$ rpki-client -vvf rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft File: bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft (raw, json) Hash identifier: MvB+k5iC8xVUPx0rt9Wg01Ys49yGwFIoWufWlFwFX/M= Subject key identifier: 2B:A4:4E:07:10:67:3F:46:68:88:D1:70:53:79:5A:A7:FB:A7:5E:C4 Authority key identifier: 6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 Certificate issuer: /CN=A91A546E/serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Certificate serial: 0906 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft Manifest number: 08D1 Signing time: Sat 26 Apr 2025 20:18:35 +0000 Manifest this update: Sat 26 Apr 2025 20:18:34 +0000 Manifest next update: Sat 03 May 2025 20:18:34 +0000 Files and hashes: 1: bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl (hash: 6ZWqL5QX16AsH0IIO4yRGLlrHBzxzSJ1vC09rWhCUX0=) 2: 46948AC87B8511EDB9E3E055C4F9AE02.roa (hash: ZxtXXsjPmgBn3QuaEolbOSfh14MSz6fJKNljAALoKTY=) 3: A69F92BE090911F084AAF925C4F9AE02.roa (hash: JAD+Foc1J+GOz5pKNPlHnr3Zrw5SjVxBWNoZZgDQ44M=) 4: 88252000B55C11ECA9565039C4F9AE02.roa (hash: ROM2aBA2uOLvGraWZ2OMfhtRxZ5DusfnSKSNI9N61E8=) 5: CCBF0CF6B55911EC9256FE19C4F9AE02.roa (hash: J9pnyjCXshJdQFSggqWmHXW0nySYEfDGHTCaX/EZOYk=) 6: CC3B5938B55911EC9256FE19C4F9AE02.roa (hash: Ejx3yVkwMIGPx4PH4VpagQp/pASvV9ahz0Vqhx7EKZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2310 (0x906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A546E, serialNumber=6C5A589F924CE9BED1FD89F5AFF630C927574420 Validity Not Before: Apr 26 20:18:34 2025 GMT Not After : May 3 20:18:34 2025 GMT Subject: CN=680d3f9a-8a9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:84:79:33:a4:81:7f:1b:9d:85:7a:46:ea: 6a:03:a8:01:13:61:b1:ba:b5:60:c2:0b:87:95:48: 6f:28:4a:46:8a:f8:08:c3:0a:82:3a:c1:d1:ba:3a: e1:a5:6e:29:e1:ed:58:a0:57:ed:70:60:af:06:b0: 73:d9:e2:c4:16:aa:6a:42:9e:68:1b:b0:66:df:08: d0:42:12:ba:5e:2c:50:4a:eb:7c:50:9c:30:14:06: 83:1c:50:87:2d:17:20:22:cb:ea:ff:76:7e:e3:d5: 1a:34:65:cc:d4:b9:1a:29:2b:95:fe:d4:c3:98:ef: 13:1a:19:05:2a:b9:c4:12:79:f4:3e:21:4c:20:c7: 77:6d:8c:87:73:64:28:ef:65:f9:3a:78:85:c8:bd: f9:6c:97:cf:ee:ab:d8:dd:7e:66:2f:87:d6:a0:47: 72:54:d4:58:fe:bf:19:07:65:20:94:3d:6e:67:1c: a3:21:c7:c0:9c:7d:ae:bb:75:6d:f4:3f:e2:21:4f: 89:85:19:ab:c0:22:81:97:ff:a5:f6:8a:03:75:b0: 0b:fa:30:e8:4a:3a:47:b2:ba:fe:e5:da:37:24:a5: 60:f9:c9:a6:d7:e0:fc:53:d3:ce:ae:eb:bb:59:6d: 47:a0:0a:89:ff:15:b8:7c:14:87:37:5f:d0:fc:3e: e6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A4:4E:07:10:67:3F:46:68:88:D1:70:53:79:5A:A7:FB:A7:5E:C4 X509v3 Authority Key Identifier: