$ rpki-client -vvf rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft File: UoKkZCr301eZKRu6RH6hQlGk1fw.mft (raw, json) Hash identifier: CaAx55ZxnBSGnEF6tjwSDCCkneSM031R/v2sGQY58QY= Subject key identifier: 15:C6:64:80:4E:84:AE:77:45:19:57:B7:0C:0C:CD:88:BC:19:79:B1 Authority key identifier: 52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC Certificate issuer: /CN=A91582D9/serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft Manifest number: 1F6E Signing time: Mon 28 Apr 2025 16:47:08 +0000 Manifest this update: Mon 28 Apr 2025 16:47:08 +0000 Manifest next update: Mon 05 May 2025 16:47:08 +0000 Files and hashes: 1: UoKkZCr301eZKRu6RH6hQlGk1fw.crl (hash: jld2h1Aso47MLWwlacedgXS2KbEKSRdCWRnuSJ0OfDk=) 2: 654665EA197611F09D2B1C76C4F9AE02.roa (hash: +GCGIqPvO3PU3ceu6b5k3g5FWDNdoijguoZ0F6Ql6aE=) 3: B5E806CC8BC711EE899A5284C4F9AE02.roa (hash: A9NER4RWLAzUHssj8hz2WdFFJOhX2P8OvSLz/oFPj9Y=) 4: 172C2B96197711F0A993397AC4F9AE02.roa (hash: 9ByI1R/8UoBUoqrLxfOWYkU9YKprJy6KVIMEGdoolfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91582D9, serialNumber=5282A4642AF7D35799291BBA447EA14251A4D5FC Validity Not Before: Apr 28 16:47:08 2025 GMT Not After : May 5 16:47:08 2025 GMT Subject: CN=680fb10c-45f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:75:96:7e:67:20:da:c8:ee:0d:a7:95:eb: 98:e4:1d:94:7d:72:f0:f0:19:db:73:e6:56:7a:9a: 83:0f:39:4f:4b:85:e9:c0:59:e8:a4:c3:0a:18:79: 99:b0:91:e6:c4:d6:59:e3:e4:28:7e:8d:51:31:8d: 17:85:52:75:77:53:fb:5c:29:0d:ad:fc:87:d9:72: 22:81:62:08:f3:31:82:d1:ef:e5:68:2e:8d:11:d8: 92:ee:55:49:ea:ea:f2:1c:44:91:75:a0:0d:05:fc: ea:ee:2e:36:4e:60:f1:d4:a5:6a:f9:0b:84:76:c9: 8c:85:9c:26:60:ae:7a:ac:ae:d9:a6:76:04:f2:5b: b1:93:8f:6a:5f:5d:c0:4e:05:b1:78:25:03:af:d0: 38:98:23:0d:a2:60:fc:1d:79:6c:6b:67:ab:6d:0b: 92:91:7f:3c:5d:d8:06:91:dc:1c:14:63:32:ae:c3: cd:6e:f7:dd:1b:14:12:8a:40:18:82:24:f1:78:f0: 3f:cb:32:61:ec:90:0a:8d:18:53:55:98:a9:b9:1b: 87:ca:1d:8c:cf:9b:4a:f9:91:ab:61:a9:cc:fa:f2: 01:70:87:e2:2d:77:da:ed:b7:c5:15:af:4d:39:83: 14:80:ce:b5:6e:f9:a8:b7:ae:27:a2:e7:b5:99:2c: 8e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C6:64:80:4E:84:AE:77:45:19:57:B7:0C:0C:CD:88:BC:19:79:B1 X509v3 Authority Key Identifier: keyid:52:82:A4:64:2A:F7:D3:57:99:29:1B:BA:44:7E:A1:42:51:A4:D5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoKkZCr301eZKRu6RH6hQlGk1fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91582D9/0EDA6D5ECDDA11E7BDEA8C2BC4F9AE02/UoKkZCr301eZKRu6RH6hQlGk1fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ab:19:9f:92:be:05:61:11:06:ba:36:37:35:15:92:73:d8: 