$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft File: 3yS01RxnhB3WAN0qYXhrzpiHhmc.mft (raw, json) Hash identifier: mOCUFMph+dNDi8gmhKD9dhSKfBuS52TEvalhZHQsVoY= Subject key identifier: 63:7C:85:66:DC:CE:2B:A1:4C:C1:4D:F5:AE:E6:19:23:60:8A:05:1E Authority key identifier: DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 Certificate issuer: /CN=A91813ED/serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft Manifest number: 81 Signing time: Sun 27 Apr 2025 05:27:40 +0000 Manifest this update: Sun 27 Apr 2025 05:27:39 +0000 Manifest next update: Sun 04 May 2025 05:27:39 +0000 Files and hashes: 1: 3yS01RxnhB3WAN0qYXhrzpiHhmc.crl (hash: Vs+IZG1j5N0hD0Qif+LX9Zwi1G4aqddwlLgEldcPCPY=) 2: B21985725F3711EFA108CA0CC4F9AE02.roa (hash: qWDPCZUNoXxLfCTQ51artmgIDTxez9EecMCL2qvkzMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=DF24B4D51C67841DD600DD2A61786BCE98878667 Validity Not Before: Apr 27 05:27:39 2025 GMT Not After : May 4 05:27:39 2025 GMT Subject: CN=680dc04c-871c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2a:89:6c:73:99:f5:9a:0e:3b:cc:f6:f6:e6: ec:a4:e8:51:93:fe:05:8b:d4:72:55:f8:57:e9:a0: d3:3d:c4:73:2a:0f:08:f2:1d:f5:47:9a:84:16:5d: da:f0:ce:dd:78:bd:a9:3c:75:d8:92:89:13:2a:d2: 35:bf:ca:4d:63:01:f9:f9:3f:4f:6e:6c:67:58:89: ef:7f:cf:5f:75:42:5c:b5:5f:9b:94:16:6c:1b:de: 77:02:33:c2:11:a7:58:13:e5:4f:43:d0:46:7b:d7: f5:43:2b:96:1a:b4:c1:40:3e:e5:20:16:f0:29:28: d7:74:8e:bb:6c:c0:1e:e9:31:b6:8a:79:b5:07:e5: ae:d9:28:a5:d4:d0:01:41:d5:d0:97:19:b2:20:7d: c5:11:cd:70:a1:3e:0b:39:21:98:8b:cb:2a:93:2a: e2:68:1d:37:c1:58:b4:fa:e8:5a:ec:03:4e:ef:fa: 79:24:3e:d3:36:69:48:30:0f:26:26:3c:26:d1:68: c5:89:3f:1c:f6:40:e7:8b:60:b3:df:ec:00:12:86: 43:9b:83:5c:3b:77:e2:84:fa:7e:4e:b3:05:ff:b9: 1b:81:2b:59:9a:46:33:56:5a:96:98:58:7d:25:af: 7a:77:63:f2:d3:d4:3b:d6:50:e3:19:03:d4:eb:14: 3d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7C:85:66:DC:CE:2B:A1:4C:C1:4D:F5:AE:E6:19:23:60:8A:05:1E X509v3 Authority Key Identifier: keyid:DF:24:B4:D5:1C:67:84:1D:D6:00:DD:2A:61:78:6B:CE:98:87:86:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3yS01RxnhB3WAN0qYXhrzpiHhmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/677AAA3C5F3711EFBF369E58C4F9AE02/3yS01RxnhB3WAN0qYXhrzpiHhmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1e:3b:d4:da:e5:6a:f4:ab:df:29:5c:79:72:9d:98:bb:71: