$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: dohSU2xjMWJMyQsq3RT3+T/yTF7MjfzSw2IZuwjH6QE= Subject key identifier: 25:1C:50:AA:7C:0B:53:17:EB:52:DD:CB:D2:21:47:CD:CD:DF:B6:CC Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1E08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1DF7 Signing time: Mon 28 Apr 2025 16:12:08 +0000 Manifest this update: Mon 28 Apr 2025 16:12:07 +0000 Manifest next update: Mon 05 May 2025 16:12:07 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: ifwkoDdZQZjDbHiylPM9Jiu4kb4htPBBOVHpa0Exmzc=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: yY5rZMTsOpnGO6cAR5A6bi22J/lJ789z+ED1oN3orxw=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: 36rBW03tvoWvEp5FFhkEkP0PegguzR76VTv8hEMsFNk=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: 2w+ZZZiHGzET+UAGMpulJr633xByME/2FAJYerduoZE=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: yps3mcP7HEC1/XDzl5d78p6GLXVPbcsPt7pEv3x1HZA=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: Bl17bhrifD1PMrI4c5ur7v5yVCt37LP+FsjpzcQgt1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7688 (0x1e08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Apr 28 16:12:07 2025 GMT Not After : May 5 16:12:07 2025 GMT Subject: CN=680fa8d8-090b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:4a:68:40:f0:11:b9:cc:64:e7:ff:0d:be: a4:32:d1:95:f3:97:f7:1f:60:47:3e:44:51:33:08: 47:b6:85:d2:93:36:1d:ff:6a:cb:a6:a9:a5:bd:ae: 8a:ec:72:6a:35:2d:2f:4a:df:b0:8f:cb:f8:ec:d5: 86:f6:2f:06:73:36:0b:34:5a:05:12:8f:2d:11:1b: f7:84:64:b8:33:f3:8c:e6:8d:13:80:a9:aa:d3:c0: 27:97:2b:3d:ea:bb:89:2e:d5:06:03:bb:19:12:c3: 46:02:0e:b8:47:c4:42:d0:27:f8:c8:66:be:68:6c: ca:6b:65:71:e4:b8:19:63:e9:d9:0a:98:c0:0e:39: de:49:78:f6:f3:1f:63:36:2b:5d:52:4f:b5:dc:cc: 9b:d4:63:cb:9f:70:4e:7f:01:c1:d6:67:43:dd:fe: 76:36:15:82:f5:19:f2:20:d8:91:6d:dd:9c:f0:96: 45:4b:33:6d:a3:af:1e:b5:ce:95:78:af:11:e8:43: fc:47:af:46:96:88:99:9d:94:4f:74:5a:bb:59:ba: eb:8f:46:a2:04:27:9d:73:ff:bc:7f:7f:3c:b7:ff: 55:ef:9c:ed:ff:99:51:2e:7e:43:d4:7e:96:db:ec: a2:eb:2c:ef:89:f8:60:0c:bd:d8:52:2b:25:e8:f6: 57:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1C:50:AA:7C:0B:53:17:EB:52:DD:CB:D2:21:47:CD:CD:DF:B6:CC X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:78:15:3d:87:d2:6b:79:ec:eb:39:3c:d1:b9:cc:53:3c:f7: ca:d4:80:73:b3:92:7f:68:72:66:c2:c6:8a:82:b6:83:bc:33: 86:d2:20:3d:14:e0:4f:f8:ce:66:7a:22:0e:3c:9c:6b:e4:73: 7e:18:aa:01:3c:61:f2:77:e1:44:68:6c:04:8a:93:a2:16:8e: fb:11:1e:18:c9:14:c1:45:6e:22:e1:c8:ec:91:1e:8a:95:47: 6e:43:6e:bf:0d:0e:04:e2:54:6f:95:c1:e5:58:31:ea:73:b5: 46:6a:59:70:20:f2:70:2e:66:2a:d7:3c:a9:43:91:44:dc:c6: 1e:b0:da:8b:94:b4:6f:d8:27:bb:6b:3f:6c:2b:5f:a9:49:50: e0:90:41:b8:cd:67:c6:36:31:63:6c:9d:7f:75:d8:aa:77:4c: 21:21:03:ab:c4:b4:e9:17:53:6a:2f:b5:4a:9c:4e:04:9d:12: 7d:45:22:e6:e7:45:9d:b6:5e:1e:22:ba:94:2d:97:d7:ce:53: 2c:25:95:86:38:2b:93:d6:28:8a:d1:0f:ba:22:6c:87:85:3d: 7e:03:d1:8a:ad:48:d3:9b:07:f4:87:1d:b3:4a:24:0b:25:c6: b2:c4:1d:d9:62:5c:b4:86:74:72:e7:f6:ee:69:31:bb:ee:b4: a0:88:16:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjUwNDI4MTYxMjA3WhcNMjUwNTA1MTYxMjA3WjAYMRYwFAYD VQQDEw02ODBmYThkOC0wOTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzJKaEDwEbnMZOf/Db6kMtGV85f3H2BHPkRRMwhHtoXSkzYd/2rLpqmlva6K 7HJqNS0vSt+wj8v47NWG9i8GczYLNFoFEo8tERv3hGS4M/OM5o0TgKmq08Anlys9 6ruJLtUGA7sZEsNGAg64R8RC0Cf4yGa+aGzKa2Vx5LgZY+nZCpjADjneSXj28x9j NitdUk+13Myb1GPLn3BOfwHB1mdD3f52NhWC9RnyINiRbd2c8JZFSzNto68etc6V eK8R6EP8R69GloiZnZRPdFq7Wbrrj0aiBCedc/+8f388t/9V75zt/5lRLn5D1H6W 2+yi6yzvifhgDL3YUisl6PZXHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUcUKp8 C1MX61Ldy9IhR83N37bMMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6eBU9h9JreezrOTzRucxTPPfK1IBzs5J/aHJmwsaKgraDvDOG0iA9 FOBP+M5meiIOPJxr5HN+GKoBPGHyd+FEaGwEipOiFo77ER4YyRTBRW4i4cjskR6K lUduQ26/DQ4E4lRvlcHlWDHqc7VGallwIPJwLmYq1zypQ5FE3MYesNqLlLRv2Ce7 az9sK1+pSVDgkEG4zWfGNjFjbJ1/ddiqd0whIQOrxLTpF1NqL7VKnE4EnRJ9RSLm 50Wdtl4eIrqULZfXzlMsJZWGOCuT1iiK0Q+6ImyHhT1+A9GKrUjTmwf0hx2zSiQL JcayxB3ZYly0hnRy5/buaTG77rSgiBYn -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:52 2025 by rpki-client on console.sobornost.net