$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.mft File: FzwmoIboW4_bkXqo2RHhwAq2o6E.mft (raw, json) Hash identifier: 287+tnF4OvgGvlnpQWlmVZkC9yrE6mH/1vvu3WQlum0= Subject key identifier: 63:B3:51:22:74:C8:28:D4:FE:0C:DA:73:1F:4E:C1:73:C5:5A:57:43 Authority key identifier: 17:3C:26:A0:86:E8:5B:8F:DB:91:7A:A8:D9:11:E1:C0:0A:B6:A3:A1 Certificate issuer: /CN=A91FBEFA/serialNumber=173C26A086E85B8FDB917AA8D911E1C00AB6A3A1 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FzwmoIboW4_bkXqo2RHhwAq2o6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.mft Manifest number: 13 Signing time: Sun 27 Apr 2025 06:52:30 +0000 Manifest this update: Sun 27 Apr 2025 06:52:30 +0000 Manifest next update: Sun 04 May 2025 06:52:30 +0000 Files and hashes: 1: FzwmoIboW4_bkXqo2RHhwAq2o6E.crl (hash: 7hICPMByQOarRJeNeMepfH4/BmSSfzG4WWMBq3Pjgm0=) 2: 4776F9120CCE11F0A08AA749C4F9AE02.roa (hash: 1E9Uj0G9r4nxcyscWv579FgIwgT3cljTL2z6/KS3cW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FzwmoIboW4_bkXqo2RHhwAq2o6E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=173C26A086E85B8FDB917AA8D911E1C00AB6A3A1 Validity Not Before: Apr 27 06:52:30 2025 GMT Not After : May 4 06:52:30 2025 GMT Subject: CN=680dd42e-40c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:bc:d9:cc:18:e8:ed:64:45:ba:fc:75:bd: 5e:95:60:81:f4:fa:62:69:22:66:af:76:a6:3b:e1: bd:0c:1f:80:12:c4:2b:22:23:e2:b1:75:4b:1f:67: 18:d1:ec:22:40:11:20:9d:1e:b6:3f:bc:f8:a6:20: a6:4b:1b:e2:67:6e:31:8e:88:cf:ab:f4:85:d4:86: 96:e3:07:5a:a1:ba:71:60:ae:09:e3:a5:d7:ff:5c: 84:fb:1c:f1:ff:7d:9a:bf:db:64:1b:98:42:a1:14: 3b:87:60:44:4b:90:4b:11:1a:ab:ea:d8:77:66:cb: 79:be:f8:87:50:27:eb:3c:9b:46:3a:96:c0:99:66: 8c:d3:8e:f1:80:69:16:15:55:90:74:86:db:b6:a3: 91:9f:bf:22:62:50:15:75:40:ea:2d:c9:ca:99:0f: f9:62:47:06:fc:e8:be:66:ff:ec:1d:3f:e6:06:fc: 96:7f:b4:9e:a2:0b:6e:9a:f3:52:c1:c2:6a:6c:21: e8:03:0b:5d:53:8c:d5:31:38:a7:51:11:a1:25:5b: 21:79:6e:58:9a:f3:33:a4:c2:bf:d6:cf:eb:11:9c: a5:48:70:eb:ea:6b:49:56:df:71:10:85:75:12:b0: 34:ef:f9:9e:ef:e1:60:d6:3c:25:b3:e5:95:1b:5f: ef:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B3:51:22:74:C8:28:D4:FE:0C:DA:73:1F:4E:C1:73:C5:5A:57:43 X509v3 Authority Key Identifier: keyid:17:3C:26:A0:86:E8:5B:8F:DB:91:7A:A8:D9:11:E1:C0:0A:B6:A3:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FzwmoIboW4_bkXqo2RHhwAq2o6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d4:36:a9:c7:48:12:29:0c:ff:cf:39:f9:56:e6:1e:36:f2: 