$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: AOTz/E9D6qSUijaT7eUNOAANUzof978CSobFO8gIlwc= Subject key identifier: 18:75:65:EE:91:E3:6B:35:96:71:95:47:AF:06:AA:53:BA:CA:1F:01 Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 098F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 0989 Signing time: Mon 28 Apr 2025 20:31:25 +0000 Manifest this update: Mon 28 Apr 2025 20:31:24 +0000 Manifest next update: Mon 05 May 2025 20:31:24 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: Lyuly4Otv5kq9iyIyP3oLBffc+rz52WqKdIKdrJT18U=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: 1ZtsZNF5jFsKlAT00IrDzQyZHeqFH7iBf+N8uJoqrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2447 (0x98f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164, serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: Apr 28 20:31:24 2025 GMT Not After : May 5 20:31:24 2025 GMT Subject: CN=680fe59c-5827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e4:57:96:be:72:e4:a6:4d:ea:4d:20:77:78: 85:9c:9f:18:bf:83:18:18:39:f2:79:93:73:15:31: 23:e8:67:16:51:2f:1c:44:85:00:39:4b:e1:10:61: 89:f6:13:89:03:d3:1e:fd:50:87:f0:a1:b3:34:4f: ff:4d:44:44:12:89:be:22:f9:f9:ba:81:70:e2:bc: 49:69:20:74:67:f2:62:e9:96:74:3a:97:8f:38:b3: 2c:f8:fd:34:5f:c6:c0:42:54:bb:6a:74:ad:b9:79: db:89:eb:29:f2:9e:77:dc:43:8a:85:a6:89:c1:98: 80:2f:f9:7f:86:eb:8d:65:ca:de:c7:c6:5d:eb:ff: 76:65:e4:5d:c8:50:14:ef:7a:6a:24:71:17:b8:97: 0e:38:ed:aa:b2:ad:ba:5e:37:21:65:a8:a9:49:45: 8c:e5:e9:e8:56:a2:5f:67:f0:20:7d:48:59:f7:66: 25:ce:29:81:bc:14:37:9b:eb:64:2b:40:f2:54:1e: 46:12:1f:c0:6f:36:24:40:5b:9b:f9:1c:da:36:80: 6b:1b:01:e8:4c:cc:70:92:c0:e9:15:e2:ec:82:87: 74:d0:9d:fd:8e:42:f8:23:29:46:c0:65:cd:bf:b7: 2d:55:59:30:ea:7a:18:78:9c:8f:6f:ad:ce:30:02: 76:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:75:65:EE:91:E3:6B:35:96:71:95:47:AF:06:AA:53:BA:CA:1F:01 X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:82:c8:04:dd:db:23:c3:5c:cf:59:3c:92:18:9b:56:8b:ec: fc:c9:14:cd:3d:5f:eb:b0:b9:9b:e7:f1:e9:44:87:12:1e:14: 95:11:3b:59:aa:9e:f3:0a:87:76:33:16:1b:76:20:7f:3c:c6: f9:57:75:af:e9:c1:f6:c2:b2:87:e5:51:36:14:f2:0b:ac:1b: 7f:87:dc:11:47:08:6f:28:ff:cf:95:10:ff:8c:50:48:f9:c0: 4f:cc:79:89:cf:08:83:4e:2b:f5:9b:b9:ac:82:eb:59:d1:a5: b7:66:1b:dc:fa:9c:57:e7:de:bc:1f:19:7f:8d:2f:1f:3e:65: 11:84:e2:c2:60:5b:cb:20:37:1e:1d:cd:e7:d0:c1:eb:2b:b1: 08:55:c5:75:20:68:9f:86:2c:53:35:fe:26:7e:23:54:ba:c2: 77:4e:73:81:f5:66:81:6f:29:52:63:b0:46:e1:b8:22:fa:c7: 1b:0d:21:0d:3b:9d:91:8c:c0:8b:31:1f:0f:74:b3:d6:9b:ac: 03:6e:dc:69:98:5f:e9:8f:96:cc:86:bc:ca:c6:c4:8e:a4:d2: 62:2c:e3:f7:1d:64:c8:c0:af:bb:97:46:3d:a9:ea:84:a5:97: cd:02:eb:82:e6:97:6c:80:1d:5d:33:05:b0:49:25:2a:a8:f7: 7f:3c:bc:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjUwNDI4MjAzMTI0WhcNMjUwNTA1MjAzMTI0WjAYMRYwFAYD VQQDEw02ODBmZTU5Yy01ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+RXlr5y5KZN6k0gd3iFnJ8Yv4MYGDnyeZNzFTEj6GcWUS8cRIUAOUvhEGGJ 9hOJA9Me/VCH8KGzNE//TUREEom+Ivn5uoFw4rxJaSB0Z/Ji6ZZ0OpePOLMs+P00 X8bAQlS7anStuXnbiesp8p533EOKhaaJwZiAL/l/huuNZcrex8Zd6/92ZeRdyFAU 73pqJHEXuJcOOO2qsq26XjchZaipSUWM5enoVqJfZ/AgfUhZ92YlzimBvBQ3m+tk K0DyVB5GEh/AbzYkQFub+RzaNoBrGwHoTMxwksDpFeLsgod00J39jkL4IylGwGXN v7ctVVkw6noYeJyPb63OMAJ2ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBh1Ze6R 42s1lnGVR68GqlO6yh8BMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTgsgE3dsjw1zPWTySGJtWi+z8yRTNPV/rsLmb5/HpRIcSHhSVETtZ qp7zCod2MxYbdiB/PMb5V3Wv6cH2wrKH5VE2FPILrBt/h9wRRwhvKP/PlRD/jFBI +cBPzHmJzwiDTiv1m7msgutZ0aW3Zhvc+pxX5968Hxl/jS8fPmURhOLCYFvLIDce Hc3n0MHrK7EIVcV1IGifhixTNf4mfiNUusJ3TnOB9WaBbylSY7BG4bgi+scbDSEN O52RjMCLMR8PdLPWm6wDbtxpmF/pj5bMhrzKxsSOpNJiLOP3HWTIwK+7l0Y9qeqE pZfNAuuC5pdsgB1dMwWwSSUqqPd/PLyw -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:58 2025 by rpki-client on console.sobornost.net