$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft File: 66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json) Hash identifier: fwDE+QGzpWRv9fEM3O1GFv2BWRuZ232Sf69AE7/3VAI= Subject key identifier: 67:81:B6:DE:20:49:FB:C9:93:FA:20:28:9D:17:C9:80:6D:B5:81:C8 Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 Certificate issuer: /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft Manifest number: A1 Signing time: Sun 27 Apr 2025 05:04:02 +0000 Manifest this update: Sun 27 Apr 2025 05:04:02 +0000 Manifest next update: Sun 04 May 2025 05:04:02 +0000 Files and hashes: 1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: OAjDDlGAABzf/6FobcOAM4h2bMgAO5p+r0mYuXTJJGk=) 2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: 6SVIugHlnaJdlkKtpec/q8AF54HgJPVuchm8bN57MAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91504D6, serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Validity Not Before: Apr 27 05:04:02 2025 GMT Not After : May 4 05:04:02 2025 GMT Subject: CN=680dbac2-e36b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f2:ce:59:80:e9:25:ef:de:e8:10:f2:fc:1f: b2:cc:2a:c6:48:d9:d6:99:b6:aa:02:eb:03:11:76: f4:4b:66:aa:51:00:80:b2:82:ca:33:cc:42:eb:ab: b1:f5:b5:f6:6d:ff:d0:d8:c2:18:41:b2:49:b9:5d: 9c:bd:d5:c9:72:36:28:69:70:a5:61:f6:d9:4e:49: 5d:a0:dc:91:4f:4e:1e:64:72:7b:ae:d7:8f:c4:9b: 3e:2d:1a:79:e0:f9:e0:55:d6:4e:19:b1:16:2d:2c: 7e:51:de:a8:f2:8c:01:b0:bf:ed:80:0a:4c:07:2e: e4:91:39:12:98:88:ff:00:59:e6:bf:57:e0:b1:5a: 1a:3a:91:35:a3:0f:0a:fe:1c:b3:b2:55:30:e5:ca: e1:06:fd:9a:eb:9b:74:cd:87:03:59:d3:71:28:31: 01:b5:85:7d:fa:34:96:7b:0f:28:b6:77:c5:11:92: d1:b9:4e:d3:06:fc:4f:96:e4:84:5b:7c:45:17:07: d7:56:ad:aa:27:ca:62:4c:14:14:90:7c:d4:3d:bf: 4b:37:45:32:a3:bf:54:e5:f9:c2:63:18:30:e0:09: 61:a4:dd:41:8d:4d:16:1b:ab:28:26:94:a9:d2:07: 59:df:a8:91:97:af:ab:aa:82:2c:18:f1:10:d1:aa: 14:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:81:B6:DE:20:49:FB:C9:93:FA:20:28:9D:17:C9:80:6D:B5:81:C8 X509v3 Authority Key Identifier: keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:11:2e:12:10:49:10:ed:18:db:4c:77:a8:e8:13:87:cb:ad: 88:41:84:34:3b:7c:ec:ce:00:4a:3d:21:6c:64:c8:0d:27:c9: 8a:e8:41:8b:2b:cd:7c:9f:6f:47:11:50:cf:64:4a:e5:23:d0: a9:1f:18:4d:cd:65:1a:af:6f:11:8e:5a:ea:1b:ca:61:57:73: 2f:49:d1:99:36:fd:45:12:16:e2:17:fe:a6:02:4c:c5:d0:b9: 89:6c:26:ad:ea:c8:df:43:98:c9:d7:4b:d8:b8:ea:03:c3:98: 62:42:77:cd:b2:e1:5b:dd:8e:ae:7d:0c:6b:c3:65:d4:54:29: d1:49:c8:2f:81:74:ea:1a:24:87:b5:11:65:02:25:5a:f2:b2: 5d:62:a5:b6:48:73:79:84:0f:f9:c8:a4:c0:b7:b0:35:7e:2c: 61:b4:a8:36:d2:9b:ab:0a:3f:7e:a4:45:38:4c:e7:ab:34:0e: a9:de:02:ac:1a:84:2b:a5:3f:63:e5:1b:d2:94:27:79:22:ad: fa:49:88:c6:64:c4:a0:c5:69:63:25:aa:ee:c5:0e:30:77:e6: 00:ab:e6:2e:e8:a0:b7:d7:12:5d:5f:2c:02:a7:a7:f1:b9:38: f9:a6:68:1d:a9:24:70:b8:e6:34:47:fb:d6:f9:e1:6d:48:85: 3e:49:e9:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA0RDYxMTAvBgNVBAUTKEVCQUE0QzQ0RjI0ODkzNzE0QTFENUIzNjBBMkQ3QjJE ODYwNUIxNjMwHhcNMjUwNDI3MDUwNDAyWhcNMjUwNTA0MDUwNDAyWjAYMRYwFAYD VQQDEw02ODBkYmFjMi1lMzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fLOWYDpJe/e6BDy/B+yzCrGSNnWmbaqAusDEXb0S2aqUQCAsoLKM8xC66ux 9bX2bf/Q2MIYQbJJuV2cvdXJcjYoaXClYfbZTkldoNyRT04eZHJ7rtePxJs+LRp5 4PngVdZOGbEWLSx+Ud6o8owBsL/tgApMBy7kkTkSmIj/AFnmv1fgsVoaOpE1ow8K /hyzslUw5crhBv2a65t0zYcDWdNxKDEBtYV9+jSWew8otnfFEZLRuU7TBvxPluSE W3xFFwfXVq2qJ8piTBQUkHzUPb9LN0Uyo79U5fnCYxgw4AlhpN1BjU0WG6soJpSp 0gdZ36iRl6+rqoIsGPEQ0aoUWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeBtt4g SfvJk/ogKJ0XyYBttYHIMB8GA1UdIwQYMBaAFOuqTETySJNxSh1bNgotey2GBbFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDRENi9BRDBDQUMxRTMx QTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWszRktIVnMyQ2kxN0xZWUZz V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzY2cE1SUEpJazNGS0hWczJDaTE3TFlZRnNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDRENi9BRDBDQUMxRTMxQTkxMUVGQjZGQjFENjBDNEY5QUUwMi82NnBNUlBKSWsz RktIVnMyQ2kxN0xZWUZzV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVES4SEEkQ7RjbTHeo6BOHy62IQYQ0O3zszgBKPSFsZMgNJ8mK6EGL K818n29HEVDPZErlI9CpHxhNzWUar28RjlrqG8phV3MvSdGZNv1FEhbiF/6mAkzF 0LmJbCat6sjfQ5jJ10vYuOoDw5hiQnfNsuFb3Y6ufQxrw2XUVCnRScgvgXTqGiSH tRFlAiVa8rJdYqW2SHN5hA/5yKTAt7A1fixhtKg20purCj9+pEU4TOerNA6p3gKs GoQrpT9j5RvSlCd5Iq36SYjGZMSgxWljJaruxQ4wd+YAq+Yu6KC31xJdXywCp6fx uTj5pmgdqSRwuOY0R/vW+eFtSIU+Sek1 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:46 2025 by rpki-client on console.sobornost.net