$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft File: xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft (raw, json) Hash identifier: FyE/AJPlIry2yTTtF2WhIJZ+alv4jfJdZQ7cmc6wp1s= Subject key identifier: 5D:08:58:9C:0C:B9:C3:E5:5D:64:0A:C9:3B:7B:63:88:B5:6A:C0:CC Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 308F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft Manifest number: 3031 Signing time: Sat 26 Apr 2025 15:26:24 +0000 Manifest this update: Sat 26 Apr 2025 15:26:24 +0000 Manifest next update: Sat 03 May 2025 15:26:24 +0000 Files and hashes: 1: xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl (hash: 3eWFBCdPyMrFjIb63Vd5SUNdMPp42oga6s0mg3nO07w=) 2: 3590603EEA9911EDA6A36E18C4F9AE02.roa (hash: uJNCEpY3N5D9PZUEznOLtgfDSFjB7pvoPkUdCD232AQ=) 3: 13A1C0BAE09911EAB8D3B833C4F9AE02.roa (hash: zRK4kX65qOi1Aodd7QFDhTlHcyGoisJrEVR5AqT4AMk=) 4: 7DDA28EC8D9511EB9ECE6042C4F9AE02.roa (hash: A0f9mWgkbPinXWu1IPE7w1z8pvu79vZv+CBSMmbLkD8=) 5: 13065E72E09911EAB8D3B833C4F9AE02.roa (hash: d0jtpCmAVMShKujtRhiYarGgYODIMpgrPMB25oxFrNc=) 6: 11BAFC08E09911EAB8D3B833C4F9AE02.roa (hash: nMCODmmNHRPyTJQL+suYw2CsRxIUVmpXezulX/rRiwk=) 7: 004E48CA008611EEA0F2B440C4F9AE02.roa (hash: 8DE/TKExM2of42c5A8xqnIH3WAtnX8iCbZG5rmNILIM=) 8: A4A3FAEAEDE811EFA5767A5DC4F9AE02.roa (hash: yaZGjriYPeeUPnK6Lq62N5nqIchaZHkJFavQQjz/rGg=) 9: CECE54DE1BC611ECAE421168C4F9AE02.roa (hash: 4KS8xS3AoLtWAkjMFU1X5ErcnDLiIanRQAMHWzBnzUQ=) 10: 12483942E09911EAB8D3B833C4F9AE02.roa (hash: 4kqqMewm+jC0EciEckuPYWUSQBV8lI1snIcJos5k7f0=) 11: 5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa (hash: HpYoD/7amrQw23qk7qiGVySn5/tkgSZijl5VcOrQDaU=) 12: 3503A838EA9911EDA6A36E18C4F9AE02.roa (hash: 0GtekBL2dOHyHHnoJe/8fq1ahw3kmkZ3Jf2VXcQA8mI=) 13: FBFEBECA10B211EEA9B11345C4F9AE02.roa (hash: wzNvofUysU9whi/bJ2KtDbO6Z+B2td019urJnh0Ecvg=) 14: B9286BC4F33711EEAAA34C78C4F9AE02.roa (hash: N55Tj23wiJHKM+RuMh/sRp6P2rhFoWqUz2hSoTlSuVU=) 15: AF6D4D44B73311EC8392922AC4F9AE02.roa (hash: R4ybNnQ0mwoL4B+2xlweOTID4tc0Szqka+nYeqTHQpg=) 16: E6B6BC0AE02E11EAA16EAA59C4F9AE02.roa (hash: PXdJkWNxL0C8ezvM4V8PU0QpElSJqET+Lz8pr56x7DU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12431 (0x308f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: Apr 26 15:26:24 2025 GMT Not After : May 3 15:26:24 2025 GMT Subject: CN=680cfb20-59e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e4:c8:06:d8:0a:64:05:84:a3:d6:30:9c:21: 8d:9e:1e:2d:5a:1f:53:51:22:c3:55:27:54:d2:e4: b7:44:73:af:10:ed:e1:7e:96:69:8a:d9:15:9b:bf: 2f:2f:9d:82:09:77:9a:2d:4d:83:ec:b2:e5:05:43: e9:4e:5d:04:78:36:5b:18:73:22:37:6c:ff:e7:44: 9f:c7:79:c5:93:d7:7e:09:87:93:a1:cc:81:89:2d: d2:29:d5:87:9e:c8:8b:23:d8:d1:21:e4:35:3f:d3: 