$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft File: U4JkLr15mg-ChtBlSCntdoQw-eQ.mft (raw, json) Hash identifier: bMYXFHKXJGRvZP52duK6TJtWT1GVAKNzTV91KFO4VuM= Subject key identifier: DC:2C:42:19:37:E9:FF:CC:E7:75:D9:4C:90:E7:87:B1:9F:E1:0F:05 Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0E43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft Manifest number: 0E3E Signing time: Mon 28 Apr 2025 17:59:26 +0000 Manifest this update: Mon 28 Apr 2025 17:59:26 +0000 Manifest next update: Mon 05 May 2025 17:59:26 +0000 Files and hashes: 1: U4JkLr15mg-ChtBlSCntdoQw-eQ.crl (hash: ETfSU/7B7Or5sV4c21T6XL3Kak0lJQR5W6EfFiGktBg=) 2: 350711FA881211EE9710F928C4F9AE02.roa (hash: /AJd6poS8Ng5rehLy7t+jOBIXVOshJArXBaFYmXY69Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3651 (0xe43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856, serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: Apr 28 17:59:26 2025 GMT Not After : May 5 17:59:26 2025 GMT Subject: CN=680fc1fe-a9f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:ef:22:e9:71:5d:e7:c1:dc:62:ac:73:b5: ab:40:4b:de:16:b1:a6:b8:35:01:32:1d:57:86:fd: a1:8f:87:ae:7f:46:57:57:0c:fc:80:10:32:93:52: 16:70:2b:02:85:b6:fc:79:bf:cc:00:69:75:89:fd: be:5e:96:e1:26:cb:2f:de:15:ad:78:9d:e6:54:83: 66:ef:d6:29:bd:f8:2e:37:84:69:c1:e8:b1:14:d8: d9:48:ed:3b:52:cf:9e:15:a6:95:0a:8e:ab:85:48: 83:ef:15:e0:44:e7:fb:34:11:5f:1b:0b:a2:cb:f4: c7:95:8a:50:f8:ed:32:31:8b:00:de:cd:5d:9f:da: 64:b7:2a:6d:a2:46:ee:bf:70:d3:a7:6e:a1:7d:da: 5e:88:75:60:78:4c:e6:9b:7a:7d:16:bc:ad:7b:d1: 1c:8b:a3:ae:6b:52:33:94:22:06:f0:4f:4d:b3:9f: 6c:29:83:f3:c6:5d:f2:94:18:ae:b5:eb:da:16:aa: 1f:5b:9b:40:f3:f7:74:5d:89:25:d0:72:2d:56:16: 25:fe:dd:14:fc:1b:7e:28:cf:e9:69:a7:12:03:e6: fd:bb:43:66:2f:06:2f:4f:ad:f7:ec:0b:05:c7:cf: d1:c4:97:0d:38:83:b1:b4:72:7e:23:9d:90:20:90: 6f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2C:42:19:37:E9:FF:CC:E7:75:D9:4C:90:E7:87:B1:9F:E1:0F:05 X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:5c:39:ff:55:c2:a3:19:fd:4d:e0:ea:0b:38:ad:bd:5e:28: 2e:5a:52:3b:5b:b3:56:c8:6a:84:44:b2:e7:6d:7c:f2:b7:5a: f7:ac:9f:01:cc:0d:64:58:2e:62:a7:e8:ea:9d:43:7a:bf:13: a8:29:6d:5e:13:ff:d8:be:75:33:78:d3:f4:4a:8d:bd:03:40: 7b:1a:6c:ca:2a:1c:b3:5d:4e:73:6e:75:f8:f6:4a:bf:78:b0: c1:43:50:00:7e:ec:c0:32:d8:6d:96:f0:dd:d6:cd:14:68:53: 71:05:08:96:8b:f2:f7:4f:05:7c:a3:0d:94:bd:e1:ed:7f:07: 8d:a0:ff:69:3e:8c:d4:b7:81:42:05:15:3e:e5:4a:e0:a2:f0: 16:32:65:7f:c2:da:ed:6b:4d:f0:5b:6b:ef:a8:67:64:c2:a7: e3:c3:56:81:b4:69:11:0a:f9:4e:6b:e2:76:bf:b7:a3:f9:43: b6:8f:2d:cc:ca:72:e6:75:1c:79:32:f6:1d:f8:1b:b7:cd:9e: d0:ad:8c:d5:cf:d8:24:a5:aa:55:c8:10:24:a5:fa:a4:98:19: 60:b3:34:2b:97:66:95:0c:4a:e4:dc:e1:e2:8a:fd:43:79:20: b2:e3:ad:cf:10:f0:95:41:45:51:22:3a:ff:d4:0b:51:50:0a: 30:84:f3:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjUwNDI4MTc1OTI2WhcNMjUwNTA1MTc1OTI2WjAYMRYwFAYD VQQDEw02ODBmYzFmZS1hOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9nvIulxXefB3GKsc7WrQEveFrGmuDUBMh1Xhv2hj4euf0ZXVwz8gBAyk1IW cCsChbb8eb/MAGl1if2+XpbhJssv3hWteJ3mVINm79YpvfguN4RpweixFNjZSO07 Us+eFaaVCo6rhUiD7xXgROf7NBFfGwuiy/THlYpQ+O0yMYsA3s1dn9pktyptokbu v3DTp26hfdpeiHVgeEzmm3p9Fryte9Eci6Oua1IzlCIG8E9Ns59sKYPzxl3ylBiu tevaFqofW5tA8/d0XYkl0HItVhYl/t0U/Bt+KM/paacSA+b9u0NmLwYvT6337AsF x8/RxJcNOIOxtHJ+I52QIJBvPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwsQhk3 6f/M53XZTJDnh7Gf4Q8FMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yQ0Q0NUZCQTlFMjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1n LUNodEJsU0NudGRvUXctZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVXDn/VcKjGf1N4OoLOK29XiguWlI7W7NWyGqERLLnbXzyt1r3rJ8B zA1kWC5ip+jqnUN6vxOoKW1eE//YvnUzeNP0So29A0B7GmzKKhyzXU5zbnX49kq/ eLDBQ1AAfuzAMthtlvDd1s0UaFNxBQiWi/L3TwV8ow2UveHtfweNoP9pPozUt4FC BRU+5UrgovAWMmV/wtrta03wW2vvqGdkwqfjw1aBtGkRCvlOa+J2v7ej+UO2jy3M ynLmdRx5MvYd+Bu3zZ7QrYzVz9gkpapVyBAkpfqkmBlgszQrl2aVDErk3OHiiv1D eSCy463PEPCVQUVRIjr/1AtRUAowhPMp -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:13 2025 by rpki-client on console.sobornost.net