$ rpki-client -vvf rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft File: 8HDB502tEidOj1dd_gu3wU69yZA.mft (raw, json) Hash identifier: b//RYK7naceU1vib71oPJQS4IISzevI4/l48wi16DEk= Subject key identifier: 58:3B:7A:0F:9D:4B:97:DB:D0:BE:0C:F6:D7:14:37:4F:4F:D1:D1:43 Authority key identifier: F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 Certificate issuer: /CN=A91348DF/serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft Manifest number: 0328 Signing time: Sun 27 Apr 2025 00:45:42 +0000 Manifest this update: Sun 27 Apr 2025 00:45:41 +0000 Manifest next update: Sun 04 May 2025 00:45:41 +0000 Files and hashes: 1: 8HDB502tEidOj1dd_gu3wU69yZA.crl (hash: prNsHE1NutgA7PMDgd6hKjD3SlIrPEgz6BL5hV0B+I8=) 2: 06A2C3E2C1E211EC86C79687C4F9AE02.roa (hash: L9t+DRBbmPVBfDehx/WMt8l2VQJogVd/uUcSz4yUxtc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:45:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348DF, serialNumber=F070C1E74DAD12274E8F575DFE0BB7C14EBDC990 Validity Not Before: Apr 27 00:45:41 2025 GMT Not After : May 4 00:45:41 2025 GMT Subject: CN=680d7e35-b82c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c7:91:cb:83:fd:f4:65:c2:3d:e9:0b:9b:bc: fd:54:71:36:aa:ee:0d:4a:2b:15:29:46:1f:75:07: 47:af:58:b4:4a:20:68:eb:d1:f1:22:91:e9:46:68: b6:77:91:c4:98:fb:b3:ae:9a:3a:d5:e8:2d:52:90: 5d:92:fc:c8:59:ee:eb:fc:54:4c:b1:2a:75:5b:e6: 0e:95:bc:ef:56:94:b2:9c:9b:54:c7:e5:af:5c:e0: 3b:a7:3f:6a:df:42:87:ad:f0:8b:3d:1d:a6:76:6c: d9:66:11:37:bb:cc:e3:6f:c7:c4:1a:b9:de:48:34: 67:af:8c:89:9b:08:3f:b1:36:96:6f:ee:11:5b:ff: d3:a5:5e:20:c2:09:75:df:b7:57:29:9a:41:f4:cc: dd:fa:bb:71:0e:e2:8b:36:93:60:41:d5:66:1a:f1: 02:31:a9:99:f1:08:ca:6f:9a:af:80:ec:21:c3:d1: ca:11:a5:15:0f:b0:74:c1:1d:74:6c:ed:48:51:88: 71:84:a2:f9:c2:62:5b:93:77:be:81:cf:f4:19:63: 28:69:a3:92:bc:d2:83:8c:08:95:65:25:a0:1e:45: 94:d1:bf:dd:41:1b:40:a7:a6:d9:de:b8:af:b1:be: 7c:cd:db:72:32:58:26:5d:65:0b:04:8c:10:d0:4b: bc:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:3B:7A:0F:9D:4B:97:DB:D0:BE:0C:F6:D7:14:37:4F:4F:D1:D1:43 X509v3 Authority Key Identifier: keyid:F0:70:C1:E7:4D:AD:12:27:4E:8F:57:5D:FE:0B:B7:C1:4E:BD:C9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HDB502tEidOj1dd_gu3wU69yZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348DF/F02B5DBCC1DD11ECB97B9C7FC4F9AE02/8HDB502tEidOj1dd_gu3wU69yZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:04:84:bb:bc:ec:54:50:0f:03:89:ef:e1:d1:a7:d1:87:38: 