$ rpki-client -vvf rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft File: r2rjJbT4gONiBR58Pf3xuLKlqBU.mft (raw, json) Hash identifier: 9NFtR3qTj505GTTLgEcQs1/nh9ohD8siCM1qNwzTAL8= Subject key identifier: FE:01:A5:B6:CB:67:79:CC:98:61:E7:F1:95:62:25:8B:03:DD:88:6E Authority key identifier: AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15 Certificate issuer: /CN=A91620ED/serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815 Certificate serial: 2A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft Manifest number: 2A00 Signing time: Mon 28 Apr 2025 15:42:05 +0000 Manifest this update: Mon 28 Apr 2025 15:42:04 +0000 Manifest next update: Mon 05 May 2025 15:42:04 +0000 Files and hashes: 1: r2rjJbT4gONiBR58Pf3xuLKlqBU.crl (hash: k5vmZqoza1ug1/ch+/9+/ccAyOy77gnEqzXfHjhNuWw=) 2: 2F70E1E0D4C711EB84791C0BC4F9AE02.roa (hash: WdR6tzxVJlgQPWFzda+lW5cSfxGnhLk6o3CvLl1F4hI=) 3: CDF2E51A092B11F08557BF1AC4F9AE02.roa (hash: tEdT0gGOO30e19uTOBLmJQuwtJcH3PIS/7KF3GqW/j0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.crl rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:42:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10795 (0x2a2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620ED, serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815 Validity Not Before: Apr 28 15:42:04 2025 GMT Not After : May 5 15:42:04 2025 GMT Subject: CN=680fa1cd-d071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:95:bf:32:e1:08:7b:fc:ff:fd:10:20:a3:d6: 90:b5:d4:ab:c7:0a:3b:a9:0d:e2:a9:3a:32:89:31: 3a:d3:04:77:f2:c8:96:ca:85:58:26:0a:91:53:2e: 90:8f:0b:d1:3a:d5:8d:c4:e2:4d:1f:11:d8:49:e8: d2:2a:8b:e7:c3:89:68:a0:83:e9:51:ba:fb:5f:ba: f3:3e:1c:74:65:6a:83:92:dd:57:e4:14:d8:9f:4a: 46:c0:87:b0:13:9f:1a:d7:68:c8:79:5a:0f:e3:15: b0:9d:18:f8:ec:fc:4c:b6:d2:fd:88:e5:fb:62:c7: e6:e2:cb:00:f5:43:15:80:97:f3:7a:7e:8b:89:18: c7:ae:4f:c6:aa:73:20:ae:d5:6e:36:f1:fe:9e:65: 15:9b:78:49:eb:04:b6:d7:94:6d:9f:1e:04:dc:3b: 23:5c:c5:6f:80:33:b9:f3:01:e4:8e:73:38:6f:24: 2b:fe:87:a1:1c:45:ea:7c:e3:3c:f9:11:ee:19:37: fa:76:aa:8c:b2:5a:3c:f4:7c:7b:5b:93:ce:e7:8b: 6d:41:41:1e:74:65:6f:f8:1b:50:9a:a9:d0:7a:f3: 6d:de:2c:7a:7e:37:64:ed:60:21:26:27:15:cb:54: c5:83:fa:2a:f8:32:c1:88:8f:c4:2e:3e:b2:27:70: d1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:01:A5:B6:CB:67:79:CC:98:61:E7:F1:95:62:25:8B:03:DD:88:6E X509v3 Authority Key Identifier: keyid:AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:ea:29:14:8a:08:a6:e4:4d:e3:73:a8:fd:3b:ef:2c:d6:c3: 7f:21:3e:aa:53:e6:13:b1:a5:97:5d:20:f4:27:cd:ca:ff:af: 14:3c:4c:e5:8e:60:2a:9a:1c:62:11:07:1e:d5:ce:68:26:09: 63:55:d1:54:fd:8f:4b:ed:8d:f4:13:67:ef:c9:af:8d:86:67: 7c:9b:63:4c:fe:9f:ca:1d:af:76:27:ea:ee:73:2a:a3:92:69: 71:bc:b9:d8:02:96:b3:7c:24:11:d0:6c:d8:b0:52:96:d0:e4: 0c:41:e0:1c:95:12:cc:1a:e1:6a:39:44:48:8e:59:e3:a9:29: 2d:45:c4:1b:6d:92:84:e8:6c:ae:f2:1c:a6:69:d1:2b:20:20: 02:36:34:f4:b9:38:4f:73:dc:63:8c:8e:0d:69:a1:52:0b:c4: 2d:97:c1:90:a7:bb:04:60:60:a9:e8:f8:c6:9f:04:65:f5:c1: c3:ea:0d:c7:41:86:93:5c:d9:83:63:d4:ff:cc:ec:1f:00:0b: ab:79:8c:8e:0b:9f:aa:db:32:91:30:fc:cf:8b:2e:9c:35:97: db:ac:30:8e:8d:26:45:db:43:28:a4:97:91:b8:4b:78:99:46: 63:99:dc:2e:7a:a8:6c:d4:25:af:d6:17:4b:86:99:1b:0c:ee: ca:36:ed:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRUQxMTAvBgNVBAUTKEFGNkFFMzI1QjRGODgwRTM2MjA1MUU3QzNERkRGMUI4 QjJBNUE4MTUwHhcNMjUwNDI4MTU0MjA0WhcNMjUwNTA1MTU0MjA0WjAYMRYwFAYD VQQDEw02ODBmYTFjZC1kMDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZW/MuEIe/z//RAgo9aQtdSrxwo7qQ3iqToyiTE60wR38siWyoVYJgqRUy6Q jwvROtWNxOJNHxHYSejSKovnw4looIPpUbr7X7rzPhx0ZWqDkt1X5BTYn0pGwIew E58a12jIeVoP4xWwnRj47PxMttL9iOX7Ysfm4ssA9UMVgJfzen6LiRjHrk/GqnMg rtVuNvH+nmUVm3hJ6wS215Rtnx4E3DsjXMVvgDO58wHkjnM4byQr/oehHEXqfOM8 +RHuGTf6dqqMslo89Hx7W5PO54ttQUEedGVv+BtQmqnQevNt3ix6fjdk7WAhJicV y1TFg/oq+DLBiI/ELj6yJ3DRdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4BpbbL Z3nMmGHn8ZViJYsD3YhuMB8GA1UdIwQYMBaAFK9q4yW0+IDjYgUefD398biypagV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFRC9FN0UyMzFFNjM3 MDAxMUU0QjMyQkQwNkJDNEY5QUUwMi9yMnJqSmJUNGdPTmlCUjU4UGYzeHVMS2xx QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IycmpKYlQ0Z09OaUJSNThQZjN4dUxLbHFCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFRC9FN0UyMzFFNjM3MDAxMUU0QjMyQkQwNkJDNEY5QUUwMi9yMnJqSmJUNGdP TmlCUjU4UGYzeHVMS2xxQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw6ikUigim5E3jc6j9O+8s1sN/IT6qU+YTsaWXXSD0J83K/68UPEzl jmAqmhxiEQce1c5oJgljVdFU/Y9L7Y30E2fvya+Nhmd8m2NM/p/KHa92J+rucyqj kmlxvLnYApazfCQR0GzYsFKW0OQMQeAclRLMGuFqOURIjlnjqSktRcQbbZKE6Gyu 8hymadErICACNjT0uThPc9xjjI4NaaFSC8Qtl8GQp7sEYGCp6PjGnwRl9cHD6g3H QYaTXNmDY9T/zOwfAAureYyOC5+q2zKRMPzPiy6cNZfbrDCOjSZF20MopJeRuEt4 mUZjmdwueqhs1CWv1hdLhpkbDO7KNu2n -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:08 2025 by rpki-client on console.sobornost.net