$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json) Hash identifier: DNIw4E/cdoW6kAC1qD5rrasuXC8tLlMpPZNo4Gd76gM= Subject key identifier: 7F:BD:10:F1:E0:13:E3:46:69:00:23:73:7A:D6:FA:44:41:25:54:4E Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft Manifest number: B3 Signing time: Sun 27 Apr 2025 04:51:48 +0000 Manifest this update: Sun 27 Apr 2025 04:51:48 +0000 Manifest next update: Sun 04 May 2025 04:51:48 +0000 Files and hashes: 1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: X15oSUVLfEfkdn4x+Zc2cmb0BUYOLqLS/20ug60PyAc=) 2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: J6cm0tDS7Sdy7/sJGsGgF8rSkOKz7v9OX913NFApE9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2, serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: Apr 27 04:51:48 2025 GMT Not After : May 4 04:51:48 2025 GMT Subject: CN=680db7e4-5977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b8:d5:4a:d9:4b:49:19:cc:6a:35:dc:b0:4e: e3:70:3a:92:89:2b:e0:d0:c8:1a:f9:aa:8a:2c:ac: 1c:46:3b:af:94:dc:d9:d9:e0:1e:aa:72:55:cf:0e: e7:91:b3:f2:9a:1a:92:3b:81:0b:e6:47:82:98:9d: b3:c4:e6:8a:2f:be:ec:40:ca:e0:db:e3:b2:2c:16: 3a:10:a5:90:c1:a7:86:ae:f0:50:79:d2:fa:ba:a3: db:0b:13:26:0c:44:ef:50:54:22:9a:87:ea:b3:ab: 97:4e:23:d1:0f:c2:48:4b:21:9c:f4:7c:e5:f5:39: 2d:d4:97:af:bb:09:c6:4f:4b:05:cf:24:f8:29:7e: ee:ca:91:30:68:6e:63:a0:0d:8b:1d:ca:3f:46:dd: 8e:0a:3d:7d:aa:55:e7:c2:7a:b5:b2:e7:92:9b:5e: 30:c0:a9:cc:6d:44:75:a4:65:ca:7f:26:45:ba:11: 81:06:0a:0a:3a:e0:f9:56:01:ad:bd:24:d1:78:28: 00:68:2e:7f:e9:ec:61:5a:b4:40:53:e8:39:1c:5a: 2b:42:48:eb:80:e1:c8:35:b8:0e:6e:e2:03:3c:27: 26:1b:64:68:3e:2c:c2:13:83:9d:26:4a:3a:ee:35: 76:fe:d7:d4:23:2e:9f:26:01:f3:c7:b2:17:63:1b: 2e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:BD:10:F1:E0:13:E3:46:69:00:23:73:7A:D6:FA:44:41:25:54:4E X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:08:fb:a4:6c:bf:34:3f:59:f8:a3:b9:c3:35:78:44:c7:a2: dc:aa:f3:a3:e7:7f:be:6b:e1:6f:eb:85:25:75:f1:07:17:91: 95:75:d2:25:e0:45:37:3b:11:e1:a6:66:37:de:58:c1:ee:03: 4f:f1:fe:cc:bf:8f:1a:02:36:44:71:c3:4b:64:15:85:79:c7: fa:80:80:0c:db:da:b8:80:3c:83:59:73:a2:40:de:ef:df:ff: 01:3c:77:89:07:d9:42:80:b4:c1:cd:14:ff:4f:78:f4:27:4f: 64:fd:af:96:68:b5:ca:eb:24:b0:2e:3e:d0:d0:32:a0:5f:38: aa:b0:58:0e:d3:ab:99:70:35:0a:e5:4f:0d:27:d0:eb:4b:0c: 83:7f:55:d1:93:be:ff:06:64:c1:9d:ab:04:85:2b:b9:48:1c: 1a:30:99:66:e4:4c:ce:7a:87:56:e0:46:dd:42:9c:ee:69:34: 0a:f9:f9:a5:d4:20:db:de:87:80:99:39:15:81:a1:af:6f:3b: 58:0e:d4:aa:2a:29:9c:1b:85:aa:af:22:4e:60:ff:ea:76:ae: 9e:5a:5b:9b:9f:a1:b7:e0:ab:e0:d3:50:d9:4f:08:8f:bc:0d: 6a:3e:05:4c:da:e7:64:88:fc:22:32:6d:09:43:a4:33:d5:bb: 4b:aa:5c:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RDIxMTAvBgNVBAUTKDZDM0I3RjFDMTMzREE5QzUxRDQ0NERBODVFNjAyQTk2 ODQ1MUZFNTQwHhcNMjUwNDI3MDQ1MTQ4WhcNMjUwNTA0MDQ1MTQ4WjAYMRYwFAYD VQQDEw02ODBkYjdlNC01OTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbjVStlLSRnMajXcsE7jcDqSiSvg0Mga+aqKLKwcRjuvlNzZ2eAeqnJVzw7n kbPymhqSO4EL5keCmJ2zxOaKL77sQMrg2+OyLBY6EKWQwaeGrvBQedL6uqPbCxMm DETvUFQimofqs6uXTiPRD8JISyGc9Hzl9Tkt1JevuwnGT0sFzyT4KX7uypEwaG5j oA2LHco/Rt2OCj19qlXnwnq1sueSm14wwKnMbUR1pGXKfyZFuhGBBgoKOuD5VgGt vSTReCgAaC5/6exhWrRAU+g5HForQkjrgOHINbgObuIDPCcmG2RoPizCE4OdJko6 7jV2/tfUIy6fJgHzx7IXYxsuFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+9EPHg E+NGaQAjc3rW+kRBJVROMB8GA1UdIwQYMBaAFGw7fxwTPanFHURNqF5gKpaEUf5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZEMi9BRjIwODM0RTEz RjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFjVWRSRTJvWG1BcWxvUlJf bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9sUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFj VWRSRTJvWG1BcWxvUlJfbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVCPukbL80P1n4o7nDNXhEx6LcqvOj53++a+Fv64UldfEHF5GVddIl 4EU3OxHhpmY33ljB7gNP8f7Mv48aAjZEccNLZBWFecf6gIAM29q4gDyDWXOiQN7v 3/8BPHeJB9lCgLTBzRT/T3j0J09k/a+WaLXK6ySwLj7Q0DKgXziqsFgO06uZcDUK 5U8NJ9DrSwyDf1XRk77/BmTBnasEhSu5SBwaMJlm5EzOeodW4EbdQpzuaTQK+fml 1CDb3oeAmTkVgaGvbztYDtSqKimcG4WqryJOYP/qdq6eWlubn6G34Kvg01DZTwiP vA1qPgVM2udkiPwiMm0JQ6Qz1btLqlzp -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:48 2025 by rpki-client on console.sobornost.net