$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft File: oL2xs_Hk5wTrTU8s5f405lA3uUM.mft (raw, json) Hash identifier: 8ZdSB7phGNcCDGeBt7+JG21DPMW9RMLuyfi50TdKGeQ= Subject key identifier: 1D:57:86:FD:F3:10:53:74:DC:3F:71:C8:46:72:FD:90:3A:31:F4:C8 Authority key identifier: A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 Certificate issuer: /CN=A91A5B83/serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Certificate serial: 08E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft Manifest number: 08D5 Signing time: Mon 28 Apr 2025 20:54:15 +0000 Manifest this update: Mon 28 Apr 2025 20:54:15 +0000 Manifest next update: Mon 05 May 2025 20:54:15 +0000 Files and hashes: 1: oL2xs_Hk5wTrTU8s5f405lA3uUM.crl (hash: LgCThbKz3pocaBKfXQgr72tIugOLcMdD0Thy1/9fbIA=) 2: 975BB0CE73AD11EDAD75DB7DC4F9AE02.roa (hash: 3hcEUgYqoshOk8lFFnh68Ppk5C9DLTGbNkZXNe5ZLqA=) 3: A21F0938C44B11EB8CF88F1EC4F9AE02.roa (hash: ao7owdTBxv72fQFQJlEFwxw2v4nLgAcrWGOJHUBmOYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B83, serialNumber=A0BDB1B3F1E4E704EB4D4F2CE5FE34E65037B943 Validity Not Before: Apr 28 20:54:15 2025 GMT Not After : May 5 20:54:15 2025 GMT Subject: CN=680feaf7-0164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:23:98:ee:49:01:92:9a:ef:4f:17:ee:9c:df: d9:7b:67:c8:02:eb:de:c8:5e:1e:c9:f3:b8:d8:67: a5:de:88:a8:62:e4:2e:f3:7c:9e:a7:2f:1d:ee:4f: 7f:b7:bc:ff:93:06:56:fb:a0:49:91:38:33:a6:7d: 20:fb:56:45:da:06:9a:f1:8e:4e:a8:3b:41:3b:a2: 8e:d6:7d:9e:8f:25:d1:ed:43:6f:53:b8:c3:0c:17: 76:23:56:4c:1c:9e:5d:d0:94:4e:aa:75:fa:e4:08: 82:f5:d5:f4:ae:bf:7e:c0:c1:38:36:43:7b:46:de: 75:d3:9d:6f:c9:b0:9a:c5:c9:6a:37:0b:a8:ae:5d: 57:82:5e:62:2d:85:c4:12:ac:89:13:11:0c:d6:f8: 3b:53:18:9b:d6:58:8d:99:15:c3:82:70:6d:27:69: c4:d0:3b:dc:d7:c7:9a:9f:ea:ab:c5:5c:0c:c5:bc: 8b:63:cd:40:cb:35:93:a0:d8:38:18:b7:7e:46:38: 37:5e:d4:de:0f:94:13:77:3f:c3:87:20:2b:ce:04: dd:8e:a2:7f:cc:c1:61:5c:b0:0a:db:8b:bf:45:3e: 30:e2:1f:cd:6e:00:49:15:bb:bb:35:8c:23:fe:00: d7:4b:2b:53:9a:c5:14:d5:43:40:63:8e:6e:16:7b: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:57:86:FD:F3:10:53:74:DC:3F:71:C8:46:72:FD:90:3A:31:F4:C8 X509v3 Authority Key Identifier: keyid:A0:BD:B1:B3:F1:E4:E7:04:EB:4D:4F:2C:E5:FE:34:E6:50:37:B9:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oL2xs_Hk5wTrTU8s5f405lA3uUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B83/0F46CA8CADAF11EA84C04E10C4F9AE02/oL2xs_Hk5wTrTU8s5f405lA3uUM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:94:32:ba:38:23:b4:aa:18:b5:e8:38:96:d5:11:b5:91:7f: 