$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft File: UCfzGS691UlQo5w9EwlKcfHTMmY.mft (raw, json) Hash identifier: M/ERTA2PAnTiTSncBWKMl1eLFF2F5VPs97Vjdz8YjrM= Subject key identifier: E5:D7:DE:6D:E3:F8:01:9B:2C:9B:4F:33:C0:B9:B9:1A:5F:77:C9:A3 Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0AF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft Manifest number: 0AD9 Signing time: Mon 28 Apr 2025 19:49:58 +0000 Manifest this update: Mon 28 Apr 2025 19:49:57 +0000 Manifest next update: Mon 05 May 2025 19:49:57 +0000 Files and hashes: 1: UCfzGS691UlQo5w9EwlKcfHTMmY.crl (hash: 0P+LNRSdiXTA7n2Z0LXWEnSikymM6KfQCj8m5CCr8Vg=) 2: F3F7D2B0CE9711ECA2477C19C4F9AE02.roa (hash: YSanlXPMFGlUc59onSU43QiRooXV0uHeNRhQl6sQvzs=) 3: CDD62642854E11EBA2CFDC87C4F9AE02.roa (hash: EMIkCzah8q7OcQkgGcb8CJSovHyJ1MV1+D6g6V84DdU=) 4: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (hash: neskcJ2ryIraX5yGhHnDKoHimVr5nfZfeUgF/8p7xpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2808 (0xaf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078, serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Validity Not Before: Apr 28 19:49:57 2025 GMT Not After : May 5 19:49:57 2025 GMT Subject: CN=680fdbe5-b166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:30:67:23:8b:4c:c3:fa:b4:12:aa:ca:a8:7c: 6a:8b:8d:cf:46:08:ac:4c:63:20:24:1c:3e:2f:da: d1:55:cc:50:33:be:26:24:e6:25:2f:f6:78:e9:46: 10:10:55:0b:29:1b:93:f7:74:72:c4:d9:da:4d:74: 94:d8:2f:f2:bb:6c:ef:5c:d8:b1:eb:84:f1:8c:8b: 57:95:2e:a6:34:d8:8b:c4:bc:88:a6:2a:5c:0c:6c: 22:7e:95:57:a6:73:da:13:fb:cc:0b:45:23:30:e8: a4:57:1f:1b:2d:89:f7:56:f3:29:55:15:ae:bf:73: e1:e6:1b:f3:5b:c3:26:5c:f2:24:9e:8f:88:26:8e: 11:3e:51:98:78:72:c7:77:a9:ea:db:d2:44:0e:c9: b9:9a:a7:f1:e4:81:98:6e:75:56:76:1f:fe:ab:9a: 71:19:56:ca:9d:ca:72:4f:35:91:6a:a1:3b:b6:09: 69:a8:bc:3d:4a:bf:64:22:f3:4f:a2:83:12:d1:93: e7:47:a3:41:60:59:c4:a6:a8:02:02:4b:4d:8c:6b: 9a:7f:b0:b9:d9:b2:60:ac:a2:5c:0d:16:d2:b1:2b: 48:c4:bf:00:8e:f0:ca:6c:1e:65:8f:9d:69:02:1c: c5:63:33:bb:4a:62:c9:c2:02:dc:8b:b5:ae:1f:0a: d1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:D7:DE:6D:E3:F8:01:9B:2C:9B:4F:33:C0:B9:B9:1A:5F:77:C9:A3 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:77:a5:0b:79:12:30:37:1e:97:0f:33:63:c7:6d:b3:23:51: 17:58:89:0b:65:12:a6:32:a3:29:7a:cc:80:12:37:1a:18:bc: cc:b7:96:d5:7e:6f:9f:c0:d3:e6:f4:38:e0:b8:8f:b5:44:88: 79:1a:05:ff:80:e3:d2:e4:23:3f:52:27:52:8b:2e:3e:db:1c: fb:32:50:37:ce:04:c4:69:ed:dd:5f:98:8f:39:59:af:29:f2: 26:51:35:69:f1:6c:16:b2:c8:22:d7:ed:ae:16:8d:a1:f4:49: aa:20:31:e9:72:46:6a:d7:a3:2a:72:3a:b3:f7:f9:9e:60:06: 43:31:86:c0:81:57:67:8b:a1:a8:99:d9:dd:5e:b8:04:b5:31: 70:87:05:45:ab:33:cb:22:73:28:e2:f6:f3:d8:f5:05:f0:41: df:3c:d0:6e:9a:4e:97:8e:21:8d:56:f3:6a:53:32:26:19:fd: 2a:80:f9:9b:52:f3:e4:8d:b3:d8:4d:52:c2:81:80:0e:44:e8: f8:78:b3:ef:0e:28:45:5c:41:78:35:6a:dc:3d:78:88:e8:7a: 36:8d:c4:19:4b:31:5b:92:13:92:3a:99:64:df:e2:f6:bf:ee: 7e:04:38:1a:8a:d4:1d:ba:56:3c:8a:8c:08:2b:cc:a9:51:3a: 36:31:3e:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjUwNDI4MTk0OTU3WhcNMjUwNTA1MTk0OTU3WjAYMRYwFAYD VQQDEw02ODBmZGJlNS1iMTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDBnI4tMw/q0EqrKqHxqi43PRgisTGMgJBw+L9rRVcxQM74mJOYlL/Z46UYQ EFULKRuT93RyxNnaTXSU2C/yu2zvXNix64TxjItXlS6mNNiLxLyIpipcDGwifpVX pnPaE/vMC0UjMOikVx8bLYn3VvMpVRWuv3Ph5hvzW8MmXPIkno+IJo4RPlGYeHLH d6nq29JEDsm5mqfx5IGYbnVWdh/+q5pxGVbKncpyTzWRaqE7tglpqLw9Sr9kIvNP ooMS0ZPnR6NBYFnEpqgCAktNjGuaf7C52bJgrKJcDRbSsStIxL8AjvDKbB5lj51p AhzFYzO7SmLJwgLci7WuHwrR4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXX3m3j +AGbLJtPM8C5uRpfd8mjMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA3OC84NjMwQjFDODRDOEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFV bFFvNXc5RXdsS2NmSFRNbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDd6ULeRIwNx6XDzNjx22zI1EXWIkLZRKmMqMpesyAEjcaGLzMt5bV fm+fwNPm9DjguI+1RIh5GgX/gOPS5CM/UidSiy4+2xz7MlA3zgTEae3dX5iPOVmv KfImUTVp8WwWssgi1+2uFo2h9EmqIDHpckZq16Mqcjqz9/meYAZDMYbAgVdni6Go mdndXrgEtTFwhwVFqzPLInMo4vbz2PUF8EHfPNBumk6XjiGNVvNqUzImGf0qgPmb UvPkjbPYTVLCgYAOROj4eLPvDihFXEF4NWrcPXiI6Ho2jcQZSzFbkhOSOplk3+L2 v+5+BDgaitQdulY8iowIK8ypUTo2MT5v -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:42 2025 by rpki-client on console.sobornost.net