$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft File: cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft (raw, json) Hash identifier: ysBC8+ONpcjOw3jmyZ0Y+m3r6TkMyWpXqo+i+KcCo8k= Subject key identifier: B5:AE:28:88:B9:03:08:23:3D:3B:24:65:3C:5F:E0:13:A9:FC:13:4A Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 04E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft Manifest number: 04D0 Signing time: Sat 26 Apr 2025 23:30:39 +0000 Manifest this update: Sat 26 Apr 2025 23:30:39 +0000 Manifest next update: Sat 03 May 2025 23:30:39 +0000 Files and hashes: 1: cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl (hash: SGSG8YUWq/xSjxxhzYROSj6jYQEonLDQhsgqF6UGjRk=) 2: 17E03256B62811EF8D234218C4F9AE02.roa (hash: K58ualcAz/8vUOZws7f1WHAGLYLtETkXGgN3zPvTq4E=) 3: 67624B6088B611EFA5F28A68C4F9AE02.roa (hash: qxNt5X+NJ/lDZV/a3w6QhqphN2TIJWTmHt+XWPeL2Fw=) 4: 345F56F87FE311EF80C0F71FC4F9AE02.roa (hash: GPBxxSS7tjXB56EHA0eFK8gRXpMRgACbmw5NUyFguDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87, serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Validity Not Before: Apr 26 23:30:39 2025 GMT Not After : May 3 23:30:39 2025 GMT Subject: CN=680d6c9f-0eee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:be:1b:41:76:43:83:37:2c:e0:51:0d:0c:63: e6:2f:99:cf:13:bd:9d:0d:a7:25:75:a7:b8:75:a5: 98:51:3a:d6:98:d2:3d:23:e5:c6:a3:7f:14:fc:fb: fa:60:f9:3c:2a:50:80:fa:f6:23:59:45:8f:0a:b9: b9:b7:63:4e:f9:ff:ce:3f:23:57:e4:1b:7e:87:6f: ba:f8:8b:18:2f:b8:e2:de:a5:57:84:a3:63:7e:3d: 84:f8:c1:eb:b0:e3:8a:ed:3b:1c:2c:e6:53:e4:4e: e9:14:0e:ca:7a:9e:9d:3a:b1:25:be:44:92:85:0b: 96:fb:0c:d5:ba:ba:eb:38:38:e6:94:4f:87:c0:70: 0e:2d:c3:17:69:ad:52:ca:43:90:ac:e2:23:0a:a6: 1d:63:7e:f2:bb:1d:4d:00:17:80:e1:d6:18:30:a1: c6:78:98:ad:34:4d:44:bd:45:22:97:94:91:45:2c: 3d:ad:98:96:0b:10:0d:14:ce:ae:e8:30:62:9a:4b: b3:e5:d1:c9:59:54:15:cd:3e:4a:d5:d0:72:6a:e9: 83:90:b4:a4:89:e9:81:cd:8e:a9:45:b3:55:1d:99: f9:6e:a3:a4:a6:55:14:6a:c9:d0:c5:55:05:57:6c: 1a:da:ac:e9:54:1d:56:7f:67:49:fe:0b:3b:76:55: 7e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AE:28:88:B9:03:08:23:3D:3B:24:65:3C:5F:E0:13:A9:FC:13:4A X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:45:09:62:19:bb:ab:bb:0b:d7:0d:a2:f0:0b:a2:9f:80:87: dd:79:4c:c8:88:87:2d:eb:60:3d:25:8c:ac:94:94:a5:39:6b: 78:a1:58:16:d9:63:fc:bd:bd:ae:6e:c6:57:8e:df:68:75:34: 81:91:33:67:7f:54:47:d0:9d:51:f7:03:25:b1:77:c8:93:27: a0:dc:e3:b0:10:1f:9f:aa:3a:12:01:fd:56:e7:eb:e3:5b:14: fd:f1:44:ae:e2:61:0b:f0:c0:98:24:70:65:d8:5a:0f:f8:4a: 07:2a:0d:70:d0:11:9f:d4:cc:6d:3b:16:07:0b:32:41:c7:ee: 7f:b5:8c:24:70:0b:50:45:56:c9:30:7c:b6:ae:1e:11:e1:25: 2f:58:16:2d:a5:4d:c3:c3:34:5e:5b:66:7c:e4:2a:01:1f:4e: 16:2b:56:a4:b9:89:ee:31:01:d0:f0:3e:a1:82:69:ef:46:77: 83:d3:29:c1:b5:4b:eb:b7:fa:ab:b9:71:6f:44:f2:70:a6:44: 1d:3c:c8:18:a3:6a:e7:95:84:7e:c0:6b:39:ee:5e:84:bc:53: 51:e8:cc:a4:1a:82:ff:5d:22:2d:33:db:c2:e5:50:cd:99:66: 97:97:dd:15:48:ff:6b:f0:8d:d5:94:fd:09:0f:56:bf:1e:5d: 8b:3c:76:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjUwNDI2MjMzMDM5WhcNMjUwNTAzMjMzMDM5WjAYMRYwFAYD VQQDEw02ODBkNmM5Zi0wZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1r4bQXZDgzcs4FENDGPmL5nPE72dDacldae4daWYUTrWmNI9I+XGo38U/Pv6 YPk8KlCA+vYjWUWPCrm5t2NO+f/OPyNX5Bt+h2+6+IsYL7ji3qVXhKNjfj2E+MHr sOOK7TscLOZT5E7pFA7Kep6dOrElvkSShQuW+wzVurrrODjmlE+HwHAOLcMXaa1S ykOQrOIjCqYdY37yux1NABeA4dYYMKHGeJitNE1EvUUil5SRRSw9rZiWCxANFM6u 6DBimkuz5dHJWVQVzT5K1dByaumDkLSkiemBzY6pRbNVHZn5bqOkplUUasnQxVUF V2wa2qzpVB1Wf2dJ/gs7dlV+xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWuKIi5 AwgjPTskZTxf4BOp/BNKMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEQ4Ny9GNjgzQ0VGMjIxRUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3 cVpNX0tVUGNKcE9mb0dDS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBURQliGburuwvXDaLwC6KfgIfdeUzIiIct62A9JYyslJSlOWt4oVgW 2WP8vb2ubsZXjt9odTSBkTNnf1RH0J1R9wMlsXfIkyeg3OOwEB+fqjoSAf1W5+vj WxT98USu4mEL8MCYJHBl2FoP+EoHKg1w0BGf1MxtOxYHCzJBx+5/tYwkcAtQRVbJ MHy2rh4R4SUvWBYtpU3DwzReW2Z85CoBH04WK1akuYnuMQHQ8D6hgmnvRneD0ynB tUvrt/qruXFvRPJwpkQdPMgYo2rnlYR+wGs57l6EvFNR6MykGoL/XSItM9vC5VDN mWaXl90VSP9r8I3VlP0JD1a/Hl2LPHYe -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net