$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.mft File: Hwkr8ONn_aUUbSh9gQKybsj7grU.mft (raw, json) Hash identifier: FE+GxigjwYBD4tOqETcvm+qltjXOLBBQLWuxPqr63RQ= Subject key identifier: D9:B2:53:BA:46:6D:77:E8:DE:F7:82:5E:6A:65:3F:A3:8E:1C:CC:09 Authority key identifier: 1F:09:2B:F0:E3:67:FD:A5:14:6D:28:7D:81:02:B2:6E:C8:FB:82:B5 Certificate issuer: /CN=A91A1AC4/serialNumber=1F092BF0E367FDA5146D287D8102B26EC8FB82B5 Certificate serial: 02C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hwkr8ONn_aUUbSh9gQKybsj7grU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.mft Manifest number: 02AF Signing time: Wed 23 Apr 2025 01:22:42 +0000 Manifest this update: Wed 23 Apr 2025 01:22:42 +0000 Manifest next update: Wed 30 Apr 2025 01:22:42 +0000 Files and hashes: 1: Hwkr8ONn_aUUbSh9gQKybsj7grU.crl (hash: Vaa0T6gLwCJc6MLs9xs6WCUjT03mNfkT3e0gaflwfTU=) 2: 26B54DD8326911ED9A685C1AC4F9AE02.roa (hash: TmDws7WheFOESe1yv//UWdgV37JOyUYHp5qinnrseq8=) 3: 2E56630C741611EE98997122C4F9AE02.roa (hash: f1I70aR9/6jQvTXHflDUxz1+wxpkM6Pj3ynFhb0cXfg=) 4: 6B18B650ADB311EF8CC1FB7BC4F9AE02.roa (hash: k9zAAHn9EIQpLq7EiBS7GWyLVtI0EwocRCBQ5ijC7AM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.crl rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hwkr8ONn_aUUbSh9gQKybsj7grU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 01:22:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1AC4, serialNumber=1F092BF0E367FDA5146D287D8102B26EC8FB82B5 Validity Not Before: Apr 23 01:22:42 2025 GMT Not After : Apr 30 01:22:42 2025 GMT Subject: CN=680840e2-545b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d7:f8:94:00:e6:30:cc:e7:f9:6c:a4:b5:78: e3:01:bb:73:63:2d:e9:9c:05:74:11:6b:b2:29:8c: dd:40:c9:68:e6:98:60:a4:da:17:d0:c9:d0:f3:58: 9b:a4:e6:3a:7c:78:6a:5b:37:c7:ef:65:1e:c6:a8: 9c:dd:a2:97:a3:77:fa:fa:ea:c9:51:02:e4:e3:6d: f1:29:42:75:d8:26:c4:67:a2:a5:63:47:03:e7:61: c4:1a:68:bd:c0:6c:ba:e2:70:87:59:66:d9:cf:39: 9b:80:8f:2f:0c:57:00:8d:ed:16:91:3b:49:28:4e: f7:db:9d:b5:a6:1f:93:49:ec:5d:05:47:3b:3c:a3: 14:bb:b0:1c:76:67:fc:4e:12:43:2a:0d:8d:59:c5: c8:64:d8:8d:36:c7:7d:e0:97:d3:5f:be:61:94:ab: fb:30:1e:30:d8:96:7f:ea:8d:62:b9:5d:d3:8d:01: 0d:9c:d2:80:05:bf:9f:ef:40:7e:23:e7:7c:e0:c6: 18:a0:b7:80:0d:74:79:b3:cc:1b:22:34:26:8f:ce: 0b:8e:9e:5f:69:e2:2a:de:54:0e:7a:c8:62:99:b3: 53:83:72:10:9f:be:9d:30:37:6f:28:91:ab:d9:ff: 57:71:58:7d:5b:17:2d:c7:3c:e6:77:e6:71:a5:6c: 2e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B2:53:BA:46:6D:77:E8:DE:F7:82:5E:6A:65:3F:A3:8E:1C:CC:09 X509v3 Authority Key Identifier: