$ rpki-client -vvf rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft File: 8n_4duRl5zyaUv04SNvXZb-yNdQ.mft (raw, json) Hash identifier: l9LEaCoNz+UeAwFFoVP0sXf0GWcguHZKu5/PBFVrdM8= Subject key identifier: 09:F0:99:2C:4B:F4:25:3E:B2:E5:DA:14:EC:F4:09:C6:49:7C:B6:81 Authority key identifier: F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4 Certificate issuer: /CN=A91175FF/serialNumber=F27FF876E465E73C9A52FD3848DBD765BFB235D4 Certificate serial: 0D4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft Manifest number: 0D3D Signing time: Sat 26 Apr 2025 17:52:56 +0000 Manifest this update: Sat 26 Apr 2025 17:52:56 +0000 Manifest next update: Sat 03 May 2025 17:52:56 +0000 Files and hashes: 1: 8n_4duRl5zyaUv04SNvXZb-yNdQ.crl (hash: f2aa85hOe6890fambVwpcjyFc/jZBi/APeD4Flr/H1I=) 2: 3833FD20D09711E987F73A60C4F9AE02.roa (hash: IUQ+m8jWqnf3vf6hcCuC0VogjthEOWb1ceqBAZq2VPM=) 3: 8A00E9284FB111EDBE702516C4F9AE02.roa (hash: s8FViwNwbQunitwqHzsjUNkNGV0Mlz+MOgwlD5JB+Bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3403 (0xd4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175FF, serialNumber=F27FF876E465E73C9A52FD3848DBD765BFB235D4 Validity Not Before: Apr 26 17:52:56 2025 GMT Not After : May 3 17:52:56 2025 GMT Subject: CN=680d1d78-1502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a4:59:42:2b:09:06:86:ba:a6:3c:a9:e2:1f: f0:ba:a1:36:9f:70:40:70:33:bc:41:bc:a1:13:7b: 19:65:5f:53:56:df:28:52:18:cf:92:e9:41:db:48: 6b:d9:39:f0:50:53:39:8f:f1:a0:b5:bc:3d:30:c3: 95:7f:56:fe:39:ed:3a:49:0d:7f:8f:f4:11:66:7b: 59:ae:60:89:f8:c1:79:4c:99:cf:dc:ee:fb:ab:34: 50:7f:ef:f8:cf:59:55:04:fb:3c:7f:d4:57:cc:61: da:7e:5d:53:8a:4a:64:2f:20:fc:3b:48:93:49:25: fc:2e:7b:d1:a9:54:27:a8:a5:97:74:de:8e:cc:98: 48:1d:ae:04:db:07:8a:5e:59:a0:51:fc:6a:f0:1c: 61:96:e0:56:5f:2d:af:9a:20:da:73:90:9b:ed:0f: 2c:44:4c:b6:a0:d5:a1:d9:e4:6c:35:ed:1b:f1:01: 0d:9b:15:4b:79:61:ac:71:8e:20:30:89:83:cb:97: c6:90:94:ae:41:50:01:51:16:a9:f0:03:58:9d:ef: 46:88:08:92:54:0a:1a:b0:cb:d2:81:a1:74:a7:79: a9:a0:08:bb:dd:95:08:4c:56:93:b7:95:aa:67:39: 20:74:1a:06:61:bc:9d:72:a4:84:dd:3e:88:ae:f8: ed:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F0:99:2C:4B:F4:25:3E:B2:E5:DA:14:EC:F4:09:C6:49:7C:B6:81 X509v3 Authority Key Identifier: keyid:F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:e8:37:9e:7e:2a:86:23:fc:a2:e2:f2:52:74:56:55:38:07: 