$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft File: nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft (raw, json) Hash identifier: v327UdnV6qjWjsHYh18MWHUtvSM+pltBBIb2YwjQwZ8= Subject key identifier: 19:C7:FD:44:9F:D5:8E:EC:EB:D5:82:10:4E:FB:F0:DE:AA:85:61:70 Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft Manifest number: 04B1 Signing time: Sat 26 Apr 2025 23:35:59 +0000 Manifest this update: Sat 26 Apr 2025 23:35:58 +0000 Manifest next update: Sat 03 May 2025 23:35:58 +0000 Files and hashes: 1: nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl (hash: XfVBcIDtXpgw4E2k1bXjWYfM6TAMa7N9a8z2WPeV+9c=) 2: E747402C940211EFAAB77C3DC4F9AE02.roa (hash: V4kNzC9BCFB4bEAtUd+qwvHLEbfnpMX9a/DaKQbhUdI=) 3: DA655484CF0811EF9CF05B4FC4F9AE02.roa (hash: OtFmSPwV6EFHA0PFmeCzNbPWu4B2WoMirQl5I+it6TQ=) 4: 9C3B0AB8911A11EFB0F2DB5DC4F9AE02.roa (hash: 1ZwXIYT8WEQ8AXmik6kQ0iyXkhUrX8a9G8G1OnokxHI=) 5: DF2C7C5E8A3E11EF96BEBB3AC4F9AE02.roa (hash: Po0zIGF8aATq1hFnPm65zoH3mTgzDOjtTV7rd5eqe/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4, serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Apr 26 23:35:58 2025 GMT Not After : May 3 23:35:58 2025 GMT Subject: CN=680d6dde-6406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:09:9d:aa:f6:21:a5:bf:cc:b4:06:0d:75: 05:2d:04:38:18:50:3b:96:47:c0:7b:41:5d:ac:60: 67:94:9b:c6:ae:b2:c6:6b:82:12:72:1e:cf:c6:ce: ca:48:1c:d3:51:50:c0:79:3d:e9:b5:a0:87:b1:89: ed:ac:63:ef:32:74:24:9b:7e:9b:eb:3d:d8:5c:95: 6a:1a:7c:7b:7e:31:b0:7c:4d:b1:b2:75:d8:f8:39: 12:a9:28:c1:23:4e:72:d6:c4:46:92:51:3a:74:4d: 4b:15:f5:a4:29:ec:01:24:43:70:cf:da:f7:20:8a: a3:de:8c:3b:5c:be:2b:5a:67:4e:a3:3c:ec:2b:df: 04:23:62:24:52:d1:23:bc:54:d1:13:5c:0d:03:5e: eb:09:22:c3:81:3e:68:18:9a:05:e6:6c:3b:63:7d: 6d:44:73:4b:90:70:2b:d0:37:93:18:9d:90:81:6b: 6b:67:8e:a0:12:b9:f2:72:77:86:35:32:05:5a:f9: 88:e5:cb:e7:17:71:88:c4:5c:67:3f:3c:c0:a6:b7: 44:2d:38:a2:33:d8:2b:21:f1:1c:6a:d5:a4:3d:1e: ee:f6:8d:f6:6f:a2:9f:b6:6b:31:2f:7d:cf:0c:d6: 46:1b:3d:f6:e1:13:01:16:bd:b8:91:a1:4b:0e:2e: 89:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C7:FD:44:9F:D5:8E:EC:EB:D5:82:10:4E:FB:F0:DE:AA:85:61:70 X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:5e:33:0a:b6:a5:75:20:5a:2f:c3:27:2b:83:2a:c2:e5:33: 23:9b:dd:2f:9c:c0:f4:d8:e2:9c:f7:2b:8f:5f:b4:2c:ac:71: a1:f6:99:e7:09:9e:21:10:cb:fd:42:37:e0:a8:27:7d:27:a7: 19:52:d9:80:4e:46:d4:61:60:3b:fc:70:98:fd:d5:cd:6c:c8: 52:ef:d7:eb:a8:f2:e0:42:a7:8d:f6:14:54:90:fb:8c:13:59: 29:17:45:fc:a9:a2:92:8c:3b:42:9c:23:e4:66:64:51:d7:22: f1:c6:7e:55:22:42:ac:a4:34:ce:1d:54:a2:28:fd:ea:8c:b2: c4:38:9c:5b:4e:4b:60:2c:0b:8e:03:c8:ab:06:7b:72:d9:a2: f5:d1:90:8a:32:f5:e8:dd:5e:d5:5f:12:f2:34:fc:1e:13:71: 96:4e:72:aa:f5:39:d1:d7:4f:d7:29:bf:42:3c:e2:85:77:e5: 64:95:c3:ff:88:96:ae:c0:73:f2:73:c3:7f:9f:c9:f2:d1:15: 49:45:d4:b8:8e:0d:45:fa:92:aa:be:d4:51:fb:be:fc:d2:1d: 5b:36:f3:da:f6:20:b6:f8:84:8e:18:e9:4d:9b:71:12:60:ed: c0:91:30:29:bd:db:ce:f4:26:58:53:ec:76:7c:1f:a2:3a:bd: 82:be:95:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjUwNDI2MjMzNTU4WhcNMjUwNTAzMjMzNTU4WjAYMRYwFAYD VQQDEw02ODBkNmRkZS02NDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoxwJnar2IaW/zLQGDXUFLQQ4GFA7lkfAe0FdrGBnlJvGrrLGa4ISch7Pxs7K SBzTUVDAeT3ptaCHsYntrGPvMnQkm36b6z3YXJVqGnx7fjGwfE2xsnXY+DkSqSjB I05y1sRGklE6dE1LFfWkKewBJENwz9r3IIqj3ow7XL4rWmdOozzsK98EI2IkUtEj vFTRE1wNA17rCSLDgT5oGJoF5mw7Y31tRHNLkHAr0DeTGJ2QgWtrZ46gErnycneG NTIFWvmI5cvnF3GIxFxnPzzAprdELTiiM9grIfEcatWkPR7u9o32b6KftmsxL33P DNZGGz324RMBFr24kaFLDi6JwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnH/USf 1Y7s69WCEE778N6qhWFwMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhENC8yRjU4RTQ3MjJFNTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0 VTVaNURLY3lQVG9KQnY3WUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqXjMKtqV1IFovwycrgyrC5TMjm90vnMD02OKc9yuPX7QsrHGh9pnn CZ4hEMv9QjfgqCd9J6cZUtmATkbUYWA7/HCY/dXNbMhS79frqPLgQqeN9hRUkPuM E1kpF0X8qaKSjDtCnCPkZmRR1yLxxn5VIkKspDTOHVSiKP3qjLLEOJxbTktgLAuO A8irBnty2aL10ZCKMvXo3V7VXxLyNPweE3GWTnKq9TnR10/XKb9CPOKFd+VklcP/ iJauwHPyc8N/n8ny0RVJRdS4jg1F+pKqvtRR+7780h1bNvPa9iC2+ISOGOlNm3ES YO3AkTApvdvO9CZYU+x2fB+iOr2CvpXa -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:59 2025 by rpki-client on console.sobornost.net