02:ee:d1:ce:a9:ac:e0:ee:c3:34:54:a8:e9:5c:5e: 23:7a:21:fc:86:6c:4b:04:cf:f1:de:ac:c8:36:b9: 12:39:3a:b2:7d:c6:cd:51:0f:71:b5:d6:15:47:8c: 6b:b8:0f:70:72:87:bc:9c:32:6e:cd:70:7a:14:6f: ce:9b:3d:8f:de:43:4f:58:ab:bb:19:79:1f:d9:d1: 81:8e:21:69:07:b8:d2:91:07:fd:52:ba:f2:33:84: 85:9f:16:c4:6d:3c:e4:1e:d6:25:77:8f:68:59:28: 5d:e5:6a:b2:1b:dc:1f:c4:21:0c:c1:10:e3:38:0f: f3:61:6e:e2:2f:03:7c:33:e7:ba:8b:41:b5:d9:52: a6:a3:3a:a0:04:d0:c9:3e:f1:72:d5:7c:a7:df:55: 24:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:08:58:9C:0C:B9:C3:E5:5D:64:0A:C9:3B:7B:63:88:B5:6A:C0:CC X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:b4:86:c0:b8:f3:79:a7:5c:0c:84:65:ca:6a:97:61:3d:21: 99:ca:fa:8d:b3:42:d9:18:db:2a:ea:82:be:bf:00:39:92:66: 72:c8:0c:a4:87:5b:17:9a:15:58:5c:19:3f:85:4f:60:88:03: 15:5b:4d:d5:bf:6f:bf:33:53:4f:01:d7:68:7b:02:e8:a7:7e: 99:f1:1c:63:e8:49:f6:ef:11:46:b1:f3:f3:31:cc:04:54:9e: 54:d8:1a:51:11:dc:20:b6:38:0d:30:d1:20:85:4f:d0:83:f2: 5b:f3:4d:35:09:62:ed:0b:0d:32:ea:b9:9f:bd:12:ce:90:ae: e3:1d:07:bf:53:d8:64:c3:c1:de:92:6c:a6:3e:80:ad:ec:0c: 42:8a:a7:52:d1:96:64:28:8f:0b:9f:51:00:d1:83:00:0c:f8: 85:b1:c3:76:9c:fa:37:53:68:f8:74:b1:a5:17:a8:b8:7f:75: 8a:0f:06:12:4e:5f:4f:c1:6a:54:80:aa:c4:13:85:9e:9e:a4: 2c:80:e2:fa:20:89:7b:be:53:c0:eb:2f:db:0a:00:63:0c:4f: d2:d8:e5:5e:17:3e:a0:ac:dc:05:7a:dd:9f:8b:35:8a:72:be: 8b:10:03:d4:f8:90:af:d7:dc:26:9f:9a:c1:49:48:97:38:92: ab:46:0d:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjUwNDI2MTUyNjI0WhcNMjUwNTAzMTUyNjI0WjAYMRYwFAYD VQQDEw02ODBjZmIyMC01OWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuTIBtgKZAWEo9YwnCGNnh4tWh9TUSLDVSdU0uS3RHOvEO3hfpZpitkVm78v L52CCXeaLU2D7LLlBUPpTl0EeDZbGHMiN2z/50Sfx3nFk9d+CYeTocyBiS3SKdWH nsiLI9jRIeQ1P9MC7tHOqazg7sM0VKjpXF4jeiH8hmxLBM/x3qzINrkSOTqyfcbN UQ9xtdYVR4xruA9wcoe8nDJuzXB6FG/Omz2P3kNPWKu7GXkf2dGBjiFpB7jSkQf9 UrryM4SFnxbEbTzkHtYld49oWShd5WqyG9wfxCEMwRDjOA/zYW7iLwN8M+e6i0G1 2VKmozqgBNDJPvFy1Xyn31UkiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0IWJwM ucPlXWQKyTt7Y4i1asDMMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTVDOC85Q0QzRThGNkZGNTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAw WjA5ZlhyX0wtakc3bGs5a3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgtIbAuPN5p1wMhGXKapdhPSGZyvqNs0LZGNsq6oK+vwA5kmZyyAyk h1sXmhVYXBk/hU9giAMVW03Vv2+/M1NPAddoewLop36Z8Rxj6En27xFGsfPzMcwE VJ5U2BpREdwgtjgNMNEghU/Qg/Jb8001CWLtCw0y6rmfvRLOkK7jHQe/U9hkw8He kmymPoCt7AxCiqdS0ZZkKI8Ln1EA0YMADPiFscN2nPo3U2j4dLGlF6i4f3WKDwYS Tl9PwWpUgKrEE4WenqQsgOL6IIl7vlPA6y/bCgBjDE/S2OVeFz6grNwFet2fizWK cr6LEAPU+JCv19wmn5rBSUiXOJKrRg1s -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:28 2025 by rpki-client on console.sobornost.net