$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: wkSY9jmpQpnTy1ajGpurOB7OP3sJSlgRZlsUSQ1RPjQ= Subject key identifier: F0:4E:1B:80:A2:B6:AA:F7:FD:45:A5:81:6C:E8:15:3B:0D:2F:50:98 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0BC8 Signing time: Mon 28 Apr 2025 19:46:54 +0000 Manifest this update: Mon 28 Apr 2025 19:46:53 +0000 Manifest next update: Mon 05 May 2025 19:46:53 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: BmWPndqzzmXvekKdw2hoIOY6Glb8eVbFcQoYFUwksKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Apr 28 19:46:53 2025 GMT Not After : May 5 19:46:53 2025 GMT Subject: CN=680fdb2d-6197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c7:3c:b2:44:f3:5c:5f:4e:21:92:50:29:66: 95:a3:e5:3b:b7:e2:25:4b:67:d2:da:8d:5b:b6:e5: b5:41:7a:9c:67:fc:42:5a:e4:91:dc:79:99:95:b3: b9:f3:51:9c:93:40:c7:66:a5:4f:5f:78:6e:f8:96: 16:7f:fb:89:35:ab:fa:80:f8:42:0c:ea:8e:31:bb: 57:0f:61:65:78:6f:f2:c2:95:9f:12:e9:c0:04:10: 1b:a3:ae:f6:15:fa:47:bb:03:7f:d3:56:60:68:7a: d5:01:dc:24:68:3c:07:c5:06:1f:b1:ce:92:74:2c: 79:43:f5:94:c0:e5:a2:fd:50:56:fb:cb:32:c1:0f: f6:ee:eb:ae:e7:3a:0d:de:e1:50:2f:4b:c1:92:36: ec:c2:76:be:33:d9:65:9b:c1:15:8f:f4:41:49:e5: 11:cb:7f:9b:71:da:9e:93:a8:61:c2:bd:1d:ca:fc: 9a:9a:07:34:93:54:7b:3c:41:19:de:02:1e:cb:7c: 77:7c:62:99:0a:a8:b7:91:96:a9:6a:b3:6c:a2:dc: 07:1f:0a:46:80:b4:11:81:e3:12:10:6f:4c:2b:45: 5e:ba:0e:5e:61:bf:ca:d5:bf:25:76:0f:36:83:79: 20:db:9e:ef:6b:4c:c1:c5:d8:41:69:0f:04:68:f6: a8:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:4E:1B:80:A2:B6:AA:F7:FD:45:A5:81:6C:E8:15:3B:0D:2F:50:98 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:c5:9f:32:81:e3:6b:69:90:32:40:40:dd:e3:71:d0:62:c2: f5:53:d1:ad:4a:3f:dd:07:8a:5d:99:26:69:38:8a:d1:85:48: 3c:7d:77:ab:f3:af:cc:e1:44:c4:a1:46:b8:a0:f6:1f:07:04: 1c:e1:6c:f2:12:e0:f6:26:be:cb:77:30:34:ff:78:78:14:3e: fc:06:87:e9:24:e7:c4:a8:da:87:2f:54:43:7b:b0:4d:1c:39: b3:b5:c5:a1:e5:1c:af:b5:bf:a1:cb:c9:fa:66:9a:ca:bc:8f: 00:4d:e4:c5:d4:0d:97:33:fa:9c:f5:c6:94:9a:8b:81:77:f0: cb:1d:6f:47:41:98:c4:de:65:ac:65:d2:19:e5:25:99:ce:2e: 1f:a0:5a:ce:c2:ed:60:2d:cc:70:4e:71:84:74:00:e4:8f:bc: ee:da:7b:b7:43:f7:9b:bf:52:41:83:51:92:57:60:44:5b:27: 79:d8:4d:9e:e0:68:87:cc:25:bc:1a:e2:99:83:ae:3a:3e:11: 41:ef:16:19:c9:75:34:d3:e2:2f:01:00:88:58:d7:be:89:ac: 4b:8f:0b:dc:b4:a5:d3:5e:68:fd:a8:43:ec:1f:cd:0d:42:01: 4f:d3:90:f0:19:ca:a6:52:73:a9:2e:1f:0e:ed:8e:e1:a2:23: a3:bf:01:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwNDI4MTk0NjUzWhcNMjUwNTA1MTk0NjUzWjAYMRYwFAYD VQQDEw02ODBmZGIyZC02MTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMc8skTzXF9OIZJQKWaVo+U7t+IlS2fS2o1btuW1QXqcZ/xCWuSR3HmZlbO5 81Gck0DHZqVPX3hu+JYWf/uJNav6gPhCDOqOMbtXD2FleG/ywpWfEunABBAbo672 FfpHuwN/01ZgaHrVAdwkaDwHxQYfsc6SdCx5Q/WUwOWi/VBW+8sywQ/27uuu5zoN 3uFQL0vBkjbswna+M9llm8EVj/RBSeURy3+bcdqek6hhwr0dyvyamgc0k1R7PEEZ 3gIey3x3fGKZCqi3kZaparNsotwHHwpGgLQRgeMSEG9MK0Veug5eYb/K1b8ldg82 g3kg257va0zBxdhBaQ8EaPaodQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBOG4Ci tqr3/UWlgWzoFTsNL1CYMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrxZ8ygeNraZAyQEDd43HQYsL1U9GtSj/dB4pdmSZpOIrRhUg8fXer 86/M4UTEoUa4oPYfBwQc4WzyEuD2Jr7LdzA0/3h4FD78BofpJOfEqNqHL1RDe7BN HDmztcWh5Ryvtb+hy8n6ZprKvI8ATeTF1A2XM/qc9caUmouBd/DLHW9HQZjE3mWs ZdIZ5SWZzi4foFrOwu1gLcxwTnGEdADkj7zu2nu3Q/ebv1JBg1GSV2BEWyd52E2e 4GiHzCW8GuKZg646PhFB7xYZyXU00+IvAQCIWNe+iaxLjwvctKXTXmj9qEPsH80N QgFP05DwGcqmUnOpLh8O7Y7hoiOjvwHZ -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:58 2025 by rpki-client on console.sobornost.net