$ rpki-client -vvf rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft File: jsMzdX42OhcRsAJzJQRG_htJONs.mft (raw, json) Hash identifier: x7efAyT2HJ+1/oR33UN/Pxj85nmLMICGRSBZkTZxW50= Subject key identifier: E5:2B:CC:12:3E:B0:A4:32:08:90:37:CB:57:34:21:52:E2:75:5A:6C Authority key identifier: 8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB Certificate issuer: /CN=A91A43EE/serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Certificate serial: 0250 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft Manifest number: 023B Signing time: Sun 27 Apr 2025 01:32:20 +0000 Manifest this update: Sun 27 Apr 2025 01:32:20 +0000 Manifest next update: Sun 04 May 2025 01:32:20 +0000 Files and hashes: 1: jsMzdX42OhcRsAJzJQRG_htJONs.crl (hash: OCnII0EUWghF5Nc7g2S+AoFR9QH0mQlmJeWIckrzhMI=) 2: E60CA9B06B3311EFB79B5F87C4F9AE02.roa (hash: xA2I3SK1LrwCNTYfAy8aXGaXpbqj6PnMmp3xWe4cBbs=) 3: 274B6ADCF15B11ED950C456FC4F9AE02.roa (hash: BiugR8dn8pnpzPHCg7eZaT65u46wR3tiYmJITlqhZck=) 4: 26C50D3EF15B11ED950C456FC4F9AE02.roa (hash: H9+at/H3w6hcTEAgzVR2r70qV9olS6sufdVX4JIUdXE=) 5: 285AD17A061811EEADC2405AC4F9AE02.roa (hash: WVJ4UwY6KypbKvk4Ln4sfzY4jnw/x07G6eZ4nvVHo1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A43EE, serialNumber=8EC333757E363A1711B00273250446FE1B4938DB Validity Not Before: Apr 27 01:32:20 2025 GMT Not After : May 4 01:32:20 2025 GMT Subject: CN=680d8924-b545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9f:01:1d:f0:6c:0b:c6:85:8f:11:3c:08:d9: 47:a5:bd:e8:bc:06:21:1c:fc:16:f3:76:28:38:99: ab:62:e1:25:4c:6c:71:8a:aa:bd:5a:0a:8b:7d:17: 84:f3:5d:72:1b:60:63:fd:90:ad:73:cc:83:5f:2a: 9f:45:24:3a:14:1a:22:fd:0f:36:47:e4:0a:7d:fe: 11:65:39:c4:0c:c3:93:db:19:6d:74:59:4f:e1:16: 45:cb:3b:48:1f:1e:d1:3e:dd:80:13:a4:7b:34:c7: 22:4f:85:83:16:4c:40:70:84:2d:b0:c2:8f:32:08: 34:cc:41:04:e1:c4:3f:03:08:9a:f0:79:ec:33:01: 41:8f:b8:9c:df:7e:54:47:e8:a7:f2:af:80:e7:af: 25:6d:6e:01:d4:f5:14:9a:0a:03:94:90:62:54:70: f2:71:fe:c6:12:68:6a:f1:67:68:9e:e0:83:09:1f: c7:cd:2a:14:bf:ec:69:2f:be:ea:30:8d:24:49:6c: 3e:09:e4:20:7b:cb:b2:53:83:21:39:3d:aa:85:b6: 44:a3:b2:1c:6a:bb:8a:5f:58:86:34:36:f9:3e:8a: 2a:2a:09:04:1a:7c:73:9c:71:9c:43:fb:71:eb:14: fd:82:6b:5f:cc:14:1e:e1:5d:a4:d6:4b:b3:1d:46: 6a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2B:CC:12:3E:B0:A4:32:08:90:37:CB:57:34:21:52:E2:75:5A:6C X509v3 Authority Key Identifier: