$ rpki-client -vvf rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft File: oXkseNMOEHMKPERWHH5YIufxwvg.mft (raw, json) Hash identifier: 5p0yp/T/4ma+HtoeX9MNob2yZuy6vLdSt67PbQDL6pY= Subject key identifier: DE:EB:F8:2F:E6:CC:16:AC:9A:98:9E:A9:87:EC:F0:83:71:E3:BA:AC Authority key identifier: A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 Certificate issuer: /CN=A91A093A/serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft Manifest number: 083D Signing time: Sat 26 Apr 2025 20:31:11 +0000 Manifest this update: Sat 26 Apr 2025 20:31:10 +0000 Manifest next update: Sat 03 May 2025 20:31:10 +0000 Files and hashes: 1: oXkseNMOEHMKPERWHH5YIufxwvg.crl (hash: qIaP5WQwTzRcLmeyFQynojV6jTftjJzmPk9y3K6JssU=) 2: 153A3AE86A9111EF905C3C37C4F9AE02.roa (hash: LYF+KadzZ69diyD5rWiKHJlYkwO/eA/Z250K04w+xPI=) 3: AA973CB86A8B11EFB0774B61C4F9AE02.roa (hash: +w6DPiK2iGC1sFd6+H0KMfGyjFvRHYPwKc/prnzBHkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A093A, serialNumber=A1792C78D30E10730A3C44561C7E5822E7F1C2F8 Validity Not Before: Apr 26 20:31:10 2025 GMT Not After : May 3 20:31:10 2025 GMT Subject: CN=680d428e-2d23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:1d:34:1a:1c:e1:4c:b0:b8:02:3b:d9:b0: 29:56:69:6e:2f:d2:ad:36:58:95:55:27:97:0b:4f: 4a:7f:c4:6e:37:a0:ef:a6:a0:79:6c:23:b6:1c:9a: a0:3b:b0:37:79:ef:04:89:01:4d:d9:b9:c1:71:48: 2c:bb:f0:7d:98:0a:36:cc:3f:a6:1d:6d:e6:f3:18: 5a:2a:39:d8:9b:86:8e:11:4a:76:ef:ad:29:bc:9e: 0e:6d:e8:14:a9:7b:e7:d2:57:bf:2c:c5:77:be:b4: 0f:69:e2:77:33:4e:88:86:93:35:8d:00:a7:ec:f6: 45:1a:52:f8:fd:49:6b:43:c3:e2:8d:a8:13:94:85: 4a:af:e1:96:6a:91:a1:96:d9:b1:ed:45:1c:91:df: b0:47:8a:07:b8:cc:79:92:14:82:55:c8:bb:de:e6: e1:cb:7d:29:8e:80:40:12:fe:a3:7e:7f:d6:a1:ef: e5:8b:8a:69:03:18:e5:60:e0:fe:c7:48:07:d9:52: 79:12:c7:f3:03:bc:9a:a4:95:ab:2c:47:10:28:6f: b3:75:f0:59:ec:c1:10:8a:0e:05:13:f2:2a:0f:bc: 96:f5:5d:38:ea:49:48:0e:be:5e:b7:bf:db:6c:b8: a5:8d:ff:70:aa:42:c4:ab:db:4d:2d:c5:a6:5d:b2: fa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EB:F8:2F:E6:CC:16:AC:9A:98:9E:A9:87:EC:F0:83:71:E3:BA:AC X509v3 Authority Key Identifier: keyid:A1:79:2C:78:D3:0E:10:73:0A:3C:44:56:1C:7E:58:22:E7:F1:C2:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oXkseNMOEHMKPERWHH5YIufxwvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A093A/EBA3531ECBD811EA867AFB4FC4F9AE02/oXkseNMOEHMKPERWHH5YIufxwvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:60:0d:1c:dd:38:96:0f:aa:1a:5b:44:24:4c:a6:a2:94:f5: e2:3d:6d:01:66:11:fb:b1:30:ab:95:bd:23:76:9b:42:10:5c: 2f:41:fa:bc:2e:78:5b:3d:89:c7:c1:20:fc:81:34:be:b5:72: 9b:a2:68:a7:f9:5e:a6:b1:84:b2:2b:64:72:76:5c:fa:04:a1: 21:e7:e6:dd:01:16:e1:e8:5a:d0:17:ae:f5:b3:83:d5:8a:41: 88:08:ad:a3:92:5a:75:dd:ff:89:72:99:9d:84:ae:ff:2f:10: f0:95:4c:43:ce:09:0a:be:71:25:a4:d0:d5:72:f7:c0:6d:0c: e9:38:21:0b:88:03:25:a5:1b:64:40:05:3b:a9:4e:10:90:7e: eb:44:4d:a7:13:8c:18:55:0c:b1:75:4b:49:35:7e:0e:4d:2c: 1a:47:f9:8b:ec:ea:b0:81:7f:19:e3:17:15:c0:fb:d8:6c:e2: d6:6a:8b:5f:fb:94:01:35:90:9c:61:f4:f8:1f:e4:1d:7d:fe: 43:fb:81:ad:22:76:a9:7c:87:8e:89:6b:6d:3b:15:6b:b7:e8: 60:71:7a:7d:54:25:13:1c:51:35:b1:cd:ca:95:36:ea:52:c8: a0:97:6d:72:05:59:bf:35:08:54:29:a0:25:ad:91:61:5f:18: 24:e2:87:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA5M0ExMTAvBgNVBAUTKEExNzkyQzc4RDMwRTEwNzMwQTNDNDQ1NjFDN0U1ODIy RTdGMUMyRjgwHhcNMjUwNDI2MjAzMTEwWhcNMjUwNTAzMjAzMTEwWjAYMRYwFAYD VQQDEw02ODBkNDI4ZS0yZDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwodNBoc4UywuAI72bApVmluL9KtNliVVSeXC09Kf8RuN6DvpqB5bCO2HJqg O7A3ee8EiQFN2bnBcUgsu/B9mAo2zD+mHW3m8xhaKjnYm4aOEUp2760pvJ4ObegU qXvn0le/LMV3vrQPaeJ3M06IhpM1jQCn7PZFGlL4/UlrQ8PijagTlIVKr+GWapGh ltmx7UUckd+wR4oHuMx5khSCVci73ubhy30pjoBAEv6jfn/Woe/li4ppAxjlYOD+ x0gH2VJ5EsfzA7yapJWrLEcQKG+zdfBZ7MEQig4FE/IqD7yW9V046klIDr5et7/b bLiljf9wqkLEq9tNLcWmXbL6EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7r+C/m zBasmpieqYfs8INx47qsMB8GA1UdIwQYMBaAFKF5LHjTDhBzCjxEVhx+WCLn8cL4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDkzQS9FQkEzNTMxRUNC RDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VITUtQRVJXSEg1WUl1Znh3 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Ya3NlTk1PRUhNS1BFUldISDVZSXVmeHd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDkzQS9FQkEzNTMxRUNCRDgxMUVBODY3QUZCNEZDNEY5QUUwMi9vWGtzZU5NT0VI TUtQRVJXSEg1WUl1Znh3dmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiYA0c3TiWD6oaW0QkTKailPXiPW0BZhH7sTCrlb0jdptCEFwvQfq8 LnhbPYnHwSD8gTS+tXKbomin+V6msYSyK2Rydlz6BKEh5+bdARbh6FrQF671s4PV ikGICK2jklp13f+JcpmdhK7/LxDwlUxDzgkKvnElpNDVcvfAbQzpOCELiAMlpRtk QAU7qU4QkH7rRE2nE4wYVQyxdUtJNX4OTSwaR/mL7OqwgX8Z4xcVwPvYbOLWaotf +5QBNZCcYfT4H+Qdff5D+4GtInapfIeOiWttOxVrt+hgcXp9VCUTHFE1sc3KlTbq Usigl21yBVm/NQhUKaAlrZFhXxgk4odz -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:07 2025 by rpki-client on console.sobornost.net