$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2F18/09504348FB6511EFB45A8966C4F9AE02/zupmODV1Y6xVdo8A2E0nezpjxEk.mft File: zupmODV1Y6xVdo8A2E0nezpjxEk.mft (raw, json) Hash identifier: nGwJnF+bHH6wV62Usb4tBp4uXrMYyO4FV9n83ICIseQ= Subject key identifier: 78:E1:87:F7:45:62:42:0E:A5:BC:23:7B:8E:D5:3A:5E:9C:6C:50:32 Authority key identifier: CE:EA:66:38:35:75:63:AC:55:76:8F:00:D8:4D:27:7B:3A:63:C4:49 Certificate issuer: /CN=A91F2F18/serialNumber=CEEA6638357563AC55768F00D84D277B3A63C449 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zupmODV1Y6xVdo8A2E0nezpjxEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2F18/09504348FB6511EFB45A8966C4F9AE02/zupmODV1Y6xVdo8A2E0nezpjxEk.mft Manifest number: 1C Signing time: Sun 27 Apr 2025 06:44:36 +0000 Manifest this update: Sun 27 Apr 2025 06:44:35 +0000 Manifest next update: Sun 04 May 2025 06:44:35 +0000 Files and hashes: 1: zupmODV1Y6xVdo8A2E0nezpjxEk.crl (hash: LAUmV/vyHZzS7xSfOkgoVmUTIZhxGiViAPNyRdI7wv0=) 2: 65FCC030FB6511EF88F1AD24C4F9AE02.roa (hash: 2AzcWDQppJmuezlbwVz+XBibo6nd4SBXfykYXbtUpSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2F18/09504348FB6511EFB45A8966C4F9AE02/zupmODV1Y6xVdo8A2E0nezpjxEk.crl rsync://rpki.apnic.net/member_repository/A91F2F18/09504348FB6511EFB45A8966C4F9AE02/zupmODV1Y6xVdo8A2E0nezpjxEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zupmODV1Y6xVdo8A2E0nezpjxEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2F18, serialNumber=CEEA6638357563AC55768F00D84D277B3A63C449 Validity Not Before: Apr 27 06:44:35 2025 GMT Not After : May 4 06:44:35 2025 GMT Subject: CN=680dd253-a703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1d:5d:0a:48:3f:c9:cb:16:b3:ed:90:60:74: b4:67:93:a4:bf:0c:af:6e:ce:f8:12:9d:06:8f:7f: 24:f6:23:6f:4d:82:ce:66:8c:5a:31:0e:17:cb:05: db:9a:c5:72:74:56:ae:6d:82:f7:5f:fe:87:b1:1d: b0:73:a8:e1:6d:e0:56:e7:8d:ed:55:f5:dc:5d:a1: f5:c0:f6:aa:c3:16:9e:df:76:8f:37:fd:ca:08:06: 80:bb:30:74:a7:2c:1e:84:04:aa:a2:88:6b:6b:6e: f3:d8:12:d8:25:0c:88:09:a7:9c:a4:2a:d4:c2:7c: 96:83:e5:89:3b:d0:1a:d8:f6:c5:c3:2c:a2:a1:8e: 50:ea:27:57:5c:cd:60:b5:76:dd:f7:d4:35:6f:f4: 5b:e2:04:6d:70:a8:e5:a3:ca:7c:83:b2:c0:ed:7d: 54:83:f2:12:bb:37:11:7a:38:97:b3:ee:5a:08:43: f1:14:1d:32:ce:de:12:6a:7f:24:0d:6a:3b:e0:c0: 6c:e1:8a:41:96:fb:e1:41:26:f1:ef:87:ee:d9:7c: 5f:a3:e2:2b:45:fe:bc:ee:65:d9:59:77:ce:cc:e3: af:5b:28:a4:82:07:11:fe:e5:70:d4:e3:c3:9d:4c: 6a:34:51:0b:03:ba:57:eb:4e:f6:cd:a9:c7:04:74: 45:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E1:87:F7:45:62:42:0E:A5:BC:23:7B:8E:D5:3A:5E:9C:6C:50:32 X509v3 Authority Key Identifier: keyid:CE:EA:66:38:35:75:63:AC:55:76:8F:00:D8:4D:27:7B:3A:63:C4:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2F18/09504348FB6511EFB45A8966C4F9AE02/zupmODV1Y6xVdo8A2E0nezpjxEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zupmODV1Y6xVdo8A2E0nezpjxEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2F18/09504348FB6511EFB45A8966C4F9AE02/zupmODV1Y6xVdo8A2E0nezpjxEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:1c:99:57:ee:d2:45:ea:5b:73:fe:2e:d1:aa:37:48:85:46: 52:f2:81:99:1c:8c:c1:c2:fd:bf:81:b7:bf:71:a6:2e:5a:1f: 73:bc:e1:0a:03:de:e4:a0:65:10:8d:fd:18:79:22:c0:42:06: c7:30:94:f7:75:7a:57:87:27:0b:65:52:20:31:05:c7:83:65: 66:14:83:ca:5c:43:5a:80:ba:6e:00:7b:84:a7:b1:63:7b:5b: e2:59:30:90:1d:9f:4d:69:e7:d0:1d:64:10:ff:02:b8:5a:8f: 3d:6b:e8:4d:d0:d4:60:70:31:15:eb:d6:eb:46:c1:3f:8e:54: 00:59:28:84:b4:38:80:d1:a9:0a:68:7c:d4:6e:88:5a:3a:41: bb:89:cd:ca:f9:fa:1b:cb:b6:e8:84:b3:26:9e:06:ad:b7:4b: 8e:96:f1:0d:0e:6c:92:76:6a:bf:dd:18:86:05:8b:f8:0e:2c: d5:d0:dd:04:2d:3b:8b:dd:44:e2:4c:27:87:7f:97:12:8a:f0: 58:02:1b:09:77:68:e6:91:f9:2c:a0:2f:09:be:c7:ea:55:bb: ca:d8:7e:6f:77:fa:1c:a9:f6:83:65:36:f1:24:d9:32:bf:d1: 1d:ed:79:6d:f5:f7:56:f1:b4:f1:d2:62:69:90:3d:f1:66:fb: c8:03:b8:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkYxODExMC8GA1UEBRMoQ0VFQTY2MzgzNTc1NjNBQzU1NzY4RjAwRDg0RDI3N0Iz QTYzQzQ0OTAeFw0yNTA0MjcwNjQ0MzVaFw0yNTA1MDQwNjQ0MzVaMBgxFjAUBgNV BAMTDTY4MGRkMjUzLWE3MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6HV0KSD/Jyxaz7ZBgdLRnk6S/DK9uzvgSnQaPfyT2I29Ngs5mjFoxDhfLBdua xXJ0Vq5tgvdf/oexHbBzqOFt4Fbnje1V9dxdofXA9qrDFp7fdo83/coIBoC7MHSn LB6EBKqiiGtrbvPYEtglDIgJp5ykKtTCfJaD5Yk70BrY9sXDLKKhjlDqJ1dczWC1 dt331DVv9FviBG1wqOWjynyDssDtfVSD8hK7NxF6OJez7loIQ/EUHTLO3hJqfyQN ajvgwGzhikGW++FBJvHvh+7ZfF+j4itF/rzuZdlZd87M469bKKSCBxH+5XDU48Od TGo0UQsDulfrTvbNqccEdEX9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeOGH90Vi Qg6lvCN7jtU6XpxsUDIwHwYDVR0jBBgwFoAUzupmODV1Y6xVdo8A2E0nezpjxEkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyRjE4LzA5NTA0MzQ4RkI2 NTExRUZCNDVBODk2NkM0RjlBRTAyL3p1cG1PRFYxWTZ4VmRvOEEyRTBuZXpwanhF ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvenVwbU9EVjFZNnhWZG84QTJFMG5lenBqeEVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy RjE4LzA5NTA0MzQ4RkI2NTExRUZCNDVBODk2NkM0RjlBRTAyL3p1cG1PRFYxWTZ4 VmRvOEEyRTBuZXpwanhFay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAIcmVfu0kXqW3P+LtGqN0iFRlLygZkcjMHC/b+Bt79xpi5aH3O84QoD 3uSgZRCN/Rh5IsBCBscwlPd1eleHJwtlUiAxBceDZWYUg8pcQ1qAum4Ae4SnsWN7 W+JZMJAdn01p59AdZBD/Arhajz1r6E3Q1GBwMRXr1utGwT+OVABZKIS0OIDRqQpo fNRuiFo6QbuJzcr5+hvLtuiEsyaeBq23S46W8Q0ObJJ2ar/dGIYFi/gOLNXQ3QQt O4vdROJMJ4d/lxKK8FgCGwl3aOaR+SygLwm+x+pVu8rYfm93+hyp9oNlNvEk2TK/ 0R3teW3191bxtPHSYmmQPfFm+8gDuIc= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net