$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft File: ntkFUQfHD4W7kajaAnC1ynYK61Q.mft (raw, json) Hash identifier: ykbE3K/4Urv6R/yrGR7HU4333tcPf+RqU1iQfNbl3WM= Subject key identifier: 0C:61:62:C9:58:36:B8:38:F5:24:EE:AE:A3:51:54:2C:E6:C8:B7:F7 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft Manifest number: 356B Signing time: Mon 28 Apr 2025 14:54:32 +0000 Manifest this update: Mon 28 Apr 2025 14:54:32 +0000 Manifest next update: Mon 05 May 2025 14:54:32 +0000 Files and hashes: 1: ntkFUQfHD4W7kajaAnC1ynYK61Q.crl (hash: QO0JafUkjfSyJxaKLW5oc2NiktO6H9NolvLkSA9FQck=) 2: 9D67280A844911EAA528AD63C4F9AE02.roa (hash: VYBHve/PNmOFeIWgiVN/Red7+4ngw1/OUZ+8fRDI5rI=) 3: F0D8670E641711EEB4A16E1FC4F9AE02.roa (hash: VubRHHBc3Mp0miN/hmjpYpMhRr6R/fcT8ESI96i2bn0=) 4: 35575C68844811EAB301615FC4F9AE02.roa (hash: IpJzY/E3RfTD/Jty42OF5cBR7XD15VMXMCEpMRRL3LU=) 5: 9604F4A6899911EBA32C6224C4F9AE02.roa (hash: irNVJAgK3pBegIwIYQHvfU2ICa37uezrCrR7Sshxk/Y=) 6: 7418230A6D4B11EBB1805C0DC4F9AE02.roa (hash: JqpaA6uavzScEzQE05g7FN0bGDgZqNMIyby4mXtlKkU=) 7: B89BA72097D711EBA8B8BA2AC4F9AE02.roa (hash: RZHpITklMqhnuO90bEeP3i7RWRtO5TJRoQwAU5BGgUs=) 8: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (hash: VrbZ7ZecbNcImk9iVkkzXLKwbDb+F2iSfzr14g+V7aQ=) 9: 9F2B1EB0892C11EBB29AFF50C4F9AE02.roa (hash: C9sOI6EfTgRnMQGNjlrtl3KFe7JPwkVRiva430VVNhg=) 10: 35E95924844811EAB301615FC4F9AE02.roa (hash: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk=) 11: 32CF326ECA2E11EA80305F0DC4F9AE02.roa (hash: Tvw2f69b+5p+ID20B8iBZZ0yBfURv9eNZRD114TIL4I=) 12: BB7CEA8CEF3B11ECABCC5E3EC4F9AE02.roa (hash: Pysow4ghhE6bNtWAkyi1inOqPNBVAlZxtG0k9FkRDpM=) 13: 443470FC7C1511EBB779C03EC4F9AE02.roa (hash: GJ+Ts94sVlUdI4E9xrQTvfVMrj+KCnN2xtF35+3yCvE=) 14: DED04A561D4111EB89535E1EC4F9AE02.roa (hash: YIkgFm4YlQ3B4lEIbOf0SksB4/x97E+3vlPXwWTeW9Y=) 15: 150DA58AFF0D11EF8B23C73AC4F9AE02.roa (hash: idSl8lJvkqdSo60nq2wum68o9p4rKFmDbGlEVDUP4DE=) 16: 167FCE12844B11EA91F6956BC4F9AE02.roa (hash: 89eEUpRQHSJ8X1lImXGmURAImfIF1FtpfbrbpBLEmDo=) 17: 9E1F70A4844911EAA528AD63C4F9AE02.roa (hash: ukv1HUDNVDJbCJlkSDyGbdgGzyB74+5Ji2qFWgrv0gw=) 18: D10DBCB2475C11EEBF5FB180C4F9AE02.roa (hash: UStQZ3E5ENhOJAnKZAoPf8pnLHZK3+vt2+bwJ7bo508=) 19: D9E23E4A6D4C11EB938EC44DC4F9AE02.roa (hash: jV1pO0tJQkm8tDF//+xAb/Vr8QQlVyReb+p4WbFsB4g=) 20: B34368F8BA9311EEB0A64B2AC4F9AE02.roa (hash: vzBcTdf96+UTQqQZlkeYwtQci7kemGbUS01k0jfvWtI=) 21: 160E2D60FF0D11EF8B23C73AC4F9AE02.roa (hash: DUYEU2WPRgGRjSa+GBl8Qamn18toiw7tspgbnam3lYo=) 22: DF6E9324D08D11EA9010E72EC4F9AE02.roa (hash: hFXanv2FdjB0oerr/Ni9RmWLKXd7bj75bYHKTp5JZ4U=) 23: FBCDF210490B11EC8E4D1136C4F9AE02.roa (hash: Qoz5g9368HMZWctAVVNXY9CZ9LyOlyI2/eGHTTT7kQw=) 24: FAF25932427711EEBEA02D22C4F9AE02.roa (hash: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk=) 25: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (hash: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk=) 26: 9B4B6C82904911EABE5F0C63C4F9AE02.roa (hash: EUm4AnmfuJxU75sTZEUXibkajEE5FVqoIFPKGh69ArU=) 27: F33CEFA6FF0C11EFAFAF7D3AC4F9AE02.roa (hash: hCAJoif7R0PdtafhhCqVg3AWh/fUgT/PZ22s2qQ33mA=) 28: D6672BEE0BD111ECB2E9C868C4F9AE02.roa (hash: jlbUlIXnT9veJGusBLS+x09R8IWreW5sDY2cRLkBosA=) 29: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (hash: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio=) 30: 