$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft File: dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft (raw, json) Hash identifier: gmsRhIjvKE5wu0MVT/frUoiR/LCxaBNeK6q447fAbdk= Subject key identifier: 5D:7C:3A:87:53:08:D7:B6:99:A1:48:0F:AF:3C:BE:AB:21:4C:1A:DC Authority key identifier: 77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 Certificate issuer: /CN=A91557BA/serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Certificate serial: 0C44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft Manifest number: 0C3A Signing time: Mon 28 Apr 2025 18:41:10 +0000 Manifest this update: Mon 28 Apr 2025 18:41:10 +0000 Manifest next update: Mon 05 May 2025 18:41:10 +0000 Files and hashes: 1: dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl (hash: FLzPUoJl2Fdt4pcAm8ZJbR4VsnDYh80Qskrmyh+/MTk=) 2: D68289BE984B11ECB04DAB38C4F9AE02.roa (hash: 2GXsJ3lmpDTCyJ0+6RHbUPHuhr06/ng834HAohqlZ5g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=7706D088E921DE8B01EBBA06201D04150E864D04 Validity Not Before: Apr 28 18:41:10 2025 GMT Not After : May 5 18:41:10 2025 GMT Subject: CN=680fcbc6-f0e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9a:18:f4:40:33:70:e9:66:bd:02:fd:dc:b1: 9a:54:ab:2d:0b:3e:6b:da:39:ae:a0:ca:67:94:67: 33:d8:a1:b8:b0:8d:47:4f:f9:2c:d5:58:d8:8d:a2: 19:1c:6f:e9:75:59:92:2d:be:15:44:99:a3:c5:dc: eb:65:87:c8:e7:95:c6:45:75:e3:f8:ad:a5:16:6f: 29:b3:c2:0a:6a:b0:83:0f:67:6f:9f:45:cc:95:8a: 2f:30:d3:d6:a7:08:09:8c:70:16:82:d6:a7:be:ea: 71:92:2a:b9:c2:2f:36:49:1a:ae:2a:c6:e6:2a:b7: b0:1a:e3:45:70:4c:29:91:d8:82:03:3f:20:cb:df: 37:83:a3:c0:0d:35:07:1f:8f:b3:33:6f:9a:96:61: d0:35:4e:f2:77:b0:db:06:5e:57:fe:21:b1:6c:07: ab:e8:f8:4d:74:0f:05:f6:8f:41:c5:30:57:f1:2e: 78:f2:86:e3:3e:33:53:fb:7a:28:53:37:77:27:ce: 68:8a:ab:bf:59:08:99:e3:22:43:4b:4c:00:da:8c: 3d:25:ff:4c:e7:52:a4:b5:ec:54:0a:46:8e:46:49: 3a:36:98:c2:86:d2:da:12:6d:02:36:3e:3f:e1:6c: be:36:bd:74:7b:df:f0:3b:ca:4a:4f:5c:a8:1c:e3: 09:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:7C:3A:87:53:08:D7:B6:99:A1:48:0F:AF:3C:BE:AB:21:4C:1A:DC X509v3 Authority Key Identifier: keyid:77:06:D0:88:E9:21:DE:8B:01:EB:BA:06:20:1D:04:15:0E:86:4D:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dwbQiOkh3osB67oGIB0EFQ6GTQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6E74951004EB11EAA72FA363C4F9AE02/dwbQiOkh3osB67oGIB0EFQ6GTQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:6a:3d:eb:80:1f:fc:78:7e:5a:7b:73:a2:0d:e0:c0:72:be: 5b:c8:12:3b:13:1f:07:84:55:49:00:e9:11:e3:41:cd:85:fe: a5:98:31:2b:aa:3a:b1:c7:a2:d0:79:fd:8b:f5:5e:b8:f6:68: ad:ed:b0:e8:c1:d3:7f:ef:dc:2d:64:4c:3e:d2:25:45:f0:e1: ae:bd:df:2f:63:da:6b:1e:ea:72:b8:7e:4c:3c:3e:e4:c0:cc: 8c:15:eb:64:1c:21:cc:04:40:87:56:a4:4a:7e:cc:00:61:81: e3:25:08:ea:84:81:ae:24:04:01:0d:6f:80:a0:1a:45:0c:ce: 5e:2e:d9:98:9f:67:5a:79:c4:03:ae:d3:1b:cf:23:ef:65:d9: f9:26:21:61:ee:db:a5:1a:18:df:ae:0d:9d:98:b0:7d:6b:51: 9d:54:e5:43:a1:e3:64:49:be:51:1f:f5:f2:88:c8:86:2e:29: 25:e8:64:34:d0:ad:e4:bd:d5:fa:1e:37:cc:e8:a1:dd:31:1a: bd:65:de:37:63:bf:7a:53:59:6d:dd:23:b4:09:7e:79:eb:a9: 83:5c:17:2a:e0:38:7f:0e:68:43:4d:3a:c7:8a:8d:67:85:aa: f0:f7:d2:b8:8c:9e:05:fe:84:6f:47:e8:f4:1b:42:d8:3c:93: 4b:5c:fd:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKDc3MDZEMDg4RTkyMURFOEIwMUVCQkEwNjIwMUQwNDE1 MEU4NjREMDQwHhcNMjUwNDI4MTg0MTEwWhcNMjUwNTA1MTg0MTEwWjAYMRYwFAYD VQQDEw02ODBmY2JjNi1mMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJoY9EAzcOlmvQL93LGaVKstCz5r2jmuoMpnlGcz2KG4sI1HT/ks1VjYjaIZ HG/pdVmSLb4VRJmjxdzrZYfI55XGRXXj+K2lFm8ps8IKarCDD2dvn0XMlYovMNPW pwgJjHAWgtanvupxkiq5wi82SRquKsbmKrewGuNFcEwpkdiCAz8gy983g6PADTUH H4+zM2+almHQNU7yd7DbBl5X/iGxbAer6PhNdA8F9o9BxTBX8S548objPjNT+3oo Uzd3J85oiqu/WQiZ4yJDS0wA2ow9Jf9M51KktexUCkaORkk6NpjChtLaEm0CNj4/ 4Wy+Nr10e9/wO8pKT1yoHOMJRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF18OodT CNe2maFID688vqshTBrcMB8GA1UdIwQYMBaAFHcG0IjpId6LAeu6BiAdBBUOhk0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82RTc0OTUxMDA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNvc0I2N29HSUIwRUZRNkdU UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R3YlFpT2toM29zQjY3b0dJQjBFRlE2R1RRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82RTc0OTUxMDA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9kd2JRaU9raDNv c0I2N29HSUIwRUZRNkdUUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGaj3rgB/8eH5ae3OiDeDAcr5byBI7Ex8HhFVJAOkR40HNhf6lmDEr qjqxx6LQef2L9V649mit7bDowdN/79wtZEw+0iVF8OGuvd8vY9prHupyuH5MPD7k wMyMFetkHCHMBECHVqRKfswAYYHjJQjqhIGuJAQBDW+AoBpFDM5eLtmYn2daecQD rtMbzyPvZdn5JiFh7tulGhjfrg2dmLB9a1GdVOVDoeNkSb5RH/XyiMiGLikl6GQ0 0K3kvdX6HjfM6KHdMRq9Zd43Y796U1lt3SO0CX5566mDXBcq4Dh/DmhDTTrHio1n harw99K4jJ4F/oRvR+j0G0LYPJNLXP2C -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:35 2025 by rpki-client on console.sobornost.net