$ rpki-client -vvf rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft File: MayWR8f4cKZrot54hUTNjDJr3_k.mft (raw, json) Hash identifier: Hhdjn1bsEPwo59UYDo/7ta8GPgE04E5u3Z1WIDvKav4= Subject key identifier: 1D:7F:B7:80:F3:9E:B4:E2:10:AA:96:0A:19:F8:1B:57:29:C5:F0:DB Authority key identifier: 31:AC:96:47:C7:F8:70:A6:6B:A2:DE:78:85:44:CD:8C:32:6B:DF:F9 Certificate issuer: /CN=A91218BB/serialNumber=31AC9647C7F870A66BA2DE788544CD8C326BDFF9 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft Manifest number: 3D Signing time: Fri 25 Apr 2025 06:28:58 +0000 Manifest this update: Fri 25 Apr 2025 06:28:57 +0000 Manifest next update: Fri 02 May 2025 06:28:57 +0000 Files and hashes: 1: MayWR8f4cKZrot54hUTNjDJr3_k.crl (hash: tJTqJgLJQHgSH+A4/YvE5487LfRoy5qlIqm123Ox1Sg=) 2: 4DD6D628C8D211EF9F1BE312C4F9AE02.roa (hash: sUWfAuRTWaVVgcAthywuFU4ZlijXzthACuza893doh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.crl rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91218BB, serialNumber=31AC9647C7F870A66BA2DE788544CD8C326BDFF9 Validity Not Before: Apr 25 06:28:57 2025 GMT Not After : May 2 06:28:57 2025 GMT Subject: CN=680b2baa-a5db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c1:5e:69:0a:76:eb:6b:dd:4c:5e:f5:9f:af: 59:37:79:75:77:ae:54:9f:4f:40:c9:6d:8f:76:66: 4a:4f:a4:36:81:47:fa:e8:e4:87:13:de:fd:1d:09: 1a:4b:f4:ab:c8:14:f0:2f:41:47:40:6b:21:0f:1e: e5:6d:fd:44:b1:fb:b9:2b:fb:18:d5:9c:73:42:47: bc:fb:b3:d3:d9:79:db:cf:ec:0d:f9:ed:e1:6a:e8: bd:d3:b9:dd:f0:1d:89:e0:0c:7e:ac:31:4c:61:67: 1b:71:2b:b0:bd:7c:b3:ef:35:b9:98:a0:df:28:08: 7f:22:39:da:be:4a:df:99:b1:cf:93:ee:74:1c:e9: e6:7a:dd:6a:ff:71:f5:e8:ba:c6:d1:bb:af:94:16: 8b:35:ce:8c:aa:02:5b:96:68:61:5b:f1:63:38:e8: 81:51:64:94:c8:dd:ed:c2:33:2c:11:91:36:43:33: b1:0e:eb:84:2a:56:ff:e2:75:59:c9:44:6d:fb:c6: 39:19:56:23:96:f5:18:29:22:cd:b6:b9:6b:32:81: 31:82:71:1f:55:b0:e3:dd:d3:f6:86:16:4f:22:38: 6a:8e:6f:c7:b1:e9:5f:92:b5:f1:1e:ec:fb:0e:dc: 86:9c:6f:02:19:ff:46:57:25:54:83:50:04:57:98: e2:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7F:B7:80:F3:9E:B4:E2:10:AA:96:0A:19:F8:1B:57:29:C5:F0:DB X509v3 Authority Key Identifier: keyid:31:AC:96:47:C7:F8:70:A6:6B:A2:DE:78:85:44:CD:8C:32:6B:DF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MayWR8f4cKZrot54hUTNjDJr3_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91218BB/6A0B2054C8C511EF8EC55565C4F9AE02/MayWR8f4cKZrot54hUTNjDJr3_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:30:fc:1b:85:19:e6:ef:ae:da:90:6a:92:37:11:3e:3c:c6: