$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: GTDkMd/IOHm8YzVY9PlXLQDYJjbsp3LcBCHbp5k/9ek= Subject key identifier: 87:0A:91:4C:08:5B:50:26:1A:2B:20:53:50:07:3D:12:9C:91:7E:1F Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: E5 Signing time: Fri 25 Apr 2025 04:31:17 +0000 Manifest this update: Fri 25 Apr 2025 04:31:16 +0000 Manifest next update: Fri 02 May 2025 04:31:16 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: qt0OyV5KaUKYoymUl9p8MJuOsSu/vaxQnUpC7cGrboo=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Apr 25 04:31:16 2025 GMT Not After : May 2 04:31:16 2025 GMT Subject: CN=680b1015-fd8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:82:fb:45:e2:64:f9:e8:d0:d6:5e:23:23:49: 4f:36:92:e8:3f:3c:f5:f6:1c:98:b1:50:8d:94:ab: 59:e6:61:c8:5a:6f:21:34:4a:ad:b7:3b:06:8d:91: 58:a0:4d:96:c0:b2:ce:0b:5f:ba:09:6b:e4:90:db: 99:23:77:4b:d1:ce:14:30:a7:17:33:a6:0c:04:95: c5:aa:13:b6:8c:94:b8:ea:ae:fa:8b:b6:3f:c1:05: b6:c7:c3:ba:e4:ce:32:fd:fe:3b:09:bb:81:9e:3e: 5f:1c:fd:33:aa:a6:3b:a1:5c:6a:53:4b:32:20:7b: 45:f9:63:c3:aa:cf:d4:3f:50:ef:de:d1:dd:0d:08: d9:9b:f3:66:f2:e5:be:5c:9e:d1:46:5d:ab:b7:2e: 60:d5:91:b0:95:9f:2d:c4:47:f2:bd:95:fe:4c:03: 21:0f:4b:c3:fd:28:f7:a0:7e:09:5b:49:56:72:fa: 59:5e:6d:75:ff:3c:0e:85:47:d6:d8:63:88:99:40: 1b:e5:4c:e1:ad:e5:cf:a6:8c:d4:69:d7:46:80:e7: c8:89:8c:d2:59:25:3a:82:f4:11:0b:be:4f:c9:b0: ed:fe:7d:dd:ad:31:86:29:f5:ab:ef:f4:74:51:27: ca:50:b9:3d:39:06:fc:f4:47:8a:57:59:a4:a9:72: ad:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:0A:91:4C:08:5B:50:26:1A:2B:20:53:50:07:3D:12:9C:91:7E:1F X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:36:c3:80:76:be:a9:a1:2f:87:c9:ed:fe:32:6b:60:16:98: 9c:83:59:9c:71:2a:df:2d:e8:54:cb:3a:b4:a3:cd:f6:66:1a: 4c:40:10:a3:95:9d:53:ca:dc:13:2b:86:ab:22:dc:24:5f:88: 4e:a9:6f:5b:ab:95:9a:3d:39:a3:64:3f:24:b4:16:f1:2b:62: 10:cb:bb:37:60:9f:4d:c3:eb:55:06:6a:be:bf:b9:f4:18:a4: 9b:d9:a0:84:28:aa:96:e5:73:3a:a8:7b:7e:47:7c:f2:56:15: f8:c2:d4:a5:4e:c0:c4:cb:18:e8:8c:f3:de:95:e4:fa:80:73: 07:b9:3c:8b:df:7c:24:11:d1:04:c9:4a:6a:cd:bc:1d:48:7d: 7e:9f:a6:be:95:89:a0:5c:17:44:4f:24:5b:0a:26:4f:84:f9: 1d:c7:38:73:48:e5:04:b0:ac:e0:07:fd:ac:d1:32:03:86:f5: 47:53:bd:8b:e4:b8:ea:a3:d3:f2:7a:80:cd:8e:e8:ea:e7:c1: af:25:94:80:3d:ff:25:a8:bb:0f:14:5b:84:09:39:78:90:68: de:35:fe:d9:c0:06:f2:25:a3:cd:1f:d3:04:43:68:47:d7:31: 92:57:a8:ac:97:39:f9:96:c3:69:c0:4c:ae:b1:89:68:bf:f7: fb:14:bc:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwNDI1MDQzMTE2WhcNMjUwNTAyMDQzMTE2WjAYMRYwFAYD VQQDEw02ODBiMTAxNS1mZDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IL7ReJk+ejQ1l4jI0lPNpLoPzz19hyYsVCNlKtZ5mHIWm8hNEqttzsGjZFY oE2WwLLOC1+6CWvkkNuZI3dL0c4UMKcXM6YMBJXFqhO2jJS46q76i7Y/wQW2x8O6 5M4y/f47CbuBnj5fHP0zqqY7oVxqU0syIHtF+WPDqs/UP1Dv3tHdDQjZm/Nm8uW+ XJ7RRl2rty5g1ZGwlZ8txEfyvZX+TAMhD0vD/Sj3oH4JW0lWcvpZXm11/zwOhUfW 2GOImUAb5UzhreXPpozUaddGgOfIiYzSWSU6gvQRC75PybDt/n3drTGGKfWr7/R0 USfKULk9OQb89EeKV1mkqXKt9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcKkUwI W1AmGisgU1AHPRKckX4fMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAENsOAdr6poS+Hye3+MmtgFpicg1mccSrfLehUyzq0o832ZhpMQBCj lZ1TytwTK4arItwkX4hOqW9bq5WaPTmjZD8ktBbxK2IQy7s3YJ9Nw+tVBmq+v7n0 GKSb2aCEKKqW5XM6qHt+R3zyVhX4wtSlTsDEyxjojPPeleT6gHMHuTyL33wkEdEE yUpqzbwdSH1+n6a+lYmgXBdETyRbCiZPhPkdxzhzSOUEsKzgB/2s0TIDhvVHU72L 5Ljqo9PyeoDNjujq58GvJZSAPf8lqLsPFFuECTl4kGjeNf7ZwAbyJaPNH9MEQ2hH 1zGSV6islzn5lsNpwEyusYlov/f7FLyZ -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:19 2025 by rpki-client on console.sobornost.net