09:2f:25:8a:32:ee:32:e5:7a:bc:ab:63:38:ae:b2:9d:0c:53: 8f:c3:f2:a7:bd:b6:8b:77:71:da:3d:7f:a3:e6:44:f6:39:d5: cc:f2:f4:35:78:d9:cc:b8:cf:aa:e7:48:ca:2b:49:07:43:52: 79:4d:dc:4e:8d:76:46:af:6d:0c:59:82:c6:16:f6:ff:1c:73: 4d:e5:1d:d7:cb:30:92:6b:ea:2e:0e:d5:ed:64:3e:2a:e3:6c: fe:50:ff:8b:bb:89:7e:45:ff:05:73:65:43:69:a8:c4:81:25: 07:46:d1:d5:37:0c:c1:1f:1c:97:f5:1f:b9:25:4e:fe:26:8d: 3c:b6:8f:1b:a3:92:14:c1:59:d7:5c:31:e1:00:bb:60:e0:1f: ff:f7:67:7d:25:02:5b:e0:d0:e9:92:5b:1c:34:50:55:fb:9b: d9:f7:b9:52:01:7b:82:c9:94:e9:93:c6:4b:9b:8e:d9:92:32: 29:1c:fb:03:46:16:d1:10:2e:c0:a8:ed:4f:24:3f:66:d5:db: 81:17:74:47:b1:b2:25:d7:db:60:ed:da:fb:39:24:ae:f1:e2: 93:d7:5d:68:26:8e:0e:23:e6:dd:94:fc:80:5e:19:55:4a:d0: e0:7c:a6:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCODMxMTAvBgNVBAUTKEEwQkRCMUIzRjFFNEU3MDRFQjRENEYyQ0U1RkUzNEU2 NTAzN0I5NDMwHhcNMjUwNDI4MjA1NDE1WhcNMjUwNTA1MjA1NDE1WjAYMRYwFAYD VQQDEw02ODBmZWFmNy0wMTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SOY7kkBkprvTxfunN/Ze2fIAuveyF4eyfO42Gel3oioYuQu83yepy8d7k9/ t7z/kwZW+6BJkTgzpn0g+1ZF2gaa8Y5OqDtBO6KO1n2ejyXR7UNvU7jDDBd2I1ZM HJ5d0JROqnX65AiC9dX0rr9+wME4NkN7Rt51051vybCaxclqNwuorl1Xgl5iLYXE EqyJExEM1vg7Uxib1liNmRXDgnBtJ2nE0Dvc18ean+qrxVwMxbyLY81AyzWToNg4 GLd+Rjg3XtTeD5QTdz/DhyArzgTdjqJ/zMFhXLAK24u/RT4w4h/NbgBJFbu7NYwj /gDXSytTmsUU1UNAY45uFntFrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1Xhv3z EFN03D9xyEZy/ZA6MfTIMB8GA1UdIwQYMBaAFKC9sbPx5OcE601PLOX+NOZQN7lD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUI4My8wRjQ2Q0E4Q0FE QUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3VHJUVThzNWY0MDVsQTN1 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29MMnhzX0hrNXdUclRVOHM1ZjQwNWxBM3VVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUI4My8wRjQ2Q0E4Q0FEQUYxMUVBODRDMDRFMTBDNEY5QUUwMi9vTDJ4c19IazV3 VHJUVThzNWY0MDVsQTN1VU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADlDK6OCO0qhi16DiW1RG1kX8JLyWKMu4y5Xq8q2M4rrKdDFOPw/Kn vbaLd3HaPX+j5kT2OdXM8vQ1eNnMuM+q50jKK0kHQ1J5TdxOjXZGr20MWYLGFvb/ HHNN5R3XyzCSa+ouDtXtZD4q42z+UP+Lu4l+Rf8Fc2VDaajEgSUHRtHVNwzBHxyX 9R+5JU7+Jo08to8bo5IUwVnXXDHhALtg4B//92d9JQJb4NDpklscNFBV+5vZ97lS AXuCyZTpk8ZLm47ZkjIpHPsDRhbREC7AqO1PJD9m1duBF3RHsbIl19tg7dr7OSSu 8eKT111oJo4OI+bdlPyAXhlVStDgfKYC -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:43 2025 by rpki-client on console.sobornost.net