ef:d2:6d:d1:83:25:1b:8b:e5:e7:34:9c:1c:a4:c3:28:9b:0a: a1:83:ea:ab:58:ee:1c:61:98:ee:6a:37:c9:ce:13:ac:5a:e1: 51:83:79:83:33:63:1a:96:ea:e7:6d:fa:8e:20:c9:ba:d7:a2: d2:54:3c:44:b6:ad:d9:a6:40:5d:94:09:67:e8:2e:43:89:80: fa:f2:d8:6c:3c:df:78:9f:d9:5d:fe:cc:48:77:48:5c:3d:7a: 19:02:27:a3:b4:6e:38:34:04:18:2d:09:6e:f5:f1:6f:00:66: 95:3a:e8:4c:cd:49:54:5f:49:13:46:45:d7:91:7a:ac:00:c4: d9:f3:13:04:70:d5:28:87:7e:a2:c2:06:90:73:ee:8d:f0:72: 21:bb:17:dc:fc:a7:c8:a7:17:55:83:e0:c9:b9:36:10:7f:eb: ec:6d:61:3e:c3:d7:06:3c:e6:eb:39:aa:b3:17:05:58:68:bc: 8b:a1:aa:0b:7d:18:9d:e8:03:64:45:14:6b:82:d3:00:10:47: 94:9c:7c:e6:d9:39:8a:f8:76:cc:04:3f:a0:a1:62:bd:a8:a2: f6:0f:3e:40:c7:64:22:ca:46:a8:d0:00:f6:c6:f6:2d:64:70: 42:9b:28:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MThCQjExMC8GA1UEBRMoMzFBQzk2NDdDN0Y4NzBBNjZCQTJERTc4ODU0NENEOEMz MjZCREZGOTAeFw0yNTA0MjUwNjI4NTdaFw0yNTA1MDIwNjI4NTdaMBgxFjAUBgNV BAMTDTY4MGIyYmFhLWE1ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgwV5pCnbra91MXvWfr1k3eXV3rlSfT0DJbY92ZkpPpDaBR/ro5IcT3v0dCRpL 9KvIFPAvQUdAayEPHuVt/USx+7kr+xjVnHNCR7z7s9PZedvP7A357eFq6L3Tud3w HYngDH6sMUxhZxtxK7C9fLPvNbmYoN8oCH8iOdq+St+Zsc+T7nQc6eZ63Wr/cfXo usbRu6+UFos1zoyqAluWaGFb8WM46IFRZJTI3e3CMywRkTZDM7EO64QqVv/idVnJ RG37xjkZViOW9RgpIs22uWsygTGCcR9VsOPd0/aGFk8iOGqOb8ex6V+StfEe7PsO 3IacbwIZ/0ZXJVSDUARXmOLZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHX+3gPOe tOIQqpYKGfgbVynF8NswHwYDVR0jBBgwFoAUMayWR8f4cKZrot54hUTNjDJr3/kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxOEJCLzZBMEIyMDU0QzhD NTExRUY4RUM1NTU2NUM0RjlBRTAyL01heVdSOGY0Y0tacm90NTRoVVROakRKcjNf ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTWF5V1I4ZjRjS1pyb3Q1NGhVVE5qREpyM19rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx OEJCLzZBMEIyMDU0QzhDNTExRUY4RUM1NTU2NUM0RjlBRTAyL01heVdSOGY0Y0ta cm90NTRoVVROakRKcjNfay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEAw/BuFGebvrtqQapI3ET48xu/SbdGDJRuL5ec0nBykwyibCqGD6qtY 7hxhmO5qN8nOE6xa4VGDeYMzYxqW6udt+o4gybrXotJUPES2rdmmQF2UCWfoLkOJ gPry2Gw833if2V3+zEh3SFw9ehkCJ6O0bjg0BBgtCW718W8AZpU66EzNSVRfSRNG RdeReqwAxNnzEwRw1SiHfqLCBpBz7o3wciG7F9z8p8inF1WD4Mm5NhB/6+xtYT7D 1wY85us5qrMXBVhovIuhqgt9GJ3oA2RFFGuC0wAQR5ScfObZOYr4dswEP6ChYr2o ovYPPkDHZCLKRqjQAPbG9i1kcEKbKLQ= -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:36 2025 by rpki-client on console.sobornost.net