$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: XF5re5qDiB507IiBif9wkimNwlj7t7pI5K4axoiY1v4= Subject key identifier: 1C:69:A6:96:A6:DA:8A:89:AF:2E:9F:79:9D:98:D7:ED:1C:08:24:5D Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 03B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 03B3 Signing time: Sun 27 Apr 2025 00:21:41 +0000 Manifest this update: Sun 27 Apr 2025 00:21:40 +0000 Manifest next update: Sun 04 May 2025 00:21:40 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: wozcWmJbyQblCWN27HtHUyZWBQQlAU7W/U1W6lEwn2A=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: tLChoqAT+qMzYdiOem/hyADnIcDAlpuqVUc6loXrSu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Apr 27 00:21:40 2025 GMT Not After : May 4 00:21:40 2025 GMT Subject: CN=680d7894-caa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:9b:c2:91:dc:6d:db:60:a9:50:98:e3:a3: ee:ab:f4:0d:f1:9e:e5:dd:ee:a0:c3:a5:f9:00:a7: b4:c8:57:1f:54:69:26:bc:9d:c0:19:33:e3:00:25: 67:af:d1:6e:16:ea:92:9f:ac:67:02:7a:ea:16:b9: ba:34:82:7a:1d:f1:25:3b:70:a1:b6:64:70:36:86: 7d:f9:a2:9f:2d:62:fb:51:e0:71:83:21:93:60:96: 8d:1d:bf:fa:35:f8:c9:dd:04:3b:07:cb:7e:d5:9d: f6:a4:6d:d6:f5:5c:70:b2:ef:5c:fc:27:ba:83:f6: 5e:23:2e:02:b7:5f:b2:a0:f1:86:52:30:88:db:6e: 13:12:35:f9:f7:77:b6:d0:84:0f:43:4e:3c:b0:40: 82:a6:8b:f8:c3:63:89:e0:7f:32:ef:d7:18:d7:92: 81:f8:cd:b4:92:38:27:4e:6d:18:4f:ac:1b:58:1b: 6d:67:82:32:b8:95:60:46:14:9c:82:14:20:fc:71: d7:fc:99:fc:0f:e4:24:b5:8f:1b:c8:a4:e1:97:e5: 73:78:07:36:9b:49:91:7e:45:2a:b9:da:59:b1:2f: a3:ff:1d:71:0b:2b:75:8c:f7:f0:c3:3f:8c:81:89: 46:24:6f:8b:79:3c:d2:f3:46:54:93:1e:d1:b2:71: 2c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:69:A6:96:A6:DA:8A:89:AF:2E:9F:79:9D:98:D7:ED:1C:08:24:5D X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:87:aa:e2:ee:c5:ed:81:1f:a4:19:6b:ad:8c:1d:56:db:d1: f2:7c:e3:8f:60:28:d2:a8:17:e9:e8:6e:18:10:99:ef:bb:0c: ef:42:dc:f3:b7:11:57:e5:90:fe:6e:7c:61:02:10:49:45:ab: d8:68:fa:f1:3f:9f:53:15:d7:f5:12:d9:28:5f:2a:59:b2:64: 59:95:09:50:04:7b:d1:fd:e8:08:77:0f:86:26:ce:58:a8:c5: 06:30:af:0c:91:2a:ef:08:fe:72:7e:a4:6e:7c:9a:32:59:b3: 01:38:7d:36:12:56:2d:d9:97:09:78:e0:c0:e5:bb:bd:26:d5: 04:41:db:46:f9:95:f4:97:77:76:b5:c1:e8:74:d8:18:ae:c9: a3:5a:c0:d2:18:71:27:6e:e2:1b:cf:63:df:a2:d8:43:2f:0b: 64:85:19:72:82:11:88:c8:43:3f:b7:09:e1:e9:80:85:2f:a9: 0b:26:29:d2:e1:24:25:e7:f9:38:20:87:6f:d3:94:76:4d:09: 3b:72:9b:62:40:8f:57:9d:2a:a4:71:da:fc:fb:28:cc:87:4f: 5a:bd:88:8d:27:13:68:5f:01:92:10:5d:1f:0a:55:5e:a5:36: f6:d8:92:8b:f0:79:25:61:4d:d8:d5:c0:38:b9:01:77:48:03: 10:6e:cf:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUwNDI3MDAyMTQwWhcNMjUwNTA0MDAyMTQwWjAYMRYwFAYD VQQDEw02ODBkNzg5NC1jYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+KbwpHcbdtgqVCY46Puq/QN8Z7l3e6gw6X5AKe0yFcfVGkmvJ3AGTPjACVn r9FuFuqSn6xnAnrqFrm6NIJ6HfElO3ChtmRwNoZ9+aKfLWL7UeBxgyGTYJaNHb/6 NfjJ3QQ7B8t+1Z32pG3W9Vxwsu9c/Ce6g/ZeIy4Ct1+yoPGGUjCI224TEjX593e2 0IQPQ048sECCpov4w2OJ4H8y79cY15KB+M20kjgnTm0YT6wbWBttZ4IyuJVgRhSc ghQg/HHX/Jn8D+QktY8byKThl+VzeAc2m0mRfkUqudpZsS+j/x1xCyt1jPfwwz+M gYlGJG+LeTzS80ZUkx7RsnEstQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxpppam 2oqJry6feZ2Y1+0cCCRdMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKh6ri7sXtgR+kGWutjB1W29HyfOOPYCjSqBfp6G4YEJnvuwzvQtzz txFX5ZD+bnxhAhBJRavYaPrxP59TFdf1EtkoXypZsmRZlQlQBHvR/egIdw+GJs5Y qMUGMK8MkSrvCP5yfqRufJoyWbMBOH02ElYt2ZcJeODA5bu9JtUEQdtG+ZX0l3d2 tcHodNgYrsmjWsDSGHEnbuIbz2PfothDLwtkhRlyghGIyEM/twnh6YCFL6kLJinS 4SQl5/k4IIdv05R2TQk7cptiQI9XnSqkcdr8+yjMh09avYiNJxNoXwGSEF0fClVe pTb22JKL8HklYU3Y1cA4uQF3SAMQbs/1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:22 2025 by rpki-client on console.sobornost.net