$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft File: AkIpyBrDU1oh1g4twyqbiL1q2B8.mft (raw, json) Hash identifier: kE/nqLszEEyPQJJrxs1K2QU4w6XNa4mkbArIBp9hiCY= Subject key identifier: 54:07:52:16:73:E3:AE:4A:6A:B5:22:A5:97:B3:53:A5:4F:05:4B:7D Authority key identifier: 02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F Certificate issuer: /CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft Manifest number: 01CB Signing time: Sun 27 Apr 2025 02:04:51 +0000 Manifest this update: Sun 27 Apr 2025 02:04:50 +0000 Manifest next update: Sun 04 May 2025 02:04:50 +0000 Files and hashes: 1: AkIpyBrDU1oh1g4twyqbiL1q2B8.crl (hash: ClMiLepspuJ5ZFEgExqAF6YwNMLb3qalmstWz7L484A=) 2: 0FBB769A5DDB11EEAEEA437DC4F9AE02.roa (hash: uKjzis/CrgsSg2LUM/lsbZTCdaGZHhh4O1b0+pc2P3M=) 3: B9D00D3C195A11EE83248835C4F9AE02.roa (hash: wCL8taH4LIUOWXKWcvReDaNZ3+NnYlOsUT+x4rsuWPo=) 4: DE56B490143611EEAB1A5D73C4F9AE02.roa (hash: 3IVp9MXxKURZzAWVcJ2+aQ10UWSD+/QnsDWHqJYEcQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0848, serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Validity Not Before: Apr 27 02:04:50 2025 GMT Not After : May 4 02:04:50 2025 GMT Subject: CN=680d90c2-45d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2c:45:94:de:28:02:68:1d:71:ef:bb:1e:08: b4:c9:b6:17:cb:fa:18:37:c1:06:73:9a:45:81:9e: 76:6f:21:c2:47:c5:e1:68:84:74:06:e1:d8:e6:98: ae:b2:bb:cb:91:88:72:3b:9b:1a:9c:39:57:14:50: 9d:43:00:52:f8:a3:bc:11:52:f0:c6:6b:95:95:cb: 53:df:96:dc:b3:87:58:05:38:1c:08:b5:f1:c8:07: 71:71:a3:be:10:de:e7:23:1f:6e:8e:f7:ac:36:52: 97:fb:04:a1:cd:e3:c6:b1:7d:a2:0a:61:68:9b:e4: 5d:65:e7:1b:25:f7:d5:fc:d7:e4:db:ea:f7:b5:d6: 3e:db:52:c1:ae:2c:dd:b6:c7:a8:17:2e:98:30:8a: b0:6f:0d:6d:dd:d1:b9:90:fe:e6:5b:90:64:9a:59: 67:64:c8:21:43:89:cf:e8:ae:70:9d:1c:3c:24:44: 2c:04:ea:8d:61:7f:9c:b1:83:3c:d7:b4:ee:71:c0: 75:8d:9e:35:3c:a0:5d:c9:e2:c6:c1:54:e8:ba:9f: 3c:42:d1:67:e2:45:6d:3e:81:cc:58:12:9b:4f:60: 18:49:f8:f5:31:4f:4f:1c:d4:19:c7:3e:c1:7c:3e: 7f:0a:3f:2f:5d:94:b7:e8:de:73:20:41:cd:ca:a0: 75:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:07:52:16:73:E3:AE:4A:6A:B5:22:A5:97:B3:53:A5:4F:05:4B:7D X509v3 Authority Key Identifier: keyid:02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:df:8a:70:b6:08:7d:ba:6d:0f:76:4d:a5:05:0d:c4:cc:dd: cc:f8:b7:c2:3e:ee:aa:9c:65:a7:23:c5:90:58:eb:7e:18:16: 05:44:84:63:e2:8e:97:4b:00:6a:ac:cd:a8:f1:4a:0b:4b:9b: 87:4b:bb:bc:a2:6a:33:87:61:7c:ea:b7:64:c1:cb:0e:f0:41: e9:3e:41:72:71:ad:0c:7f:09:1d:f6:f9:bb:19:7f:50:7d:5a: 56:3e:f6:4e:07:00:d1:59:de:ca:4d:d9:68:a9:89:4c:58:80: cb:13:2a:a9:db:a6:49:0c:4e:b0:10:9d:35:4c:eb:c4:0a:c3: c6:13:d3:41:aa:b4:04:e1:bf:4e:90:b9:bc:1d:e7:2c:f2:7f: 21:8b:d5:89:c2:2b:de:d1:93:af:b8:23:d2:70:40:c6:3c:cb: c5:d2:ce:bc:d6:e4:d6:35:78:7a:b2:05:93:03:15:ae:39:fa: a4:4d:3e:0e:1a:36:64:e7:d7:ef:f3:9a:89:50:19:85:41:37: 3c:c9:cd:d2:94:94:e3:68:83:38:10:7a:72:0e:7a:8a:c9:91: 7f:1a:73:38:4b:47:04:ed:b3:8c:81:72:d1:db:55:e0:41:cc: 11:c8:41:a3:bd:c4:de:41:cb:3a:26:2b:7d:fe:31:be:d4:ef: 2b:c6:4b:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4NDgxMTAvBgNVBAUTKDAyNDIyOUM4MUFDMzUzNUEyMUQ2MEUyREMzMkE5Qjg4 QkQ2QUQ4MUYwHhcNMjUwNDI3MDIwNDUwWhcNMjUwNTA0MDIwNDUwWjAYMRYwFAYD VQQDEw02ODBkOTBjMi00NWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CxFlN4oAmgdce+7Hgi0ybYXy/oYN8EGc5pFgZ52byHCR8XhaIR0BuHY5piu srvLkYhyO5sanDlXFFCdQwBS+KO8EVLwxmuVlctT35bcs4dYBTgcCLXxyAdxcaO+ EN7nIx9ujvesNlKX+wShzePGsX2iCmFom+RdZecbJffV/Nfk2+r3tdY+21LBrizd tseoFy6YMIqwbw1t3dG5kP7mW5BkmllnZMghQ4nP6K5wnRw8JEQsBOqNYX+csYM8 17TuccB1jZ41PKBdyeLGwVToup88QtFn4kVtPoHMWBKbT2AYSfj1MU9PHNQZxz7B fD5/Cj8vXZS36N5zIEHNyqB1ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQHUhZz 465KarUipZezU6VPBUt9MB8GA1UdIwQYMBaAFAJCKcgaw1NaIdYOLcMqm4i9atgf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0OC82NEQ4QjFERTc3 RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUxb2gxZzR0d3lxYmlMMXEy QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FrSXB5QnJEVTFvaDFnNHR3eXFiaUwxcTJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDg0OC82NEQ4QjFERTc3RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUx b2gxZzR0d3lxYmlMMXEyQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ34pwtgh9um0Pdk2lBQ3EzN3M+LfCPu6qnGWnI8WQWOt+GBYFRIRj 4o6XSwBqrM2o8UoLS5uHS7u8omozh2F86rdkwcsO8EHpPkFyca0Mfwkd9vm7GX9Q fVpWPvZOBwDRWd7KTdloqYlMWIDLEyqp26ZJDE6wEJ01TOvECsPGE9NBqrQE4b9O kLm8Hecs8n8hi9WJwive0ZOvuCPScEDGPMvF0s681uTWNXh6sgWTAxWuOfqkTT4O GjZk59fv85qJUBmFQTc8yc3SlJTjaIM4EHpyDnqKyZF/GnM4S0cE7bOMgXLR21Xg QcwRyEGjvcTeQcs6Jit9/jG+1O8rxkso -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:02 2025 by rpki-client on console.sobornost.net