$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft File: r3YSV94snaXzPnHGQZ4meoYt-2I.mft (raw, json) Hash identifier: yz9WfuL4V7hOpA/llHwgBN4GRGjQm8mFrua23c1XMU4= Subject key identifier: 47:0F:CC:AC:99:30:C0:08:C7:35:97:8A:5B:9A:A9:83:0E:22:0A:9F Authority key identifier: AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 Certificate issuer: /CN=A91F4D54/serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft Manifest number: 29 Signing time: Sun 27 Apr 2025 06:34:50 +0000 Manifest this update: Sun 27 Apr 2025 06:34:49 +0000 Manifest next update: Sun 04 May 2025 06:34:49 +0000 Files and hashes: 1: r3YSV94snaXzPnHGQZ4meoYt-2I.crl (hash: RbiaF5Ct0xOBBtB+CnaaCed8quqcfxwsjDr1eW2mmXU=) 2: 61AAFCCAE9EC11EFB6D6D21BC4F9AE02.roa (hash: EzMoudDWuTdlnNruCHKgAEy3hjxWEtpDs8wnwjR1b6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4D54, serialNumber=AF761257DE2C9DA5F33E71C6419E267A862DFB62 Validity Not Before: Apr 27 06:34:49 2025 GMT Not After : May 4 06:34:49 2025 GMT Subject: CN=680dd009-2506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:b7:5c:43:b6:bb:b0:99:be:df:4b:5a:b8: b3:c9:aa:d0:b7:c9:ed:d6:98:3b:5a:ef:3a:26:cd: c6:37:14:83:22:87:7a:67:f1:9f:91:c9:6b:a4:6b: 5c:48:61:b3:79:6c:37:c3:77:a4:1d:e1:e9:6a:89: 45:e7:b2:11:20:ad:1a:6d:54:01:2e:bb:df:00:36: 76:3d:c3:97:62:78:ba:ee:ac:3b:70:08:bc:be:ee: ec:27:d0:d5:07:c5:ba:b2:e7:15:46:dc:42:79:48: 21:cd:6e:a8:69:f3:18:2e:d9:5e:df:84:af:30:17: 72:65:0f:cb:cc:b3:0b:40:96:6e:9c:17:0e:67:a8: 62:da:b7:80:8f:35:97:a0:3d:74:5e:44:a0:48:d4: f0:83:00:47:4c:46:28:b4:33:c8:12:3b:7e:93:cb: 3d:41:da:a6:f2:44:68:2b:89:d0:87:46:4a:8e:2e: 9a:2b:0d:9d:6f:3d:82:84:ea:c2:8c:d3:29:18:76: 10:35:b2:c0:43:c8:ad:d8:21:52:79:8b:2f:35:ec: 4f:b0:76:51:b0:9d:74:fa:ae:38:d4:0e:69:11:59: 4f:fa:8a:80:90:4a:de:10:8d:71:49:6a:6b:c3:6f: b6:e9:94:ac:b8:96:1f:4f:05:d3:22:b3:cd:8f:98: fa:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:0F:CC:AC:99:30:C0:08:C7:35:97:8A:5B:9A:A9:83:0E:22:0A:9F X509v3 Authority Key Identifier: keyid:AF:76:12:57:DE:2C:9D:A5:F3:3E:71:C6:41:9E:26:7A:86:2D:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3YSV94snaXzPnHGQZ4meoYt-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4D54/D2877DB6E9EB11EFA4542B18C4F9AE02/r3YSV94snaXzPnHGQZ4meoYt-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:e1:59:ff:ce:4e:59:0e:4c:96:45:3b:de:53:1e:81:c2:25: 