$ rpki-client -vvf rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.mft File: xlk2W58uMddajSCpuY4VOklvRJk.mft (raw, json) Hash identifier: zW+8SB9jWw6dQmH2O7FD129/XPnBWVISpWzlmQJ/ymA= Subject key identifier: 0E:20:A9:4C:87:B4:ED:61:E0:3C:67:58:BB:4A:F8:1F:63:75:C8:AF Authority key identifier: C6:59:36:5B:9F:2E:31:D7:5A:8D:20:A9:B9:8E:15:3A:49:6F:44:99 Certificate issuer: /CN=A91954A0/serialNumber=C659365B9F2E31D75A8D20A9B98E153A496F4499 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xlk2W58uMddajSCpuY4VOklvRJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.mft Manifest number: 0151 Signing time: Sun 27 Apr 2025 03:08:36 +0000 Manifest this update: Sun 27 Apr 2025 03:08:36 +0000 Manifest next update: Sun 04 May 2025 03:08:36 +0000 Files and hashes: 1: xlk2W58uMddajSCpuY4VOklvRJk.crl (hash: j/xy9JU05q9d2mymflfb48MDbTmbTjl0bvzAEBfMi14=) 2: 6CAF60F0296011EEB0606446C4F9AE02.roa (hash: DCf9qWND7QA7KzN3251dDDXozk2L05NK9fYFAhwBS80=) 3: CA1D2934296011EEB6BB2647C4F9AE02.roa (hash: PB+Fwr7+OFv5312gtz53yebHRvlqOj9H0ezMU/u7UvY=) 4: 302B59C64EEF11EFB111F530C4F9AE02.roa (hash: aQ/AH7PdJFNkSR1Nh6TGi7Jf84xG8OlYq5cmgQwsJ0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.crl rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xlk2W58uMddajSCpuY4VOklvRJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954A0, serialNumber=C659365B9F2E31D75A8D20A9B98E153A496F4499 Validity Not Before: Apr 27 03:08:36 2025 GMT Not After : May 4 03:08:36 2025 GMT Subject: CN=680d9fb4-f7b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9b:fd:80:9c:5f:dd:87:b4:c3:b7:28:63:1d: f1:c4:90:2f:75:fc:0c:af:bb:48:25:31:ef:5e:d0: ba:33:d8:d2:35:12:23:d5:d9:8d:9c:32:17:a3:7e: 7a:3a:95:2f:ae:5f:1e:a9:18:1b:40:ff:d5:45:50: 3f:79:a1:5f:db:34:dd:f4:24:f5:53:8a:ee:38:05: a4:a0:bf:11:29:06:d0:96:f4:b8:aa:5d:cc:15:d4: 84:6b:c8:0e:6d:9c:bb:db:e1:aa:7d:d6:de:38:f8: a1:41:79:24:a8:60:c2:2b:dc:16:ff:c7:2e:01:2a: d7:0a:da:96:d1:2f:94:f3:04:43:81:23:ea:30:9f: b7:24:18:8e:27:eb:01:a0:05:79:9b:c4:7d:69:b8: 8a:56:39:9c:9b:a4:d8:59:66:40:44:96:32:d8:1a: 69:f6:51:da:f8:08:f3:6d:db:bf:2b:af:49:6a:62: 9e:22:e5:09:41:1d:a7:6b:9a:d5:66:57:94:b4:21: 59:9c:b6:71:45:70:62:7f:89:99:d1:ba:33:e9:66: 49:55:f7:76:eb:f6:d3:9c:46:cc:0d:46:a0:4b:76: 9c:f5:8f:3c:34:c0:d4:85:9c:b4:f6:a3:da:2c:38: 5a:4a:20:dc:de:d9:f1:0c:d2:a8:c3:7a:a9:0b:a3: 26:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:20:A9:4C:87:B4:ED:61:E0:3C:67:58:BB:4A:F8:1F:63:75:C8:AF X509v3 Authority Key Identifier: