$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft File: mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft (raw, json) Hash identifier: /4Ti++3ipzDakg9WCN1DE6S/p6y+Cjk5U1n8J8aXF/g= Subject key identifier: BA:37:42:89:E3:5D:91:3D:66:EA:24:32:1B:9F:49:74:19:45:80:C0 Authority key identifier: 99:4D:9B:2D:97:CB:CC:B5:D5:24:4D:E0:A7:E5:39:74:1F:88:8A:23 Certificate issuer: /CN=A91E9EA9/serialNumber=994D9B2D97CBCCB5D5244DE0A7E539741F888A23 Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft Manifest number: 0620 Signing time: Sat 26 Apr 2025 22:25:00 +0000 Manifest this update: Sat 26 Apr 2025 22:24:59 +0000 Manifest next update: Sat 03 May 2025 22:24:59 +0000 Files and hashes: 1: mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl (hash: U5+jEb8qufQEZWpY3/+M+YOnXMqxvAh8s9ZIUzR7iz0=) 2: 1B4DA20CD46711ECA1A27035C4F9AE02.roa (hash: ztzKFXpjSxYM8wd4nThJ1BsK2ipsW271bSfHzk4YREM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9EA9, serialNumber=994D9B2D97CBCCB5D5244DE0A7E539741F888A23 Validity Not Before: Apr 26 22:24:59 2025 GMT Not After : May 3 22:24:59 2025 GMT Subject: CN=680d5d3c-8271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:43:15:44:dd:80:de:5f:f3:28:e0:ea:64: 4c:12:e3:a9:48:cc:93:07:96:be:c8:62:3a:36:2f: ae:ed:4f:cf:65:5e:39:19:2a:e6:6d:c8:09:c2:a4: 71:a3:4b:8c:7e:c3:c6:77:43:cc:6f:2a:29:0b:6c: b8:64:48:97:ec:10:e2:ca:75:21:fe:c6:fc:d6:05: 2f:68:35:d3:b1:c7:ed:0e:ee:47:a6:51:2c:ed:20: 70:d3:3f:73:71:d6:4e:39:bd:98:d9:56:b1:6c:55: e4:f5:57:c5:f8:39:bc:b0:fe:71:7b:c3:33:1b:46: 9f:18:d6:f3:5f:e4:42:3f:d9:90:a9:ec:de:a4:34: c2:2a:d5:83:14:cb:5a:7d:dc:23:eb:ba:97:f7:75: 9f:63:e2:f3:06:92:26:c5:00:53:31:c6:42:16:55: ab:7f:26:6f:e4:c5:b6:99:f4:6a:42:34:43:33:77: 65:4a:58:b5:12:32:43:d2:bd:bc:64:a2:a8:cc:c2: f2:29:68:82:31:22:b2:75:58:97:5c:99:49:12:0c: 31:69:cf:2b:58:8a:ea:cc:e4:07:eb:6e:06:ad:47: 0a:1f:90:72:44:90:82:31:35:9d:11:f7:5c:96:3e: 01:cd:2b:c6:8e:ee:cf:17:1b:34:be:e9:f7:06:36: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:37:42:89:E3:5D:91:3D:66:EA:24:32:1B:9F:49:74:19:45:80:C0 X509v3 Authority Key Identifier: keyid:99:4D:9B:2D:97:CB:CC:B5:D5:24:4D:E0:A7:E5:39:74:1F:88:8A:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mU2bLZfLzLXVJE3gp-U5dB-IiiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9EA9/E646BF1E968011EBAA64FA56C4F9AE02/mU2bLZfLzLXVJE3gp-U5dB-IiiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:9e:0f:c0:13:1f:91:ab:bc:84:0a:21:2d:f4:21:c9:6e:50: 