$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft File: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft (raw, json) Hash identifier: QlvOVHvax6TOjvQVJokd0+Mu98sSlJS5VAJEk8hFxXE= Subject key identifier: AF:59:ED:9F:67:00:8D:86:11:D4:20:35:6D:1F:8E:E9:F0:C3:7A:96 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 09E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft Manifest number: 09DC Signing time: Mon 28 Apr 2025 20:20:32 +0000 Manifest this update: Mon 28 Apr 2025 20:20:32 +0000 Manifest next update: Mon 05 May 2025 20:20:32 +0000 Files and hashes: 1: hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl (hash: M7b6aqcJU4K4urZ78RuqzN2g355RsDtnydkrbrndxUs=) 2: 5B5A8050DDBC11EC8378E737C4F9AE02.roa (hash: na5Q578rSQBZFcX5/CcksCy+xsZYnJfxZssE9M4rEDg=) 3: 5A3B7CECDDBC11EC8378E737C4F9AE02.roa (hash: lwmo/gkmzYuWybDmK+FVsOggd5dBx+ce2atYLFTNz2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2537 (0x9e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Apr 28 20:20:32 2025 GMT Not After : May 5 20:20:32 2025 GMT Subject: CN=680fe310-3042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:fa:ec:56:68:2e:b2:1c:00:7c:63:0c:18:dc: bc:40:35:97:7f:82:50:77:40:24:ee:14:22:e0:33: 43:01:8f:19:6d:b6:78:57:62:ff:cf:71:38:40:f4: 9b:22:60:eb:96:d6:69:fb:f3:c5:db:69:0d:42:21: 58:1e:50:20:69:8c:87:59:00:68:dd:03:49:a4:a8: a4:1d:4b:6c:52:ed:62:9d:ff:e9:f9:d3:19:de:d2: 7b:62:52:06:e2:89:03:84:c4:96:69:7f:d0:f1:cd: 8e:9b:96:57:a4:21:81:ce:d5:c4:14:31:46:ae:41: a4:60:8c:9c:91:34:a2:2c:f2:5e:8e:7b:66:cb:5f: 5a:cd:16:47:16:d8:43:fc:c5:e0:b5:2f:38:0a:7c: 77:7b:e1:60:d6:b8:62:33:69:e9:75:b1:be:38:0f: 77:0b:77:c7:0b:d7:e4:3f:a5:a5:74:dd:71:73:dd: d1:34:34:af:51:e8:e7:8d:15:f7:2b:7c:6b:82:84: d1:11:a2:36:a5:00:5c:1f:80:6d:8c:a2:fd:09:91: 30:d5:da:04:58:9e:0e:83:2e:56:93:52:5e:b9:ad: 57:9a:f9:e2:14:c3:1a:f5:bd:20:84:8c:26:24:db: 62:52:99:c1:06:24:a0:c1:82:55:2d:5e:9c:ff:72: b4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:59:ED:9F:67:00:8D:86:11:D4:20:35:6D:1F:8E:E9:F0:C3:7A:96 X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:88:0d:7d:d2:1c:e5:d5:0d:c1:5d:d2:6b:54:35:99:2e:45: 45:9b:98:43:3f:41:80:56:be:1c:3e:8b:23:dc:ff:da:e8:bf: e5:77:b0:90:23:6a:00:92:3b:b3:70:6b:6e:e1:dd:42:fc:d3: 48:0b:55:9c:8f:64:10:c5:86:95:74:fc:d6:6e:13:8a:f2:59: 06:af:87:07:51:b1:4c:d2:59:e4:fb:17:3e:a4:b2:60:d4:ea: 65:f3:04:a9:2b:5b:dd:9e:09:7b:44:ee:eb:f7:aa:d3:e1:50: d9:75:3b:4a:a4:9f:11:86:1e:ff:18:a7:dd:c5:f9:80:ab:9a: 28:f9:34:9a:5c:e0:4a:39:47:96:d4:86:b7:7c:88:89:49:12: 64:34:c7:38:67:91:77:96:8d:74:ba:d1:cf:45:b4:ff:18:5c: a4:dd:69:b6:aa:ea:f9:05:ab:3a:b9:6c:42:56:54:90:b3:41: d0:db:50:15:f1:cd:d1:36:94:e2:eb:1f:52:60:12:9b:67:f8: bc:4c:fb:99:d1:1c:39:57:fd:c3:b0:4c:56:17:ac:5a:d8:b6: a0:f7:74:25:b2:d0:b8:29:45:f9:50:68:1d:91:df:26:90:a9: 00:55:05:23:d8:ca:73:76:3f:e8:4d:a4:6b:42:63:de:86:6b: c4:2d:b0:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUwNDI4MjAyMDMyWhcNMjUwNTA1MjAyMDMyWjAYMRYwFAYD VQQDEw02ODBmZTMxMC0zMDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vrsVmgushwAfGMMGNy8QDWXf4JQd0Ak7hQi4DNDAY8ZbbZ4V2L/z3E4QPSb ImDrltZp+/PF22kNQiFYHlAgaYyHWQBo3QNJpKikHUtsUu1inf/p+dMZ3tJ7YlIG 4okDhMSWaX/Q8c2Om5ZXpCGBztXEFDFGrkGkYIyckTSiLPJejntmy19azRZHFthD /MXgtS84Cnx3e+Fg1rhiM2npdbG+OA93C3fHC9fkP6WldN1xc93RNDSvUejnjRX3 K3xrgoTREaI2pQBcH4BtjKL9CZEw1doEWJ4Ogy5Wk1Jeua1XmvniFMMa9b0ghIwm JNtiUpnBBiSgwYJVLV6c/3K0zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9Z7Z9n AI2GEdQgNW0fjunww3qWMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUJDRC82MUQwQzQ4NjdBM0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNK aTNLWXlaRUhYTXoxRm5tdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBriA190hzl1Q3BXdJrVDWZLkVFm5hDP0GAVr4cPosj3P/a6L/ld7CQ I2oAkjuzcGtu4d1C/NNIC1Wcj2QQxYaVdPzWbhOK8lkGr4cHUbFM0lnk+xc+pLJg 1Opl8wSpK1vdngl7RO7r96rT4VDZdTtKpJ8Rhh7/GKfdxfmAq5oo+TSaXOBKOUeW 1Ia3fIiJSRJkNMc4Z5F3lo10utHPRbT/GFyk3Wm2qur5Bas6uWxCVlSQs0HQ21AV 8c3RNpTi6x9SYBKbZ/i8TPuZ0Rw5V/3DsExWF6xa2Lag93QlstC4KUX5UGgdkd8m kKkAVQUj2Mpzdj/oTaRrQmPehmvELbDe -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:43 2025 by rpki-client on console.sobornost.net