keyid:C6:59:36:5B:9F:2E:31:D7:5A:8D:20:A9:B9:8E:15:3A:49:6F:44:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xlk2W58uMddajSCpuY4VOklvRJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954A0/90B7A79A270E11EEAAA5B76FC4F9AE02/xlk2W58uMddajSCpuY4VOklvRJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:45:e8:f8:fb:5a:98:da:c0:f9:5a:47:b8:cf:55:85:19:5e: 5c:44:6a:37:93:75:b8:2d:85:96:b6:2e:3a:a2:c8:6f:49:a2: c0:18:e0:2c:a9:58:d8:2d:5a:3c:0b:49:4d:0d:be:29:f5:0d: 88:d1:ed:99:e4:34:27:78:ea:db:a1:45:3c:b9:cd:c9:8e:db: a1:af:90:e3:9c:f7:58:0c:32:12:2d:2b:26:a5:4a:49:1c:4e: a4:8f:42:67:b2:ed:aa:67:51:43:f3:6b:4c:21:b9:fc:02:78: 29:cf:67:c5:cc:a1:a4:c7:0f:68:49:42:36:e1:18:d2:8a:e6: 4d:84:fb:e8:02:80:01:55:c7:ea:af:ec:8e:11:37:5a:12:6e: 50:94:28:35:16:d0:95:35:29:54:0d:9d:fe:b7:2c:76:b4:59: 7f:b2:42:20:b8:09:e0:21:79:d2:8c:9c:03:a2:24:5d:b0:39: 53:f0:49:d0:7a:95:e8:d6:2d:70:6b:c1:e6:b5:0f:10:99:25: 0e:3e:24:62:65:f4:42:3c:f2:67:60:8f:53:bd:9f:d9:86:d5: 7d:fc:ca:6e:78:89:7b:1a:eb:3f:00:80:73:d7:39:7f:aa:89: 99:19:e0:3c:c6:32:b2:88:58:ec:b0:af:4c:a8:2b:dd:1c:ed: b4:d6:aa:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0QTAxMTAvBgNVBAUTKEM2NTkzNjVCOUYyRTMxRDc1QThEMjBBOUI5OEUxNTNB NDk2RjQ0OTkwHhcNMjUwNDI3MDMwODM2WhcNMjUwNTA0MDMwODM2WjAYMRYwFAYD VQQDEw02ODBkOWZiNC1mN2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZv9gJxf3Ye0w7coYx3xxJAvdfwMr7tIJTHvXtC6M9jSNRIj1dmNnDIXo356 OpUvrl8eqRgbQP/VRVA/eaFf2zTd9CT1U4ruOAWkoL8RKQbQlvS4ql3MFdSEa8gO bZy72+GqfdbeOPihQXkkqGDCK9wW/8cuASrXCtqW0S+U8wRDgSPqMJ+3JBiOJ+sB oAV5m8R9abiKVjmcm6TYWWZARJYy2Bpp9lHa+Ajzbdu/K69JamKeIuUJQR2na5rV ZleUtCFZnLZxRXBif4mZ0boz6WZJVfd26/bTnEbMDUagS3ac9Y88NMDUhZy09qPa LDhaSiDc3tnxDNKow3qpC6MmDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4gqUyH tO1h4DxnWLtK+B9jdcivMB8GA1UdIwQYMBaAFMZZNlufLjHXWo0gqbmOFTpJb0SZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTRBMC85MEI3QTc5QTI3 MEUxMUVFQUFBNUI3NkZDNEY5QUUwMi94bGsyVzU4dU1kZGFqU0NwdVk0Vk9rbHZS SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsazJXNTh1TWRkYWpTQ3B1WTRWT2tsdlJKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTRBMC85MEI3QTc5QTI3MEUxMUVFQUFBNUI3NkZDNEY5QUUwMi94bGsyVzU4dU1k ZGFqU0NwdVk0Vk9rbHZSSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjRej4+1qY2sD5Wke4z1WFGV5cRGo3k3W4LYWWti46oshvSaLAGOAs qVjYLVo8C0lNDb4p9Q2I0e2Z5DQneOrboUU8uc3Jjtuhr5DjnPdYDDISLSsmpUpJ HE6kj0Jnsu2qZ1FD82tMIbn8Angpz2fFzKGkxw9oSUI24RjSiuZNhPvoAoABVcfq r+yOETdaEm5QlCg1FtCVNSlUDZ3+tyx2tFl/skIguAngIXnSjJwDoiRdsDlT8EnQ epXo1i1wa8HmtQ8QmSUOPiRiZfRCPPJnYI9TvZ/ZhtV9/MpueIl7Gus/AIBz1zl/ qomZGeA8xjKyiFjssK9MqCvdHO201qoi -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:00 2025 by rpki-client on console.sobornost.net