6c:80:90:f2:34:63:0d:d2:a4:82:5e:2e:6b:91:91:26:fe:29: 70:76:b4:d2:9f:68:57:a6:64:29:d2:71:58:e2:98:00:78:a2: 54:79:4f:63:f0:30:08:1d:19:28:da:12:dc:ae:b4:6c:14:70: 2e:c0:8c:cf:51:6c:67:b0:29:b7:05:a5:f0:b4:fd:dc:ab:33: d4:4c:6d:ae:a2:26:5d:36:e6:eb:3c:1b:33:c5:77:58:c7:ae: 2f:53:be:7f:01:81:17:5e:19:0b:54:84:a7:8b:30:9c:aa:75: 4f:65:28:f0:a3:6d:cc:fc:11:a0:ae:4c:1d:d2:67:b9:b8:72: 50:ec:cb:3f:d1:00:30:24:9b:af:f3:7c:0f:9f:fc:61:7f:2b: db:8a:18:26:80:0c:ea:5e:cd:6a:81:26:b1:45:dd:36:6c:cf: 07:0b:79:c9:12:2f:00:19:cd:3e:d3:8c:f1:4d:9b:eb:f4:31: d8:07:b3:0f:d8:be:a1:f4:a0:44:50:db:b7:09:ba:23:ae:d4: 4c:ca:28:d4:25:36:6f:01:3f:d8:c0:0f:b5:b2:d6:05:35:0d: fd:dd:76:ff:a2:b7:80:cf:51:c6:96:b0:03:ed:ac:2f:f5:a9: 44:d1:f6:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgyRDkxMTAvBgNVBAUTKDUyODJBNDY0MkFGN0QzNTc5OTI5MUJCQTQ0N0VBMTQy NTFBNEQ1RkMwHhcNMjUwNDI4MTY0NzA4WhcNMjUwNTA1MTY0NzA4WjAYMRYwFAYD VQQDEw02ODBmYjEwYy00NWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUZ1ln5nINrI7g2nleuY5B2UfXLw8Bnbc+ZWepqDDzlPS4XpwFnopMMKGHmZ sJHmxNZZ4+Qofo1RMY0XhVJ1d1P7XCkNrfyH2XIigWII8zGC0e/laC6NEdiS7lVJ 6uryHESRdaANBfzq7i42TmDx1KVq+QuEdsmMhZwmYK56rK7ZpnYE8luxk49qX13A TgWxeCUDr9A4mCMNomD8HXlsa2erbQuSkX88XdgGkdwcFGMyrsPNbvfdGxQSikAY giTxePA/yzJh7JAKjRhTVZipuRuHyh2Mz5tK+ZGrYanM+vIBcIfiLXfa7bfFFa9N OYMUgM61bvmot64noue1mSyO+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXGZIBO hK53RRlXtwwMzYi8GXmxMB8GA1UdIwQYMBaAFFKCpGQq99NXmSkbukR+oUJRpNX8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODJEOS8wRURBNkQ1RUNE REExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAxZVpLUnU2Ukg2aFFsR2sx ZncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvS2taQ3IzMDFlWktSdTZSSDZoUWxHazFmdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODJEOS8wRURBNkQ1RUNEREExMUU3QkRFQThDMkJDNEY5QUUwMi9Vb0trWkNyMzAx ZVpLUnU2Ukg2aFFsR2sxZncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArqxmfkr4FYREGujY3NRWSc9hsgJDyNGMN0qSCXi5rkZEm/ilwdrTS n2hXpmQp0nFY4pgAeKJUeU9j8DAIHRko2hLcrrRsFHAuwIzPUWxnsCm3BaXwtP3c qzPUTG2uoiZdNubrPBszxXdYx64vU75/AYEXXhkLVISnizCcqnVPZSjwo23M/BGg rkwd0me5uHJQ7Ms/0QAwJJuv83wPn/xhfyvbihgmgAzqXs1qgSaxRd02bM8HC3nJ Ei8AGc0+04zxTZvr9DHYB7MP2L6h9KBEUNu3CbojrtRMyijUJTZvAT/YwA+1stYF NQ393Xb/oreAz1HGlrAD7awv9alE0fYo -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:36 2025 by rpki-client on console.sobornost.net