$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: h0IjlpLCIOl7uJiAib7B9sVJZkn04wWMakqina84Xxk= Subject key identifier: 67:99:01:AB:14:6A:0C:39:74:5B:C5:EE:1E:3D:88:DC:61:A6:25:27 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 7E Signing time: Sun 27 Apr 2025 05:30:24 +0000 Manifest this update: Sun 27 Apr 2025 05:30:24 +0000 Manifest next update: Sun 04 May 2025 05:30:24 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: tiCE5ezCodM0aGjM73Z93gs2a3SkKnZ2ZRnBL4F9TpI=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Apr 27 05:30:24 2025 GMT Not After : May 4 05:30:24 2025 GMT Subject: CN=680dc0f0-0619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:25:c7:12:26:3e:3f:49:cc:f2:6d:3d:5d:04: e7:b9:ce:22:51:9f:80:bc:e8:aa:14:99:23:22:de: 6e:61:da:88:ae:7e:f0:d0:ad:41:c7:f7:49:6b:f9: ba:e3:85:08:03:87:a0:bf:36:9a:58:d2:c4:fa:a5: c6:08:53:1d:f1:92:dc:4d:5e:43:9d:c8:59:91:15: 0f:eb:c8:7d:63:3f:c4:6e:35:88:ee:ad:5e:7e:fb: 9a:70:6d:f4:da:03:6d:a9:68:63:5a:e1:44:c9:3d: 02:4b:e1:bf:8d:28:9a:e8:a9:4b:d2:8b:12:27:20: 26:ab:32:c7:38:f5:ca:7d:87:94:ee:ea:6f:43:4c: ac:c3:87:e4:9c:f4:6c:95:28:fd:84:08:8e:1b:bf: b6:a8:79:f2:f8:5e:8d:3d:13:8c:d5:5f:d4:d1:93: 04:e1:14:23:5f:60:0a:ee:98:5e:e5:29:78:f7:83: 17:de:4d:10:9c:2e:a4:22:5d:71:51:57:98:14:fd: df:58:b7:9e:94:fe:be:59:3d:3e:c8:37:c8:1d:84: e4:ef:97:78:e8:b4:0a:cb:86:8b:55:d6:7d:c6:b7: 6f:be:49:dc:55:a0:15:3c:d9:c1:09:64:2c:fe:c6: 0b:74:83:6f:21:29:3b:71:d1:af:94:66:f3:dc:42: 85:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:99:01:AB:14:6A:0C:39:74:5B:C5:EE:1E:3D:88:DC:61:A6:25:27 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:4d:df:50:87:f9:1a:53:14:95:cf:38:25:98:13:78:07:8b: 25:e1:9d:8a:08:12:da:38:0b:6a:4e:7b:4a:74:00:89:8b:5d: dd:55:a6:69:d3:1e:29:3b:bf:78:82:95:84:55:f6:1f:f6:8f: fd:d1:77:5e:d9:67:0d:0e:9d:63:4b:c8:4c:9a:0a:b6:55:41: 1b:7b:e8:96:c3:37:44:f0:34:0b:97:7e:3b:dd:88:27:60:bf: 64:75:71:ab:1c:0f:7d:78:84:7b:a1:3c:db:91:cd:e0:94:83: f2:4a:6c:0e:70:95:00:57:f8:06:eb:54:96:2e:00:f6:d3:c6: 5d:64:a3:07:d2:fb:ad:a3:ba:a0:5c:6d:7f:72:49:bb:b7:7a: 4a:0a:a1:7f:97:0c:a6:2f:91:ee:74:ae:ce:61:cc:94:41:f5: e2:0b:6b:f7:72:16:b3:25:98:26:02:4e:9c:06:64:a5:91:19: 39:32:eb:33:12:36:02:a5:28:c8:b2:3d:ce:3d:4e:56:f4:11: d1:b7:b3:52:7e:f2:7f:6c:4a:54:be:0e:7c:50:56:58:d3:cc: 1a:1c:f3:e4:8f:70:3e:5a:d7:d0:b5:da:66:c7:68:8c:ab:09: d9:70:8a:82:e2:6f:52:f0:c8:c3:6e:58:ba:94:37:67:82:1f: f9:ad:1a:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTBBRDExMC8GA1UEBRMoMEY2QjQ3MjBCMEEzNTcyMkQ4NUYzNDQ2RUZENDc0MEJE MzQxODM0RTAeFw0yNTA0MjcwNTMwMjRaFw0yNTA1MDQwNTMwMjRaMBgxFjAUBgNV BAMTDTY4MGRjMGYwLTA2MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXJccSJj4/SczybT1dBOe5ziJRn4C86KoUmSMi3m5h2oiufvDQrUHH90lr+brj hQgDh6C/NppY0sT6pcYIUx3xktxNXkOdyFmRFQ/ryH1jP8RuNYjurV5++5pwbfTa A22paGNa4UTJPQJL4b+NKJroqUvSixInICarMsc49cp9h5Tu6m9DTKzDh+Sc9GyV KP2ECI4bv7aoefL4Xo09E4zVX9TRkwThFCNfYArumF7lKXj3gxfeTRCcLqQiXXFR V5gU/d9Yt56U/r5ZPT7IN8gdhOTvl3jotArLhotV1n3Gt2++SdxVoBU82cEJZCz+ xgt0g28hKTtx0a+UZvPcQoVlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ5kBqxRq DDl0W8XuHj2I3GGmJScwHwYDVR0jBBgwFoAUD2tHILCjVyLYXzRG79R0C9NBg04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1MEFELzYwRUJFMUFDNjQz NDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDJ0SElMQ2pWeUxZWHpSRzc5UjBDOU5CZzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1 MEFELzYwRUJFMUFDNjQzNDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlM WVh6Ukc3OVIwQzlOQmcwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABFN31CH+RpTFJXPOCWYE3gHiyXhnYoIEto4C2pOe0p0AImLXd1VpmnT Hik7v3iClYRV9h/2j/3Rd17ZZw0OnWNLyEyaCrZVQRt76JbDN0TwNAuXfjvdiCdg v2R1cascD314hHuhPNuRzeCUg/JKbA5wlQBX+AbrVJYuAPbTxl1kowfS+62juqBc bX9ySbu3ekoKoX+XDKYvke50rs5hzJRB9eILa/dyFrMlmCYCTpwGZKWRGTky6zMS NgKlKMiyPc49Tlb0EdG3s1J+8n9sSlS+DnxQVljTzBoc8+SPcD5a19C12mbHaIyr CdlwioLib1LwyMNuWLqUN2eCH/mtGq4= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:50 2025 by rpki-client on console.sobornost.net