$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.mft File: uSUP3j-r1Z-lYIIw_qeiPEtMiWg.mft (raw, json) Hash identifier: hdDSVhCsJZ8pxOohPPSmLemNijD7SllxvCZUISVYwhM= Subject key identifier: 00:33:0E:D4:E5:E1:0A:06:76:5F:72:6A:2E:6B:24:DC:79:20:19:D1 Authority key identifier: B9:25:0F:DE:3F:AB:D5:9F:A5:60:82:30:FE:A7:A2:3C:4B:4C:89:68 Certificate issuer: /CN=A91FA851/serialNumber=B9250FDE3FABD59FA5608230FEA7A23C4B4C8968 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.mft Manifest number: F0 Signing time: Sun 27 Apr 2025 04:13:58 +0000 Manifest this update: Sun 27 Apr 2025 04:13:58 +0000 Manifest next update: Sun 04 May 2025 04:13:57 +0000 Files and hashes: 1: uSUP3j-r1Z-lYIIw_qeiPEtMiWg.crl (hash: eIIQt1LIgzUJ63AG4xjNSvnPMhT3aGgSJEfviE9wa0k=) 2: 8FD49B16BAE411EE9198A471C4F9AE02.roa (hash: L0qfyKxG6EHzysnGwaUqdqXIinzIkFTO2ksscDrrvZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.crl rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA851, serialNumber=B9250FDE3FABD59FA5608230FEA7A23C4B4C8968 Validity Not Before: Apr 27 04:13:58 2025 GMT Not After : May 4 04:13:57 2025 GMT Subject: CN=680daf06-936b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a1:97:ed:14:f3:24:53:5f:7e:ca:86:c1:e2: c0:df:75:d3:3a:12:f4:40:72:2e:69:74:55:2a:b9: cc:5f:82:ef:dc:30:90:a2:56:d0:67:3b:38:52:0b: d4:17:a5:da:53:6e:be:37:e7:cc:fd:86:e5:a5:ef: 8e:e3:db:f0:c8:62:4e:12:25:f0:ca:26:9e:4e:33: f1:f4:ca:4e:6a:b6:0a:ea:4a:6c:d0:4e:f6:fd:b2: d6:04:0f:d3:bb:a3:c2:72:6c:c6:6f:b5:62:a1:4c: e2:de:88:5b:da:26:61:08:6a:8d:0d:20:e2:c7:0d: 24:ae:d7:92:61:e3:01:64:57:8b:d7:e6:aa:8e:f0: 4b:3f:b6:6a:1d:66:82:e7:17:cf:2f:46:fa:73:0d: ed:61:37:ab:d9:a2:6d:a4:be:3c:89:0f:75:b4:a5: a9:9c:9c:ca:db:b0:87:65:c6:89:11:15:f9:43:f7: 73:8f:39:01:64:c6:13:45:a0:fb:ea:e9:0d:b6:ac: 3f:19:5a:78:11:fe:64:67:d6:9f:41:72:fc:f9:0b: 1e:9d:8e:56:1a:8f:38:86:a4:7b:f0:65:bc:3e:83: 1b:85:bd:b9:1f:e3:f8:c1:14:35:71:76:3d:b2:b7: f9:e3:8e:df:09:2f:5d:01:71:07:03:94:65:5a:fa: 8d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:33:0E:D4:E5:E1:0A:06:76:5F:72:6A:2E:6B:24:DC:79:20:19:D1 X509v3 Authority Key Identifier: keyid:B9:25:0F:DE:3F:AB:D5:9F:A5:60:82:30:FE:A7:A2:3C:4B:4C:89:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:47:eb:9b:2c:72:05:18:b1:9d:48:25:40:35:a7:83:02:4f: 