$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: vF5J9L/3XUdKGzXwCOa6Ji9ECbH4fFyUWlvxLM+fz7U= Subject key identifier: CC:9D:DD:CB:37:AF:C0:6F:CD:4A:90:2D:1A:85:A4:BD:FF:DC:73:7D Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 0120 Signing time: Sun 27 Apr 2025 03:38:48 +0000 Manifest this update: Sun 27 Apr 2025 03:38:47 +0000 Manifest next update: Sun 04 May 2025 03:38:47 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: UEwuuxJMwFEg1MMuwqHfgUuGw+kfR3Bi3WavAJPBwnw=) 2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: 1i4x5btwBoyVs/bOkBs3utfiU+YxigrlqpfcPAr0jaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Apr 27 03:38:47 2025 GMT Not After : May 4 03:38:47 2025 GMT Subject: CN=680da6c8-30cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:f0:d8:a2:63:35:e9:f3:5f:8e:d9:e5:3e: a3:d7:9f:5d:74:51:2b:31:2d:6b:d7:dc:8b:f2:ef: b9:14:64:01:be:34:a1:f3:25:11:13:85:92:4d:54: 5b:21:17:66:75:5f:95:8a:d0:4c:df:37:02:46:be: a1:48:c5:4a:b9:ea:f5:8d:28:0f:93:b5:c0:1c:e6: 81:e0:61:55:9b:ff:77:86:23:66:72:a1:1b:80:8f: 62:a9:40:f1:a9:6e:6d:3c:a5:01:c2:d7:cc:be:46: a2:fd:3b:8d:f2:34:f0:ba:8c:40:20:92:3f:a1:15: 56:98:e1:37:9d:cf:87:2c:98:9d:bf:8c:c7:d9:86: 02:2e:2e:93:86:da:e2:de:a9:b9:c9:b4:0c:ef:6f: dd:aa:70:82:67:4d:c1:44:b8:ef:b7:a9:4c:37:7e: f5:87:fd:03:12:09:a9:d5:de:db:b2:c2:58:50:af: 0a:08:1f:a8:ef:7e:91:67:71:31:74:db:26:03:04: f3:6c:b8:51:b4:92:c9:f6:9a:fe:2f:3f:af:bc:47: b3:61:c1:84:3c:2d:d6:5e:94:9e:e4:56:57:51:7e: 46:50:57:b8:bb:93:35:7c:20:a9:9f:96:dc:35:21: 2a:09:f5:85:f6:ba:ae:77:1e:90:12:39:4d:ea:61: 8c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:9D:DD:CB:37:AF:C0:6F:CD:4A:90:2D:1A:85:A4:BD:FF:DC:73:7D X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:75:6c:11:69:3c:f0:ec:ec:83:5c:b9:63:a0:20:f1:94:a0: 80:ec:03:6a:39:78:95:6d:1a:37:8c:21:03:86:71:95:21:0d: 56:78:53:60:e8:39:18:ee:39:91:3d:e1:d2:f8:33:35:08:f2: 61:33:44:9f:38:49:13:f7:9b:54:94:e9:81:23:2e:c8:31:ec: 87:65:f8:27:54:46:b7:92:7a:04:04:65:54:ed:e3:49:78:b2: 70:f9:35:45:c9:52:76:69:85:cd:e1:9d:7b:41:79:6c:38:46: 42:01:f9:da:f8:a8:15:df:0d:35:c4:38:73:f7:e2:8e:94:b0: 21:89:d6:03:e7:6d:2a:51:0a:6a:53:32:11:20:60:eb:ff:d6: 1c:27:e3:62:dc:67:4a:e4:d2:ec:cc:39:4f:a7:d5:39:cc:63: 50:3d:ae:e4:9c:12:e6:4d:ad:73:20:88:2c:15:32:13:30:e7: 13:73:97:76:fa:61:ab:47:c5:03:3c:9f:35:08:4c:25:4d:9a: 4a:13:b6:35:0f:84:cb:30:d6:03:e0:da:97:ea:ef:bf:d9:a9: f0:fc:d1:67:f4:f1:02:75:91:df:9c:18:c2:82:a4:86:aa:ed: 7a:89:a4:1f:a2:e9:db:32:79:20:70:b7:9b:18:26:e1:5b:0f: d5:af:d2:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwNDI3MDMzODQ3WhcNMjUwNTA0MDMzODQ3WjAYMRYwFAYD VQQDEw02ODBkYTZjOC0zMGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumjw2KJjNenzX47Z5T6j159ddFErMS1r19yL8u+5FGQBvjSh8yURE4WSTVRb IRdmdV+VitBM3zcCRr6hSMVKuer1jSgPk7XAHOaB4GFVm/93hiNmcqEbgI9iqUDx qW5tPKUBwtfMvkai/TuN8jTwuoxAIJI/oRVWmOE3nc+HLJidv4zH2YYCLi6Thtri 3qm5ybQM72/dqnCCZ03BRLjvt6lMN371h/0DEgmp1d7bssJYUK8KCB+o736RZ3Ex dNsmAwTzbLhRtJLJ9pr+Lz+vvEezYcGEPC3WXpSe5FZXUX5GUFe4u5M1fCCpn5bc NSEqCfWF9rqudx6QEjlN6mGMvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyd3cs3 r8BvzUqQLRqFpL3/3HN9MB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCodWwRaTzw7OyDXLljoCDxlKCA7ANqOXiVbRo3jCEDhnGVIQ1WeFNg 6DkY7jmRPeHS+DM1CPJhM0SfOEkT95tUlOmBIy7IMeyHZfgnVEa3knoEBGVU7eNJ eLJw+TVFyVJ2aYXN4Z17QXlsOEZCAfna+KgV3w01xDhz9+KOlLAhidYD520qUQpq UzIRIGDr/9YcJ+Ni3GdK5NLszDlPp9U5zGNQPa7knBLmTa1zIIgsFTITMOcTc5d2 +mGrR8UDPJ81CEwlTZpKE7Y1D4TLMNYD4NqX6u+/2anw/NFn9PECdZHfnBjCgqSG qu16iaQfounbMnkgcLebGCbhWw/Vr9K1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:17 2025 by rpki-client on console.sobornost.net