$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft File: RJUXO9LCk43jBnfP3ec80xuKJnY.mft (raw, json) Hash identifier: n8qThr69yqSmkKjlf3mJepemE9KDS5hbsCDx+NI+SsM= Subject key identifier: 3C:A9:32:5B:45:18:60:23:E5:61:64:B2:AA:EB:20:12:02:24:37:26 Authority key identifier: 44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 Certificate issuer: /CN=A91A5098/serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft Manifest number: 3B Signing time: Sat 26 Apr 2025 16:07:26 +0000 Manifest this update: Sat 26 Apr 2025 16:07:25 +0000 Manifest next update: Sat 03 May 2025 16:07:25 +0000 Files and hashes: 1: RJUXO9LCk43jBnfP3ec80xuKJnY.crl (hash: dAe0nH+WWxASxywegvab9AhOvWdF0VUO6dV7dqTQXxk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5098, serialNumber=4495173BD2C2938DE30677CFDDE73CD31B8A2676 Validity Not Before: Apr 26 16:07:25 2025 GMT Not After : May 3 16:07:25 2025 GMT Subject: CN=680d04bd-ebc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5a:69:f7:4d:e3:65:87:7f:b2:af:14:11:a3: 4e:1c:b8:9b:02:f3:80:fb:ec:07:b9:f9:d9:4c:a4: 1d:cc:dd:5c:54:8f:6f:0f:3c:ca:19:57:fe:a2:0c: 96:9d:8b:65:24:ea:52:14:8a:73:f7:cf:0f:78:5f: 49:a3:fa:36:2c:bf:13:44:90:fd:9a:ec:f8:5a:4e: 54:1d:7c:b0:25:f2:82:e8:80:c1:41:ea:0c:18:1a: 25:27:3a:83:ab:af:8d:0f:21:25:6b:b9:b2:b8:92: 1d:46:8f:e6:d2:6c:17:03:79:f4:4f:b3:85:8d:64: 05:29:23:ea:11:ee:7d:43:3c:a7:dc:69:99:73:b4: 34:1b:5b:34:1d:13:cb:db:97:25:88:80:4f:44:8f: dd:8f:8a:18:3c:29:82:1c:bf:92:43:e8:eb:ae:36: 9e:bc:03:6f:67:70:55:90:2f:d2:c3:fd:3f:5e:68: d6:94:ee:b8:ca:2a:97:05:7b:5d:d2:93:b5:58:47: ed:e8:4b:3a:e2:26:24:94:cd:ec:37:4b:a3:cc:47: 2e:97:1a:a4:4a:69:fe:8b:cb:8e:11:30:41:6a:21: b2:e3:97:6e:44:15:14:e9:b1:73:8c:62:93:20:ce: 40:00:ca:45:99:c8:fe:b2:c3:e3:ae:7a:22:7e:24: cd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A9:32:5B:45:18:60:23:E5:61:64:B2:AA:EB:20:12:02:24:37:26 X509v3 Authority Key Identifier: keyid:44:95:17:3B:D2:C2:93:8D:E3:06:77:CF:DD:E7:3C:D3:1B:8A:26:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RJUXO9LCk43jBnfP3ec80xuKJnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5098/220B1728CBC211EFA3246573C4F9AE02/RJUXO9LCk43jBnfP3ec80xuKJnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:37:9c:ad:a4:00:df:7e:ca:ec:8e:bd:53:06:85:a5:e7:98: f1:84:5c:be:32:32:b1:98:e5:6f:03:19:83:aa:3f:7b:4b:7a: 3a:0a:c8:a9:62:af:a1:7d:2a:24:1a:3d:35:ab:5f:3f:f0:2b: a3:14:dd:b0:1b:b0:a8:1d:f5:f6:0b:ac:07:7c:f9:78:73:d0: e7:62:31:c5:b9:56:db:3a:bc:d1:df:33:6f:19:b1:b5:51:40: e6:2a:1a:21:19:31:a0:6d:09:29:ec:5c:96:0e:05:f3:da:e9: 0d:5a:84:d8:0e:a5:56:e7:13:95:ef:30:9a:08:d5:03:9e:56: c2:e8:26:d3:68:a6:1c:a8:57:fe:09:b0:ae:9e:d3:1a:82:55: bd:46:2f:14:d4:ce:3f:02:68:c9:b4:80:d0:01:9c:b9:05:a9: 05:b0:42:48:7f:8d:85:b4:26:d0:c0:aa:79:18:08:a5:d5:96: 09:5f:5c:0d:11:40:54:83:35:2a:7a:63:db:5f:6c:ab:d8:b5: 53:c6:a1:7f:41:8a:6d:ca:2d:50:01:da:5c:96:04:b0:50:8d: d6:9e:73:85:b2:67:ac:2a:76:17:7c:ea:df:80:84:ad:47:0e: 68:84:0d:65:f2:ce:ff:e8:c6:21:4c:22:49:4f:16:77:f5:ea: 07:4d:c9:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTA5ODExMC8GA1UEBRMoNDQ5NTE3M0JEMkMyOTM4REUzMDY3N0NGRERFNzNDRDMx QjhBMjY3NjAeFw0yNTA0MjYxNjA3MjVaFw0yNTA1MDMxNjA3MjVaMBgxFjAUBgNV BAMTDTY4MGQwNGJkLWViYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsWmn3TeNlh3+yrxQRo04cuJsC84D77Ae5+dlMpB3M3VxUj28PPMoZV/6iDJad i2Uk6lIUinP3zw94X0mj+jYsvxNEkP2a7PhaTlQdfLAl8oLogMFB6gwYGiUnOoOr r40PISVrubK4kh1Gj+bSbBcDefRPs4WNZAUpI+oR7n1DPKfcaZlztDQbWzQdE8vb lyWIgE9Ej92Pihg8KYIcv5JD6OuuNp68A29ncFWQL9LD/T9eaNaU7rjKKpcFe13S k7VYR+3oSzriJiSUzew3S6PMRy6XGqRKaf6Ly44RMEFqIbLjl25EFRTpsXOMYpMg zkAAykWZyP6yw+OueiJ+JM3rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPKkyW0UY YCPlYWSyqusgEgIkNyYwHwYDVR0jBBgwFoAURJUXO9LCk43jBnfP3ec80xuKJnYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MDk4LzIyMEIxNzI4Q0JD MjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQzakJuZlAzZWM4MHh1S0pu WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkpVWE85TENrNDNqQm5mUDNlYzgweHVLSm5ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MDk4LzIyMEIxNzI4Q0JDMjExRUZBMzI0NjU3M0M0RjlBRTAyL1JKVVhPOUxDazQz akJuZlAzZWM4MHh1S0puWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADA3nK2kAN9+yuyOvVMGhaXnmPGEXL4yMrGY5W8DGYOqP3tLejoKyKli r6F9KiQaPTWrXz/wK6MU3bAbsKgd9fYLrAd8+Xhz0OdiMcW5Vts6vNHfM28ZsbVR QOYqGiEZMaBtCSnsXJYOBfPa6Q1ahNgOpVbnE5XvMJoI1QOeVsLoJtNophyoV/4J sK6e0xqCVb1GLxTUzj8CaMm0gNABnLkFqQWwQkh/jYW0JtDAqnkYCKXVlglfXA0R QFSDNSp6Y9tfbKvYtVPGoX9Bim3KLVAB2lyWBLBQjdaec4WyZ6wqdhd86t+AhK1H DmiEDWXyzv/oxiFMIklPFnf16gdNyVs= -----END CERTIFICATE-----Generated at Sat Apr 26 18:20:28 2025 by rpki-client on console.sobornost.net