$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft File: IYqKoFAmewgF4_3IqTm_j7ywAQE.mft (raw, json) Hash identifier: gGWPRhrCqkLUONy5tmC/asnxj7JqChswHgSk99c/KAA= Subject key identifier: 9A:A8:A4:13:17:95:F6:B6:D8:B5:A3:5D:5E:70:7C:35:2E:3E:58:F0 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft Manifest number: 065E Signing time: Sat 26 Apr 2025 22:14:08 +0000 Manifest this update: Sat 26 Apr 2025 22:14:07 +0000 Manifest next update: Sat 03 May 2025 22:14:07 +0000 Files and hashes: 1: IYqKoFAmewgF4_3IqTm_j7ywAQE.crl (hash: KyvHmbT5DxAKVWwJKgXNYJ7vcg1y0htGaisyPkTHRpU=) 2: 7C7AE9B4A69D11ED970A2E1EC4F9AE02.roa (hash: fUw04+Wc6xwoR+YVBY/WLsyng9md/GVTmSyZYwr11zk=) 3: EC545C28A72B11EDAC3DA56CC4F9AE02.roa (hash: MudkEdFQa6C+ndTjapkqJTQJnMUjbCojJJWyr2cOnbw=) 4: 7EACD6DEA69D11ED970A2E1EC4F9AE02.roa (hash: FzGeC1HGFQjInv7a/tzBBidCqJ5ESeD9M5yJI45g108=) 5: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (hash: UXLNG/TKlOwe92B54U28A9vIc0yRc2k66x6iSMWRkzk=) 6: A08AFBB284F211EE89828225C4F9AE02.roa (hash: o0/UmqHBu35TkHikAhbVdhXHi+7hDM8lM9U+g+mEr/c=) 7: ECF2B5A8A72B11EDAC3DA56CC4F9AE02.roa (hash: +kGit6QP9EC8on4uBAyo05LK37M52pka8uD91XBHy+Y=) 8: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (hash: G/rvtZ5T81L1+Ut1wIh+MKSJ0KMlgkIN/JGVODcTotI=) 9: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (hash: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw=) 10: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (hash: 0R2F7phEKy5EqIJBVAvo5pb/1NzWEpCwpH92++JGH9o=) 11: 005CDC821F1411EC85E08546C4F9AE02.roa (hash: 2LEw81p+Fk53aVNuSL1CxAKcvp9Ob9XvQt2+L6XI7mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Apr 26 22:14:07 2025 GMT Not After : May 3 22:14:07 2025 GMT Subject: CN=680d5aaf-121b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7a:48:a3:bb:5b:14:2c:c7:ed:3d:be:50:12: 97:43:ea:5e:cd:b7:47:59:9f:62:6f:11:6b:be:bf: 69:30:03:c6:0e:92:9b:64:16:05:75:86:5e:04:ea: 46:76:33:ec:7e:db:4d:d8:76:2c:47:d2:91:9b:2f: 2f:ca:00:7f:32:36:92:f5:07:2a:2e:c0:e9:9c:5a: 97:b5:9b:ce:f9:e2:10:fb:d1:d8:f3:43:a7:a7:fd: ca:dc:2c:d1:a5:53:1a:c3:67:69:84:c2:fb:69:ba: 65:d9:02:88:58:9c:2b:45:33:a7:d3:40:61:6c:f5: 7f:ae:33:33:28:c9:1d:dc:be:ee:fe:17:68:5a:42: f5:8b:ec:27:c3:92:a0:b3:5a:44:ef:21:f8:bb:03: 56:d3:3d:53:45:a8:b3:d6:69:83:09:2b:94:83:35: f6:f0:d8:f5:77:c4:77:0e:b7:fc:86:45:30:1e:a5: dc:b6:c6:d7:1f:97:28:b0:0d:9f:40:9b:f2:27:5c: 