$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: JURFLdQbOYyZO8DYVLH04RlYtHObEkqB+vdMKSSJ5kc= Subject key identifier: 15:A0:53:2A:07:8A:11:37:6C:DE:07:39:F0:C5:B0:36:45:6D:DB:51 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: 41 Signing time: Sun 27 Apr 2025 06:19:18 +0000 Manifest this update: Sun 27 Apr 2025 06:19:17 +0000 Manifest next update: Sun 04 May 2025 06:19:17 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: UB+hLf5wRKVN/+2Qd+t/oyted3g+0m1TDOwlda8WtUQ=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Apr 27 06:19:17 2025 GMT Not After : May 4 06:19:17 2025 GMT Subject: CN=680dcc66-9d19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:7d:81:f4:ee:dd:33:33:4e:6a:a7:76:ec: 19:99:79:09:fd:21:55:06:62:f6:0f:4b:5e:c8:1a: 13:8b:44:bb:12:75:e0:07:b7:69:91:9b:3b:ea:a7: a3:fd:f0:05:e9:79:fd:35:37:5d:c5:6d:1c:c6:3a: aa:bb:18:67:b7:ca:57:e4:4c:63:52:5f:2d:87:9d: 52:c4:f3:0b:56:88:e7:db:dd:4e:32:7b:f6:18:eb: 66:b5:69:04:4a:f9:40:19:1a:33:ec:be:32:c8:ff: 06:7f:08:67:75:55:b2:d4:80:23:94:28:c4:52:3a: 79:82:3f:10:44:22:10:c2:9a:64:04:fc:ae:f2:68: c4:a8:3c:1c:da:78:73:4d:8f:80:89:ae:f7:cf:8f: 60:c4:77:ea:18:0f:81:19:75:ef:63:a7:11:01:51: 25:26:bd:80:e8:03:23:73:1f:c3:1b:a9:fe:56:86: 8e:45:4f:e7:db:15:dd:21:fd:e9:8f:f0:0a:bc:1f: bf:3d:aa:e9:35:1e:c9:4d:f2:68:b0:c0:9b:5a:99: 41:a9:47:48:5d:51:7f:40:0f:13:24:72:09:0f:fe: 5e:01:48:13:13:db:47:1d:58:2b:10:0a:db:31:47: a2:34:da:d4:4e:fa:ab:c6:b2:f5:26:1d:13:67:3b: 80:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:A0:53:2A:07:8A:11:37:6C:DE:07:39:F0:C5:B0:36:45:6D:DB:51 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:2e:3a:56:79:d1:d9:0a:d9:1f:ef:70:40:97:38:60:10:18: 47:db:d6:e9:d7:fb:ee:92:ab:c8:95:31:a2:be:e7:ba:ab:a0: a0:e8:5a:7f:a0:fe:50:79:4c:ee:14:87:8c:95:6b:3a:76:cb: 13:d7:a9:e9:67:cf:ac:d2:15:ba:de:64:01:78:91:a5:3f:75: 1a:62:0d:56:0b:d6:4d:d2:65:3d:18:c9:f2:f3:ec:98:09:66: 5b:5f:d2:bb:a1:eb:8a:22:e2:26:e7:7b:f8:c0:1e:68:a4:9c: 07:41:9b:1a:28:c1:3d:b1:04:a0:0e:56:67:66:7d:4f:f5:8f: be:4b:b9:e3:c8:9a:05:12:60:22:d3:1b:81:4f:a2:57:3e:10: 01:15:37:98:26:ca:a6:47:07:9b:ee:c0:f8:0c:8b:60:27:90: 1f:43:dd:71:37:b6:ee:18:f9:39:ab:15:98:d6:d2:b7:93:73: 77:d3:37:1b:5f:89:a6:49:aa:b0:6f:86:d8:b3:3d:29:88:92: c9:86:c5:a8:4a:ef:db:a8:b7:93:2f:c6:fa:ff:9f:45:e2:86: 91:c1:24:a8:fe:f0:7e:a9:3c:27:5e:c9:f0:60:8f:a2:90:56: 7e:41:73:51:e8:3c:77:e2:36:6d:b3:87:89:35:fe:27:50:49: 81:45:eb:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZFMjExMC8GA1UEBRMoNkFBRjNEOUJDM0RGQTNBMTI1MDgyOTY1RDhGRjMzQjgx MjhGMjkxRjAeFw0yNTA0MjcwNjE5MTdaFw0yNTA1MDQwNjE5MTdaMBgxFjAUBgNV BAMTDTY4MGRjYzY2LTlkMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6m32B9O7dMzNOaqd27BmZeQn9IVUGYvYPS17IGhOLRLsSdeAHt2mRmzvqp6P9 8AXpef01N13FbRzGOqq7GGe3ylfkTGNSXy2HnVLE8wtWiOfb3U4ye/YY62a1aQRK +UAZGjPsvjLI/wZ/CGd1VbLUgCOUKMRSOnmCPxBEIhDCmmQE/K7yaMSoPBzaeHNN j4CJrvfPj2DEd+oYD4EZde9jpxEBUSUmvYDoAyNzH8Mbqf5Who5FT+fbFd0h/emP 8Aq8H789quk1HslN8miwwJtamUGpR0hdUX9ADxMkcgkP/l4BSBMT20cdWCsQCtsx R6I02tRO+qvGsvUmHRNnO4B/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFaBTKgeK ETds3gc58MWwNkVt21EwHwYDVR0jBBgwFoAUaq89m8Pfo6ElCCll2P8zuBKPKR8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkUyLzNCNTQxRjIwQ0Iz RDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtS OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYXE4OW04UGZvNkVsQ0NsbDJQOHp1QktQS1I4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 NkUyLzNCNTQxRjIwQ0IzRDExRUY4NzAzRjc1QUM0RjlBRTAyL2FxODltOFBmbzZF bENDbGwyUDh6dUJLUEtSOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL8uOlZ50dkK2R/vcECXOGAQGEfb1unX++6Sq8iVMaK+57qroKDoWn+g /lB5TO4Uh4yVazp2yxPXqelnz6zSFbreZAF4kaU/dRpiDVYL1k3SZT0YyfLz7JgJ Zltf0ruh64oi4ibne/jAHmiknAdBmxoowT2xBKAOVmdmfU/1j75LuePImgUSYCLT G4FPolc+EAEVN5gmyqZHB5vuwPgMi2AnkB9D3XE3tu4Y+TmrFZjW0reTc3fTNxtf iaZJqrBvhtizPSmIksmGxahK79uot5Mvxvr/n0XihpHBJKj+8H6pPCdeyfBgj6KQ Vn5Bc1HoPHfiNm2zh4k1/idQSYFF6+M= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net