keyid:6C:5A:58:9F:92:4C:E9:BE:D1:FD:89:F5:AF:F6:30:C9:27:57:44:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFpYn5JM6b7R_Yn1r_YwySdXRCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A546E/0CD41DA8B76A11EA814F5084C4F9AE02/bFpYn5JM6b7R_Yn1r_YwySdXRCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:d6:6b:ce:ba:dd:8f:aa:ed:57:9e:39:8d:c8:e5:33:b5:d3: f7:d5:67:14:a3:6e:89:bc:55:51:69:55:e8:4b:eb:88:7e:9f: 4f:a4:4c:ea:2b:eb:66:76:27:1a:b8:27:db:fd:f5:0f:58:da: a1:13:11:61:85:53:ef:e1:64:be:bc:79:fa:26:25:92:dc:6b: 0e:93:93:d5:e3:dc:c5:88:16:0f:df:d5:41:d5:31:b4:d3:5b: fe:0a:a8:b3:96:97:6a:8f:82:76:54:cc:0b:4a:03:82:82:2f: fa:60:4d:3f:2d:50:11:5c:4a:c4:c3:e8:88:84:e4:1c:45:69: 59:33:75:52:ac:55:80:f8:2e:3c:97:9d:14:4c:39:7d:77:cd: 9b:9b:66:ae:b8:aa:fe:4b:30:17:88:19:fc:05:83:e3:53:ad: f4:48:ae:fc:0e:b3:25:b1:24:ac:af:13:7b:5f:40:70:a2:11: 76:3b:b8:00:9c:45:f3:d8:3e:11:29:44:52:a2:58:09:78:31: f6:a3:72:ce:61:e5:25:63:bd:cc:ae:12:e6:c0:4f:45:f9:d1: bf:21:cf:15:f9:b2:06:f1:b9:77:5b:cf:fd:7b:77:38:f5:27: d6:8d:54:80:8a:c5:6e:2b:f3:22:cf:c3:76:9f:08:6b:f6:e1: aa:04:e3:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0NkUxMTAvBgNVBAUTKDZDNUE1ODlGOTI0Q0U5QkVEMUZEODlGNUFGRjYzMEM5 Mjc1NzQ0MjAwHhcNMjUwNDI2MjAxODM0WhcNMjUwNTAzMjAxODM0WjAYMRYwFAYD VQQDEw02ODBkM2Y5YS04YTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dyEeTOkgX8bnYV6RupqA6gBE2GxurVgwguHlUhvKEpGivgIwwqCOsHRujrh pW4p4e1YoFftcGCvBrBz2eLEFqpqQp5oG7Bm3wjQQhK6XixQSut8UJwwFAaDHFCH LRcgIsvq/3Z+49UaNGXM1LkaKSuV/tTDmO8TGhkFKrnEEnn0PiFMIMd3bYyHc2Qo 72X5OniFyL35bJfP7qvY3X5mL4fWoEdyVNRY/r8ZB2UglD1uZxyjIcfAnH2uu3Vt 9D/iIU+JhRmrwCKBl/+l9ooDdbAL+jDoSjpHsrr+5do3JKVg+cmm1+D8U9POruu7 WW1HoAqJ/xW4fBSHN1/Q/D7mpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCukTgcQ Zz9GaIjRcFN5Wqf7p17EMB8GA1UdIwQYMBaAFGxaWJ+STOm+0f2J9a/2MMknV0Qg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTQ2RS8wQ0Q0MURBOEI3 NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZiN1JfWW4xcl9Zd3lTZFhS Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JGcFluNUpNNmI3Ul9ZbjFyX1l3eVNkWFJDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTQ2RS8wQ0Q0MURBOEI3NkExMUVBODE0RjUwODRDNEY5QUUwMi9iRnBZbjVKTTZi N1JfWW4xcl9Zd3lTZFhSQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA01mvOut2Pqu1XnjmNyOUztdP31WcUo26JvFVRaVXoS+uIfp9PpEzq K+tmdicauCfb/fUPWNqhExFhhVPv4WS+vHn6JiWS3GsOk5PV49zFiBYP39VB1TG0 01v+Cqizlpdqj4J2VMwLSgOCgi/6YE0/LVARXErEw+iIhOQcRWlZM3VSrFWA+C48 l50UTDl9d82bm2auuKr+SzAXiBn8BYPjU630SK78DrMlsSSsrxN7X0BwohF2O7gA nEXz2D4RKURSolgJeDH2o3LOYeUlY73MrhLmwE9F+dG/Ic8V+bIG8bl3W8/9e3c4 9SfWjVSAisVuK/Miz8N2nwhr9uGqBOO5 -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:08 2025 by rpki-client on console.sobornost.net