$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft File: 5CHll4Srb9cADNFZcQHsNg3ZQGY.mft (raw, json) Hash identifier: b0xetx9DQ331rjfwmFJuvp4hXMpovtvhYUH6lI060N0= Subject key identifier: 7B:CC:B4:C9:3F:D0:13:05:D2:3A:9E:BA:5C:24:38:45:D7:5E:3B:4F Authority key identifier: E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 Certificate issuer: /CN=A91A1E1C/serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft Manifest number: 63 Signing time: Sun 27 Apr 2025 05:53:47 +0000 Manifest this update: Sun 27 Apr 2025 05:53:47 +0000 Manifest next update: Sun 04 May 2025 05:53:47 +0000 Files and hashes: 1: 5CHll4Srb9cADNFZcQHsNg3ZQGY.crl (hash: pp9f0qJD4VGwyeAJ3Q/E6sDgUaVKscdxJgrzq1BypnY=) 2: 5BC18D6C9A6C11EF8C656668C4F9AE02.roa (hash: 1ljn9MSckdlGvWQ7HkpY2v8ly/0oxPt9z/n6V7MEeDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1E1C, serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Validity Not Before: Apr 27 05:53:47 2025 GMT Not After : May 4 05:53:47 2025 GMT Subject: CN=680dc66b-f949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:28:00:cf:b6:a0:21:f4:a4:87:2e:c9:a8:5f: 59:56:f1:8a:94:d6:bd:a4:8b:ec:9e:aa:95:df:99: 68:c0:eb:33:d2:5f:74:6c:6e:e8:a9:a6:ed:53:90: 91:e7:87:c4:13:af:12:09:0c:fd:20:94:dd:db:cf: 6b:08:90:81:7d:98:fd:b5:72:77:61:ce:6a:e3:ed: 34:53:2f:e1:fb:a3:46:1f:d6:26:6f:c3:46:b0:0d: b7:c3:bb:a7:a1:d9:55:1d:96:fa:90:2e:dd:33:9d: 8a:56:8b:21:94:0d:25:c9:c0:cb:04:03:b7:88:29: ae:7b:a3:a6:8c:0a:8e:ca:8a:5a:69:55:51:4d:48: 73:c0:7d:2c:e8:57:13:7e:a3:35:bf:64:5d:1a:89: a8:2f:28:c2:64:2e:fd:90:25:ea:b7:66:06:76:37: 73:2e:40:fd:6b:5d:31:2e:d6:84:98:c1:6e:91:1c: 0b:61:de:af:cc:15:fc:74:0d:5a:87:17:1d:22:b4: 5a:9f:4d:37:66:5c:02:5b:77:59:36:4b:df:16:41: 39:33:f4:b5:31:cd:a5:b5:79:62:c7:39:57:c8:c5: cb:99:c7:7e:d5:7d:bb:2c:f6:e4:3d:54:96:f6:e6: ed:97:a4:a5:79:45:65:c4:b8:09:05:ee:33:a0:e1: 70:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CC:B4:C9:3F:D0:13:05:D2:3A:9E:BA:5C:24:38:45:D7:5E:3B:4F X509v3 Authority Key Identifier: keyid:E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:30:6e:6d:c1:f5:ff:d7:e3:6f:2b:ac:19:70:af:67:48:0b: ae:fb:00:7a:c5:83:45:2a:c7:71:be:eb:17:d1:bb:b9:50:73: 6f:ce:d9:cd:6b:aa:bd:6a:2e:92:8e:12:a0:2c:68:0f:be:9f: f6:53:01:88:a6:63:6f:60:95:1a:7b:4e:e9:d7:51:86:06:3e: fc:8a:84:18:83:4c:9e:fb:fe:90:90:09:12:87:00:74:da:7d: bd:37:fd:c4:b5:03:35:75:13:76:78:6e:a8:38:6f:7c:b2:16: a6:2f:5c:ff:3c:9b:6a:89:66:bb:75:c8:f5:c1:c4:40:08:b2: cb:23:e6:8c:3f:c5:b2:9f:b1:de:ba:6e:46:a8:32:95:22:16: ff:c6:f7:d3:18:48:a8:dc:94:4d:eb:6d:00:85:75:e5:db:4a: 21:3a:22:c1:2c:0a:87:13:21:6a:1f:91:37:f4:04:7c:d7:2d: eb:a2:45:8b:59:0d:84:52:6b:f5:1a:25:04:cd:48:42:46:18: 6a:79:13:48:a8:87:08:83:20:1d:f8:ff:0a:4e:5e:1d:41:bc: f1:3e:79:1e:39:09:ce:1b:92:62:dc:27:40:6e:85:71:c9:31: 9b:16:ba:45:55:6b:65:b9:54:8c:0c:ff:95:da:b1:06:70:27: 16:5d:b2:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUUxQzExMC8GA1UEBRMoRTQyMUU1OTc4NEFCNkZENzAwMENEMTU5NzEwMUVDMzYw REQ5NDA2NjAeFw0yNTA0MjcwNTUzNDdaFw0yNTA1MDQwNTUzNDdaMBgxFjAUBgNV BAMTDTY4MGRjNjZiLWY5NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHKADPtqAh9KSHLsmoX1lW8YqU1r2ki+yeqpXfmWjA6zPSX3Rsbuippu1TkJHn h8QTrxIJDP0glN3bz2sIkIF9mP21cndhzmrj7TRTL+H7o0Yf1iZvw0awDbfDu6eh 2VUdlvqQLt0znYpWiyGUDSXJwMsEA7eIKa57o6aMCo7KilppVVFNSHPAfSzoVxN+ ozW/ZF0aiagvKMJkLv2QJeq3ZgZ2N3MuQP1rXTEu1oSYwW6RHAth3q/MFfx0DVqH Fx0itFqfTTdmXAJbd1k2S98WQTkz9LUxzaW1eWLHOVfIxcuZx37Vfbss9uQ9VJb2 5u2XpKV5RWXEuAkF7jOg4XBhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe8y0yT/Q EwXSOp66XCQ4RddeO08wHwYDVR0jBBgwFoAU5CHll4Srb9cADNFZcQHsNg3ZQGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRTFDLzI1MjIyRDgwOTIw MDExRUY5RTBDM0Q2QkM0RjlBRTAyLzVDSGxsNFNyYjljQURORlpjUUhzTmczWlFH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNUNIbGw0U3JiOWNBRE5GWmNRSHNOZzNaUUdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx RTFDLzI1MjIyRDgwOTIwMDExRUY5RTBDM0Q2QkM0RjlBRTAyLzVDSGxsNFNyYjlj QURORlpjUUhzTmczWlFHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABswbm3B9f/X428rrBlwr2dIC677AHrFg0Uqx3G+6xfRu7lQc2/O2c1r qr1qLpKOEqAsaA++n/ZTAYimY29glRp7TunXUYYGPvyKhBiDTJ77/pCQCRKHAHTa fb03/cS1AzV1E3Z4bqg4b3yyFqYvXP88m2qJZrt1yPXBxEAIsssj5ow/xbKfsd66 bkaoMpUiFv/G99MYSKjclE3rbQCFdeXbSiE6IsEsCocTIWofkTf0BHzXLeuiRYtZ DYRSa/UaJQTNSEJGGGp5E0iohwiDIB34/wpOXh1BvPE+eR45Cc4bkmLcJ0BuhXHJ MZsWukVVa2W5VIwM/5XasQZwJxZdsl8= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net