$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft File: RIvZcaMGqwNjmecW3CIcozj1i1k.mft (raw, json) Hash identifier: 45vAfxTJg1WmAxWgcAwZfVO1tHpJoVNiAMzP8pqtSn0= Subject key identifier: C1:26:A7:32:4A:98:4B:BC:A7:60:3F:00:FD:1E:45:D3:D1:6A:AC:6B Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 1503 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft Manifest number: 14BB Signing time: Mon 28 Apr 2025 17:06:44 +0000 Manifest this update: Mon 28 Apr 2025 17:06:43 +0000 Manifest next update: Mon 05 May 2025 17:06:43 +0000 Files and hashes: 1: RIvZcaMGqwNjmecW3CIcozj1i1k.crl (hash: yHuGyo+Rzp0vdl32i1fpEmQI5q8dZ34MqtUd+ZxaZgc=) 2: 7338235CC06011EE882BC34AC4F9AE02.roa (hash: gzRITOkOOGrTx/TsBYiR/c3khv1Gc2m9Qh3FJnnq+g4=) 3: 743770A0C06011EE882BC34AC4F9AE02.roa (hash: wDUkAV/G8nH6a42xA1jspBcH2CyrvgBJPhHTMVF0vF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5379 (0x1503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Apr 28 17:06:43 2025 GMT Not After : May 5 17:06:43 2025 GMT Subject: CN=680fb5a4-8e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ca:35:aa:21:15:26:92:8c:c3:b4:de:56:e7: 7e:37:c8:20:0f:2e:4f:8d:42:17:7a:66:d6:05:e5: 1b:90:e2:e6:f9:ae:3a:4a:95:6f:a3:c1:33:78:12: ad:97:a1:37:57:89:53:c7:d9:55:9d:8b:cf:b0:2e: ce:8e:af:6e:6e:32:11:fd:13:d9:1e:43:ab:b2:c9: 02:53:f0:93:b9:31:ea:ae:9b:e0:09:60:ee:03:ba: 3b:32:49:93:37:fc:fd:bd:d0:9a:9d:f4:37:dd:cf: a2:08:ee:9f:14:b2:93:17:f9:f1:93:17:74:6a:34: 1c:45:2a:80:03:c0:90:9d:9b:d4:4e:0d:06:fd:bd: f7:87:56:43:12:4c:10:ec:8e:50:66:dd:3a:2b:51: 64:d5:1b:09:a1:99:43:6d:55:77:1e:57:58:5c:34: d1:03:ec:6a:a7:94:06:e2:e7:11:10:1c:f5:97:26: ce:cb:72:12:7c:1e:fc:69:9a:25:74:ef:36:f5:94: ab:bb:4f:47:46:93:21:84:69:f3:dd:83:cf:67:36: ee:02:9b:39:9b:53:ab:75:a1:83:24:3b:1d:55:32: a1:94:30:47:18:da:84:f9:75:ff:48:c4:80:15:dc: d1:90:4e:71:0b:99:e3:f6:59:05:70:b9:f6:3b:55: 16:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:26:A7:32:4A:98:4B:BC:A7:60:3F:00:FD:1E:45:D3:D1:6A:AC:6B X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:f7:17:31:97:6a:41:7c:6e:59:8e:a1:33:21:c5:4f:e6:dc: 57:de:fd:81:ac:89:a6:08:78:7c:57:54:fa:5d:0a:ce:8a:f3: 0f:7d:36:b5:41:18:83:39:e6:cf:2f:9c:85:39:68:60:a7:e7: f2:2c:b5:93:73:99:a3:50:99:c5:42:79:64:bd:c0:6d:94:ce: 73:ae:a2:ab:6b:1f:a2:1a:aa:fb:3d:83:45:c4:58:5a:64:20: 86:84:c1:2c:bf:40:d7:40:14:bf:ab:d4:e1:e9:23:4c:78:85: 2e:6b:b2:e8:ba:ee:e7:de:04:76:dc:a8:46:19:77:ad:5e:b7: d6:17:1f:b6:4b:d1:53:ee:4c:76:76:f1:b0:4e:da:07:02:5a: 2d:ac:52:20:c0:91:af:fa:00:3a:4f:e3:00:16:8e:0f:a0:35: 97:42:34:8f:d4:16:1b:92:65:d9:49:f4:d0:5c:ea:41:2a:d2: f0:ef:be:06:15:e0:1c:25:e1:5d:83:26:cb:cb:0d:1c:78:71: bc:bb:fe:4c:8c:90:34:30:15:ab:df:c5:09:92:e8:32:d2:e8: 59:b1:8b:af:94:a2:91:79:4f:1c:c0:92:d3:92:d6:b8:d8:b7: d0:60:33:9e:e6:c5:83:36:ec:a4:bd:ca:d0:c8:2d:16:a0:46: 06:46:b1:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUwNDI4MTcwNjQzWhcNMjUwNTA1MTcwNjQzWjAYMRYwFAYD VQQDEw02ODBmYjVhNC04ZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Mo1qiEVJpKMw7TeVud+N8ggDy5PjUIXembWBeUbkOLm+a46SpVvo8EzeBKt l6E3V4lTx9lVnYvPsC7Ojq9ubjIR/RPZHkOrsskCU/CTuTHqrpvgCWDuA7o7MkmT N/z9vdCanfQ33c+iCO6fFLKTF/nxkxd0ajQcRSqAA8CQnZvUTg0G/b33h1ZDEkwQ 7I5QZt06K1Fk1RsJoZlDbVV3HldYXDTRA+xqp5QG4ucREBz1lybOy3ISfB78aZol dO829ZSru09HRpMhhGnz3YPPZzbuAps5m1OrdaGDJDsdVTKhlDBHGNqE+XX/SMSA FdzRkE5xC5nj9lkFcLn2O1UWcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEmpzJK mEu8p2A/AP0eRdPRaqxrMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDFENS9ENEJFMDBENDYzRTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3 TmptZWNXM0NJY296ajFpMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC49xcxl2pBfG5ZjqEzIcVP5txX3v2BrImmCHh8V1T6XQrOivMPfTa1 QRiDOebPL5yFOWhgp+fyLLWTc5mjUJnFQnlkvcBtlM5zrqKrax+iGqr7PYNFxFha ZCCGhMEsv0DXQBS/q9Th6SNMeIUua7Louu7n3gR23KhGGXetXrfWFx+2S9FT7kx2 dvGwTtoHAlotrFIgwJGv+gA6T+MAFo4PoDWXQjSP1BYbkmXZSfTQXOpBKtLw774G FeAcJeFdgybLyw0ceHG8u/5MjJA0MBWr38UJkugy0uhZsYuvlKKReU8cwJLTkta4 2LfQYDOe5sWDNuykvcrQyC0WoEYGRrGr -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:27 2025 by rpki-client on console.sobornost.net