$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft File: lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft (raw, json) Hash identifier: fecYSWVGtf54e/i2XDb7/hDAfT7EdzV2ktn0ukmyS+o= Subject key identifier: 8C:AB:89:62:04:B0:19:CF:22:EC:31:BF:85:0E:8F:EA:71:58:58:74 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0B19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft Manifest number: 0B04 Signing time: Sat 26 Apr 2025 19:07:22 +0000 Manifest this update: Sat 26 Apr 2025 19:07:22 +0000 Manifest next update: Sat 03 May 2025 19:07:22 +0000 Files and hashes: 1: lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl (hash: zcdzEnT37nCmkezBHQQmMGGC9rqOxI5iUumbSAoX0O4=) 2: 6D20C69805F811F0833EAC2FC4F9AE02.roa (hash: mqegBy9CQXgjEaVSay/tvLxEyahjajLb/MPs8C1oBxs=) 3: E64F585A060111F0BCBC7237C4F9AE02.roa (hash: So3/8BRv6CbiRlGyY4wETM3bbMNzF/0bzt2kH2rX5YA=) 4: 6DEA717805F811F0833EAC2FC4F9AE02.roa (hash: eHhYDx0TTrbl06qNq4Uwz8JzG4h29k3aeCeTeHUoPnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:07:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2841 (0xb19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: Apr 26 19:07:22 2025 GMT Not After : May 3 19:07:22 2025 GMT Subject: CN=680d2eea-1526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1a:22:5d:01:70:c2:e1:ef:77:85:99:3b:bd: 4b:7e:4d:c5:19:fb:a9:de:20:e1:fb:a7:c5:1b:af: 8f:04:37:52:12:a0:71:2b:c3:15:5e:91:d6:2e:c8: 1a:d0:c3:d4:84:52:ec:bf:e9:01:66:a2:9f:bb:f2: 58:b4:c7:03:68:0a:f5:6d:fe:85:46:81:9f:5a:b8: 2a:b5:13:03:28:15:d0:d0:6c:61:53:83:ce:05:98: d9:62:c5:37:e4:5a:5a:43:d9:08:c2:f1:ab:bc:0b: a0:08:28:6f:d9:7c:ca:30:25:77:b6:4c:e7:a0:6c: 07:a0:29:9f:54:ed:e0:99:cd:42:a4:22:b0:04:51: bc:6d:fb:5a:ce:02:75:41:27:6a:11:79:cf:6d:38: 87:3a:e9:38:b9:e4:33:51:a3:c4:c5:ea:11:04:73: 4a:79:ad:0f:82:dd:95:f7:09:0d:b8:cf:3d:12:4c: 5d:54:7c:25:89:fa:ab:a1:b0:c4:f0:dc:0f:3f:13: a9:ce:b3:e6:e3:e1:ec:a8:06:77:86:ec:a7:e7:16: cc:2a:70:61:3f:d0:ed:e7:62:56:17:2b:09:64:8b: 5b:93:b9:1e:93:63:37:5d:f1:5b:5a:40:f1:09:e8: f5:ee:02:cc:bc:cf:cb:4c:3f:ac:f7:cc:38:5d:0e: 4b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AB:89:62:04:B0:19:CF:22:EC:31:BF:85:0E:8F:EA:71:58:58:74 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:11:4c:6b:f1:99:6c:e7:c7:24:95:9a:64:30:c8:6b:2e:a9: 1b:d8:ff:8f:a3:25:2c:41:ea:b6:7f:76:db:90:36:aa:38:3e: 9f:9f:fe:c1:ce:ff:e0:7d:5f:66:6d:9c:f1:51:c9:ec:c0:69: fd:70:ab:92:a4:32:63:8a:52:de:c0:a8:50:b6:17:13:50:84: eb:f6:4c:1e:f2:06:56:f1:1e:5f:95:84:aa:cf:ca:85:08:13: 85:90:45:c1:a0:ad:d7:e5:93:04:56:07:79:f3:34:1e:9f:30: db:81:73:aa:a1:54:b5:1c:ff:96:5d:be:04:07:5c:55:29:4f: d7:3a:3c:19:39:ce:d8:fb:ee:9c:29:68:b6:8e:9a:15:97:c7: bd:4d:fb:34:f9:78:ba:70:7a:e8:93:01:d3:7b:89:b3:f5:e8: 2d:a8:1e:d4:08:e3:d6:af:25:7a:5b:08:c2:17:78:cf:7d:cb: b0:7a:ab:91:06:a5:5c:dd:39:71:49:0a:27:e5:1e:46:f1:04: e5:fd:7a:60:8f:7c:15:4f:d7:12:65:b2:9a:36:8b:ef:8a:45: 9a:19:b3:c0:66:f2:3f:f8:b1:c2:4d:e0:04:52:ff:04:ae:89: 40:d3:58:53:37:fd:d0:0a:54:1e:30:a6:58:5c:c5:71:4a:3e: 4b:e1:59:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwNDI2MTkwNzIyWhcNMjUwNTAzMTkwNzIyWjAYMRYwFAYD VQQDEw02ODBkMmVlYS0xNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRoiXQFwwuHvd4WZO71Lfk3FGfup3iDh+6fFG6+PBDdSEqBxK8MVXpHWLsga 0MPUhFLsv+kBZqKfu/JYtMcDaAr1bf6FRoGfWrgqtRMDKBXQ0GxhU4POBZjZYsU3 5FpaQ9kIwvGrvAugCChv2XzKMCV3tkznoGwHoCmfVO3gmc1CpCKwBFG8bftazgJ1 QSdqEXnPbTiHOuk4ueQzUaPExeoRBHNKea0Pgt2V9wkNuM89EkxdVHwlifqrobDE 8NwPPxOpzrPm4+HsqAZ3huyn5xbMKnBhP9Dt52JWFysJZItbk7kek2M3XfFbWkDx Cej17gLMvM/LTD+s98w4XQ5LKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyriWIE sBnPIuwxv4UOj+pxWFh0MB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkI1Qi8yOURFNzQ4QTQxOUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3 dC1YeG56elU4N1VOX2ZZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLEUxr8Zls58cklZpkMMhrLqkb2P+PoyUsQeq2f3bbkDaqOD6fn/7B zv/gfV9mbZzxUcnswGn9cKuSpDJjilLewKhQthcTUITr9kwe8gZW8R5flYSqz8qF CBOFkEXBoK3X5ZMEVgd58zQenzDbgXOqoVS1HP+WXb4EB1xVKU/XOjwZOc7Y++6c KWi2jpoVl8e9Tfs0+Xi6cHrokwHTe4mz9egtqB7UCOPWryV6WwjCF3jPfcuwequR BqVc3TlxSQon5R5G8QTl/Xpgj3wVT9cSZbKaNovvikWaGbPAZvI/+LHCTeAEUv8E rolA01hTN/3QClQeMKZYXMVxSj5L4Vkx -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:13 2025 by rpki-client on console.sobornost.net