$ rpki-client -vvf rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft File: rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft (raw, json) Hash identifier: 2lt82pZd/VsQw2RLkSEQ0MOg4CqHV7LjMvI2IJdCiQ0= Subject key identifier: D4:88:4A:20:BD:BC:16:43:80:E9:20:0A:81:4F:C8:FA:CC:60:48:F1 Authority key identifier: AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE Certificate issuer: /CN=A91A799E/serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Certificate serial: 0660 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft Manifest number: 0656 Signing time: Sat 26 Apr 2025 22:07:10 +0000 Manifest this update: Sat 26 Apr 2025 22:07:10 +0000 Manifest next update: Sat 03 May 2025 22:07:10 +0000 Files and hashes: 1: rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl (hash: qo07hiMBgO+kjwfSLrLFDWReFTldV7zYBh5ENNfbUjc=) 2: 6AC62B967FD711EBA2ECB43BC4F9AE02.roa (hash: gL2nII9XEbxnadb0waQYWcnam9MRSvEB52poepWih4w=) 3: 517F49AA822611EB8990276EC4F9AE02.roa (hash: CVEUO3oD78hdPnE1F9V5H7s7rSJsTEHJ4Ohcr53z470=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:07:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A799E, serialNumber=AC55FB75BFE343E49487D851C0139C1364CAE9CE Validity Not Before: Apr 26 22:07:10 2025 GMT Not After : May 3 22:07:10 2025 GMT Subject: CN=680d590e-24a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:76:c6:b2:b7:4a:4c:e9:19:c7:c6:19:12: 97:8d:11:ba:6f:b1:c8:5c:9f:a6:41:4e:3c:34:9d: 7a:67:cb:71:fe:a6:55:4b:50:69:a4:47:cc:4f:63: 93:90:c4:9a:be:ea:27:c0:5e:72:41:4e:7d:82:11: 2f:51:f1:16:14:65:42:2b:e9:4f:76:02:3e:06:c4: 24:43:5e:25:a7:a3:16:6c:db:d5:ab:8f:99:73:ee: b6:ae:a0:44:fa:dc:95:93:a2:f3:55:5e:41:c4:8a: b1:a5:ef:b4:0c:d2:64:80:87:f7:31:45:56:84:55: 7e:8d:85:17:56:83:3d:0c:4b:bc:6d:c3:87:23:d4: 01:fd:9d:2a:c2:bc:a0:4d:f1:43:9c:c6:22:1e:39: ef:3b:7a:0b:2d:a4:a4:31:1b:d1:9b:b9:b9:a6:4f: 14:00:f4:13:30:31:b7:e5:5e:bb:78:52:da:64:5f: 7c:b0:3d:9d:f8:ba:6b:c3:94:5e:7e:d1:cf:96:3e: 75:66:3a:d6:86:d3:8f:e5:2c:3d:09:aa:c6:fb:83: db:e1:65:a6:11:e9:a6:14:ca:cc:4f:ed:3d:16:04: ad:83:fa:fc:c0:55:c4:44:66:1f:98:34:1b:43:b7: bc:4e:d5:4d:dc:25:39:18:be:2b:63:ea:d6:8e:1a: d1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:88:4A:20:BD:BC:16:43:80:E9:20:0A:81:4F:C8:FA:CC:60:48:F1 X509v3 Authority Key Identifier: keyid:AC:55:FB:75:BF:E3:43:E4:94:87:D8:51:C0:13:9C:13:64:CA:E9:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rFX7db_jQ-SUh9hRwBOcE2TK6c4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A799E/255CE8347FD611EB9FD1233BC4F9AE02/rFX7db_jQ-SUh9hRwBOcE2TK6c4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:18:84:21:3e:1f:9c:c0:10:53:96:bb:55:5c:f4:53:b9:1b: dc:3d:35:ae:fa:0c:f4:ce:54:b5:cf:a6:7d:cd:96:97:bc:a4: c6:cc:33:c3:49:8b:a6:81:d5:bd:54:26:a0:b2:be:c5:f9:f9: ec:fc:1a:5c:27:ef:41:99:29:85:dc:c8:9a:77:1a:15:27:8f: b6:e1:d0:0f:d1:c5:ad:4d:d5:04:b8:65:8c:89:4c:3e:43:79: 00:4d:c0:64:80:83:15:f6:2a:89:2c:1e:a7:31:ef:ad:59:77: 10:e1:c8:70:e8:78:11:8d:bf:76:61:cb:d5:e7:35:c2:d3:2a: fc:e7:50:c1:1b:b6:93:60:fe:51:e2:94:c1:5a:06:d9:4e:56: 79:2a:20:f0:05:4f:6e:f4:06:c3:78:78:a3:3c:cf:2e:53:98: 57:e2:de:7c:1b:f6:83:b3:f5:12:fa:55:6a:61:1f:b4:16:8a: 9d:1f:fe:3b:a4:b1:0b:15:b7:b4:e2:64:69:e8:cd:2d:a0:e7: 78:4e:7d:f3:6c:99:60:17:5d:e9:0e:7c:d7:b3:7e:48:88:52: 93:cd:1b:4f:2e:6e:2b:83:a4:da:e0:dd:f2:f1:56:d9:84:e1: 75:c5:36:b1:5d:b4:96:2f:dc:b0:85:a8:9f:4b:6d:39:71:c0: 18:0f:97:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc5OUUxMTAvBgNVBAUTKEFDNTVGQjc1QkZFMzQzRTQ5NDg3RDg1MUMwMTM5QzEz NjRDQUU5Q0UwHhcNMjUwNDI2MjIwNzEwWhcNMjUwNTAzMjIwNzEwWjAYMRYwFAYD VQQDEw02ODBkNTkwZS0yNGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIx2xrK3SkzpGcfGGRKXjRG6b7HIXJ+mQU48NJ16Z8tx/qZVS1BppEfMT2OT kMSavuonwF5yQU59ghEvUfEWFGVCK+lPdgI+BsQkQ14lp6MWbNvVq4+Zc+62rqBE +tyVk6LzVV5BxIqxpe+0DNJkgIf3MUVWhFV+jYUXVoM9DEu8bcOHI9QB/Z0qwryg TfFDnMYiHjnvO3oLLaSkMRvRm7m5pk8UAPQTMDG35V67eFLaZF98sD2d+Lprw5Re ftHPlj51ZjrWhtOP5Sw9CarG+4Pb4WWmEemmFMrMT+09FgStg/r8wFXERGYfmDQb Q7e8TtVN3CU5GL4rY+rWjhrR1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSISiC9 vBZDgOkgCoFPyPrMYEjxMB8GA1UdIwQYMBaAFKxV+3W/40PklIfYUcATnBNkyunO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzk5RS8yNTVDRTgzNDdG RDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEtU1VoOWhSd0JPY0UyVEs2 YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JGWDdkYl9qUS1TVWg5aFJ3Qk9jRTJUSzZjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Nzk5RS8yNTVDRTgzNDdGRDYxMUVCOUZEMTIzM0JDNEY5QUUwMi9yRlg3ZGJfalEt U1VoOWhSd0JPY0UyVEs2YzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxGIQhPh+cwBBTlrtVXPRTuRvcPTWu+gz0zlS1z6Z9zZaXvKTGzDPD SYumgdW9VCagsr7F+fns/BpcJ+9BmSmF3MiadxoVJ4+24dAP0cWtTdUEuGWMiUw+ Q3kATcBkgIMV9iqJLB6nMe+tWXcQ4chw6HgRjb92YcvV5zXC0yr851DBG7aTYP5R 4pTBWgbZTlZ5KiDwBU9u9AbDeHijPM8uU5hX4t58G/aDs/US+lVqYR+0FoqdH/47 pLELFbe04mRp6M0toOd4Tn3zbJlgF13pDnzXs35IiFKTzRtPLm4rg6Ta4N3y8VbZ hOF1xTaxXbSWL9ywhaifS205ccAYD5de -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:03 2025 by rpki-client on console.sobornost.net