$ rpki-client -vvf rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft File: hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft (raw, json) Hash identifier: jmxDKa7CR+gKDQ8fa+SlmKOA5ycUYAHbE9e6rN90UQY= Subject key identifier: 54:14:EF:25:11:2F:7F:E9:CF:69:FA:BA:8E:0D:30:1E:6C:12:6F:26 Authority key identifier: 84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4 Certificate issuer: /CN=A91505AB/serialNumber=84018C083D10A39E7F685C41AE166370C6D77AC4 Certificate serial: 1A12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft Manifest number: 1A0A Signing time: Mon 28 Apr 2025 16:32:57 +0000 Manifest this update: Mon 28 Apr 2025 16:32:57 +0000 Manifest next update: Mon 05 May 2025 16:32:57 +0000 Files and hashes: 1: hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl (hash: R43TNJ8UjUcbIqUyxj7AGYg51x0tugz5O00DT2MBEyw=) 2: 4EF483C64C2911E78BF1BD13C4F9AE02.roa (hash: YOnwHdL+VM4WZZwYTJ66mt2t+UeBiT+rfThROtawpHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6674 (0x1a12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91505AB, serialNumber=84018C083D10A39E7F685C41AE166370C6D77AC4 Validity Not Before: Apr 28 16:32:57 2025 GMT Not After : May 5 16:32:57 2025 GMT Subject: CN=680fadb9-4eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cd:8f:e9:21:f1:8b:e2:4d:09:5e:31:91:95: ab:10:6d:7f:4c:68:81:fb:aa:29:59:ba:4d:5f:d3: c7:8d:3a:b3:e6:96:49:61:2a:25:71:fc:0d:79:07: 0f:af:0f:f4:72:4b:58:a2:c5:cb:14:30:6d:e2:6d: ac:52:d5:5a:d3:08:65:f7:fd:6b:8b:a7:be:3a:0a: 38:6c:cc:0c:80:a7:eb:60:dc:d4:e7:99:d8:0b:a1: 66:09:f2:f1:37:ca:1d:db:66:d4:2c:0a:fa:fd:12: 5b:dc:e1:a4:f9:10:52:b6:df:aa:36:60:9c:e7:e8: 2e:15:41:eb:c4:5d:d0:cc:7b:9e:5a:18:5b:1a:f3: 52:20:43:3b:06:b4:3d:2f:ed:5b:2e:e1:06:e8:66: a0:2e:7a:8b:03:b4:e2:fd:26:8a:fa:ad:04:6d:70: d1:ff:e1:05:ef:c4:8c:19:8a:a2:a7:0e:1d:49:2b: 55:36:01:4a:0d:dd:c2:8a:33:d3:36:ae:a4:42:9d: 83:4c:10:58:05:92:23:f3:54:da:29:f3:24:c8:fc: 28:b0:a7:f1:5e:67:02:da:75:9a:83:ee:df:b9:a4: 07:09:7d:f2:9e:3c:06:eb:83:d6:77:e8:09:ba:a1: 38:4b:5a:12:3a:fc:5e:95:34:e3:19:0b:7f:1d:8a: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:14:EF:25:11:2F:7F:E9:CF:69:FA:BA:8E:0D:30:1E:6C:12:6F:26 X509v3 Authority Key Identifier: keyid:84:01:8C:08:3D:10:A3:9E:7F:68:5C:41:AE:16:63:70:C6:D7:7A:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hAGMCD0Qo55_aFxBrhZjcMbXesQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91505AB/05243AC64C2811E7968AD211C4F9AE02/hAGMCD0Qo55_aFxBrhZjcMbXesQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:0e:f2:e5:b2:fc:6b:77:f7:6b:33:17:9e:5f:05:5e:9d:dd: 