$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: A53Fl8LcbQ5lcgWwQAihBat2zGoJeD/MEm3NDbFZsew= Subject key identifier: BA:70:E1:32:83:72:33:45:41:18:D2:AE:DA:2F:9C:EB:A4:C8:EC:34 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0BAC Signing time: Mon 28 Apr 2025 19:23:23 +0000 Manifest this update: Mon 28 Apr 2025 19:23:22 +0000 Manifest next update: Mon 05 May 2025 19:23:22 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: rQhmIyPjzHxN9DIJNdJ2D4tlNO1trDAMiGu2REBjyyI=) 2: 94A87892D3CF11EF81EA2D5EC4F9AE02.roa (hash: YFlPcMOqU4AT2knX3tItgDLUNSgHaBzXBJvuHWKEgzg=) 3: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: Jhd+zmEk5Tr6WUgFESV3Hz6/KEOnMbj2hHPJhFLnDKY=) 4: 7EA6AA5AD3CF11EF83B35E4BC4F9AE02.roa (hash: ZCU4Sl2P84BRUchJ+pTPcKQydpQbDyhJRysJwGUvBfs=) 5: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (hash: fo6rQUcXbnI8NE4rYd/pMMgxfYxJbyDcHENy4xKaHcs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:23:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3024 (0xbd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Apr 28 19:23:22 2025 GMT Not After : May 5 19:23:22 2025 GMT Subject: CN=680fd5aa-02d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:5d:1f:8e:31:a6:67:15:1d:db:d6:ed:c3: 42:73:5d:8c:37:87:a7:21:e8:f9:7d:60:a2:a0:77: 56:8f:e5:7f:33:5e:3a:9e:f7:3a:45:f4:23:7f:da: ef:ec:52:e2:8f:0e:74:d7:15:7f:0f:90:f3:49:1a: e2:bb:b3:bf:b1:e7:53:87:3b:20:ef:42:5b:9b:b4: 24:67:f9:b2:57:f4:e9:6e:f6:5d:96:21:05:62:9c: 95:95:20:7d:5d:e5:d6:ee:a4:66:a6:b6:d4:11:39: 5a:9a:26:01:e5:b8:7d:e2:94:13:bb:36:d1:41:5e: 00:63:a8:c7:ca:d9:80:fb:de:4a:1f:64:22:7a:3f: e2:d8:2b:b0:08:e3:4d:1d:82:f2:89:d7:87:db:55: 93:33:eb:67:02:9b:3d:be:0a:69:61:54:e0:3d:53: 1f:e6:2a:0a:aa:12:13:10:1d:34:ad:2b:99:ee:68: c7:ae:e4:70:75:f8:52:9e:82:33:ea:34:1c:25:b6: ca:7d:00:fe:38:46:ca:6a:d9:0e:79:d5:e9:31:ba: 4c:19:24:a4:90:bc:12:48:4a:46:d1:50:17:81:5c: 0e:91:6a:98:71:e5:4e:b5:ca:ee:f5:80:c5:4b:87: a8:f2:0b:54:80:b0:31:83:7f:6d:89:68:a6:ac:79: fd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:70:E1:32:83:72:33:45:41:18:D2:AE:DA:2F:9C:EB:A4:C8:EC:34 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:88:97:32:b6:98:21:ef:be:0a:4d:83:88:4c:c2:18:09:44: a6:6e:af:38:ed:b2:a9:7e:0d:20:db:14:5a:3a:7e:85:02:f8: 81:f6:e9:97:41:fe:51:48:99:70:61:51:ae:ab:5b:bb:8b:1e: d0:86:82:84:d4:28:67:73:6d:42:3e:ca:f7:4f:4f:4b:3d:37: d2:00:38:5d:fc:53:11:df:77:d7:87:b8:97:0f:72:a8:8e:cd: 61:0e:30:49:6c:1c:e8:a6:6d:81:8f:23:32:4f:48:89:b7:e7: 97:68:69:f2:7a:db:26:2c:d0:d4:67:d8:33:2a:24:83:4f:c4: 06:f1:2d:d2:d8:e5:38:f7:74:ad:40:db:21:56:e9:de:31:66: 72:e7:dd:0c:fa:05:7a:4c:64:10:8d:17:c9:57:d3:d9:98:d8: 72:d4:f0:b2:fd:20:c2:56:2e:c1:49:c4:37:2d:eb:d2:a0:9d: f3:3e:01:d7:10:25:6b:20:a7:2c:54:ab:61:d2:37:4d:2c:81: f8:57:90:62:04:9d:ef:9d:d1:9e:ae:9d:8b:4d:77:e2:f5:e7: bb:f0:b2:90:e1:47:8d:e8:ad:64:a4:54:18:78:39:ca:05:1a: ea:f1:a4:29:97:0f:12:fb:30:bb:55:eb:8f:da:fc:7d:19:8a: 76:88:8a:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNDI4MTkyMzIyWhcNMjUwNTA1MTkyMzIyWjAYMRYwFAYD VQQDEw02ODBmZDVhYS0wMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrldH44xpmcVHdvW7cNCc12MN4enIej5fWCioHdWj+V/M146nvc6RfQjf9rv 7FLijw501xV/D5DzSRriu7O/sedThzsg70Jbm7QkZ/myV/TpbvZdliEFYpyVlSB9 XeXW7qRmprbUETlamiYB5bh94pQTuzbRQV4AY6jHytmA+95KH2Qiej/i2CuwCONN HYLyideH21WTM+tnAps9vgppYVTgPVMf5ioKqhITEB00rSuZ7mjHruRwdfhSnoIz 6jQcJbbKfQD+OEbKatkOedXpMbpMGSSkkLwSSEpG0VAXgVwOkWqYceVOtcru9YDF S4eo8gtUgLAxg39tiWimrHn9AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpw4TKD cjNFQRjSrtovnOukyOw0MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6iJcytpgh774KTYOITMIYCUSmbq847bKpfg0g2xRaOn6FAviB9umX Qf5RSJlwYVGuq1u7ix7QhoKE1Chnc21CPsr3T09LPTfSADhd/FMR33fXh7iXD3Ko js1hDjBJbBzopm2BjyMyT0iJt+eXaGnyetsmLNDUZ9gzKiSDT8QG8S3S2OU493St QNshVuneMWZy590M+gV6TGQQjRfJV9PZmNhy1PCy/SDCVi7BScQ3LevSoJ3zPgHX ECVrIKcsVKth0jdNLIH4V5BiBJ3vndGerp2LTXfi9ee78LKQ4UeN6K1kpFQYeDnK BRrq8aQplw8S+zC7VeuP2vx9GYp2iIq0 -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:58 2025 by rpki-client on console.sobornost.net