$ rpki-client -vvf rpki.apnic.net/member_repository/A91221EF/6F2FEBD6891F11EA89B6277CC4F9AE02/_5APJL-aiYLZX4RHqnubtPesRjk.mft File: _5APJL-aiYLZX4RHqnubtPesRjk.mft (raw, json) Hash identifier: jxeBp2epkvONHyAcLmP8CzKwTvSeUi+mvCbs7XJ2YKg= Subject key identifier: FD:8E:20:39:45:50:C9:EA:24:C4:08:64:0A:83:61:9F:CB:6B:E2:60 Authority key identifier: FF:90:0F:24:BF:9A:89:82:D9:5F:84:47:AA:7B:9B:B4:F7:AC:46:39 Certificate issuer: /CN=A91221EF/serialNumber=FF900F24BF9A8982D95F8447AA7B9BB4F7AC4639 Certificate serial: 09A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5APJL-aiYLZX4RHqnubtPesRjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91221EF/6F2FEBD6891F11EA89B6277CC4F9AE02/_5APJL-aiYLZX4RHqnubtPesRjk.mft Manifest number: 0995 Signing time: Mon 28 Apr 2025 20:30:49 +0000 Manifest this update: Mon 28 Apr 2025 20:30:48 +0000 Manifest next update: Mon 05 May 2025 20:30:48 +0000 Files and hashes: 1: _5APJL-aiYLZX4RHqnubtPesRjk.crl (hash: jjkJwVBI3UGUG73AXSYibI5VrOABqMervDEXVFmp1fo=) 2: D3037D06738E11ED8283FF53C4F9AE02.roa (hash: fmsh1X3Q3HooxV4YfKkoLFlrGgD13/WeDGjBg2CNmMg=) 3: D1A6B6D0738E11ED8283FF53C4F9AE02.roa (hash: WgMRh1pD8v+j2OuHDw2wLrJ+bXBsyv6ChtDmNGRF1/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91221EF/6F2FEBD6891F11EA89B6277CC4F9AE02/_5APJL-aiYLZX4RHqnubtPesRjk.crl rsync://rpki.apnic.net/member_repository/A91221EF/6F2FEBD6891F11EA89B6277CC4F9AE02/_5APJL-aiYLZX4RHqnubtPesRjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5APJL-aiYLZX4RHqnubtPesRjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2466 (0x9a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91221EF, serialNumber=FF900F24BF9A8982D95F8447AA7B9BB4F7AC4639 Validity Not Before: Apr 28 20:30:48 2025 GMT Not After : May 5 20:30:48 2025 GMT Subject: CN=680fe578-249a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:16:7e:96:98:cc:44:69:3c:3d:f0:95:26:d7: 09:63:13:9a:d4:35:34:c0:04:89:de:a3:1c:81:a1: 5c:6e:29:05:e1:75:98:1b:54:6c:84:a1:58:0a:22: 35:08:4e:9d:50:35:00:fa:3e:ca:35:4c:ea:48:0b: 87:32:df:06:96:86:6f:12:4e:11:f2:17:0c:58:71: 45:a0:60:d8:1d:49:47:f9:ab:b7:3c:38:57:a7:83: 6d:6b:1b:0d:92:11:0c:e1:33:56:8a:d0:a2:0b:9c: 36:5e:da:a7:9c:84:ae:b8:2a:a4:78:54:a2:9e:5f: f6:78:74:52:50:ca:02:4b:68:13:78:38:9c:6e:de: ad:a0:1f:45:25:58:d8:0a:14:c6:7e:7c:ba:f5:22: ee:24:40:9e:8b:55:32:0a:ee:0c:a9:1a:81:8c:e3: 06:42:88:95:6d:93:3f:3a:a3:43:2a:52:cc:9f:4f: 8c:ef:a5:e0:28:36:f7:2b:85:df:46:f0:d2:de:28: 60:7c:87:8b:0f:7d:85:4b:e5:d9:e5:a5:5e:a3:6e: e5:ea:dd:8a:f5:67:c1:15:4d:f7:ad:7e:19:84:ae: 0b:12:0e:ff:3d:89:2f:65:6c:b0:b5:f3:1a:45:67: 61:3d:d6:02:b9:4b:69:0a:8b:5f:1b:8f:f8:84:b8: a8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:8E:20:39:45:50:C9:EA:24:C4:08:64:0A:83:61:9F:CB:6B:E2:60 X509v3 Authority Key Identifier: keyid:FF:90:0F:24:BF:9A:89:82:D9:5F:84:47:AA:7B:9B:B4:F7:AC:46:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91221EF/6F2FEBD6891F11EA89B6277CC4F9AE02/_5APJL-aiYLZX4RHqnubtPesRjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5APJL-aiYLZX4RHqnubtPesRjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91221EF/6F2FEBD6891F11EA89B6277CC4F9AE02/_5APJL-aiYLZX4RHqnubtPesRjk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:90:47:bd:80:21:b5:9e:93:7d:78:97:f0:cf:81:22:f4:c6: c9:66:7e:b0:3c:4c:94:15:16:2e:8b:94:b6:89:f1:22:cf:7c: cc:b5:8a:48:c6:8b:7d:36:e4:a5:65:93:a9:38:46:67:2a:5d: 5b:00:5d:1d:a9:cb:c0:98:c0:b4:09:29:42:2d:93:7c:74:f9: 36:eb:9c:04:6a:5a:66:a1:91:26:ff:5b:b0:69:27:3b:ac:1b: a8:a6:bd:4d:4e:de:be:c7:35:90:bd:11:a9:5a:06:50:4a:69: 5e:dd:e8:e6:b6:cf:c1:47:cc:5c:79:7c:f0:1c:b4:4a:42:5c: 9e:a7:6b:2f:d0:4b:f1:67:95:45:5f:bb:9e:c8:89:a8:c2:6b: e1:53:24:70:3a:75:e7:18:d5:21:92:d8:f1:30:02:47:90:5a: 10:09:f6:73:c9:11:a2:a1:e8:64:a7:a8:0c:83:6e:51:c4:bf: 50:bf:21:61:a4:a8:a4:d7:fc:1d:2a:dd:7c:81:b0:30:c4:7b: 82:87:e5:01:cd:ca:ba:a8:b3:35:a1:91:17:ad:03:b4:be:30: 5b:b5:08:12:36:e9:e0:4f:6b:98:f1:a3:fb:bb:6b:07:a7:11: c8:08:4a:34:21:88:eb:78:f4:b7:80:c1:c3:8f:78:63:4f:3c: 0b:ce:c0:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIxRUYxMTAvBgNVBAUTKEZGOTAwRjI0QkY5QTg5ODJEOTVGODQ0N0FBN0I5QkI0 RjdBQzQ2MzkwHhcNMjUwNDI4MjAzMDQ4WhcNMjUwNTA1MjAzMDQ4WjAYMRYwFAYD VQQDEw02ODBmZTU3OC0yNDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xZ+lpjMRGk8PfCVJtcJYxOa1DU0wASJ3qMcgaFcbikF4XWYG1RshKFYCiI1 CE6dUDUA+j7KNUzqSAuHMt8GloZvEk4R8hcMWHFFoGDYHUlH+au3PDhXp4NtaxsN khEM4TNWitCiC5w2XtqnnISuuCqkeFSinl/2eHRSUMoCS2gTeDicbt6toB9FJVjY ChTGfny69SLuJECei1UyCu4MqRqBjOMGQoiVbZM/OqNDKlLMn0+M76XgKDb3K4Xf RvDS3ihgfIeLD32FS+XZ5aVeo27l6t2K9WfBFU33rX4ZhK4LEg7/PYkvZWywtfMa RWdhPdYCuUtpCotfG4/4hLioNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2OIDlF UMnqJMQIZAqDYZ/La+JgMB8GA1UdIwQYMBaAFP+QDyS/momC2V+ER6p7m7T3rEY5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjFFRi82RjJGRUJENjg5 MUYxMUVBODlCNjI3N0NDNEY5QUUwMi9fNUFQSkwtYWlZTFpYNFJIcW51YnRQZXNS amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL181QVBKTC1haVlMWlg0UkhxbnVidFBlc1Jqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjFFRi82RjJGRUJENjg5MUYxMUVBODlCNjI3N0NDNEY5QUUwMi9fNUFQSkwtYWlZ TFpYNFJIcW51YnRQZXNSamsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATkEe9gCG1npN9eJfwz4Ei9MbJZn6wPEyUFRYui5S2ifEiz3zMtYpI xot9NuSlZZOpOEZnKl1bAF0dqcvAmMC0CSlCLZN8dPk265wEalpmoZEm/1uwaSc7 rBuopr1NTt6+xzWQvRGpWgZQSmle3ejmts/BR8xceXzwHLRKQlyep2sv0EvxZ5VF X7ueyImowmvhUyRwOnXnGNUhktjxMAJHkFoQCfZzyRGioehkp6gMg25RxL9QvyFh pKik1/wdKt18gbAwxHuCh+UBzcq6qLM1oZEXrQO0vjBbtQgSNungT2uY8aP7u2sH pxHICEo0IYjrePS3gMHDj3hjTzwLzsBC -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:55 2025 by rpki-client on console.sobornost.net