3d:73:ae:4b:1c:3e:66:14:d6:1b:86:c8:fa:67:8b:1c:0c:97: fe:84:4d:4e:69:67:c0:ba:88:96:f0:f7:43:d3:22:8f:09:49: 5f:c0:48:b9:93:fe:77:dc:04:61:e8:41:9d:15:7b:c2:b9:ff: de:f9:ef:7e:01:de:eb:55:8b:9e:e2:c3:83:47:1c:48:02:e6: b0:e5:5c:ab:4f:50:e8:01:bc:3e:84:04:44:0b:b9:09:35:c0: 43:7c:7b:f1:40:cd:f2:81:83:d2:6d:61:32:ca:21:85:7c:80: b0:29:db:b2:8c:df:53:d0:75:a0:3f:82:28:ad:33:fa:0c:5c: ab:67:35:95:9f:95:06:c6:81:bf:e0:b5:71:41:b2:cd:56:1d: de:54:81:92:ab:70:c1:aa:e1:c4:36:30:f9:a1:b6:11:d9:a4: 1f:4f:1b:7b:dc:5a:6d:5b:85:fe:c9:50:95:5d:8b:9c:03:18: fa:9e:58:0a:d1:c2:e5:80:be:1f:eb:b2:1d:cc:36:86:a4:cb: a8:cf:05:25:cb:6b:cb:07:69:9b:b8:0f:77:53:da:3e:71:8b: 48:34:f4:bd:4e:88:8f:b7:d8:b9:ec:04:40:ce:5d:ff:b8:94: 39:b6:76:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RkYxMTAvBgNVBAUTKEYyN0ZGODc2RTQ2NUU3M0M5QTUyRkQzODQ4REJENzY1 QkZCMjM1RDQwHhcNMjUwNDI2MTc1MjU2WhcNMjUwNTAzMTc1MjU2WjAYMRYwFAYD VQQDEw02ODBkMWQ3OC0xNTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqRZQisJBoa6pjyp4h/wuqE2n3BAcDO8QbyhE3sZZV9TVt8oUhjPkulB20hr 2TnwUFM5j/Ggtbw9MMOVf1b+Oe06SQ1/j/QRZntZrmCJ+MF5TJnP3O77qzRQf+/4 z1lVBPs8f9RXzGHafl1TikpkLyD8O0iTSSX8LnvRqVQnqKWXdN6OzJhIHa4E2weK XlmgUfxq8BxhluBWXy2vmiDac5Cb7Q8sREy2oNWh2eRsNe0b8QENmxVLeWGscY4g MImDy5fGkJSuQVABURap8ANYne9GiAiSVAoasMvSgaF0p3mpoAi73ZUITFaTt5Wq ZzkgdBoGYbydcqSE3T6IrvjtmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnwmSxL 9CU+suXaFOz0CcZJfLaBMB8GA1UdIwQYMBaAFPJ/+HbkZec8mlL9OEjb12W/sjXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGRi9FMTc2RDY3QUQw OTUxMUU5QjM0NUEwNURDNEY5QUUwMi84bl80ZHVSbDV6eWFVdjA0U052WFpiLXlO ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhuXzRkdVJsNXp5YVV2MDRTTnZYWmIteU5kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGRi9FMTc2RDY3QUQwOTUxMUU5QjM0NUEwNURDNEY5QUUwMi84bl80ZHVSbDV6 eWFVdjA0U052WFpiLXlOZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg6DeefiqGI/yi4vJSdFZVOAc9c65LHD5mFNYbhsj6Z4scDJf+hE1O aWfAuoiW8PdD0yKPCUlfwEi5k/533ARh6EGdFXvCuf/e+e9+Ad7rVYue4sODRxxI Auaw5VyrT1DoAbw+hAREC7kJNcBDfHvxQM3ygYPSbWEyyiGFfICwKduyjN9T0HWg P4IorTP6DFyrZzWVn5UGxoG/4LVxQbLNVh3eVIGSq3DBquHENjD5obYR2aQfTxt7 3FptW4X+yVCVXYucAxj6nlgK0cLlgL4f67IdzDaGpMuozwUly2vLB2mbuA93U9o+ cYtINPS9ToiPt9i57ARAzl3/uJQ5tnYz -----END CERTIFICATE-----Generated at Sat Apr 26 21:01:48 2025 by rpki-client on console.sobornost.net