$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: uR4VdPjZ+MTFwkmZByHGHtau96unNxinlxQ7dIa0KLQ= Subject key identifier: EA:29:BB:82:5E:41:9A:B3:E3:9B:54:AC:C9:34:B0:ED:A5:7A:C9:03 Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B10 Signing time: Mon 28 Apr 2025 19:36:55 +0000 Manifest this update: Mon 28 Apr 2025 19:36:54 +0000 Manifest next update: Mon 05 May 2025 19:36:54 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: TiaBHqEC6eeCW0v4ZlyvSEn+4ThtPwrh+0MmJfc8VO0=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2845 (0xb1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Apr 28 19:36:54 2025 GMT Not After : May 5 19:36:54 2025 GMT Subject: CN=680fd8d6-2496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:84:3f:c0:39:44:b0:df:90:3e:93:28:9a:eb: d6:7d:0e:5a:46:f8:7c:3f:01:52:3f:a0:51:63:c3: ba:2e:4d:b8:16:cc:b4:9c:c3:b1:e8:6b:e4:8c:09: f0:6a:6c:0d:16:18:50:5c:c8:79:6d:e0:9e:29:10: 3a:3f:af:f4:36:c7:8e:60:30:dd:8d:7e:13:2b:e4: d9:55:67:26:fb:ee:c1:f4:7c:12:0c:89:fc:30:7b: 20:47:f6:2e:eb:02:d3:d3:c1:bf:3c:dc:86:7c:00: 07:a5:e6:4f:b9:78:6d:d0:82:6d:cb:5d:40:05:65: 0b:c7:65:d2:1a:72:e8:a6:8d:ce:ee:71:7a:05:e4: 4a:de:89:54:22:1a:6d:b9:9b:95:b6:76:04:d1:4d: f8:54:3f:44:eb:53:4f:8d:db:7a:2f:56:a1:fd:12: 7c:2f:a7:a5:38:d9:b9:8a:3c:71:7f:3c:94:db:84: 9f:d9:67:37:64:42:63:bb:50:15:55:60:d8:23:b1: a9:ad:51:02:fc:85:24:79:a9:d5:86:c4:b5:f2:f0: 35:2c:ae:d8:67:a3:f4:0f:e3:ee:db:d9:3c:bc:d2: 0a:4a:26:b5:92:5c:ed:08:c3:e1:f8:db:d4:38:54: e8:58:e0:0e:22:c3:4f:5e:cc:b0:c0:1c:24:ad:49: d5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:29:BB:82:5E:41:9A:B3:E3:9B:54:AC:C9:34:B0:ED:A5:7A:C9:03 X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:e5:96:d4:b3:d0:97:35:ab:2f:7a:3c:00:56:4a:60:e2:e1: 38:fe:da:c6:13:e3:b4:17:ea:96:f8:d3:55:53:b0:6b:d1:46: aa:ae:01:3b:29:7b:31:f5:21:84:c9:66:16:57:60:f6:fe:94: 14:4c:60:ea:ac:a7:df:ed:b2:89:14:20:23:a0:6d:d2:4a:fa: 2e:8c:f3:79:3f:bf:fd:7a:5a:ab:3d:9f:aa:d0:6d:eb:9d:08: 80:6b:2d:d5:c1:15:52:19:00:35:a0:3d:93:6e:2e:3f:27:94: b8:2f:59:46:71:fa:54:30:69:fb:d1:a4:7d:2b:fb:60:46:be: 86:07:b0:53:8c:1d:e2:e3:97:07:b9:c1:af:78:0d:5f:ab:37: 16:56:9e:e5:33:88:4a:bc:4b:e6:97:ab:f4:63:fd:09:62:74: d4:ac:e9:f6:b3:fc:28:1c:d1:dd:c9:d7:11:ee:84:90:ac:b7: d9:bf:a0:0e:ed:b7:55:b3:d7:f3:31:a5:fb:77:05:51:0a:b3: e5:11:fb:9f:16:71:b2:70:ba:67:63:0e:e5:8a:36:65:9a:1f: 81:8e:70:b9:c8:6e:78:3b:77:d4:04:7e:1b:37:07:d7:f1:f2: 95:83:eb:3c:b6:cc:f9:42:1e:f5:2f:9a:a1:a4:eb:b9:52:37: 79:fc:e1:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUwNDI4MTkzNjU0WhcNMjUwNTA1MTkzNjU0WjAYMRYwFAYD VQQDEw02ODBmZDhkNi0yNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYQ/wDlEsN+QPpMomuvWfQ5aRvh8PwFSP6BRY8O6Lk24Fsy0nMOx6GvkjAnw amwNFhhQXMh5beCeKRA6P6/0NseOYDDdjX4TK+TZVWcm++7B9HwSDIn8MHsgR/Yu 6wLT08G/PNyGfAAHpeZPuXht0IJty11ABWULx2XSGnLopo3O7nF6BeRK3olUIhpt uZuVtnYE0U34VD9E61NPjdt6L1ah/RJ8L6elONm5ijxxfzyU24Sf2Wc3ZEJju1AV VWDYI7GprVEC/IUkeanVhsS18vA1LK7YZ6P0D+Pu29k8vNIKSia1klztCMPh+NvU OFToWOAOIsNPXsywwBwkrUnV7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOopu4Je QZqz45tUrMk0sO2leskDMB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm5ZbUs9CXNasvejwAVkpg4uE4/trGE+O0F+qW+NNVU7Br0UaqrgE7 KXsx9SGEyWYWV2D2/pQUTGDqrKff7bKJFCAjoG3SSvoujPN5P7/9elqrPZ+q0G3r nQiAay3VwRVSGQA1oD2Tbi4/J5S4L1lGcfpUMGn70aR9K/tgRr6GB7BTjB3i45cH ucGveA1fqzcWVp7lM4hKvEvml6v0Y/0JYnTUrOn2s/woHNHdydcR7oSQrLfZv6AO 7bdVs9fzMaX7dwVRCrPlEfufFnGycLpnYw7lijZlmh+BjnC5yG54O3fUBH4bNwfX 8fKVg+s8tsz5Qh71L5qhpOu5Ujd5/OGy -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:41 2025 by rpki-client on console.sobornost.net