$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft File: LHtdhHIAPPNDas_lth6J7Isa2Ks.mft (raw, json) Hash identifier: kk8680ohruwocVEmZLE70loAlLLIVjB5gZoiGAxwp1M= Subject key identifier: 80:58:88:32:93:A9:52:26:23:D3:A0:0C:34:47:2E:33:CF:A4:39:03 Authority key identifier: 2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB Certificate issuer: /CN=A91E0CA1/serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft Manifest number: 77 Signing time: Mon 28 Apr 2025 19:53:25 +0000 Manifest this update: Mon 28 Apr 2025 19:53:25 +0000 Manifest next update: Mon 05 May 2025 19:53:25 +0000 Files and hashes: 1: LHtdhHIAPPNDas_lth6J7Isa2Ks.crl (hash: MA1x8hmbwYTf8TyNJoJRUWODTwdRKHtyYCiUbw0qJcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=2C7B5D8472003CF3436ACFE5B61E89EC8B1AD8AB Validity Not Before: Apr 28 19:53:25 2025 GMT Not After : May 5 19:53:25 2025 GMT Subject: CN=680fdcb5-7cf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cc:4f:90:b0:0b:da:40:45:a4:50:59:fd:3c: 70:d9:a1:c2:89:4d:f9:9f:be:e6:07:2c:73:8a:e1: 98:70:6c:3f:b5:72:2a:78:e5:9b:ea:a0:c1:9a:88: 4a:97:75:97:0a:94:89:6e:b3:0e:20:87:42:6b:e0: df:a8:f8:47:50:72:88:f7:df:35:14:c3:f0:25:33: 3e:c2:e6:1d:f5:de:fc:07:01:00:23:1c:36:55:eb: a0:05:58:3f:6a:05:95:35:f7:dc:0f:93:cc:8d:24: 2f:af:08:61:e3:35:59:4c:77:c6:4d:25:71:6c:c0: d1:4c:2f:97:61:8e:a4:d5:d3:9b:4f:fa:58:00:f8: 04:10:db:5d:14:44:96:d6:3a:18:b3:ae:ef:4b:73: b0:dd:bc:19:48:ed:26:91:b5:2f:a5:3d:94:86:3c: 1b:46:6a:12:14:f9:75:4a:ba:c6:8d:91:42:ef:e8: 62:64:cf:30:4a:18:23:c3:86:bb:72:71:e0:b6:ce: 31:f4:ab:7d:a0:d3:b7:f9:89:f6:4b:b1:22:13:84: 83:81:3d:38:b8:53:60:6d:a1:a0:bc:cf:28:da:37: 3e:32:59:c2:f3:c2:2e:f4:d4:e7:ff:8c:d5:b6:42: 23:2d:52:41:6b:0d:c4:56:a9:59:b9:84:84:67:ec: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:58:88:32:93:A9:52:26:23:D3:A0:0C:34:47:2E:33:CF:A4:39:03 X509v3 Authority Key Identifier: keyid:2C:7B:5D:84:72:00:3C:F3:43:6A:CF:E5:B6:1E:89:EC:8B:1A:D8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LHtdhHIAPPNDas_lth6J7Isa2Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/4E11F4D6719011EF83C4BF7AC4F9AE02/LHtdhHIAPPNDas_lth6J7Isa2Ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:88:ac:7c:80:f7:f4:5f:19:51:55:88:13:e8:e6:ac:c2:a4: 7c:c3:44:3f:a4:ba:e1:ef:00:19:b3:04:4a:ef:80:ba:72:4e: 