keyid:1F:09:2B:F0:E3:67:FD:A5:14:6D:28:7D:81:02:B2:6E:C8:FB:82:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hwkr8ONn_aUUbSh9gQKybsj7grU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:86:42:14:88:b6:8e:ed:19:bb:d9:e7:c3:49:80:4b:ab:90: bd:c4:e5:bb:55:cb:99:bb:80:71:6a:66:cf:90:12:b5:f1:65: 84:b6:8e:02:13:ee:b9:1b:34:a9:2c:f4:fe:c4:92:76:7a:be: f7:19:2e:cb:70:e4:bd:1b:1d:8a:33:43:0f:72:43:fe:39:c5: a0:11:f9:71:74:73:d1:ef:a4:84:3b:6c:d1:97:1e:1b:e7:00: b6:83:b3:d7:01:d0:d3:15:f6:01:e0:a9:73:64:ee:4b:08:ba: 6e:63:18:45:f9:b7:a7:19:7f:aa:52:e4:38:d9:18:3b:77:fb: 95:e4:e5:19:a3:b7:e6:cb:ab:9a:9f:6c:3f:9e:90:d0:60:f7: bc:1c:57:e1:ca:05:ae:06:b4:6a:bc:18:5d:ea:68:2c:0d:0b: 72:51:08:07:2a:40:98:01:76:39:29:7a:16:4a:15:91:a6:86: 9b:d2:92:9c:97:88:8c:b9:70:ac:43:95:c5:e9:cd:cc:a0:7b: e7:a4:2e:0a:08:7d:4f:4f:1c:9a:bb:f1:18:ee:81:6a:fe:b8: 56:71:32:87:f6:83:6a:85:ec:dc:ba:df:9e:8c:83:8f:04:60: 90:f5:df:73:96:e7:91:42:a2:42:03:e9:99:d2:0d:fa:19:1b: 2d:62:88:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFBQzQxMTAvBgNVBAUTKDFGMDkyQkYwRTM2N0ZEQTUxNDZEMjg3RDgxMDJCMjZF QzhGQjgyQjUwHhcNMjUwNDIzMDEyMjQyWhcNMjUwNDMwMDEyMjQyWjAYMRYwFAYD VQQDEw02ODA4NDBlMi01NDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19f4lADmMMzn+WyktXjjAbtzYy3pnAV0EWuyKYzdQMlo5phgpNoX0MnQ81ib pOY6fHhqWzfH72Uexqic3aKXo3f6+urJUQLk423xKUJ12CbEZ6KlY0cD52HEGmi9 wGy64nCHWWbZzzmbgI8vDFcAje0WkTtJKE732521ph+TSexdBUc7PKMUu7Acdmf8 ThJDKg2NWcXIZNiNNsd94JfTX75hlKv7MB4w2JZ/6o1iuV3TjQENnNKABb+f70B+ I+d84MYYoLeADXR5s8wbIjQmj84Ljp5faeIq3lQOeshimbNTg3IQn76dMDdvKJGr 2f9XcVh9Wxctxzzmd+ZxpWwudwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmyU7pG bXfo3veCXmplP6OOHMwJMB8GA1UdIwQYMBaAFB8JK/DjZ/2lFG0ofYECsm7I+4K1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUFDNC8xQ0I1M0YzMEY2 QjExMUVDOUNBQUIzNERDNEY5QUUwMi9Id2tyOE9Obl9hVVViU2g5Z1FLeWJzajdn clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h3a3I4T05uX2FVVWJTaDlnUUt5YnNqN2dyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUFDNC8xQ0I1M0YzMEY2QjExMUVDOUNBQUIzNERDNEY5QUUwMi9Id2tyOE9Obl9h VVViU2g5Z1FLeWJzajdnclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhhkIUiLaO7Rm72efDSYBLq5C9xOW7VcuZu4BxambPkBK18WWEto4C E+65GzSpLPT+xJJ2er73GS7LcOS9Gx2KM0MPckP+OcWgEflxdHPR76SEO2zRlx4b 5wC2g7PXAdDTFfYB4KlzZO5LCLpuYxhF+benGX+qUuQ42Rg7d/uV5OUZo7fmy6ua n2w/npDQYPe8HFfhygWuBrRqvBhd6mgsDQtyUQgHKkCYAXY5KXoWShWRpoab0pKc l4iMuXCsQ5XF6c3MoHvnpC4KCH1PTxyau/EY7oFq/rhWcTKH9oNqhezcut+ejIOP BGCQ9d9zlueRQqJCA+mZ0g36GRstYoi0 -----END CERTIFICATE-----Generated at Wed Apr 23 06:35:53 2025 by rpki-client on console.sobornost.net