$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: T6FXvXPTSvL9Im8OXKbAxRqV41SVyz5zTzebokG4hdw= Subject key identifier: 00:2F:CD:5B:B3:70:3F:FE:18:02:C3:BD:C6:B6:22:B7:FC:25:97:5B Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 127C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 470B Signing time: Mon 28 Apr 2025 14:21:02 +0000 Manifest this update: Mon 28 Apr 2025 14:21:01 +0000 Manifest next update: Mon 05 May 2025 14:21:01 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: mN+0LBfSb8xeyo4VH9XCvT/CQKc5Dz4AWoHQs03iqQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4732 (0x127c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Apr 28 14:21:01 2025 GMT Not After : May 5 14:21:01 2025 GMT Subject: CN=680f8ece-f528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0b:4e:3f:aa:da:df:e0:f0:1e:f0:43:f6:25: 15:43:26:f6:a7:9c:13:91:93:05:87:1c:c1:32:b4: 08:4b:24:52:76:35:ed:34:f3:c1:e3:84:b1:9e:c9: c7:0e:60:6d:61:32:5f:ef:83:c1:8a:3a:cb:c4:11: 17:12:a8:34:21:e1:cb:92:f5:64:6c:f3:72:73:bb: 02:f8:a5:5c:8a:81:68:e2:6e:35:2c:e3:31:b5:97: c3:d5:a2:4d:65:6a:55:e8:48:e1:74:18:b4:77:43: 15:8e:db:89:04:e9:46:6d:55:2b:04:52:ec:d4:96: 8c:d0:85:61:ee:c6:d3:df:63:8e:80:6b:98:a6:33: 32:05:06:9d:91:3c:4f:49:db:e1:26:cc:63:bb:bb: c1:dc:9d:fc:5d:04:4f:b5:ba:2f:c1:0a:f4:be:fb: 90:1d:2c:64:d3:a1:87:1e:1f:bb:2b:eb:f8:f4:41: 49:d6:a7:5a:6b:a2:73:df:1b:45:9c:2d:9a:bf:55: 65:82:e3:87:91:7f:07:1b:81:fc:7d:1e:4a:bc:0d: c6:95:bb:78:ea:44:0e:9f:7a:18:94:6e:db:bc:a0: f3:84:51:23:fd:eb:c6:e0:08:b6:0c:5a:38:fe:3d: 5f:eb:28:e7:a4:4a:76:2e:cf:42:2d:ac:cd:51:a1: 28:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:2F:CD:5B:B3:70:3F:FE:18:02:C3:BD:C6:B6:22:B7:FC:25:97:5B X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:31:c5:09:aa:95:4d:57:89:6c:02:ef:dc:38:90:35:f0:90: 96:50:34:24:e1:1b:ad:3f:c9:9f:22:19:35:b3:ab:04:a2:f3: 5c:89:20:36:ae:47:74:ba:b8:b3:86:4c:08:f0:a9:39:bd:1a: ee:fe:5c:6a:66:b9:d5:21:b5:ab:10:e9:17:b0:6a:65:78:ea: ac:95:11:35:eb:f7:69:36:ff:bd:77:d0:6f:73:29:66:4f:e0: 65:98:db:60:f8:2c:d9:9f:18:8b:c3:0d:13:b2:de:de:6f:08: 81:98:a4:5e:0d:5d:98:7f:ea:5e:73:a7:e4:a4:e3:44:07:38: 1c:52:c3:24:1a:ed:e3:7d:38:f9:41:03:93:10:f9:99:dc:96: de:9e:f0:24:e0:1e:2d:ec:c5:ab:60:68:dc:ce:bf:4b:37:50: 45:c2:96:0e:5b:26:31:c0:39:b4:9a:f6:13:6e:0b:7c:03:b2: 57:73:19:dd:59:ae:ab:7f:f6:ab:b2:70:c4:52:4b:da:68:70: d1:ea:ec:ed:e5:06:63:18:27:72:a8:4f:13:52:6f:5c:76:d6: 7a:bd:77:a1:f1:22:8d:39:32:7d:09:f2:15:00:34:ae:77:59: 70:71:fd:8c:0c:f7:92:27:76:da:1f:b6:85:50:40:f9:35:68: 0a:51:73:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUwNDI4MTQyMTAxWhcNMjUwNTA1MTQyMTAxWjAYMRYwFAYD VQQDEw02ODBmOGVjZS1mNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wtOP6ra3+DwHvBD9iUVQyb2p5wTkZMFhxzBMrQISyRSdjXtNPPB44SxnsnH DmBtYTJf74PBijrLxBEXEqg0IeHLkvVkbPNyc7sC+KVcioFo4m41LOMxtZfD1aJN ZWpV6EjhdBi0d0MVjtuJBOlGbVUrBFLs1JaM0IVh7sbT32OOgGuYpjMyBQadkTxP SdvhJsxju7vB3J38XQRPtbovwQr0vvuQHSxk06GHHh+7K+v49EFJ1qdaa6Jz3xtF nC2av1VlguOHkX8HG4H8fR5KvA3Glbt46kQOn3oYlG7bvKDzhFEj/evG4Ai2DFo4 /j1f6yjnpEp2Ls9CLazNUaEo0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAvzVuz cD/+GALDvca2Irf8JZdbMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZMcUJqpVNV4lsAu/cOJA18JCWUDQk4RutP8mfIhk1s6sEovNciSA2 rkd0urizhkwI8Kk5vRru/lxqZrnVIbWrEOkXsGpleOqslRE16/dpNv+9d9Bvcylm T+BlmNtg+CzZnxiLww0Tst7ebwiBmKReDV2Yf+pec6fkpONEBzgcUsMkGu3jfTj5 QQOTEPmZ3JbenvAk4B4t7MWrYGjczr9LN1BFwpYOWyYxwDm0mvYTbgt8A7JXcxnd Wa6rf/arsnDEUkvaaHDR6uzt5QZjGCdyqE8TUm9cdtZ6vXeh8SKNOTJ9CfIVADSu d1lwcf2MDPeSJ3baH7aFUED5NWgKUXNu -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:03 2025 by rpki-client on console.sobornost.net