3a:25:3c:4e:d7:39:84:43:ba:79:ba:8d:5e:30:9f:52:a0:74: 7e:66:8e:c3:4a:0e:fb:06:de:da:54:8a:58:25:f1:06:2d:1d: 07:27:ba:e3:a2:da:da:9b:08:88:82:d4:92:5b:0b:bc:c8:95: cf:84:b3:b3:a0:03:14:2b:a2:15:95:2c:a9:98:f6:95:1e:ea: e4:1d:fb:ad:3f:94:54:35:2d:77:bb:1c:ed:e6:12:bb:af:5e: 84:7a:e3:cc:7e:1d:2d:97:50:68:c0:90:23:43:06:f4:eb:a7: 91:22:5b:55:64:90:06:09:d1:72:fb:d7:a8:9a:57:d3:ef:85: 26:bf:51:2f:5a:b4:87:b6:98:cd:90:f5:1d:c4:49:51:59:e7: ff:ad:61:45:3a:c4:48:f4:df:54:76:f3:9b:04:92:2c:4d:aa: 40:6e:85:35:bd:2b:ed:14:50:4e:4c:73:a1:1a:58:6e:68:02: 61:a5:96:fe:6b:76:d2:1f:c6:26:6e:0e:22:09:9e:6f:ad:5a: 80:a0:8d:d5:79:9e:b6:c8:cf:d0:c9:68:90:02:9c:4b:a1:f0: dd:f5:e1:01:84:c0:4a:eb:86:5e:00:7b:e3:2e:23:47:11:20: 2f:0a:03:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4REYxMTAvBgNVBAUTKEYwNzBDMUU3NERBRDEyMjc0RThGNTc1REZFMEJCN0Mx NEVCREM5OTAwHhcNMjUwNDI3MDA0NTQxWhcNMjUwNTA0MDA0NTQxWjAYMRYwFAYD VQQDEw02ODBkN2UzNS1iODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MeRy4P99GXCPekLm7z9VHE2qu4NSisVKUYfdQdHr1i0SiBo69HxIpHpRmi2 d5HEmPuzrpo61egtUpBdkvzIWe7r/FRMsSp1W+YOlbzvVpSynJtUx+WvXOA7pz9q 30KHrfCLPR2mdmzZZhE3u8zjb8fEGrneSDRnr4yJmwg/sTaWb+4RW//TpV4gwgl1 37dXKZpB9Mzd+rtxDuKLNpNgQdVmGvECMamZ8QjKb5qvgOwhw9HKEaUVD7B0wR10 bO1IUYhxhKL5wmJbk3e+gc/0GWMoaaOSvNKDjAiVZSWgHkWU0b/dQRtAp6bZ3riv sb58zdtyMlgmXWULBIwQ0Eu8/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFg7eg+d S5fb0L4M9tcUN09P0dFDMB8GA1UdIwQYMBaAFPBwwedNrRInTo9XXf4Lt8FOvcmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhERi9GMDJCNURCQ0Mx REQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVpZE9qMWRkX2d1M3dVNjl5 WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIREI1MDJ0RWlkT2oxZGRfZ3Uzd1U2OXlaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDhERi9GMDJCNURCQ0MxREQxMUVDQjk3QjlDN0ZDNEY5QUUwMi84SERCNTAydEVp ZE9qMWRkX2d1M3dVNjl5WkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHBIS7vOxUUA8Die/h0afRhzg6JTxO1zmEQ7p5uo1eMJ9SoHR+Zo7D Sg77Bt7aVIpYJfEGLR0HJ7rjotramwiIgtSSWwu8yJXPhLOzoAMUK6IVlSypmPaV HurkHfutP5RUNS13uxzt5hK7r16EeuPMfh0tl1BowJAjQwb066eRIltVZJAGCdFy +9eomlfT74Umv1EvWrSHtpjNkPUdxElRWef/rWFFOsRI9N9UdvObBJIsTapAboU1 vSvtFFBOTHOhGlhuaAJhpZb+a3bSH8Ymbg4iCZ5vrVqAoI3VeZ62yM/QyWiQApxL ofDd9eEBhMBK64ZeAHvjLiNHESAvCgMP -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:29 2025 by rpki-client on console.sobornost.net