$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: JsZmWTLfTSo3LAEDZHAgpotPdZVTnVmRNOZnipofr7E= Subject key identifier: 0A:B5:70:F2:6C:D1:0F:60:61:29:AA:70:13:DD:25:EA:C9:24:93:C7 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 0847 Signing time: Sat 26 Apr 2025 20:33:11 +0000 Manifest this update: Sat 26 Apr 2025 20:33:11 +0000 Manifest next update: Sat 03 May 2025 20:33:11 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: IRWbOrlG5cqD3OlchKut46jTZMUj0xQMbjZZD5zD4KI=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Apr 26 20:33:11 2025 GMT Not After : May 3 20:33:11 2025 GMT Subject: CN=680d4307-acd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:21:43:75:d1:2b:59:4f:7f:84:75:a6:4f:e1: 54:8a:72:77:c0:cf:7b:af:37:ee:4d:f1:33:b4:33: 5c:2d:57:16:8c:81:55:f0:25:2f:68:af:e0:7c:46: 8c:5d:fc:0c:1f:bd:83:95:30:cc:96:c5:11:2d:35: 2a:77:5c:ee:ae:69:6d:c8:31:bf:51:92:e7:31:11: 07:ba:fa:1b:28:a5:9c:37:4c:5a:e4:07:d8:89:8c: ce:79:4c:dc:df:2b:83:46:25:42:51:4c:dc:37:be: a2:19:0c:19:d1:e1:7b:42:bc:fc:a2:1c:37:1f:51: 1a:b1:52:6e:25:73:20:ac:a6:04:98:08:c9:67:eb: 7a:44:66:b0:03:ee:25:34:5f:75:17:e1:63:c6:52: 0b:16:87:40:d7:6e:56:06:d0:b9:2c:e8:8e:d3:e0: 54:ef:0c:df:ab:3c:ed:39:66:d5:7d:10:1c:b4:b6: d5:08:89:43:e3:59:94:99:ed:8b:e9:4e:85:1b:e2: 80:80:c2:ab:3a:5b:d9:bd:fd:13:0f:6b:31:b8:9f: f4:b0:ad:58:cf:3d:9d:5b:b8:e8:cd:63:00:23:f1: 18:37:21:a4:98:38:a4:b2:7f:ee:98:08:0b:f1:cd: d6:3a:36:6b:65:78:6e:42:85:2a:e3:57:10:10:18: 77:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B5:70:F2:6C:D1:0F:60:61:29:AA:70:13:DD:25:EA:C9:24:93:C7 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a5:7f:c9:d4:09:c2:41:0b:21:72:48:c3:67:31:2b:b0:a7: e4:91:f5:5e:39:41:3e:70:29:4e:b9:eb:66:19:87:fe:e5:f9: b5:68:0b:f5:90:92:7f:4d:23:04:8c:fe:1d:d2:4a:bc:33:fe: a6:2c:fc:99:55:55:8a:a7:73:18:a1:95:0f:11:ef:bb:60:c8: f8:71:f9:ed:64:79:91:00:f5:f3:36:08:4d:ab:b5:2b:ee:0b: 97:ed:82:4a:41:ce:0e:36:3d:05:c3:d6:e9:c5:b3:ae:76:38: 83:a3:82:dc:2e:c3:8f:1f:88:7b:dd:7c:96:16:9c:51:ea:26: 72:d2:dc:2c:48:dd:b0:07:d8:6c:0b:a9:39:d0:60:4e:b9:15: 19:d9:28:1d:5b:8e:e6:0d:20:18:b0:6f:6a:1e:55:04:3f:19: b1:48:6d:5d:e9:4b:14:17:aa:76:84:a1:9c:37:7f:53:38:b0: 4a:a7:59:fb:9a:4f:0a:f4:5f:80:8f:70:c6:2c:84:b7:7c:0e: ba:39:5b:59:7c:7b:06:e3:52:30:70:b2:de:22:54:09:c9:a5: 92:a5:69:46:19:e1:4c:4d:2d:d9:aa:69:68:9d:23:06:e3:98: e8:75:ba:e5:39:16:ee:52:03:3b:b0:8e:53:04:f5:ea:d4:2a: 9b:61:92:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUwNDI2MjAzMzExWhcNMjUwNTAzMjAzMzExWjAYMRYwFAYD VQQDEw02ODBkNDMwNy1hY2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmiFDddErWU9/hHWmT+FUinJ3wM97rzfuTfEztDNcLVcWjIFV8CUvaK/gfEaM XfwMH72DlTDMlsURLTUqd1zurmltyDG/UZLnMREHuvobKKWcN0xa5AfYiYzOeUzc 3yuDRiVCUUzcN76iGQwZ0eF7Qrz8ohw3H1EasVJuJXMgrKYEmAjJZ+t6RGawA+4l NF91F+FjxlILFodA125WBtC5LOiO0+BU7wzfqzztOWbVfRActLbVCIlD41mUme2L 6U6FG+KAgMKrOlvZvf0TD2sxuJ/0sK1Yzz2dW7jozWMAI/EYNyGkmDiksn/umAgL 8c3WOjZrZXhuQoUq41cQEBh3awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAq1cPJs 0Q9gYSmqcBPdJerJJJPHMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9pX/J1AnCQQshckjDZzErsKfkkfVeOUE+cClOuetmGYf+5fm1aAv1 kJJ/TSMEjP4d0kq8M/6mLPyZVVWKp3MYoZUPEe+7YMj4cfntZHmRAPXzNghNq7Ur 7guX7YJKQc4ONj0Fw9bpxbOudjiDo4LcLsOPH4h73XyWFpxR6iZy0twsSN2wB9hs C6k50GBOuRUZ2SgdW47mDSAYsG9qHlUEPxmxSG1d6UsUF6p2hKGcN39TOLBKp1n7 mk8K9F+Aj3DGLIS3fA66OVtZfHsG41IwcLLeIlQJyaWSpWlGGeFMTS3ZqmlonSMG 45jodbrlORbuUgM7sI5TBPXq1CqbYZKQ -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:07 2025 by rpki-client on console.sobornost.net