$ rpki-client -vvf rpki.apnic.net/member_repository/A91810E3/339314C8717D11EE89EF6236C4F9AE02/nberk64z9kYWgi3wP_2Bd2jx6Y8.mft File: nberk64z9kYWgi3wP_2Bd2jx6Y8.mft (raw, json) Hash identifier: hAK0wfIvyXt3J6c8plEwyxVZLUgdDX6FAO2EwbN8BDc= Subject key identifier: 3F:52:19:A0:AB:91:3C:C5:C1:BC:CA:3F:92:62:7F:77:BE:62:AB:7F Authority key identifier: 9D:B7:AB:93:AE:33:F6:46:16:82:2D:F0:3F:FD:81:77:68:F1:E9:8F Certificate issuer: /CN=A91810E3/serialNumber=9DB7AB93AE33F64616822DF03FFD817768F1E98F Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nberk64z9kYWgi3wP_2Bd2jx6Y8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810E3/339314C8717D11EE89EF6236C4F9AE02/nberk64z9kYWgi3wP_2Bd2jx6Y8.mft Manifest number: 0121 Signing time: Sun 27 Apr 2025 03:41:46 +0000 Manifest this update: Sun 27 Apr 2025 03:41:46 +0000 Manifest next update: Sun 04 May 2025 03:41:46 +0000 Files and hashes: 1: nberk64z9kYWgi3wP_2Bd2jx6Y8.crl (hash: lRg0oa5sZEqZfgnhfN8G8Ljyh0coUbrhV/4QiUJj3hE=) 2: A56F3A8A718811EEADDA430AC4F9AE02.roa (hash: q1gVEbmNzPAYit/PZzlFgDk+Tc1AUGMImEJ9QqP60MQ=) 3: 497917BA719B11EEA5D8F416C4F9AE02.roa (hash: RXrmTRENl+7Zg6y5wMLjJWSZiSVWcqVyL1CzU9Mm2gA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810E3/339314C8717D11EE89EF6236C4F9AE02/nberk64z9kYWgi3wP_2Bd2jx6Y8.crl rsync://rpki.apnic.net/member_repository/A91810E3/339314C8717D11EE89EF6236C4F9AE02/nberk64z9kYWgi3wP_2Bd2jx6Y8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nberk64z9kYWgi3wP_2Bd2jx6Y8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810E3, serialNumber=9DB7AB93AE33F64616822DF03FFD817768F1E98F Validity Not Before: Apr 27 03:41:46 2025 GMT Not After : May 4 03:41:46 2025 GMT Subject: CN=680da77a-5b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f7:e8:da:93:3f:71:53:94:b4:ce:fe:da:2f: df:f4:8e:c2:06:af:b8:a9:6a:79:f6:d9:68:2c:72: c0:f2:ff:f8:ab:5a:48:d9:a1:c7:5e:c2:2f:b9:9a: 28:a2:6b:4a:f4:cf:fa:1a:4f:41:63:93:25:69:b9: 46:84:a0:17:9b:df:22:a6:e6:bc:f7:a6:17:e1:62: 0e:4d:21:92:90:15:67:27:06:da:a3:c9:d2:f8:14: 60:33:ec:42:42:3b:f8:4f:35:16:49:b5:93:9f:21: 0b:9c:b7:b8:f6:22:3d:12:d5:dc:13:4f:f1:00:c6: 2e:23:77:3e:f7:43:e1:bc:d4:32:9c:04:7e:da:a7: ef:57:e7:bb:d8:83:1a:20:e1:d4:f0:0e:13:a4:e4: f8:27:43:f7:f5:33:32:d0:64:51:d9:09:26:e6:4c: 6f:ba:c6:d5:25:09:86:11:47:4a:3b:89:6a:b0:74: 01:34:8e:36:13:c7:ae:63:56:c5:a8:b8:e1:a9:e7: dc:09:5c:bf:2d:44:d6:a8:38:d3:c3:fe:d1:6a:6e: 64:67:d1:b3:77:3f:d1:ce:05:df:67:39:d5:5a:dc: 06:82:6d:1b:82:59:22:42:51:a4:ad:b4:9c:f0:ab: 0d:92:d2:34:df:c9:7b:4e:f2:d1:49:76:fb:2a:39: 93:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:52:19:A0:AB:91:3C:C5:C1:BC:CA:3F:92:62:7F:77:BE:62:AB:7F X509v3 Authority Key Identifier: