$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: dBsXpqKrjkoSLYosn5XR4wdUp0UaAfrEpSka/NG6DNE= Subject key identifier: C8:47:42:03:83:6E:33:D7:65:54:38:AC:84:7A:EC:9F:4E:DF:BC:61 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0720 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0706 Signing time: Sat 26 Apr 2025 21:38:27 +0000 Manifest this update: Sat 26 Apr 2025 21:38:27 +0000 Manifest next update: Sat 03 May 2025 21:38:27 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: juQyWdZdTsjYyUmTHYnQGcoVRCphVTMH0cZ7n16sFbw=) 2: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: nqhvH+f7wHKT8bjIs6vVLkOc7U1WY+z2Ysz9HVOAovM=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: RMYTLsjzchYs7RKbF9BO3OVp44cFPqnQKzT6ydktQoo=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: Bcj/iiKxpeGROHNnH2fXMR3kft/+QpPcp29Mc0T3G5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Apr 26 21:38:27 2025 GMT Not After : May 3 21:38:27 2025 GMT Subject: CN=680d5253-26ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:12:8f:dd:e0:f7:6e:e2:36:ba:11:db:eb:a0: 17:c3:af:ae:40:ac:36:53:db:89:d4:29:97:a1:9c: 64:7d:e6:78:0a:7f:fd:71:94:7f:83:6f:0d:62:26: 0d:bf:e9:ec:f2:13:da:b0:85:92:88:18:99:70:1c: 4a:19:63:61:3e:8c:b9:fe:f6:02:94:77:5b:71:6f: fc:54:26:0f:ff:18:a2:d0:13:c2:d8:1e:d9:4b:8c: bc:ab:6f:30:72:29:85:03:dd:56:3d:39:f4:7f:d5: 04:e5:65:a7:19:f2:1d:cc:22:13:99:be:6a:51:89: 04:8e:75:ae:cb:dd:61:86:cd:14:91:26:4d:14:f2: 52:cc:15:c2:2a:44:4b:3f:c3:8b:81:ac:16:06:5e: 8f:68:1d:65:4d:06:7c:12:0e:b1:26:df:6a:80:71: b7:78:94:42:98:e9:ed:a9:cd:63:92:de:ce:fc:95: 95:62:f3:32:6b:80:bf:34:c6:10:d2:5d:29:13:38: 20:a5:f8:c7:79:69:a0:eb:d7:d7:15:72:12:11:5c: b1:44:29:1e:84:01:93:a2:e5:d0:cc:40:6d:97:b7: 33:8b:d4:1b:24:63:b4:11:1c:49:79:e4:ad:5d:c3: 54:df:3d:11:10:ea:6b:1e:2e:cc:e0:f8:86:7d:70: 85:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:47:42:03:83:6E:33:D7:65:54:38:AC:84:7A:EC:9F:4E:DF:BC:61 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:ce:9f:77:c7:b6:08:61:1f:a8:61:54:75:b0:bd:a7:6e:3f: c2:a1:b3:c6:56:75:0a:5f:8b:41:25:b7:65:0e:16:57:7a:0c: 7c:cf:d6:ad:ac:62:8f:db:f3:ec:9e:3a:d1:c4:03:a7:12:7b: f5:c8:d8:fa:d2:e9:0e:5f:2b:a8:cf:c9:22:45:40:f0:f2:c7: 03:bd:50:b5:cf:a3:74:a9:7c:9a:db:d4:75:6c:fa:f2:b8:1b: ce:4d:83:5e:08:97:3c:83:03:4a:75:78:f5:a2:03:28:66:d5: 0b:39:a1:16:1a:d0:ba:5b:2c:a8:42:72:60:1c:1f:1b:1c:8f: 9c:d2:f5:3d:84:52:cb:22:95:52:e1:06:92:66:fc:17:3d:88: de:d8:70:79:a2:39:d5:77:c8:32:2c:b4:2e:f1:b4:7a:bd:28: 00:87:78:65:8f:dc:1c:c8:ad:b8:42:4c:b7:72:82:f5:25:5b: 7a:99:c4:14:62:95:a2:94:f3:e0:8b:9b:34:7f:02:c0:f0:18: 0d:04:39:15:8d:1a:c3:18:ee:bf:ca:8f:36:5e:ee:fc:61:a7: d1:4f:16:32:a7:fe:95:18:7e:d2:31:7b:50:7e:0d:5c:96:f5: f5:2c:8f:c1:33:c8:46:aa:c3:5c:e8:ff:25:5c:ec:d3:e5:eb: 71:93:db:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwNDI2MjEzODI3WhcNMjUwNTAzMjEzODI3WjAYMRYwFAYD VQQDEw02ODBkNTI1My0yNmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxKP3eD3buI2uhHb66AXw6+uQKw2U9uJ1CmXoZxkfeZ4Cn/9cZR/g28NYiYN v+ns8hPasIWSiBiZcBxKGWNhPoy5/vYClHdbcW/8VCYP/xii0BPC2B7ZS4y8q28w cimFA91WPTn0f9UE5WWnGfIdzCITmb5qUYkEjnWuy91hhs0UkSZNFPJSzBXCKkRL P8OLgawWBl6PaB1lTQZ8Eg6xJt9qgHG3eJRCmOntqc1jkt7O/JWVYvMya4C/NMYQ 0l0pEzggpfjHeWmg69fXFXISEVyxRCkehAGTouXQzEBtl7czi9QbJGO0ERxJeeSt XcNU3z0REOprHi7M4PiGfXCFiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhHQgOD bjPXZVQ4rIR67J9O37xhMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3zp93x7YIYR+oYVR1sL2nbj/CobPGVnUKX4tBJbdlDhZXegx8z9at rGKP2/PsnjrRxAOnEnv1yNj60ukOXyuoz8kiRUDw8scDvVC1z6N0qXya29R1bPry uBvOTYNeCJc8gwNKdXj1ogMoZtULOaEWGtC6WyyoQnJgHB8bHI+c0vU9hFLLIpVS 4QaSZvwXPYje2HB5ojnVd8gyLLQu8bR6vSgAh3hlj9wcyK24Qky3coL1JVt6mcQU YpWilPPgi5s0fwLA8BgNBDkVjRrDGO6/yo82Xu78YafRTxYyp/6VGH7SMXtQfg1c lvX1LI/BM8hGqsNc6P8lXOzT5etxk9sB -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:08 2025 by rpki-client on console.sobornost.net