43:bd:85:9b:96:7b:8e:93:50:ee:4a:03:6f:9a:7f:c7:1f:08: f2:45:8a:c5:67:8f:fa:9b:ee:a1:19:20:42:a6:d1:10:2e:c8: 65:0c:35:4f:ea:0e:b3:44:60:8f:86:ea:dc:1c:5b:fa:27:6f: 56:42:ea:d5:79:46:d9:ec:a3:75:83:1d:a2:31:f0:82:15:a0: e1:25:00:3b:78:5e:3c:6f:d8:0c:c2:79:dc:7d:5e:05:a2:9a: 08:02:50:40:7a:9a:ba:e0:76:b5:6e:55:e7:d0:1e:dd:29:79: c7:69:a8:42:aa:2b:be:f7:70:1e:65:57:84:07:3c:0d:29:81: 70:5a:ac:30:6e:62:84:d3:d8:c5:dc:d1:56:30:7e:4f:22:96: c9:23:67:7e:8c:c0:1b:cb:e4:ae:5c:fc:68:cd:f1:95:10:7e: 2f:e1:fc:fc:fe:af:84:45:66:ac:bf:24:81:0b:37:3b:62:50: 45:b9:cd:cc:87:c5:63:ce:ef:50:ab:97:d1:40:24:95:7c:cc: d3:19:2f:2c:69:2c:8a:ed:b7:df:b9:27:d4:0b:ec:a0:b0:b4: ef:64:6f:ec:6b:56:2f:d1:03:f3:e8:b1:4c:2b:0b:45:cd:37: e3:d2:0e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4NTExMTAvBgNVBAUTKEI5MjUwRkRFM0ZBQkQ1OUZBNTYwODIzMEZFQTdBMjND NEI0Qzg5NjgwHhcNMjUwNDI3MDQxMzU4WhcNMjUwNTA0MDQxMzU3WjAYMRYwFAYD VQQDEw02ODBkYWYwNi05MzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKGX7RTzJFNffsqGweLA33XTOhL0QHIuaXRVKrnMX4Lv3DCQolbQZzs4UgvU F6XaU26+N+fM/Yblpe+O49vwyGJOEiXwyiaeTjPx9MpOarYK6kps0E72/bLWBA/T u6PCcmzGb7VioUzi3ohb2iZhCGqNDSDixw0krteSYeMBZFeL1+aqjvBLP7ZqHWaC 5xfPL0b6cw3tYTer2aJtpL48iQ91tKWpnJzK27CHZcaJERX5Q/dzjzkBZMYTRaD7 6ukNtqw/GVp4Ef5kZ9afQXL8+QsenY5WGo84hqR78GW8PoMbhb25H+P4wRQ1cXY9 srf5447fCS9dAXEHA5RlWvqNuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAzDtTl 4QoGdl9yai5rJNx5IBnRMB8GA1UdIwQYMBaAFLklD94/q9WfpWCCMP6nojxLTIlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTg1MS85NUE2MTE5Q0I5 REYxMUVFOTRCNDI0MkFDNEY5QUUwMi91U1VQM2otcjFaLWxZSUl3X3FlaVBFdE1p V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTVVAzai1yMVotbFlJSXdfcWVpUEV0TWlXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTg1MS85NUE2MTE5Q0I5REYxMUVFOTRCNDI0MkFDNEY5QUUwMi91U1VQM2otcjFa LWxZSUl3X3FlaVBFdE1pV2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWR+ubLHIFGLGdSCVANaeDAk9DvYWblnuOk1DuSgNvmn/HHwjyRYrF Z4/6m+6hGSBCptEQLshlDDVP6g6zRGCPhurcHFv6J29WQurVeUbZ7KN1gx2iMfCC FaDhJQA7eF48b9gMwnncfV4FopoIAlBAepq64Ha1blXn0B7dKXnHaahCqiu+93Ae ZVeEBzwNKYFwWqwwbmKE09jF3NFWMH5PIpbJI2d+jMAby+SuXPxozfGVEH4v4fz8 /q+ERWasvySBCzc7YlBFuc3Mh8Vjzu9Qq5fRQCSVfMzTGS8saSyK7bffuSfUC+yg sLTvZG/sa1Yv0QPz6LFMKwtFzTfj0g7G -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:59 2025 by rpki-client on console.sobornost.net