ef:5a:ab:b3:51:42:12:8d:d8:60:e4:ba:17:a9:40:01:51:7b: bf:00:49:a5:d5:9a:c4:07:65:dd:34:98:0d:16:7d:1b:72:f8: a4:90:c6:84:f4:34:fd:16:37:a5:e7:25:dc:88:1c:a5:2c:e0: e2:d5:05:a6:ec:4c:9e:da:29:b2:0d:d1:51:e4:53:92:3a:da: f5:64:1c:91:71:b3:20:6b:ec:2a:d0:3d:e1:78:f9:3f:ab:bc: 93:14:c3:4e:23:e9:91:7d:ad:6c:0e:d2:a4:28:b8:f5:8f:b3: 10:9e:01:51:99:bd:5e:ad:c0:0e:49:79:79:c6:3e:1c:82:2a: 40:04:ee:c5:33:dd:4b:c1:eb:97:96:a7:a4:41:c5:19:5f:4e: 4f:33:b2:fc:c4:2c:27:6f:05:6f:1c:5b:92:4a:60:cc:bc:b0: f7:38:8f:7a:3a:fa:83:7b:69:dc:23:86:06:3a:d4:c9:10:a6: 5f:6b:ca:dc:79:69:d2:66:84:14:6a:44:35:0b:bd:ff:99:59: 02:a0:27:c6:31:05:d7:6e:76:4f:48:cf:bb:f9:5f:6e:a8:1e: f7:01:bc:ad:3d:84:c1:55:d6:28:48:39:6a:d7:68:27:94:b9: 6c:13:a9:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKERGMjRCNEQ1MUM2Nzg0MURENjAwREQyQTYxNzg2QkNF OTg4Nzg2NjcwHhcNMjUwNDI3MDUyNzM5WhcNMjUwNTA0MDUyNzM5WjAYMRYwFAYD VQQDEw02ODBkYzA0Yy04NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriqJbHOZ9ZoOO8z29ubspOhRk/4Fi9RyVfhX6aDTPcRzKg8I8h31R5qEFl3a 8M7deL2pPHXYkokTKtI1v8pNYwH5+T9PbmxnWInvf89fdUJctV+blBZsG953AjPC EadYE+VPQ9BGe9f1QyuWGrTBQD7lIBbwKSjXdI67bMAe6TG2inm1B+Wu2Sil1NAB QdXQlxmyIH3FEc1woT4LOSGYi8sqkyriaB03wVi0+uha7ANO7/p5JD7TNmlIMA8m Jjwm0WjFiT8c9kDni2Cz3+wAEoZDm4NcO3fihPp+TrMF/7kbgStZmkYzVlqWmFh9 Ja96d2Py09Q71lDjGQPU6xQ9nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN8hWbc ziuhTMFN9a7mGSNgigUeMB8GA1UdIwQYMBaAFN8ktNUcZ4Qd1gDdKmF4a86Yh4Zn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC82NzdBQUEzQzVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhCM1dBTjBxWVhocnpwaUho bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzN5UzAxUnhuaEIzV0FOMHFZWGhyenBpSGhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTNFRC82NzdBQUEzQzVGMzcxMUVGQkYzNjlFNThDNEY5QUUwMi8zeVMwMVJ4bmhC M1dBTjBxWVhocnpwaUhobWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvHjvU2uVq9KvfKVx5cp2Yu3HvWquzUUISjdhg5LoXqUABUXu/AEml 1ZrEB2XdNJgNFn0bcvikkMaE9DT9Fjel5yXciBylLODi1QWm7Eye2imyDdFR5FOS Otr1ZByRcbMga+wq0D3hePk/q7yTFMNOI+mRfa1sDtKkKLj1j7MQngFRmb1ercAO SXl5xj4cgipABO7FM91LweuXlqekQcUZX05PM7L8xCwnbwVvHFuSSmDMvLD3OI96 OvqDe2ncI4YGOtTJEKZfa8rceWnSZoQUakQ1C73/mVkCoCfGMQXXbnZPSM+7+V9u qB73AbytPYTBVdYoSDlq12gnlLlsE6mK -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:50 2025 by rpki-client on console.sobornost.net