18:20:84:65:ab:16:a0:33:ff:2c:ba:dc:af:79:ac:74:73:f2: dc:59:6a:47:eb:0d:69:8a:bf:92:36:a1:5d:40:10:0c:df:f1: df:49:25:fd:f4:d6:fe:55:ed:43:71:bb:b9:39:32:5b:9e:08: 23:a1:5b:48:a6:2a:3b:75:9d:32:ab:f9:ee:18:88:80:5a:99: 1e:bd:69:9f:2b:d3:c3:02:c7:79:b7:4d:55:a7:75:2f:86:85: f7:f5:df:51:12:aa:40:ab:25:0f:03:ec:d2:2c:3b:94:f7:b1: a3:df:6a:f4:95:c8:04:be:70:5e:ee:4a:da:8b:5f:85:83:c2: 4d:bd:bc:b5:52:2b:e1:68:8c:d6:01:9a:42:f0:a0:3f:85:c3: 6b:01:76:bf:eb:63:b2:ff:14:7e:05:9b:af:ce:e8:7e:38:a8: fb:f1:11:b9:55:95:99:26:a0:6b:eb:df:d0:07:b1:5b:30:4a: 5c:e3:26:bc:52:b2:4d:5f:81:3a:d8:05:56:01:f2:bf:b3:3d: bb:56:3e:cc:ae:78:7d:f3:97:8d:d5:78:9c:45:c5:4b:09:b8: e0:54:75:cb:d4:d0:07:98:94:92:74:df:ba:90:ea:7e:d5:0a: f1:90:7f:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA1QUIxMTAvBgNVBAUTKDg0MDE4QzA4M0QxMEEzOUU3RjY4NUM0MUFFMTY2Mzcw QzZENzdBQzQwHhcNMjUwNDI4MTYzMjU3WhcNMjUwNTA1MTYzMjU3WjAYMRYwFAYD VQQDEw02ODBmYWRiOS00ZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp82P6SHxi+JNCV4xkZWrEG1/TGiB+6opWbpNX9PHjTqz5pZJYSolcfwNeQcP rw/0cktYosXLFDBt4m2sUtVa0whl9/1ri6e+Ogo4bMwMgKfrYNzU55nYC6FmCfLx N8od22bULAr6/RJb3OGk+RBStt+qNmCc5+guFUHrxF3QzHueWhhbGvNSIEM7BrQ9 L+1bLuEG6GagLnqLA7Ti/SaK+q0EbXDR/+EF78SMGYqipw4dSStVNgFKDd3CijPT Nq6kQp2DTBBYBZIj81TaKfMkyPwosKfxXmcC2nWag+7fuaQHCX3ynjwG64PWd+gJ uqE4S1oSOvxelTTjGQt/HYqoEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQU7yUR L3/pz2n6uo4NMB5sEm8mMB8GA1UdIwQYMBaAFIQBjAg9EKOef2hcQa4WY3DG13rE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDVBQi8wNTI0M0FDNjRD MjgxMUU3OTY4QUQyMTFDNEY5QUUwMi9oQUdNQ0QwUW81NV9hRnhCcmhaamNNYlhl c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hBR01DRDBRbzU1X2FGeEJyaFpqY01iWGVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDVBQi8wNTI0M0FDNjRDMjgxMUU3OTY4QUQyMTFDNEY5QUUwMi9oQUdNQ0QwUW81 NV9hRnhCcmhaamNNYlhlc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuDvLlsvxrd/drMxeeXwVend0YIIRlqxagM/8sutyveax0c/LcWWpH 6w1pir+SNqFdQBAM3/HfSSX99Nb+Ve1Dcbu5OTJbnggjoVtIpio7dZ0yq/nuGIiA WpkevWmfK9PDAsd5t01Vp3UvhoX39d9REqpAqyUPA+zSLDuU97Gj32r0lcgEvnBe 7krai1+Fg8JNvby1UivhaIzWAZpC8KA/hcNrAXa/62Oy/xR+BZuvzuh+OKj78RG5 VZWZJqBr69/QB7FbMEpc4ya8UrJNX4E62AVWAfK/sz27Vj7Mrnh985eN1XicRcVL CbjgVHXL1NAHmJSSdN+6kOp+1QrxkH9x -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:34 2025 by rpki-client on console.sobornost.net