$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft File: j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft (raw, json) Hash identifier: u20tc0slV4vq4sM/9Ns8d+ahUST8mbuKhZYUPaKM8Jk= Subject key identifier: 71:64:57:F1:43:6D:5F:12:0C:92:61:38:17:EF:70:07:D7:AF:CA:1C Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 0291 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft Manifest number: 028A Signing time: Sun 27 Apr 2025 01:14:17 +0000 Manifest this update: Sun 27 Apr 2025 01:14:17 +0000 Manifest next update: Sun 04 May 2025 01:14:17 +0000 Files and hashes: 1: j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl (hash: e2WwF/0hULFuEZAwfdQGjuGQTW7sAhgxoQqm1QKhj4g=) 2: 3B501252140811EDBF3D2F27C4F9AE02.roa (hash: UP0rzzGm1RNNAwSNVW6RQ9A/3hrn3jElJIPxPVvX0ks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4, serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Validity Not Before: Apr 27 01:14:17 2025 GMT Not After : May 4 01:14:17 2025 GMT Subject: CN=680d84e9-8e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:84:ad:83:b9:8b:74:7e:a3:07:59:34:a0:91: a5:81:62:c3:dd:69:7b:51:81:cb:21:31:51:f4:eb: 3d:08:b3:98:6a:ba:42:23:e1:6e:e9:a8:ce:e5:59: 09:23:42:76:c9:93:81:4c:3b:ee:ab:55:4d:c7:c6: bb:29:55:45:77:6c:9a:a3:71:b4:36:ed:e1:c9:d4: 5a:1d:b6:93:1d:f9:02:68:04:33:9a:7c:18:26:8d: 88:e3:fa:10:b1:43:36:ca:09:ce:c9:c7:56:16:ea: 55:5b:74:c4:4a:70:28:95:0f:a9:a2:70:24:71:59: 48:21:24:c2:c4:d0:63:00:f1:a0:b2:f7:22:fc:7e: e6:cd:42:aa:58:e9:74:b4:7d:77:22:76:80:52:ca: e4:25:a2:0d:50:48:90:a3:04:22:dc:67:9a:eb:7b: ec:f6:61:fa:48:69:99:41:96:54:62:e1:eb:2b:42: 2e:42:c0:3a:e3:4f:b2:de:0f:2c:f7:75:71:5b:fd: d2:43:3a:f6:24:12:b1:a3:05:1d:d8:6a:0e:f1:31: d9:d9:f9:39:83:a9:41:36:f0:bf:4b:fd:d5:19:dd: 50:61:46:41:3e:07:5f:f5:96:15:90:b2:8e:78:88: ae:cf:fc:3c:07:1c:92:bf:50:9d:5a:98:44:7d:2c: 2e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:64:57:F1:43:6D:5F:12:0C:92:61:38:17:EF:70:07:D7:AF:CA:1C X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:87:92:a0:57:4d:b7:46:4c:d0:e5:f7:18:58:a5:5d:b2:68: 49:ee:35:48:30:86:52:e7:97:9c:57:89:8f:17:9b:cb:b4:d9: c1:2b:df:c9:ad:56:43:ca:2c:71:e2:47:26:11:92:93:57:de: 58:cb:7b:50:9a:80:ba:53:7a:8f:69:59:47:3a:5b:2e:a6:13: ef:74:ef:30:09:3b:bc:f2:05:a1:35:e8:4a:75:08:ca:7a:ee: b5:a3:9d:f7:d7:e3:77:1d:53:0f:81:f9:6c:22:51:2c:e5:f4: df:93:45:6d:12:41:46:58:ca:00:00:67:a7:d4:c7:46:1f:35: 8c:36:0e:0b:b5:48:44:ca:b1:54:9b:e8:0a:be:8c:b5:40:7b: a6:5a:19:2b:af:34:23:96:9e:94:ed:96:c5:f6:fd:10:4a:f9: 42:01:c3:b6:38:d0:5e:c9:ab:89:ef:58:2b:83:9f:62:a0:42: f4:32:7b:7e:5e:ec:79:ee:79:60:ec:23:ed:07:a0:0a:1d:99: 39:89:65:e0:09:0d:ff:07:c1:fb:00:6d:f7:e4:ef:8c:83:90: e8:d3:18:ff:b1:61:e9:15:11:61:c3:c1:0c:0f:b4:06:c4:b8: 41:14:10:a9:bf:ef:88:47:40:aa:c7:97:e9:fd:12:3e:a5:fe: 46:d1:61:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjUwNDI3MDExNDE3WhcNMjUwNTA0MDExNDE3WjAYMRYwFAYD VQQDEw02ODBkODRlOS04ZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYStg7mLdH6jB1k0oJGlgWLD3Wl7UYHLITFR9Os9CLOYarpCI+Fu6ajO5VkJ I0J2yZOBTDvuq1VNx8a7KVVFd2yao3G0Nu3hydRaHbaTHfkCaAQzmnwYJo2I4/oQ sUM2ygnOycdWFupVW3TESnAolQ+ponAkcVlIISTCxNBjAPGgsvci/H7mzUKqWOl0 tH13InaAUsrkJaINUEiQowQi3Gea63vs9mH6SGmZQZZUYuHrK0IuQsA640+y3g8s 93VxW/3SQzr2JBKxowUd2GoO8THZ2fk5g6lBNvC/S/3VGd1QYUZBPgdf9ZYVkLKO eIiuz/w8BxySv1CdWphEfSwu9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFkV/FD bV8SDJJhOBfvcAfXr8ocMB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDRBNC8yRDIzQTRDQzAyMDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJv Wkx5SGtBZEUyak5fbW5BS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4h5KgV023RkzQ5fcYWKVdsmhJ7jVIMIZS55ecV4mPF5vLtNnBK9/J rVZDyixx4kcmEZKTV95Yy3tQmoC6U3qPaVlHOlsuphPvdO8wCTu88gWhNehKdQjK eu61o5331+N3HVMPgflsIlEs5fTfk0VtEkFGWMoAAGen1MdGHzWMNg4LtUhEyrFU m+gKvoy1QHumWhkrrzQjlp6U7ZbF9v0QSvlCAcO2ONBeyauJ71grg59ioEL0Mnt+ Xux57nlg7CPtB6AKHZk5iWXgCQ3/B8H7AG335O+Mg5Do0xj/sWHpFRFhw8EMD7QG xLhBFBCpv++IR0Cqx5fp/RI+pf5G0WFb -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:55 2025 by rpki-client on console.sobornost.net