$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft File: rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft (raw, json) Hash identifier: TSijtepXd305vWR3rneNcGXd0AWaEnOWYZ0pYcIUWYY= Subject key identifier: 30:BD:73:65:04:AA:23:38:96:1A:17:D3:69:99:C9:16:B0:DC:21:3E Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 03E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft Manifest number: 03D6 Signing time: Sun 27 Apr 2025 00:17:07 +0000 Manifest this update: Sun 27 Apr 2025 00:17:07 +0000 Manifest next update: Sun 04 May 2025 00:17:07 +0000 Files and hashes: 1: rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl (hash: QQBRHxVztOjb+MJRLdBXeIAaDNSUjRD4cILQR+LaYNY=) 2: A98BD3DE91F211ECA28ADD36C4F9AE02.roa (hash: aC9p2yyQTb3Yh1HdZsc4PLjnJ/5VSg4x8HrvxdVV15Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:17:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Apr 27 00:17:07 2025 GMT Not After : May 4 00:17:07 2025 GMT Subject: CN=680d7783-9d0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bb:9d:e3:b5:e3:3a:f0:f7:ac:2a:a5:f2:de: b4:56:f6:d2:20:c0:34:7a:3e:8b:4b:48:0a:36:89: 95:1e:10:9c:7b:8d:c9:c5:e2:42:bc:ab:40:62:c1: 4d:f7:ae:e3:0d:dd:f5:7f:13:df:13:1a:2d:34:66: ee:f4:77:44:59:f7:80:79:7c:ba:96:31:77:7b:da: c3:ed:31:39:61:dd:3f:73:ac:3f:76:20:f2:03:10: 7a:29:b1:80:6d:70:af:bd:16:97:6f:33:73:7a:11: 91:9c:96:d5:ef:a6:bb:92:2e:ac:4d:61:1d:81:a8: 5c:8d:00:f4:15:b8:38:f0:13:70:43:e4:bd:f7:7b: f2:21:c0:b4:a7:0c:1d:fc:b6:c4:7d:15:be:9d:e6: f7:fb:e6:d4:32:d3:8a:c0:36:9b:6d:0e:fe:7f:ee: 54:3c:ca:06:e3:d2:74:55:39:c6:1d:7f:1f:c4:f8: b7:bd:a8:3c:56:68:5d:63:0a:a8:ba:a4:75:17:a9: 60:c9:0f:6f:7c:7c:0e:c0:bb:cc:f3:b4:ea:ff:62: ec:e0:98:db:60:bb:8f:ab:ab:f5:df:97:ec:d6:ea: 06:7d:e5:f3:a6:f1:62:b2:2d:98:aa:a3:11:df:cf: ee:74:3e:8d:e2:59:e7:06:b1:c9:1a:91:28:ef:99: 9b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:BD:73:65:04:AA:23:38:96:1A:17:D3:69:99:C9:16:B0:DC:21:3E X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:bd:be:6d:5c:58:48:bf:af:c2:5c:1d:d3:b7:dd:dd:a5:8b: 31:eb:5a:2b:bd:a9:06:64:e1:ca:6d:84:d8:7b:f1:e7:df:fd: d4:43:f9:eb:d7:e5:9f:ac:d9:c3:12:fe:b4:ed:20:f3:95:51: f1:c9:a6:73:bb:8c:a1:1a:57:24:c4:e8:e9:81:88:8f:fd:5e: 66:95:54:c2:88:5d:42:08:20:87:2f:48:d7:ae:db:ef:de:53: b0:ac:91:bd:9f:84:6a:50:3e:00:b8:74:7b:06:62:22:73:f8: 57:03:d1:86:10:46:b3:c4:d8:6e:aa:7f:f7:0f:db:99:1a:61: 33:b9:4b:ae:23:92:d0:c8:72:e0:d8:5d:9b:38:38:b1:61:52: 49:3e:a8:4c:b2:5b:f2:e2:ad:3e:b4:9b:22:4c:1b:e3:95:69: fe:62:be:25:8e:97:86:f1:f8:c8:8a:2f:0f:b3:62:5c:b3:57: 0f:69:f2:9b:5e:ec:f4:03:e9:d3:8b:bf:a1:42:de:50:eb:ab: f6:b7:d1:78:03:ce:cb:7e:be:67:a2:f2:1b:fa:4e:46:a1:c1: 44:e7:80:26:54:72:86:94:39:42:f2:54:90:b3:e7:f3:7c:69: ec:57:b6:0c:b1:54:90:b9:79:c2:a9:e9:a4:15:0d:df:d8:7f: cc:98:00:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjUwNDI3MDAxNzA3WhcNMjUwNTA0MDAxNzA3WjAYMRYwFAYD VQQDEw02ODBkNzc4My05ZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrud47XjOvD3rCql8t60VvbSIMA0ej6LS0gKNomVHhCce43JxeJCvKtAYsFN 967jDd31fxPfExotNGbu9HdEWfeAeXy6ljF3e9rD7TE5Yd0/c6w/diDyAxB6KbGA bXCvvRaXbzNzehGRnJbV76a7ki6sTWEdgahcjQD0Fbg48BNwQ+S993vyIcC0pwwd /LbEfRW+neb3++bUMtOKwDabbQ7+f+5UPMoG49J0VTnGHX8fxPi3vag8VmhdYwqo uqR1F6lgyQ9vfHwOwLvM87Tq/2Ls4JjbYLuPq6v135fs1uoGfeXzpvFisi2YqqMR 38/udD6N4lnnBrHJGpEo75mb/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDC9c2UE qiM4lhoX02mZyRaw3CE+MB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODNCNC9FNzlFRDQ5MDgzRjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5 bUtlZzJwQlR2Q2NtOG1rRTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/vb5tXFhIv6/CXB3Tt93dpYsx61orvakGZOHKbYTYe/Hn3/3UQ/nr 1+WfrNnDEv607SDzlVHxyaZzu4yhGlckxOjpgYiP/V5mlVTCiF1CCCCHL0jXrtvv 3lOwrJG9n4RqUD4AuHR7BmIic/hXA9GGEEazxNhuqn/3D9uZGmEzuUuuI5LQyHLg 2F2bODixYVJJPqhMslvy4q0+tJsiTBvjlWn+Yr4ljpeG8fjIii8Ps2Jcs1cPafKb Xuz0A+nTi7+hQt5Q66v2t9F4A87Lfr5novIb+k5GocFE54AmVHKGlDlC8lSQs+fz fGnsV7YMsVSQuXnCqemkFQ3f2H/MmADP -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:06 2025 by rpki-client on console.sobornost.net