40:1c:fd:4d:21:4b:85:25:3d:16:ab:5a:28:e7:e3:a9:2a:70: 56:d5:ba:b0:b4:f5:87:2e:f0:5f:e8:0d:9d:61:7b:ab:23:4c: a6:3d:4b:df:28:76:14:f6:6b:d7:f7:a2:d8:0a:8f:b2:9d:2a: b0:62:b4:3d:e4:13:29:fe:7c:f9:15:99:3f:cf:81:7c:5f:94: 6e:cf:8f:f4:9e:8c:db:26:84:6f:0f:a2:01:d2:3e:88:b5:d1: bd:38:4f:17:40:a2:17:9b:7a:9b:95:f0:c9:c1:3b:01:ec:75: 73:44:05:aa:ec:e4:8b:f3:c3:67:00:8e:87:19:46:6d:78:ee: ac:1a:04:eb:a8:52:47:2e:4e:98:e0:eb:63:12:b2:2c:23:70: 09:83:28:d9:c8:89:d2:c2:9a:5f:ac:c3:8b:a0:9d:ce:55:c4: 9f:82:65:55:72:23:d6:56:c1:ab:e5:fc:f8:c5:d2:7c:fc:bf: 09:61:f8:71:86:a7:28:ba:e8:ac:5d:c0:1f:a9:be:92:f1:95: fb:be:9b:d2:8a:13:8e:57:11:06:27:b6:df:2a:94:bc:bf:98: 4c:0a:7d:b3:05:a2:eb:63:18:b4:ed:a1:5a:df:4c:4f:63:7a: 71:72:cc:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkVGQTExMC8GA1UEBRMoMTczQzI2QTA4NkU4NUI4RkRCOTE3QUE4RDkxMUUxQzAw QUI2QTNBMTAeFw0yNTA0MjcwNjUyMzBaFw0yNTA1MDQwNjUyMzBaMBgxFjAUBgNV BAMTDTY4MGRkNDJlLTQwYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCb2bzZzBjo7WRFuvx1vV6VYIH0+mJpImavdqY74b0MH4ASxCsiI+KxdUsfZxjR 7CJAESCdHrY/vPimIKZLG+JnbjGOiM+r9IXUhpbjB1qhunFgrgnjpdf/XIT7HPH/ fZq/22QbmEKhFDuHYERLkEsRGqvq2Hdmy3m++IdQJ+s8m0Y6lsCZZozTjvGAaRYV VZB0htu2o5GfvyJiUBV1QOotycqZD/liRwb86L5m/+wdP+YG/JZ/tJ6iC26a81LB wmpsIegDC11TjNUxOKdREaElWyF5blia8zOkwr/Wz+sRnKVIcOvqa0lW33EQhXUS sDTv+Z7v4WDWPCWz5ZUbX+9bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY7NRInTI KNT+DNpzH07Bc8VaV0MwHwYDVR0jBBgwFoAUFzwmoIboW4/bkXqo2RHhwAq2o6Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRUZBLzBEQTUwNkNDMEIz NzExRjA4QzIzOTg2M0M0RjlBRTAyL0Z6d21vSWJvVzRfYmtYcW8yUkhod0FxMm82 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRnp3bW9JYm9XNF9ia1hxbzJSSGh3QXEybzZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RUZBLzBEQTUwNkNDMEIzNzExRjA4QzIzOTg2M0M0RjlBRTAyL0Z6d21vSWJvVzRf YmtYcW8yUkhod0FxMm82RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHbUNqnHSBIpDP/POflW5h428kAc/U0hS4UlPRarWijn46kqcFbVurC0 9Ycu8F/oDZ1he6sjTKY9S98odhT2a9f3otgKj7KdKrBitD3kEyn+fPkVmT/PgXxf lG7Pj/SejNsmhG8PogHSPoi10b04TxdAohebepuV8MnBOwHsdXNEBars5Ivzw2cA jocZRm147qwaBOuoUkcuTpjg62MSsiwjcAmDKNnIidLCml+sw4ugnc5VxJ+CZVVy I9ZWwavl/PjF0nz8vwlh+HGGpyi66KxdwB+pvpLxlfu+m9KKE45XEQYntt8qlLy/ mEwKfbMFoutjGLTtoVrfTE9jenFyzNs= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net