4f:8f:33:c3:84:48:ff:fe:7c:88:02:8f:94:5e:ca:86:7f:74: 99:43:c8:41:7a:ce:ae:5e:1a:65:ca:eb:f0:70:a9:03:76:54: d2:43:11:a0:56:a0:d3:38:3f:26:a1:24:de:a6:5c:fe:0a:69: 2a:63:2f:8d:be:62:78:a6:8e:f8:99:4b:ad:2a:c5:b3:ad:cb: c0:21:8f:70:a6:d4:93:b6:84:fd:2c:9a:f4:e7:5f:32:6d:5e: 0c:92:6f:3e:a7:2c:16:5a:a3:ca:68:89:94:b2:6c:12:cb:d1: f4:9b:60:f7:6f:51:17:ee:17:70:b7:bf:0d:45:8c:55:62:68: 17:94:e3:9e:05:63:2d:a9:58:cc:70:e1:52:49:46:81:7f:e8: 75:3e:2d:be:1b:84:1e:e6:ad:48:d5:b3:75:e8:d0:49:ed:92: 87:fb:75:7d:94:09:6d:3e:36:32:6b:7b:77:60:62:03:c7:c1: 67:bb:68:6a:56:fc:7f:56:a5:db:25:da:a9:eb:06:1d:cf:09: 11:93:3c:2e:4d:12:d7:51:5a:1f:4e:1e:44:0c:f1:dc:f2:07: ed:39:28:1a:08:fc:a9:a9:d3:8b:f4:4f:8b:ec:db:b2:40:5f: 48:ac:ed:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlFQTkxMTAvBgNVBAUTKDk5NEQ5QjJEOTdDQkNDQjVENTI0NERFMEE3RTUzOTc0 MUY4ODhBMjMwHhcNMjUwNDI2MjIyNDU5WhcNMjUwNTAzMjIyNDU5WjAYMRYwFAYD VQQDEw02ODBkNWQzYy04MjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fVDFUTdgN5f8yjg6mRMEuOpSMyTB5a+yGI6Ni+u7U/PZV45GSrmbcgJwqRx o0uMfsPGd0PMbyopC2y4ZEiX7BDiynUh/sb81gUvaDXTscftDu5HplEs7SBw0z9z cdZOOb2Y2VaxbFXk9VfF+Dm8sP5xe8MzG0afGNbzX+RCP9mQqezepDTCKtWDFMta fdwj67qX93WfY+LzBpImxQBTMcZCFlWrfyZv5MW2mfRqQjRDM3dlSli1EjJD0r28 ZKKozMLyKWiCMSKydViXXJlJEgwxac8rWIrqzOQH624GrUcKH5ByRJCCMTWdEfdc lj4BzSvGju7PFxs0vun3BjaUgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLo3Qonj XZE9ZuokMhufSXQZRYDAMB8GA1UdIwQYMBaAFJlNmy2Xy8y11SRN4KflOXQfiIoj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUVBOS9FNjQ2QkYxRTk2 ODAxMUVCQUE2NEZBNTZDNEY5QUUwMi9tVTJiTFpmTHpMWFZKRTNncC1VNWRCLUlp aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21VMmJMWmZMekxYVkpFM2dwLVU1ZEItSWlpTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUVBOS9FNjQ2QkYxRTk2ODAxMUVCQUE2NEZBNTZDNEY5QUUwMi9tVTJiTFpmTHpM WFZKRTNncC1VNWRCLUlpaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1ng/AEx+Rq7yECiEt9CHJblBPjzPDhEj//nyIAo+UXsqGf3SZQ8hB es6uXhplyuvwcKkDdlTSQxGgVqDTOD8moSTeplz+CmkqYy+NvmJ4po74mUutKsWz rcvAIY9wptSTtoT9LJr0518ybV4Mkm8+pywWWqPKaImUsmwSy9H0m2D3b1EX7hdw t78NRYxVYmgXlOOeBWMtqVjMcOFSSUaBf+h1Pi2+G4Qe5q1I1bN16NBJ7ZKH+3V9 lAltPjYya3t3YGIDx8Fnu2hqVvx/VqXbJdqp6wYdzwkRkzwuTRLXUVofTh5EDPHc 8gftOSgaCPypqdOL9E+L7NuyQF9IrO15 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:16 2025 by rpki-client on console.sobornost.net