keyid:9D:B7:AB:93:AE:33:F6:46:16:82:2D:F0:3F:FD:81:77:68:F1:E9:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810E3/339314C8717D11EE89EF6236C4F9AE02/nberk64z9kYWgi3wP_2Bd2jx6Y8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nberk64z9kYWgi3wP_2Bd2jx6Y8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810E3/339314C8717D11EE89EF6236C4F9AE02/nberk64z9kYWgi3wP_2Bd2jx6Y8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:36:2d:02:19:d6:06:74:a8:fa:21:61:bb:6f:22:40:8d:b5: 44:9c:c9:b3:f5:6c:e4:04:6b:3b:bb:b7:60:bb:de:b6:9a:86: 7b:80:1d:ca:ea:81:f0:74:35:ba:d6:95:d2:3d:54:11:5b:65: 6f:f2:a1:1b:df:54:ef:85:5a:29:9b:4c:77:9f:06:b9:b3:41: 3a:39:08:15:ab:b4:ac:bd:b8:29:ef:31:58:82:06:34:c3:a4: e2:6f:63:77:b5:f7:d5:1d:e4:77:41:8b:01:03:0f:82:a2:71: 71:ea:e7:9c:bf:57:38:12:2e:28:a7:0e:30:03:72:e0:fe:ec: 6d:6a:f6:6a:44:06:d5:11:67:bb:1f:d0:0e:ff:c6:d2:2e:8d: 72:d2:20:db:b1:43:0f:00:ac:c3:62:5a:19:54:c0:b9:52:6b: f4:d9:61:84:5f:3d:84:cb:66:a3:d1:da:19:e5:69:39:a8:c7: 37:b9:4b:5c:15:d8:7a:81:3d:2e:5b:d6:74:7d:4a:6f:51:5c: 50:fa:19:8a:fd:6e:d6:a6:88:70:6b:77:80:4a:fe:37:8b:e3: a5:ed:0e:f4:d6:b4:a8:6f:95:51:c4:b2:fa:1a:d4:31:65:70: a5:10:cb:f9:30:c7:9d:4e:06:ab:c5:ef:e6:6d:1d:a7:3a:0a: 06:c4:17:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwRTMxMTAvBgNVBAUTKDlEQjdBQjkzQUUzM0Y2NDYxNjgyMkRGMDNGRkQ4MTc3 NjhGMUU5OEYwHhcNMjUwNDI3MDM0MTQ2WhcNMjUwNTA0MDM0MTQ2WjAYMRYwFAYD VQQDEw02ODBkYTc3YS01YjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPfo2pM/cVOUtM7+2i/f9I7CBq+4qWp59tloLHLA8v/4q1pI2aHHXsIvuZoo omtK9M/6Gk9BY5MlablGhKAXm98ipua896YX4WIOTSGSkBVnJwbao8nS+BRgM+xC Qjv4TzUWSbWTnyELnLe49iI9EtXcE0/xAMYuI3c+90PhvNQynAR+2qfvV+e72IMa IOHU8A4TpOT4J0P39TMy0GRR2Qkm5kxvusbVJQmGEUdKO4lqsHQBNI42E8euY1bF qLjhqefcCVy/LUTWqDjTw/7Ram5kZ9Gzdz/RzgXfZznVWtwGgm0bglkiQlGkrbSc 8KsNktI038l7TvLRSXb7KjmTVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9SGaCr kTzFwbzKP5Jif3e+Yqt/MB8GA1UdIwQYMBaAFJ23q5OuM/ZGFoIt8D/9gXdo8emP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBFMy8zMzkzMTRDODcx N0QxMUVFODlFRjYyMzZDNEY5QUUwMi9uYmVyazY0ejlrWVdnaTN3UF8yQmQyang2 WTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25iZXJrNjR6OWtZV2dpM3dQXzJCZDJqeDZZOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBFMy8zMzkzMTRDODcxN0QxMUVFODlFRjYyMzZDNEY5QUUwMi9uYmVyazY0ejlr WVdnaTN3UF8yQmQyang2WTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkNi0CGdYGdKj6IWG7byJAjbVEnMmz9WzkBGs7u7dgu962moZ7gB3K 6oHwdDW61pXSPVQRW2Vv8qEb31TvhVopm0x3nwa5s0E6OQgVq7Ssvbgp7zFYggY0 w6Tib2N3tffVHeR3QYsBAw+ConFx6uecv1c4Ei4opw4wA3Lg/uxtavZqRAbVEWe7 H9AO/8bSLo1y0iDbsUMPAKzDYloZVMC5Umv02WGEXz2Ey2aj0doZ5Wk5qMc3uUtc Fdh6gT0uW9Z0fUpvUVxQ+hmK/W7Wpohwa3eASv43i+Ol7Q701rSob5VRxLL6GtQx ZXClEMv5MMedTgarxe/mbR2nOgoGxBdU -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:11 2025 by rpki-client on console.sobornost.net