$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft File: apjAwIy9NBmpCCuGDSm_qXL98qc.mft (raw, json) Hash identifier: uDXF/zhhcTht6V2xnZqqqOdTZ0qC2sVblYRrORo6b6k= Subject key identifier: 8C:30:DB:A9:FB:90:0E:EE:27:A6:50:EC:8C:69:29:1E:39:6E:98:C7 Authority key identifier: 6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 Certificate issuer: /CN=A91A2BD6/serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Certificate serial: 041E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft Manifest number: 041A Signing time: Sun 27 Apr 2025 00:04:07 +0000 Manifest this update: Sun 27 Apr 2025 00:04:07 +0000 Manifest next update: Sun 04 May 2025 00:04:07 +0000 Files and hashes: 1: apjAwIy9NBmpCCuGDSm_qXL98qc.crl (hash: 5Dn6cGSaF02MP/qutJ4fDUIiHGXoQWYunfrUuccucB8=) 2: 61B3CBDC631911ECAE6AA33DC4F9AE02.roa (hash: /+PqdcGfeQGq1JSsbPZ7utBGw8SAzSRzzxhLFAim1J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1054 (0x41e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2BD6, serialNumber=6A98C0C08CBD3419A9082B860D29BFA972FDF2A7 Validity Not Before: Apr 27 00:04:07 2025 GMT Not After : May 4 00:04:07 2025 GMT Subject: CN=680d7477-38cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4a:99:5f:fb:5f:47:8e:cf:0d:cc:12:9f:7f: 2e:6c:25:39:2e:ed:66:56:aa:d6:8f:de:1d:85:86: ab:ac:f4:e5:d5:ce:02:4b:86:3f:0a:3a:ba:de:b0: 07:20:59:5a:5a:ba:f1:b5:cd:32:61:4d:de:0f:97: 0a:8e:c7:b5:dd:98:91:de:90:63:69:5f:f7:ad:bb: 64:d0:d8:40:fd:42:b5:58:ac:21:73:d3:d5:80:53: 09:30:f9:cf:a1:b8:01:f0:82:2f:d4:ab:c7:4e:d6: 0c:b0:b7:9b:46:06:a1:49:35:e3:6a:a7:74:ae:26: fa:a4:2d:8d:42:e9:f6:3a:6d:80:10:66:0d:2c:f6: d7:3e:43:a9:9c:14:39:14:60:95:41:7d:56:dd:42: 84:41:49:91:fa:86:b0:f6:e8:a0:8e:fd:88:cb:f0: 41:7b:9b:e7:ce:e6:6c:ec:68:9a:ba:e5:11:f8:04: c9:60:bf:47:9e:c1:3b:4c:45:3d:b5:1f:41:f8:3e: 3c:22:5b:04:82:da:bc:4d:9a:c0:bf:4f:e4:d4:4a: c7:01:3f:28:e6:39:57:aa:cf:56:d2:7b:75:b1:92: dc:75:7f:78:74:34:de:a4:e9:fa:95:58:82:0b:8c: 1c:5d:cd:42:10:e9:df:dd:05:b3:55:ae:45:f6:31: 7a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:30:DB:A9:FB:90:0E:EE:27:A6:50:EC:8C:69:29:1E:39:6E:98:C7 X509v3 Authority Key Identifier: keyid:6A:98:C0:C0:8C:BD:34:19:A9:08:2B:86:0D:29:BF:A9:72:FD:F2:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apjAwIy9NBmpCCuGDSm_qXL98qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2BD6/9C585DB0631511ECBA536969C4F9AE02/apjAwIy9NBmpCCuGDSm_qXL98qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:c1:b9:34:cd:d4:85:a9:20:db:4d:81:92:5e:da:8f:85:a0: 