$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft File: ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft (raw, json) Hash identifier: Zjh2VJPuPzgAKIv9XdBOlUHqW2pNxJk1JFsvs9XK8oM= Subject key identifier: 7E:37:99:68:50:08:5A:06:4F:00:97:A1:AD:07:48:3B:6A:CE:DF:D8 Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 053F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft Manifest number: 0525 Signing time: Sat 26 Apr 2025 23:16:40 +0000 Manifest this update: Sat 26 Apr 2025 23:16:39 +0000 Manifest next update: Sat 03 May 2025 23:16:39 +0000 Files and hashes: 1: ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl (hash: niRNxM8uD5UFc1MqNaxVQdbvcW9Gj8l71M80mJ4OzKA=) 2: 3B2A0EE4AEBC11EF876B6A5AC4F9AE02.roa (hash: 4bP+/xCzlCHzMiPDDeZZu8ryV1WmsI6f+3c5qjtpUM8=) 3: EDC6896617B611F08E260814C4F9AE02.roa (hash: MPM/fDIm7iSq8h5ZOB3ujJWuioyZyPhojtnDvre1LOg=) 4: 3A964BE6AEBC11EF876B6A5AC4F9AE02.roa (hash: 3s0Y71iF/fsJNHbeREVW+BHHh6vRQTKc/vlJskM3cQo=) 5: 5F652B164A0311EC84EFD42FC4F9AE02.roa (hash: DJiem+mJ9guPOqkkTAIozTCpaBw0W78lezIlNh26BC0=) 6: CE751320B9D511ED89A5B11FC4F9AE02.roa (hash: qkcR8ZEDC9+iqlFe5dp0WkDY8PQPtYRvJuQb0n842mU=) 7: 16DA3F3E784E11EC96A28137C4F9AE02.roa (hash: y2qv06TmgMwKADn1oDVapCF1E/WcY7FuZLGnohpiPWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1343 (0x53f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3, serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Apr 26 23:16:39 2025 GMT Not After : May 3 23:16:39 2025 GMT Subject: CN=680d6957-f923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ec:33:46:b5:d7:e0:93:c3:43:29:72:a6:68: a4:5f:a6:9c:f1:06:c4:a3:e4:62:9e:c8:3c:90:1f: c0:46:b0:f6:cf:20:e7:6c:aa:b0:a3:56:bc:06:2b: ed:d6:55:6c:fb:4c:bf:c1:17:56:cb:37:cb:15:87: 02:ce:e3:61:db:e1:60:3f:58:fe:ad:3f:5e:c2:e3: 13:57:b2:48:60:ea:3d:61:35:e8:c7:e0:ba:23:f6: a8:c9:e0:98:65:a1:1d:62:5e:c6:c3:9f:b9:07:6f: d2:65:75:1a:18:b7:48:c1:96:32:16:86:aa:b1:56: 3e:0a:9b:d0:88:d1:c0:1c:4d:df:3d:3c:27:bd:8f: 3f:cb:c5:3d:f2:24:e5:fb:3d:5f:cc:1b:55:fd:6d: 9f:86:30:24:6a:00:04:01:7d:45:e9:c3:45:ba:f6: 15:3d:56:b5:5e:32:9b:9e:39:35:d5:25:b2:15:e1: d1:04:97:b5:f6:c0:62:3e:ba:fc:92:11:cc:7b:ab: 09:c4:5b:d2:ef:f3:9b:de:2d:bc:58:58:f2:17:3a: 8b:6c:81:f7:94:3a:e1:d8:c8:91:a7:93:87:34:20: 1e:fd:ea:84:37:17:94:50:7c:73:92:fe:d2:26:b4: 67:64:5c:fd:7c:4d:40:76:cd:27:c3:c9:ef:a3:6a: b1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:37:99:68:50:08:5A:06:4F:00:97:A1:AD:07:48:3B:6A:CE:DF:D8 X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:2e:76:65:5c:71:1d:bf:e3:83:b7:07:46:b4:bf:4c:ad:b1: e0:df:00:9b:5d:38:a9:df:84:0c:6a:3e:8f:7a:f2:4d:9e:67: b3:1d:d2:52:fa:35:7a:0f:a0:6c:e8:05:f9:0f:cc:32:60:96: bb:b9:c0:b9:14:c9:c1:60:a8:b3:cb:f6:3b:76:75:dc:2d:0e: 06:60:8d:e3:39:7e:8c:fc:af:0a:7e:c3:b1:d1:1f:3d:f9:23: 92:63:41:d0:f9:70:78:61:29:83:f6:06:f1:b5:4a:8e:8b:12: 8d:b8:0f:84:ca:72:ce:99:75:7e:d2:2e:d8:a3:33:1c:b3:32: 7c:13:07:8a:d3:78:34:2b:d7:dd:23:f8:f0:61:00:55:ca:b0: a4:ca:fb:28:2a:c4:0b:3e:48:1e:59:eb:6f:75:db:28:66:28: a7:05:22:9e:77:b8:98:4e:ad:c3:01:69:ec:64:27:b7:b3:42: da:1c:61:6e:a2:61:95:e0:ea:1f:52:92:0b:c0:d5:07:9f:ec: 7d:69:fc:c6:94:4a:a1:0e:ce:02:d5:fb:3c:af:2c:f7:dc:33: ac:04:3d:79:71:ce:a6:2a:b9:dc:10:94:0b:f6:7e:7e:09:10: 14:8f:df:9b:41:50:20:be:e2:b1:bb:1b:2a:12:3d:bd:1a:59: af:57:8f:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjUwNDI2MjMxNjM5WhcNMjUwNTAzMjMxNjM5WjAYMRYwFAYD VQQDEw02ODBkNjk1Ny1mOTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uwzRrXX4JPDQylypmikX6ac8QbEo+Rinsg8kB/ARrD2zyDnbKqwo1a8Bivt 1lVs+0y/wRdWyzfLFYcCzuNh2+FgP1j+rT9ewuMTV7JIYOo9YTXox+C6I/aoyeCY ZaEdYl7Gw5+5B2/SZXUaGLdIwZYyFoaqsVY+CpvQiNHAHE3fPTwnvY8/y8U98iTl +z1fzBtV/W2fhjAkagAEAX1F6cNFuvYVPVa1XjKbnjk11SWyFeHRBJe19sBiPrr8 khHMe6sJxFvS7/Ob3i28WFjyFzqLbIH3lDrh2MiRp5OHNCAe/eqENxeUUHxzkv7S JrRnZFz9fE1Ads0nw8nvo2qx5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH43mWhQ CFoGTwCXoa0HSDtqzt/YMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhFMy81MzkzQzBFRTAwMjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1z X1pxaUdUcngxSXh0SFFKZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABLnZlXHEdv+ODtwdGtL9MrbHg3wCbXTip34QMaj6PevJNnmezHdJS +jV6D6Bs6AX5D8wyYJa7ucC5FMnBYKizy/Y7dnXcLQ4GYI3jOX6M/K8KfsOx0R89 +SOSY0HQ+XB4YSmD9gbxtUqOixKNuA+EynLOmXV+0i7YozMcszJ8EweK03g0K9fd I/jwYQBVyrCkyvsoKsQLPkgeWetvddsoZiinBSKed7iYTq3DAWnsZCe3s0LaHGFu omGV4OofUpILwNUHn+x9afzGlEqhDs4C1fs8ryz33DOsBD15cc6mKrncEJQL9n5+ CRAUj9+bQVAgvuKxuxsqEj29GlmvV48W -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:14 2025 by rpki-client on console.sobornost.net