keyid:8E:C3:33:75:7E:36:3A:17:11:B0:02:73:25:04:46:FE:1B:49:38:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsMzdX42OhcRsAJzJQRG_htJONs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A43EE/01E4E69623CB11EDA8E3583EC4F9AE02/jsMzdX42OhcRsAJzJQRG_htJONs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ef:d2:f0:f4:29:40:ef:dc:e8:fa:f3:34:01:e6:ed:bb:c7: e5:19:c5:0d:f1:9f:bb:3f:49:3a:02:f6:87:11:97:d7:ce:d6: ff:ba:9d:b9:7e:8b:36:44:f8:0d:6a:6d:cc:e4:a2:b3:0e:ed: 84:05:22:93:b2:b9:dc:0a:a7:5b:20:08:79:30:b9:a1:07:75: c8:a9:09:b7:50:0f:75:7d:c4:06:30:e5:e6:50:1c:ef:28:d6: ab:51:2d:ee:66:6c:af:3c:8e:38:08:fc:2d:a9:1f:a9:59:cb: 76:fc:d6:1a:c1:41:d5:df:14:17:a1:cc:37:aa:73:17:5c:d9: d7:e1:1d:77:c7:03:60:c3:2d:15:28:9b:84:94:1f:4f:35:16: 57:39:d4:92:3f:66:05:95:61:32:73:f3:ad:29:5d:c8:1e:ab: 09:91:15:2f:3f:15:74:6c:db:24:b4:f7:49:1e:48:56:0d:95: 2e:21:3a:b9:3e:73:40:c4:e0:cf:6c:c9:d4:c3:5a:39:e9:21: 50:e7:1d:cb:df:a9:2d:7e:a6:12:3b:28:ab:dc:70:57:0c:9f: e3:f9:37:77:70:66:1b:c4:98:46:13:12:42:8c:7e:00:51:79: 52:3d:97:cd:bd:91:13:24:6b:71:a4:77:51:4b:b5:8f:ed:50: bf:c9:78:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQzRUUxMTAvBgNVBAUTKDhFQzMzMzc1N0UzNjNBMTcxMUIwMDI3MzI1MDQ0NkZF MUI0OTM4REIwHhcNMjUwNDI3MDEzMjIwWhcNMjUwNTA0MDEzMjIwWjAYMRYwFAYD VQQDEw02ODBkODkyNC1iNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn58BHfBsC8aFjxE8CNlHpb3ovAYhHPwW83YoOJmrYuElTGxxiqq9WgqLfReE 811yG2Bj/ZCtc8yDXyqfRSQ6FBoi/Q82R+QKff4RZTnEDMOT2xltdFlP4RZFyztI Hx7RPt2AE6R7NMciT4WDFkxAcIQtsMKPMgg0zEEE4cQ/Awia8HnsMwFBj7ic335U R+in8q+A568lbW4B1PUUmgoDlJBiVHDycf7GEmhq8WdonuCDCR/HzSoUv+xpL77q MI0kSWw+CeQge8uyU4MhOT2qhbZEo7IcaruKX1iGNDb5PooqKgkEGnxznHGcQ/tx 6xT9gmtfzBQe4V2k1kuzHUZqDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUrzBI+ sKQyCJA3y1c0IVLidVpsMB8GA1UdIwQYMBaAFI7DM3V+NjoXEbACcyUERv4bSTjb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDNFRS8wMUU0RTY5NjIz Q0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9oY1JzQUp6SlFSR19odEpP TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzTXpkWDQyT2hjUnNBSnpKUVJHX2h0Sk9Ocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDNFRS8wMUU0RTY5NjIzQ0IxMUVEQThFMzU4M0VDNEY5QUUwMi9qc016ZFg0Mk9o Y1JzQUp6SlFSR19odEpPTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ79Lw9ClA79zo+vM0Aebtu8flGcUN8Z+7P0k6AvaHEZfXztb/up25 fos2RPgNam3M5KKzDu2EBSKTsrncCqdbIAh5MLmhB3XIqQm3UA91fcQGMOXmUBzv KNarUS3uZmyvPI44CPwtqR+pWct2/NYawUHV3xQXocw3qnMXXNnX4R13xwNgwy0V KJuElB9PNRZXOdSSP2YFlWEyc/OtKV3IHqsJkRUvPxV0bNsktPdJHkhWDZUuITq5 PnNAxODPbMnUw1o56SFQ5x3L36ktfqYSOyir3HBXDJ/j+Td3cGYbxJhGExJCjH4A UXlSPZfNvZETJGtxpHdRS7WP7VC/yXj1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:02 2025 by rpki-client on console.sobornost.net