39:4c:24:5f:8d:87:02:07:dc:86:6e:ed:83:7c:b4:9d:ca:3a: 37:83:46:0d:95:a5:e1:36:38:dd:21:9d:13:61:9e:95:cd:f4: a2:bb:aa:2d:59:15:a2:68:0e:d5:a5:22:f2:aa:f5:2d:15:5e: 17:e7:8b:db:1a:da:94:12:3c:bd:d9:7f:e4:02:c4:4b:52:cd: 5d:ea:29:98:2c:21:9e:3c:3b:6c:88:4b:09:0d:1b:d2:1d:48: 64:d1:40:d9:bf:1e:4b:60:16:fb:58:ef:59:85:da:38:02:99: a0:fc:06:28:eb:22:6e:a7:57:e2:5d:ec:49:f1:97:d4:6a:9c: 88:d8:c8:92:44:fa:4e:c7:aa:a9:63:00:93:aa:62:0f:b8:1a: 0d:a7:22:91:0e:04:00:89:46:f7:31:da:5d:68:dd:85:6f:3c: 58:3b:82:72:38:e7:1f:86:5e:97:af:23:0c:a1:5b:97:72:85: 96:b4:d2:8a:e3:88:66:33:0a:02:64:84:24:0a:69:52:eb:e7: 65:d8:7f:a7:53:75:13:1b:8e:2f:13:aa:fd:81:12:95:7f:3d: e9:47:9b:96:1a:5d:ac:9a:62:90:9d:48:d5:a7:25:42:ec:ec: 4f:58:f2:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NEQ1NDExMC8GA1UEBRMoQUY3NjEyNTdERTJDOURBNUYzM0U3MUM2NDE5RTI2N0E4 NjJERkI2MjAeFw0yNTA0MjcwNjM0NDlaFw0yNTA1MDQwNjM0NDlaMBgxFjAUBgNV BAMTDTY4MGRkMDA5LTI1MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvULdcQ7a7sJm+30tauLPJqtC3ye3WmDta7zomzcY3FIMih3pn8Z+RyWuka1xI YbN5bDfDd6Qd4elqiUXnshEgrRptVAEuu98ANnY9w5dieLrurDtwCLy+7uwn0NUH xbqy5xVG3EJ5SCHNbqhp8xgu2V7fhK8wF3JlD8vMswtAlm6cFw5nqGLat4CPNZeg PXReRKBI1PCDAEdMRii0M8gSO36Tyz1B2qbyRGgridCHRkqOLporDZ1vPYKE6sKM 0ykYdhA1ssBDyK3YIVJ5iy817E+wdlGwnXT6rjjUDmkRWU/6ioCQSt4QjXFJamvD b7bplKy4lh9PBdMis82PmPp3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURw/MrJkw wAjHNZeKW5qpgw4iCp8wHwYDVR0jBBgwFoAUr3YSV94snaXzPnHGQZ4meoYt+2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0RDU0L0QyODc3REI2RTlF QjExRUZBNDU0MkIxOEM0RjlBRTAyL3IzWVNWOTRzbmFYelBuSEdRWjRtZW9ZdC0y SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcjNZU1Y5NHNuYVh6UG5IR1FaNG1lb1l0LTJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 RDU0L0QyODc3REI2RTlFQjExRUZBNDU0MkIxOEM0RjlBRTAyL3IzWVNWOTRzbmFY elBuSEdRWjRtZW9ZdC0ySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALrhWf/OTlkOTJZFO95THoHCJTlMJF+NhwIH3IZu7YN8tJ3KOjeDRg2V peE2ON0hnRNhnpXN9KK7qi1ZFaJoDtWlIvKq9S0VXhfni9sa2pQSPL3Zf+QCxEtS zV3qKZgsIZ48O2yISwkNG9IdSGTRQNm/HktgFvtY71mF2jgCmaD8BijrIm6nV+Jd 7Enxl9RqnIjYyJJE+k7HqqljAJOqYg+4Gg2nIpEOBACJRvcx2l1o3YVvPFg7gnI4 5x+GXpevIwyhW5dyhZa00orjiGYzCgJkhCQKaVLr52XYf6dTdRMbji8Tqv2BEpV/ PelHm5YaXayaYpCdSNWnJULs7E9Y8qk= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:59 2025 by rpki-client on console.sobornost.net