$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: Ok+OJYEi/uQxLhNaL+qgqvh3zvCiQoF12zWlOIntA30= Subject key identifier: 83:21:85:BD:5F:59:1E:48:41:C7:0B:95:1E:77:32:A4:44:8D:5C:A7 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 02B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 02B3 Signing time: Sun 27 Apr 2025 01:06:27 +0000 Manifest this update: Sun 27 Apr 2025 01:06:26 +0000 Manifest next update: Sun 04 May 2025 01:06:26 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: wbQqIEkN6NxmXNKPoHwcI9EtGsMW1ehaVNAOn7INrH0=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: cUJGyZcVowcCyXH2QiojzhWnaBYy0l9+HvH8D9IR1zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:06:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 696 (0x2b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Apr 27 01:06:26 2025 GMT Not After : May 4 01:06:26 2025 GMT Subject: CN=680d8312-1438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:64:f5:f4:10:e1:0d:2e:c4:d0:66:b7:13:2d: db:26:72:0f:96:d5:4b:e8:66:d0:cd:9f:cf:df:72: 3f:df:61:c9:86:48:2f:8f:42:c1:c0:cf:85:73:84: 2e:cb:a7:de:74:8e:aa:05:af:89:91:89:9e:50:93: 26:3e:79:5e:50:17:ff:6d:6f:7d:dd:1f:8f:16:b8: 63:a0:7e:5e:c3:f1:a8:b4:64:0a:7a:59:d6:c8:95: 09:c6:ff:24:91:79:bb:02:68:c8:51:5d:3a:54:60: 49:60:25:ec:93:cc:4e:13:9c:97:51:60:39:79:d6: ff:1a:5c:5d:91:16:41:da:d1:c6:73:05:78:4a:59: 30:ca:d9:e8:fe:5d:c6:16:ae:70:90:96:c0:01:3e: 1c:69:e8:8d:4e:d5:e3:15:c7:14:99:99:eb:fa:ac: 79:40:dd:f3:d5:92:ef:96:30:f8:50:95:89:11:17: 19:9f:8c:f3:31:de:6e:ef:f4:07:19:f4:fb:a3:a8: 30:07:a6:da:ae:bb:95:ac:b3:24:a6:e8:9c:51:a0: 31:ff:4b:1f:34:44:c8:8d:ec:3e:24:0e:ef:fc:28: d6:e8:2e:f6:0a:c8:34:cd:ce:e5:75:6f:e0:50:69: 17:50:7e:36:17:11:e5:53:6c:71:2e:1e:12:71:fe: 09:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:21:85:BD:5F:59:1E:48:41:C7:0B:95:1E:77:32:A4:44:8D:5C:A7 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:3e:71:91:63:b1:25:0d:ca:d5:a3:b7:e5:94:0e:1a:3a:5c: f8:b9:7e:b6:a4:0c:94:59:20:e0:f0:81:89:27:58:1c:0d:11: c3:0e:52:44:35:05:81:83:0e:b0:77:31:80:8e:ef:bb:70:37: 7b:10:c5:34:a6:e0:41:da:31:6e:86:ff:d8:24:d4:5d:24:38: 9b:77:ff:33:9d:0f:dd:9a:b9:ac:f8:8f:c6:56:7b:a8:25:64: 14:55:2a:db:de:64:56:55:2e:a5:f8:5c:ad:70:62:ec:a1:04: c9:52:32:7d:22:47:a7:59:08:b1:74:01:42:bf:5f:ad:79:79: ea:58:1a:9c:29:49:7f:7a:ca:c0:7c:c7:77:93:e9:f9:77:c9: 62:38:a5:02:b7:42:4d:16:c8:7d:49:38:ae:5b:bb:e8:9f:00: ee:a0:c4:d5:6e:40:32:4f:f2:8f:49:08:7a:99:6c:48:ab:a6: 30:2c:e2:ae:60:0f:e9:f5:2d:35:91:5c:1e:1a:75:b3:81:82: 52:5c:8f:d7:a7:2e:1c:90:69:49:fa:86:5e:d0:87:89:58:aa: b4:ba:fd:3e:e9:a0:47:70:15:77:3e:78:ab:21:fc:48:7b:56: c3:21:6a:95:ba:73:2d:95:62:13:25:68:8e:0e:11:24:69:7d: 64:cd:c5:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwNDI3MDEwNjI2WhcNMjUwNTA0MDEwNjI2WjAYMRYwFAYD VQQDEw02ODBkODMxMi0xNDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GT19BDhDS7E0Ga3Ey3bJnIPltVL6GbQzZ/P33I/32HJhkgvj0LBwM+Fc4Qu y6fedI6qBa+JkYmeUJMmPnleUBf/bW993R+PFrhjoH5ew/GotGQKelnWyJUJxv8k kXm7AmjIUV06VGBJYCXsk8xOE5yXUWA5edb/GlxdkRZB2tHGcwV4Slkwytno/l3G Fq5wkJbAAT4caeiNTtXjFccUmZnr+qx5QN3z1ZLvljD4UJWJERcZn4zzMd5u7/QH GfT7o6gwB6barruVrLMkpuicUaAx/0sfNETIjew+JA7v/CjW6C72Csg0zc7ldW/g UGkXUH42FxHlU2xxLh4Scf4JUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMhhb1f WR5IQccLlR53MqREjVynMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGPnGRY7ElDcrVo7fllA4aOlz4uX62pAyUWSDg8IGJJ1gcDRHDDlJE NQWBgw6wdzGAju+7cDd7EMU0puBB2jFuhv/YJNRdJDibd/8znQ/dmrms+I/GVnuo JWQUVSrb3mRWVS6l+FytcGLsoQTJUjJ9IkenWQixdAFCv1+teXnqWBqcKUl/esrA fMd3k+n5d8liOKUCt0JNFsh9STiuW7vonwDuoMTVbkAyT/KPSQh6mWxIq6YwLOKu YA/p9S01kVweGnWzgYJSXI/Xpy4ckGlJ+oZe0IeJWKq0uv0+6aBHcBV3PnirIfxI e1bDIWqVunMtlWITJWiODhEkaX1kzcUf -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:17 2025 by rpki-client on console.sobornost.net