50:5f:67:3b:03:2b:84:61:67:49:39:23:14:c6:83:37:21:30: 32:c8:a7:10:d0:85:ee:28:5e:3f:43:63:f5:84:9a:d0:01:61: 2f:b8:e5:a3:be:7d:ff:0f:3d:02:c0:0a:22:6a:74:df:30:20: 72:b8:40:8c:da:0b:88:d0:30:8d:10:3b:5b:73:f3:11:a8:e3: 54:de:06:04:19:35:6a:52:98:24:ba:9c:48:cb:dd:67:6b:b7: 6f:a4:b2:06:f5:c4:c8:d6:dd:ec:0d:f4:f2:8e:de:9d:d2:b2: 40:c9:26:36:6c:18:f5:85:ec:21:bd:13:f7:3b:8a:d4:72:50: 4c:7d:36:3a:0e:4a:e8:b4:f0:0e:7d:a2:78:18:b1:c1:fe:0a: c0:bd:ca:7d:9b:31:5a:e7:f4:f6:10:c4:4d:55:95:6f:40:b3: 22:93:1d:9b:ba:29:4f:18:d3:ec:24:a5:d7:6f:83:56:1a:de: df:cd:0a:e3:f7:da:c9:7d:52:1c:99:5e:9f:8d:b7:95:53:e3: 3d:48:cd:14:05:e4:83:07:20:d9:e7:41:7d:71:6b:dd:22:47: 13:ff:a3:f4:77:40:76:10:96:b1:6e:a8:af:5d:a7:66:0d:23: fa:95:4e:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJCRDYxMTAvBgNVBAUTKDZBOThDMEMwOENCRDM0MTlBOTA4MkI4NjBEMjlCRkE5 NzJGREYyQTcwHhcNMjUwNDI3MDAwNDA3WhcNMjUwNTA0MDAwNDA3WjAYMRYwFAYD VQQDEw02ODBkNzQ3Ny0zOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUqZX/tfR47PDcwSn38ubCU5Lu1mVqrWj94dhYarrPTl1c4CS4Y/Cjq63rAH IFlaWrrxtc0yYU3eD5cKjse13ZiR3pBjaV/3rbtk0NhA/UK1WKwhc9PVgFMJMPnP obgB8IIv1KvHTtYMsLebRgahSTXjaqd0rib6pC2NQun2Om2AEGYNLPbXPkOpnBQ5 FGCVQX1W3UKEQUmR+oaw9uigjv2Iy/BBe5vnzuZs7GiauuUR+ATJYL9HnsE7TEU9 tR9B+D48IlsEgtq8TZrAv0/k1ErHAT8o5jlXqs9W0nt1sZLcdX94dDTepOn6lViC C4wcXc1CEOnf3QWzVa5F9jF6xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIww26n7 kA7uJ6ZQ7IxpKR45bpjHMB8GA1UdIwQYMBaAFGqYwMCMvTQZqQgrhg0pv6ly/fKn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkJENi85QzU4NURCMDYz MTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5CbXBDQ3VHRFNtX3FYTDk4 cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwakF3SXk5TkJtcENDdUdEU21fcVhMOThxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkJENi85QzU4NURCMDYzMTUxMUVDQkE1MzY5NjlDNEY5QUUwMi9hcGpBd0l5OU5C bXBDQ3VHRFNtX3FYTDk4cWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAowbk0zdSFqSDbTYGSXtqPhaBQX2c7AyuEYWdJOSMUxoM3ITAyyKcQ 0IXuKF4/Q2P1hJrQAWEvuOWjvn3/Dz0CwAoianTfMCByuECM2guI0DCNEDtbc/MR qONU3gYEGTVqUpgkupxIy91na7dvpLIG9cTI1t3sDfTyjt6d0rJAySY2bBj1hewh vRP3O4rUclBMfTY6DkrotPAOfaJ4GLHB/grAvcp9mzFa5/T2EMRNVZVvQLMikx2b uilPGNPsJKXXb4NWGt7fzQrj99rJfVIcmV6fjbeVU+M9SM0UBeSDByDZ50F9cWvd IkcT/6P0d0B2EJaxbqivXadmDSP6lU6Y -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:02 2025 by rpki-client on console.sobornost.net