$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF26F/879684961D8E11E2B151F0EC08B02CD2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.mft File: fNSu5HyyHa6Yd-_0HwS-ldlzaG0.mft (raw, json) Hash identifier: +828p9k+mtYBLKAirNba4g05PySHzLK1DP42TKY30mI= Subject key identifier: 0C:03:C9:1B:6C:1C:22:33:26:2C:61:73:CA:AF:46:6B:F6:13:94:BD Authority key identifier: 7C:D4:AE:E4:7C:B2:1D:AE:98:77:EF:F4:1F:04:BE:95:D9:73:68:6D Certificate issuer: /CN=A91DF26F/serialNumber=7CD4AEE47CB21DAE9877EFF41F04BE95D973686D Certificate serial: 3475 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF26F/879684961D8E11E2B151F0EC08B02CD2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.mft Manifest number: 3475 Signing time: Mon 28 Apr 2025 14:46:00 +0000 Manifest this update: Mon 28 Apr 2025 14:45:59 +0000 Manifest next update: Mon 05 May 2025 14:45:59 +0000 Files and hashes: 1: fNSu5HyyHa6Yd-_0HwS-ldlzaG0.crl (hash: 8OJkHLd7n/hAXuVwY8yMIAUIXFrH8Xo0u/YOptzfe/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF26F/879684961D8E11E2B151F0EC08B02CD2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.crl rsync://rpki.apnic.net/member_repository/A91DF26F/879684961D8E11E2B151F0EC08B02CD2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13429 (0x3475) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF26F, serialNumber=7CD4AEE47CB21DAE9877EFF41F04BE95D973686D Validity Not Before: Apr 28 14:45:59 2025 GMT Not After : May 5 14:45:59 2025 GMT Subject: CN=680f94a8-b6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:70:a0:c7:a1:37:a7:da:0e:61:76:a5:5b:01: 27:6c:48:e7:87:30:a8:df:3b:5b:22:a8:de:6e:dd: 1c:c6:e0:e2:46:a9:88:70:cd:e3:ca:09:d0:2b:33: ce:b5:38:42:99:dd:fc:dc:1a:8f:bc:86:10:00:3f: 49:48:d6:b3:7e:f0:7f:4e:6a:6d:cc:cc:f9:df:92: f2:57:d6:8a:31:32:39:be:b8:9b:c2:dd:3f:f3:1b: 40:89:96:87:07:cb:84:b8:3a:80:68:ef:97:e8:ad: 60:17:28:98:1e:6c:c9:2b:60:25:0a:1f:f3:f6:b0: 06:76:81:12:17:6c:15:a2:f4:d6:83:11:a3:ef:88: 5f:9e:d6:c5:6f:0e:7c:56:c7:d0:23:c8:1d:9b:5b: 4b:d3:09:92:41:ec:f9:2b:16:45:f1:e9:0c:cc:d9: da:db:33:2b:be:0d:1c:56:8c:dd:02:e0:0f:e4:78: 7d:8e:40:82:8d:d1:94:ef:e9:3e:34:5c:a3:6b:50: cc:46:83:a7:a6:9d:8d:3c:dd:65:41:4b:c1:ef:74: 40:d5:a3:1e:ea:8b:92:a3:18:20:af:73:c8:3c:a5: 34:bc:5e:7e:d4:85:c6:56:f7:62:eb:f0:e4:40:30: 7c:f2:58:36:3c:0e:95:ec:fa:e8:1f:10:95:75:90: f2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:03:C9:1B:6C:1C:22:33:26:2C:61:73:CA:AF:46:6B:F6:13:94:BD X509v3 Authority Key Identifier: keyid:7C:D4:AE:E4:7C:B2:1D:AE:98:77:EF:F4:1F:04:BE:95:D9:73:68:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF26F/879684961D8E11E2B151F0EC08B02CD2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF26F/879684961D8E11E2B151F0EC08B02CD2/fNSu5HyyHa6Yd-_0HwS-ldlzaG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:1a:60:51:d1:d9:c8:16:3b:2b:83:7c:c1:4d:a3:29:63:bd: e1:d7:64:0e:40:a6:c2:6e:5c:e5:31:73:f5:34:bb:80:c4:d9: 47:de:49:ef:f5:c0:4a:51:aa:ff:fb:c1:ab:7b:91:f0:c3:2c: 1b:1b:60:11:c4:76:6a:74:a4:79:5e:fd:43:ee:3a:e0:c6:d7: a6:09:6b:f8:8b:2b:15:e9:43:4b:d4:c4:51:33:d5:e1:3f:65: 11:e9:48:6a:2d:0c:14:f5:fb:61:fe:40:74:2b:06:27:2e:ed: 1c:b8:e9:28:b8:75:82:61:ea:eb:aa:ac:d9:ed:fa:37:50:cf: d3:1a:0f:c0:62:02:3a:2c:5a:f3:b0:8a:75:29:2d:81:f8:d0: a7:f0:4e:64:0d:3d:82:a5:e0:07:ca:a6:e8:c9:79:28:35:b1: e4:19:c9:2b:34:61:b2:9a:07:5e:dd:43:bb:bf:85:16:c6:4a: f2:21:78:97:26:0a:3e:e8:a9:96:9f:56:4a:e1:7f:ef:89:5d: 5e:3b:80:3a:11:1f:27:00:64:88:fa:37:b6:4f:28:97:98:e3: 3b:6b:2f:27:1f:bd:07:b1:7d:80:fc:a7:75:b7:9d:48:c8:bb: 5b:8f:19:db:dd:56:f9:95:df:df:f8:45:90:8a:f6:62:f3:d5: 2f:56:d2:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYyNkYxMTAvBgNVBAUTKDdDRDRBRUU0N0NCMjFEQUU5ODc3RUZGNDFGMDRCRTk1 RDk3MzY4NkQwHhcNMjUwNDI4MTQ0NTU5WhcNMjUwNTA1MTQ0NTU5WjAYMRYwFAYD VQQDEw02ODBmOTRhOC1iNmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXCgx6E3p9oOYXalWwEnbEjnhzCo3ztbIqjebt0cxuDiRqmIcM3jygnQKzPO tThCmd383BqPvIYQAD9JSNazfvB/TmptzMz535LyV9aKMTI5vribwt0/8xtAiZaH B8uEuDqAaO+X6K1gFyiYHmzJK2AlCh/z9rAGdoESF2wVovTWgxGj74hfntbFbw58 VsfQI8gdm1tL0wmSQez5KxZF8ekMzNna2zMrvg0cVozdAuAP5Hh9jkCCjdGU7+k+ NFyja1DMRoOnpp2NPN1lQUvB73RA1aMe6ouSoxggr3PIPKU0vF5+1IXGVvdi6/Dk QDB88lg2PA6V7ProHxCVdZDyTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwDyRts HCIzJixhc8qvRmv2E5S9MB8GA1UdIwQYMBaAFHzUruR8sh2umHfv9B8EvpXZc2ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjI2Ri84Nzk2ODQ5NjFE OEUxMUUyQjE1MUYwRUMwOEIwMkNEMi9mTlN1NUh5eUhhNllkLV8wSHdTLWxkbHph RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZOU3U1SHl5SGE2WWQtXzBId1MtbGRsemFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjI2Ri84Nzk2ODQ5NjFEOEUxMUUyQjE1MUYwRUMwOEIwMkNEMi9mTlN1NUh5eUhh NllkLV8wSHdTLWxkbHphRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQGmBR0dnIFjsrg3zBTaMpY73h12QOQKbCblzlMXP1NLuAxNlH3knv 9cBKUar/+8Gre5HwwywbG2ARxHZqdKR5Xv1D7jrgxtemCWv4iysV6UNL1MRRM9Xh P2UR6UhqLQwU9fth/kB0KwYnLu0cuOkouHWCYerrqqzZ7fo3UM/TGg/AYgI6LFrz sIp1KS2B+NCn8E5kDT2CpeAHyqboyXkoNbHkGckrNGGymgde3UO7v4UWxkryIXiX Jgo+6KmWn1ZK4X/viV1eO4A6ER8nAGSI+je2TyiXmOM7ay8nH70HsX2A/Kd1t51I yLtbjxnb3Vb5ld/f+EWQivZi89UvVtJh -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:03 2025 by rpki-client on console.sobornost.net