$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft File: OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft (raw, json) Hash identifier: NzXkMxNjpd5v54DDwgXPwNNrqIbzZf19cGxoeLAMmt4= Subject key identifier: 31:82:B8:83:8F:F3:D1:47:69:E5:93:C8:5F:3F:58:AB:87:B3:B6:3B Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 2411 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft Manifest number: 23FB Signing time: Mon 28 Apr 2025 15:54:10 +0000 Manifest this update: Mon 28 Apr 2025 15:54:10 +0000 Manifest next update: Mon 05 May 2025 15:54:10 +0000 Files and hashes: 1: OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl (hash: 4ZEkM7Ia9tIAZotB5xjOdAZqAseyk2KdExxpdgwY5BM=) 2: 9876A6C025B211ECB5356475C4F9AE02.roa (hash: DNBT8zhDN25f9UDGQ5nfWBA6s2lB80HUpbXVqjHmAQM=) 3: D8D3FB6414F111F08EE5E32DC4F9AE02.roa (hash: tOvAiPhxRE202cumPZpJeSLK5i3uUM9dNppjhBHTGzA=) 4: 54EE8F7615FE11ECAF541012C4F9AE02.roa (hash: IA4iHCGoqRIo6kbssAA01N8/wPFo68lHVDwSEc9PASs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9233 (0x2411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3, serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Validity Not Before: Apr 28 15:54:10 2025 GMT Not After : May 5 15:54:10 2025 GMT Subject: CN=680fa4a2-f167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2e:c8:58:ee:5a:8c:c0:db:fa:16:55:3d:cf: 33:57:b0:96:ad:fb:1f:3a:4e:48:a0:51:e9:23:e9: 32:00:92:44:b6:47:bb:81:57:45:2d:45:d9:02:a9: 98:a8:5f:e8:84:cc:83:13:27:d1:2a:62:85:79:9a: f9:04:10:5e:0c:e4:5a:9e:8f:cb:8d:93:94:f6:f7: 01:77:ab:a5:59:4a:58:48:b3:45:b0:59:c3:1a:81: a0:b6:f8:ea:00:2a:ff:45:b4:a6:45:9d:1b:ca:ed: 5d:8e:e8:cb:ff:bd:ed:12:3d:ec:2c:b4:fd:58:22: d6:37:b0:43:14:cd:83:e5:ba:3a:4a:1c:4f:2b:09: 2a:ff:79:08:3b:84:9e:52:f5:5d:bb:c5:47:cd:5b: 1c:17:9b:d7:c4:40:7f:b6:68:dd:3d:ca:6d:a8:a5: 0e:85:e3:3a:ab:d3:24:34:b8:3c:1e:32:9e:7a:1e: ef:fe:dd:cd:a2:3b:7f:04:ee:d7:56:3c:9b:6a:d3: 39:65:0b:c9:98:19:10:cd:f9:28:38:3a:e6:df:7e: 08:3e:78:fd:eb:69:e5:a5:44:53:13:71:43:dc:d5: a3:09:48:07:ef:53:ae:72:59:14:51:62:e0:11:77: 9f:98:9c:00:b1:9b:96:98:fb:df:44:b1:4f:84:55: e2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:82:B8:83:8F:F3:D1:47:69:E5:93:C8:5F:3F:58:AB:87:B3:B6:3B X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:a0:95:46:61:ca:c4:fa:62:d3:4a:11:47:f1:00:78:0d:eb: 20:3c:97:9d:39:e9:bf:fb:cf:e7:b7:1a:27:9c:96:4a:45:e4: 5d:b8:02:ee:12:30:55:80:90:9c:df:f5:44:21:23:17:cb:19: 10:64:19:2a:e6:d1:10:8d:c5:7f:34:fd:fe:fe:3c:31:64:1e: ef:e2:8e:35:ae:27:33:54:ca:45:d2:17:00:72:5f:fe:d1:7e: d2:05:ea:60:eb:16:b6:07:b3:75:53:13:56:7e:db:5d:be:45: 1a:9d:09:5f:1a:be:4f:03:56:e3:c7:20:34:4d:93:eb:da:f0: 8d:c5:40:61:fc:f7:0e:82:5d:a9:5c:8e:df:2a:21:d7:a1:07: a2:45:2d:9c:84:66:7a:92:50:57:29:c7:e8:7b:07:84:b7:a1: f1:90:a3:7b:54:b8:e5:f9:cc:b9:b8:b4:ae:48:b5:d2:04:f0: 04:7c:bc:d0:c8:b7:75:09:50:ee:96:4b:42:55:dd:93:44:cc: c9:68:72:a1:1d:b0:8e:e4:8f:88:39:fc:48:81:43:a9:8d:e2: d6:59:e9:f9:e0:2c:a9:90:fb:a6:19:3c:e7:68:d9:ad:45:d2: 80:9c:ba:e1:22:d5:fd:78:64:6d:52:a2:9d:6b:36:b9:47:41: 10:b5:6e:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjUwNDI4MTU1NDEwWhcNMjUwNTA1MTU1NDEwWjAYMRYwFAYD VQQDEw02ODBmYTRhMi1mMTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi7IWO5ajMDb+hZVPc8zV7CWrfsfOk5IoFHpI+kyAJJEtke7gVdFLUXZAqmY qF/ohMyDEyfRKmKFeZr5BBBeDORano/LjZOU9vcBd6ulWUpYSLNFsFnDGoGgtvjq ACr/RbSmRZ0byu1djujL/73tEj3sLLT9WCLWN7BDFM2D5bo6ShxPKwkq/3kIO4Se UvVdu8VHzVscF5vXxEB/tmjdPcptqKUOheM6q9MkNLg8HjKeeh7v/t3Nojt/BO7X VjybatM5ZQvJmBkQzfkoODrm334IPnj962nlpURTE3FD3NWjCUgH71OuclkUUWLg EXefmJwAsZuWmPvfRLFPhFXiYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGCuIOP 89FHaeWTyF8/WKuHs7Y7MB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTJCMy84OTE3RkIyQTVEMEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBL ZzdQZEFiZWxyaG9UQ0NjQ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALoJVGYcrE+mLTShFH8QB4DesgPJedOem/+8/ntxonnJZKReRduALu EjBVgJCc3/VEISMXyxkQZBkq5tEQjcV/NP3+/jwxZB7v4o41riczVMpF0hcAcl/+ 0X7SBepg6xa2B7N1UxNWfttdvkUanQlfGr5PA1bjxyA0TZPr2vCNxUBh/PcOgl2p XI7fKiHXoQeiRS2chGZ6klBXKcfoeweEt6HxkKN7VLjl+cy5uLSuSLXSBPAEfLzQ yLd1CVDulktCVd2TRMzJaHKhHbCO5I+IOfxIgUOpjeLWWen54CypkPumGTznaNmt RdKAnLrhItX9eGRtUqKdaza5R0EQtW5k -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:06 2025 by rpki-client on console.sobornost.net