$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft File: peado7v7jl3TlkjmpD4A-nI95lg.mft (raw, json) Hash identifier: drBQZN8An7ZUfrp80s33SnaPMbpxzp9gnnRPP1UEOqo= Subject key identifier: 50:C0:EE:36:FC:8A:9D:58:F0:E7:6D:56:17:58:9F:BA:DD:BC:66:C6 Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 0A9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft Manifest number: 0A93 Signing time: Mon 28 Apr 2025 19:56:53 +0000 Manifest this update: Mon 28 Apr 2025 19:56:52 +0000 Manifest next update: Mon 05 May 2025 19:56:52 +0000 Files and hashes: 1: peado7v7jl3TlkjmpD4A-nI95lg.crl (hash: CDl05EoVGnUossSNMap/HdhUJsrwZ7YkdnaPg1wUTGc=) 2: 55BC5674573F11EAA8901D3EC4F9AE02.roa (hash: GpKaeFCXgLqKWUd4/mw0J3pe4Cuty7kr/IEGoWg6an0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:56:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2715 (0xa9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4, serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Validity Not Before: Apr 28 19:56:52 2025 GMT Not After : May 5 19:56:52 2025 GMT Subject: CN=680fdd85-a97d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:de:b0:64:c6:6a:bb:1f:47:4d:3e:df:30:f1: f2:70:6a:d9:c4:ae:83:e2:a0:a0:bf:4f:d7:47:94: e0:19:1e:b6:25:16:40:1c:12:dc:50:00:83:b9:25: 11:0a:c4:c0:45:e0:98:e7:b5:e7:20:0b:73:34:f1: 17:f6:d2:26:db:b2:c7:0e:b7:a1:1d:66:9f:20:29: 71:e8:79:19:48:95:38:57:f3:27:c9:3d:a0:cb:78: 86:bc:54:93:76:ee:94:b7:3f:1f:05:ab:cc:82:db: a3:5c:b7:6c:b7:0e:d8:d5:34:cf:37:da:74:3e:59: 7d:05:d2:a2:ec:e4:46:77:90:f7:84:71:62:d4:bc: ee:34:f0:2e:99:f1:c4:f7:fe:9d:c3:28:4c:e3:b2: c0:21:17:c5:28:ba:98:d8:6f:93:78:c9:18:30:cc: 95:f9:18:43:55:e3:3a:0a:f7:24:7f:32:47:ac:db: 2d:af:31:22:ec:52:97:bf:45:5d:9c:ba:57:1b:52: 37:59:cb:3f:30:fe:7b:2e:8c:4b:c0:82:0b:f3:11: 21:73:26:c2:62:86:89:c7:11:88:27:59:90:b4:a2: 31:27:69:25:27:89:bc:cb:5b:a5:db:65:3d:4c:95: 19:22:b7:4e:65:bb:2a:e9:8d:b9:b2:7f:7f:db:70: d9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C0:EE:36:FC:8A:9D:58:F0:E7:6D:56:17:58:9F:BA:DD:BC:66:C6 X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c6:43:86:ad:a6:e2:83:13:e0:92:3c:2a:b5:ea:af:ca:b7: f3:e3:a3:dc:7d:62:7a:a9:74:71:9d:82:09:d4:b1:02:10:d6: ab:cd:cb:33:e0:99:4e:e7:6b:8b:65:1f:ad:d9:94:d3:86:2d: cb:3c:87:2b:a2:74:4f:cd:3c:62:50:ea:42:b7:5d:fc:d8:57: f0:be:71:2e:3b:9e:49:f6:a7:1c:c5:0d:fc:3d:a6:f5:a8:18: ed:67:d5:5a:75:af:ad:bc:9c:a8:df:78:4c:32:a5:a0:ad:20: 06:4b:e9:f6:42:31:c8:70:b6:bf:d7:b6:f6:f8:96:73:13:38: ce:b7:48:62:10:59:da:d8:73:1b:5c:70:1c:c0:15:9d:40:65: 1e:96:f5:cc:db:a9:be:ed:0c:27:78:ae:76:31:6e:49:8e:d1: d0:c9:4a:b1:04:e8:8e:21:df:bb:d3:26:04:49:96:c5:8c:98: dc:09:cf:ed:18:c2:3f:59:0b:a4:e4:ae:0b:67:7b:eb:38:82: d7:83:26:d4:b7:b7:cc:b9:94:98:af:d8:13:74:4a:b3:ff:45: 89:95:1a:d0:36:1d:c1:f0:ac:57:89:73:72:8f:8c:95:cb:de: 9f:1f:b0:2e:18:ad:d1:da:46:87:35:3b:61:2a:d4:d8:8b:18: b0:c1:10:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjUwNDI4MTk1NjUyWhcNMjUwNTA1MTk1NjUyWjAYMRYwFAYD VQQDEw02ODBmZGQ4NS1hOTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN6wZMZqux9HTT7fMPHycGrZxK6D4qCgv0/XR5TgGR62JRZAHBLcUACDuSUR CsTAReCY57XnIAtzNPEX9tIm27LHDrehHWafIClx6HkZSJU4V/MnyT2gy3iGvFST du6Utz8fBavMgtujXLdstw7Y1TTPN9p0Pll9BdKi7ORGd5D3hHFi1LzuNPAumfHE 9/6dwyhM47LAIRfFKLqY2G+TeMkYMMyV+RhDVeM6CvckfzJHrNstrzEi7FKXv0Vd nLpXG1I3Wcs/MP57LoxLwIIL8xEhcybCYoaJxxGIJ1mQtKIxJ2klJ4m8y1ul22U9 TJUZIrdOZbsq6Y25sn9/23DZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDA7jb8 ip1Y8OdtVhdYn7rdvGbGMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBCNC9CQzhDMTBBRTU3M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2ps M1Rsa2ptcEQ0QS1uSTk1bGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCxkOGrabigxPgkjwqteqvyrfz46PcfWJ6qXRxnYIJ1LECENarzcsz 4JlO52uLZR+t2ZTThi3LPIcronRPzTxiUOpCt1382FfwvnEuO55J9qccxQ38Pab1 qBjtZ9Vada+tvJyo33hMMqWgrSAGS+n2QjHIcLa/17b2+JZzEzjOt0hiEFna2HMb XHAcwBWdQGUelvXM26m+7QwneK52MW5JjtHQyUqxBOiOId+70yYESZbFjJjcCc/t GMI/WQuk5K4LZ3vrOILXgybUt7fMuZSYr9gTdEqz/0WJlRrQNh3B8KxXiXNyj4yV y96fH7AuGK3R2kaHNTthKtTYixiwwRBo -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:50 2025 by rpki-client on console.sobornost.net