7D745B8C800411EB9398C63EC4F9AE02.roa (hash: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:54:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14051 (0x36e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 28 14:54:32 2025 GMT Not After : May 5 14:54:32 2025 GMT Subject: CN=680f96a8-b068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bb:1e:53:5f:9c:5c:18:9e:f3:63:e4:cb:6d: 44:18:0c:75:57:3a:80:cd:15:b0:08:30:d1:85:8b: 40:65:56:cc:5a:cc:44:1e:b3:e6:cc:3f:fd:80:79: 52:73:0f:61:6f:fa:f0:8c:6a:ec:5d:00:90:68:01: ad:ed:a8:6b:3c:7d:4a:74:ea:87:6d:c8:8a:34:3c: 85:90:6d:cb:93:cc:3c:12:d7:85:09:6b:63:6b:58: 3d:81:0f:83:94:c2:06:db:37:51:92:dd:4d:6b:6b: 69:7b:7b:46:a5:6c:b6:f4:ef:c3:46:7a:d3:86:5c: 23:17:1c:b8:c0:83:fa:d1:ac:a6:ad:11:5d:f3:4d: fe:94:23:dc:7b:0b:0c:e1:c6:44:81:e1:34:de:4a: d0:01:c4:a0:96:30:e8:71:c1:e9:f4:eb:e3:ac:63: a7:7e:82:bb:47:95:e0:84:ba:de:b3:db:90:9f:28: 7b:26:eb:a9:e9:b6:4c:a6:7f:f7:38:0e:51:75:43: 4e:21:d3:55:04:7e:31:7b:b6:f6:2d:4c:4b:7a:e4: b3:1a:88:11:a7:05:3d:b0:90:d1:c9:c3:20:3c:5f: 5a:19:77:e7:bf:5d:47:0d:15:0e:c6:2b:4f:c3:51: ca:be:f7:17:f0:f0:5b:23:98:fe:55:3d:ba:f5:11: 6a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:61:62:C9:58:36:B8:38:F5:24:EE:AE:A3:51:54:2C:E6:C8:B7:F7 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:bc:a2:cb:b4:1e:74:1b:2f:a0:50:f2:e7:76:50:4c:cf:29: 73:e8:af:33:b3:19:d2:26:a4:3a:e5:77:76:cc:b0:55:78:71: 41:8c:2a:f8:57:06:ea:f7:d0:6b:b1:bf:4b:c9:06:1e:ef:51: 77:4f:38:8b:df:8b:f5:3b:c3:8b:28:4f:a3:4b:bf:05:1f:29: 3e:e5:14:a7:10:85:e1:19:68:30:06:a4:10:f2:b6:a1:b8:85: a0:6f:f5:af:87:08:10:eb:e7:df:5d:9e:61:b5:92:bc:31:db: a8:1a:11:8d:ee:99:b9:83:d0:4a:66:ad:41:21:3a:4a:65:79: 76:cf:ed:b6:cc:1e:a6:21:02:11:d6:c5:34:ab:e7:98:54:fa: 06:85:5e:fa:c7:db:ce:a7:dd:dc:9f:32:f4:7c:f1:b6:0b:f1: b0:35:78:85:8e:06:65:c9:49:f9:3b:6b:e6:99:1c:4e:ae:8c: 31:38:0a:16:98:7c:1d:2d:f4:bc:3c:db:8c:7d:de:f7:8b:4d: 1e:ab:c9:3e:43:82:f0:ba:48:c5:04:32:21:e9:e3:a4:b6:38: 93:bb:78:bc:a0:38:5e:2b:e2:3c:76:09:e3:ee:10:aa:96:aa: 44:a3:66:2d:41:20:31:8d:c3:10:f3:b3:42:b6:12:7b:f4:c8: 72:20:b1:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwNDI4MTQ1NDMyWhcNMjUwNTA1MTQ1NDMyWjAYMRYwFAYD VQQDEw02ODBmOTZhOC1iMDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbseU1+cXBie82Pky21EGAx1VzqAzRWwCDDRhYtAZVbMWsxEHrPmzD/9gHlS cw9hb/rwjGrsXQCQaAGt7ahrPH1KdOqHbciKNDyFkG3Lk8w8EteFCWtja1g9gQ+D lMIG2zdRkt1Na2tpe3tGpWy29O/DRnrThlwjFxy4wIP60aymrRFd803+lCPcewsM 4cZEgeE03krQAcSgljDoccHp9OvjrGOnfoK7R5XghLres9uQnyh7Juup6bZMpn/3 OA5RdUNOIdNVBH4xe7b2LUxLeuSzGogRpwU9sJDRycMgPF9aGXfnv11HDRUOxitP w1HKvvcX8PBbI5j+VT269RFq1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxhYslY Nrg49STurqNRVCzmyLf3MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDgzMi85REFGNzgwRTFEOTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0 VzdrYWphQW5DMXluWUs2MVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHvKLLtB50Gy+gUPLndlBMzylz6K8zsxnSJqQ65Xd2zLBVeHFBjCr4 Vwbq99Brsb9LyQYe71F3TziL34v1O8OLKE+jS78FHyk+5RSnEIXhGWgwBqQQ8rah uIWgb/WvhwgQ6+ffXZ5htZK8MduoGhGN7pm5g9BKZq1BITpKZXl2z+22zB6mIQIR 1sU0q+eYVPoGhV76x9vOp93cnzL0fPG2C/GwNXiFjgZlyUn5O2vmmRxOrowxOAoW mHwdLfS8PNuMfd73i00eq8k+Q4LwukjFBDIh6eOktjiTu3i8oDheK+I8dgnj7hCq lqpEo2YtQSAxjcMQ87NCthJ79MhyILFh -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:59 2025 by rpki-client on console.sobornost.net