$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft File: rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft (raw, json) Hash identifier: pnMVTbjUxQyv2BH1Vqssor7muJCjgLaDPMvRaVRQ4N8= Subject key identifier: 6B:13:15:C6:6E:82:08:A8:D3:A6:79:7B:A3:99:C3:D0:73:51:8F:02 Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft Manifest number: 88 Signing time: Sun 27 Apr 2025 05:20:49 +0000 Manifest this update: Sun 27 Apr 2025 05:20:48 +0000 Manifest next update: Sun 04 May 2025 05:20:48 +0000 Files and hashes: 1: rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl (hash: mvkN3/tz2W0Jutlp8OdeiPsQ0Or0VnnTKjwM3LcJNMw=) 2: 39E76DD0589311EF88BF4665C4F9AE02.roa (hash: PmKB7v6narbsfvRh5TaIR4bk0nlj1W0GlQb30nMXpbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Apr 27 05:20:48 2025 GMT Not After : May 4 05:20:48 2025 GMT Subject: CN=680dbeb0-e3eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:83:fb:a2:35:c6:c9:22:e3:79:ae:c4:69:79: ae:16:06:38:f9:7c:e5:ba:05:85:c1:d9:7c:5f:55: fb:a4:48:fd:57:b9:2c:79:77:e6:f7:1c:f6:92:0c: a4:7e:23:25:f9:e7:b5:b2:f8:da:9e:c2:16:31:91: b3:b0:8d:22:67:5e:23:e2:fd:97:b2:97:a4:60:20: 9b:fc:cf:22:99:d5:36:41:79:f5:36:dd:13:e8:da: d8:9e:8d:9f:0a:7d:fb:5a:79:a9:8c:99:c0:86:d4: 3d:1a:0c:d3:dc:de:9c:e4:53:2a:56:27:59:4a:75: 6b:36:d6:8e:d3:58:27:8b:23:1b:9c:1e:a7:cc:f6: 01:51:f2:58:1f:db:d4:19:ee:f8:2e:c1:06:ac:6f: 9e:8e:a7:06:e0:04:4d:ad:34:d3:c4:02:11:1e:1d: 1e:09:a7:2c:76:f9:f5:81:a7:aa:17:52:bd:90:ac: 68:0a:46:81:ea:f6:e5:81:6d:f8:7d:a2:79:e1:be: c8:dc:b9:4d:d2:6e:91:c5:84:27:6f:3e:5d:8d:46: 97:54:ca:bc:5b:c2:e4:0b:79:b8:21:e7:7f:9a:bf: 90:ba:4a:02:e8:bd:aa:30:d9:47:4f:9c:56:38:44: 5c:54:10:ca:f5:1d:2f:09:c4:1d:d5:e5:6a:17:d2: 8e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:13:15:C6:6E:82:08:A8:D3:A6:79:7B:A3:99:C3:D0:73:51:8F:02 X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:25:5d:e1:5b:b8:4f:b3:0c:7c:22:fe:e9:78:ed:99:57:b8: 89:34:2b:4c:15:fa:88:f3:67:b6:75:1d:ab:1a:13:5c:f8:94: 16:af:7c:43:f9:2e:4e:98:49:52:5c:f8:2c:e2:52:fc:8a:07: 76:64:9b:fa:29:7c:64:79:25:12:54:d5:c7:f9:20:28:8d:f7: 77:01:a0:08:3c:cf:1a:ce:ff:28:61:6c:d1:a7:1a:46:99:99: 82:0a:83:8e:ff:77:cd:55:75:87:ee:5d:e8:f9:61:bb:49:bd: 24:68:55:cf:11:d2:82:87:a1:14:f1:4d:26:db:c6:d5:64:b1: ed:6a:01:70:11:47:74:d8:55:d4:f9:c8:23:fd:1e:de:31:35: a5:b3:40:1b:ca:92:59:a3:9e:10:b9:cc:2d:55:81:0c:96:72: 0c:74:70:42:fe:db:f2:9d:6f:53:6c:dd:07:7a:58:c1:9d:dc: ab:d4:f1:b8:cb:ba:0b:bd:ac:22:24:f7:27:f6:e1:99:15:bf: eb:68:18:ab:95:60:ba:04:27:16:c1:99:02:2a:79:53:87:0c: db:01:55:4b:8f:89:56:6b:26:d0:8b:2a:bf:73:de:fa:ff:c9: cf:f7:e4:4f:4a:65:2a:f8:fb:29:2f:ae:30:55:dc:0d:8e:22: 27:86:06:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwNDI3MDUyMDQ4WhcNMjUwNTA0MDUyMDQ4WjAYMRYwFAYD VQQDEw02ODBkYmViMC1lM2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8YP7ojXGySLjea7EaXmuFgY4+XzlugWFwdl8X1X7pEj9V7kseXfm9xz2kgyk fiMl+ee1svjansIWMZGzsI0iZ14j4v2XspekYCCb/M8imdU2QXn1Nt0T6NrYno2f Cn37WnmpjJnAhtQ9GgzT3N6c5FMqVidZSnVrNtaO01gniyMbnB6nzPYBUfJYH9vU Ge74LsEGrG+ejqcG4ARNrTTTxAIRHh0eCacsdvn1gaeqF1K9kKxoCkaB6vblgW34 faJ54b7I3LlN0m6RxYQnbz5djUaXVMq8W8LkC3m4Ied/mr+QukoC6L2qMNlHT5xW OERcVBDK9R0vCcQd1eVqF9KO0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsTFcZu ggio06Z5e6OZw9BzUY8CMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTY5QS84QjBFNzM4MDU4OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZ UUxDT3BzaU5rSkRvdHNVZ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEJV3hW7hPswx8Iv7peO2ZV7iJNCtMFfqI82e2dR2rGhNc+JQWr3xD +S5OmElSXPgs4lL8igd2ZJv6KXxkeSUSVNXH+SAojfd3AaAIPM8azv8oYWzRpxpG mZmCCoOO/3fNVXWH7l3o+WG7Sb0kaFXPEdKCh6EU8U0m28bVZLHtagFwEUd02FXU +cgj/R7eMTWls0AbypJZo54QucwtVYEMlnIMdHBC/tvynW9TbN0HeljBndyr1PG4 y7oLvawiJPcn9uGZFb/raBirlWC6BCcWwZkCKnlThwzbAVVLj4lWaybQiyq/c976 /8nP9+RPSmUq+PspL64wVdwNjiInhgak -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:40 2025 by rpki-client on console.sobornost.net