:a2:9b:7b:64:02:1d:a8:a9:14:33:00:09:ab:a2:98: 08:65:16:3f:81:54:a8:4e:fd:75:ff:14:75:25:8c:61:b6:13: 64:6a:0f:c2:4a:04:77:35:2c:ab:78:f3:02:68:1b:28:d5:5c: fd:d4:32:1c:49:62:c9:d0:32:ef:d7:8f:31:71:07:fd:4f:d9: ba:23:a2:be:38:f4:3d:0e:8b:18:eb:6d:d9:46:f4:77:2c:b5: cf:c3:80:d7:f3:c2:6b:25:82:f4:10:3c:eb:f0:86:d3:44:17: 26:6f:f2:12:34:50:dd:80:ec:56:68:05:e1:ba:93:21:4f:9b: 45:39:09:84:7c:ea:ae:e6:09:7d:eb:02:3b:80:29:57:2b:3f: 2e:f0:97:6c:14:87:7d:af:cc:ce:69:4a:1e:4b:df:ee:e7:24: e3:1b:55:7d:2d:e2:15:38:e0:ea:01:5f:8a:26:49:d5:30:03: ba:a4:61:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCMkUxMTAvBgNVBAUTKDA5OUM4MTVGQ0E2ODJBNkUyODYwNEZFOTYyRkQxMDcx NTgyN0U5NUQwHhcNMjUwNDI3MDIxMTQzWhcNMjUwNTA0MDIxMTQzWjAYMRYwFAYD VQQDEw02ODBkOTI1Zi0wYTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GfJOKxU4gZtDemWdSxoUOiA6Lkt/1k1P9cJtqoygKLjgwh5zjNXT57M0uZc WkaIh2gD1Y7NGMCVXs1tGmOH8JljjCx17jWEMVuRz7Jx8KTG++yDi0S1NXyi7Wdi N15dFOJd1G4Nn7/r6x/iFeUJI9sMvTlgFL2KD4GFc/RTf0s41RkjyZad9HTZjncP NSEcjU9T8ZJiPLy8WtNvokgB49tfOf+nHcxNKjEpMu/Bnu2gv+0MFs96jy/9NZTl XvirbeCF+n87Xgi0HHZjD1gNEXhLkG582xPvPs1KQNAPEJwa4QtA1/+1M6Y0/Avd PZsS6XjtfCkYKC0RFthGmR+V+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEbBp/3 wM6WrtrDaZoBtwSaAhv8MB8GA1UdIwQYMBaAFAmcgV/KaCpuKGBP6WL9EHFYJ+ld MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUIyRS82RkM4QkZERThD MjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0ttNG9ZRV9wWXYwUWNWZ242 VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaeUJYOHBvS200b1lFX3BZdjBRY1ZnbjZWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIyRS82RkM4QkZERThDMjExMUVEQjJCMkYzMEFDNEY5QUUwMi9DWnlCWDhwb0tt NG9ZRV9wWXYwUWNWZ242VjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsT53gT5IGw/MiYYiaM3x7u4wfjY7W/LWb3NiRnPrt/aO6Kn53WMek NbnuLMuu0W/1OcKjeEr5tB1H/Imhsem2W757BY+iRX0Nz0Kim3tkAh2oqRQzAAmr opgIZRY/gVSoTv11/xR1JYxhthNkag/CSgR3NSyrePMCaBso1Vz91DIcSWLJ0DLv 148xcQf9T9m6I6K+OPQ9DosY623ZRvR3LLXPw4DX88JrJYL0EDzr8IbTRBcmb/IS NFDdgOxWaAXhupMhT5tFOQmEfOqu5gl96wI7gClXKz8u8JdsFId9r8zOaUoeS9/u 5yTjG1V9LeIVOODqAV+KJknVMAO6pGH0 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net