2e:e0:15:d8:f7:a9:12:d6:ba:70:e3:84:6a:70:58:8c:e9:6f: 1c:dd:0e:80:a3:fa:23:17:2f:74:9a:8e:69:3f:21:10:c6:ca: 3d:c3:e3:33:a9:18:12:24:7e:68:c8:3c:7a:5e:c1:8f:92:8c: 35:b5:00:05:d5:3f:82:34:fe:c3:e9:7d:4d:7d:7f:36:79:d1: e1:62:58:6f:28:37:d0:5c:24:97:cb:c3:7a:42:80:5f:a7:4d: 38:ea:d6:36:8f:b2:9f:3e:5b:e6:53:35:7e:16:8f:83:98:f5: 04:96:4f:76:ec:bd:18:e7:1b:2e:b5:cb:59:e6:60:96:19:32: a9:57:91:db:b2:61:d4:1a:4e:7e:ef:21:d3:60:c1:8c:90:f8: f5:9f:bb:12:94:9c:40:8d:a7:d6:00:ba:64:89:e1:4c:5b:bf: 57:c6:b6:75:53:25:c8:7a:93:95:6f:a6:a2:f7:f1:ca:cb:f1: 67:2f:0f:e3:93:c9:0f:71:6f:c1:66:1d:14:5e:1b:dc:24:49: 21:ad:79:43:26:ef:81:a2:d4:c7:b3:c2:96:32:97:8e:57:37: d3:8c:27:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MENBMTExMC8GA1UEBRMoMkM3QjVEODQ3MjAwM0NGMzQzNkFDRkU1QjYxRTg5RUM4 QjFBRDhBQjAeFw0yNTA0MjgxOTUzMjVaFw0yNTA1MDUxOTUzMjVaMBgxFjAUBgNV BAMTDTY4MGZkY2I1LTdjZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2zE+QsAvaQEWkUFn9PHDZocKJTfmfvuYHLHOK4ZhwbD+1cip45ZvqoMGaiEqX dZcKlIlusw4gh0Jr4N+o+EdQcoj33zUUw/AlMz7C5h313vwHAQAjHDZV66AFWD9q BZU199wPk8yNJC+vCGHjNVlMd8ZNJXFswNFML5dhjqTV05tP+lgA+AQQ210URJbW Ohizru9Lc7DdvBlI7SaRtS+lPZSGPBtGahIU+XVKusaNkULv6GJkzzBKGCPDhrty ceC2zjH0q32g07f5ifZLsSIThIOBPTi4U2BtoaC8zyjaNz4yWcLzwi701Of/jNW2 QiMtUkFrDcRWqVm5hIRn7MIlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgFiIMpOp UiYj06AMNEcuM8+kOQMwHwYDVR0jBBgwFoAULHtdhHIAPPNDas/lth6J7Isa2Ksw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUwQ0ExLzRFMTFGNEQ2NzE5 MDExRUY4M0M0QkY3QUM0RjlBRTAyL0xIdGRoSElBUFBORGFzX2x0aDZKN0lzYTJL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTEh0ZGhISUFQUE5EYXNfbHRoNko3SXNhMktzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUw Q0ExLzRFMTFGNEQ2NzE5MDExRUY4M0M0QkY3QUM0RjlBRTAyL0xIdGRoSElBUFBO RGFzX2x0aDZKN0lzYTJLcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI+IrHyA9/RfGVFViBPo5qzCpHzDRD+kuuHvABmzBErvgLpyTi7gFdj3 qRLWunDjhGpwWIzpbxzdDoCj+iMXL3Sajmk/IRDGyj3D4zOpGBIkfmjIPHpewY+S jDW1AAXVP4I0/sPpfU19fzZ50eFiWG8oN9BcJJfLw3pCgF+nTTjq1jaPsp8+W+ZT NX4Wj4OY9QSWT3bsvRjnGy61y1nmYJYZMqlXkduyYdQaTn7vIdNgwYyQ+PWfuxKU nECNp9YAumSJ4Uxbv1fGtnVTJch6k5VvpqL38crL8WcvD+OTyQ9xb8FmHRReG9wk SSGteUMm74Gi1MezwpYyl45XN9OMJ2I= -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:57 2025 by rpki-client on console.sobornost.net