96:36:ed:a4:16:bb:e6:c3:29:76:fc:42:d0:0c:ca: fb:1b:c3:1d:ad:8e:35:a9:e7:68:63:fa:31:00:97: 4a:f0:5b:15:7d:06:19:1b:42:a3:aa:46:a9:a0:9f: 99:63:ca:8c:09:31:41:0c:e7:15:54:cc:88:54:2d: 52:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A8:A4:13:17:95:F6:B6:D8:B5:A3:5D:5E:70:7C:35:2E:3E:58:F0 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:b7:ea:e2:8f:b4:6c:53:61:53:96:76:e7:38:47:48:a7:f0: 51:27:d0:3a:c2:bc:79:2b:a9:26:39:e4:47:3e:e7:4a:4c:52: 8f:3d:f8:98:d3:43:88:dc:30:07:84:2a:6a:3d:4f:03:05:68: e2:4e:88:59:09:36:af:80:91:63:20:7a:83:20:15:5c:f3:76: a9:a7:a4:2f:e5:1d:ce:ea:30:57:89:31:47:12:60:0b:ab:f7: 7d:38:5e:07:8d:cb:76:59:27:20:89:9b:44:ad:12:83:fc:19: ba:8b:56:90:c1:cd:89:30:59:f7:ae:fd:77:60:63:bc:a4:5a: 82:47:e7:7a:01:2b:cb:dd:ac:12:83:41:23:bc:0f:81:17:7a: a8:25:36:e9:f9:3f:1f:62:e1:99:ca:ba:f7:fc:21:60:de:3f: 9c:d3:d9:b4:e7:fe:ce:72:36:78:4c:3a:58:e3:38:4f:08:83: 3c:84:13:3e:6d:bd:53:4e:16:f1:64:f9:1e:2c:da:42:ac:67: a3:50:41:6e:2d:2d:60:fa:5f:eb:ee:10:83:98:8c:d5:54:8e: 32:8e:c3:b3:90:53:0d:71:d9:11:82:58:9f:c7:09:18:48:4f: 92:d5:8e:1f:c4:f6:e6:a3:75:c4:b2:74:55:c9:4e:44:8c:aa: c8:2d:27:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUwNDI2MjIxNDA3WhcNMjUwNTAzMjIxNDA3WjAYMRYwFAYD VQQDEw02ODBkNWFhZi0xMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXpIo7tbFCzH7T2+UBKXQ+pezbdHWZ9ibxFrvr9pMAPGDpKbZBYFdYZeBOpG djPsfttN2HYsR9KRmy8vygB/MjaS9QcqLsDpnFqXtZvO+eIQ+9HY80Onp/3K3CzR pVMaw2dphML7abpl2QKIWJwrRTOn00BhbPV/rjMzKMkd3L7u/hdoWkL1i+wnw5Kg s1pE7yH4uwNW0z1TRaiz1mmDCSuUgzX28Nj1d8R3Drf8hkUwHqXctsbXH5cosA2f QJvyJ1yWNu2kFrvmwyl2/ELQDMr7G8MdrY41qedoY/oxAJdK8FsVfQYZG0Kjqkap oJ+ZY8qMCTFBDOcVVMyIVC1SHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqopBMX lfa22LWjXV5wfDUuPljwMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDZBQS84NjU4RTQ2Njg2QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3 Z0Y0XzNJcVRtX2o3eXdBUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIt+rij7RsU2FTlnbnOEdIp/BRJ9A6wrx5K6kmOeRHPudKTFKPPfiY 00OI3DAHhCpqPU8DBWjiTohZCTavgJFjIHqDIBVc83app6Qv5R3O6jBXiTFHEmAL q/d9OF4Hjct2WScgiZtErRKD/Bm6i1aQwc2JMFn3rv13YGO8pFqCR+d6ASvL3awS g0EjvA+BF3qoJTbp+T8fYuGZyrr3/CFg3j+c09m05/7OcjZ4TDpY4zhPCIM8hBM+ bb1TThbxZPkeLNpCrGejUEFuLS1g+l/r7hCDmIzVVI4yjsOzkFMNcdkRglifxwkY SE+S1Y4fxPbmo3XEsnRVyU5EjKrILSf1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:35 2025 by rpki-client on console.sobornost.net