$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: 0HrpLUnT6fuK7Mv2/kcKzz9SEjTbkqHjkkSUgD6l98k= Subject key identifier: 6E:6B:BD:27:C1:66:82:73:B2:C4:07:26:3C:A9:A5:69:D7:D9:8E:BD Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 026A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 0264 Signing time: Sun 27 Apr 2025 01:22:33 +0000 Manifest this update: Sun 27 Apr 2025 01:22:32 +0000 Manifest next update: Sun 04 May 2025 01:22:32 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: BEghsYXWE8nCLgBQsO0uOtkRwdjHX+KNgfoCa9BGZHc=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: FlIBDcsCI6hEzE/Hsl8Oo4AgNaxmcJbVTdpEo3OVvJM=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: xbGvdrnN3RARHETkrmNSzdVV6UQzyx3squYg0aDBmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:22:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 618 (0x26a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Apr 27 01:22:32 2025 GMT Not After : May 4 01:22:32 2025 GMT Subject: CN=680d86d8-a2f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7f:c4:33:b7:44:93:38:45:97:b6:8f:fd:1b: 5f:73:a1:dd:60:50:75:a3:ad:99:d7:6c:38:a1:ee: 08:2b:9d:ad:14:7d:07:e0:d9:23:22:c4:ee:9a:b7: 2f:8f:9c:52:f7:82:4e:96:88:c2:94:84:f4:5a:80: 1a:ab:7e:19:d1:5f:db:2d:86:e8:10:65:57:dc:18: 8e:c8:b0:75:44:4f:9d:c6:da:9c:a1:e9:66:a4:4a: 76:07:15:a3:b3:02:c3:e7:78:5c:f2:66:3b:e4:2e: 8d:86:d6:34:92:37:9c:8b:38:8d:14:96:5f:78:72: 4e:4e:18:63:7f:73:3b:f4:94:c2:5d:3e:f1:9b:bd: 86:07:6c:df:14:ba:59:20:58:28:14:e9:86:6a:f4: c5:3b:75:2d:9e:10:d0:a8:ee:39:8a:52:9c:0d:8c: 39:44:65:08:d1:82:7e:18:7e:d4:f6:ea:10:da:9e: f2:ad:d5:aa:7a:1a:93:bc:eb:5e:06:41:72:93:3c: d8:e4:87:56:01:3d:19:57:97:cb:a9:86:23:66:f7: 16:dc:4a:fa:a9:81:07:a1:53:3a:bf:c9:7f:3c:97: 5b:b1:0f:76:af:35:be:d8:eb:c5:a3:e0:44:0d:1e: ee:bb:b3:87:ca:aa:60:8d:da:f3:76:7d:47:46:de: ee:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6B:BD:27:C1:66:82:73:B2:C4:07:26:3C:A9:A5:69:D7:D9:8E:BD X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:ed:f1:7b:f3:7b:a7:c3:b7:e1:09:e8:bd:05:e4:8f:c5:3b: 07:11:cf:f1:cc:44:7b:c3:9c:91:9a:c6:ee:a8:e4:29:34:4f: 2f:97:e1:41:d6:58:43:b5:48:4d:ab:9c:97:a5:9f:d3:78:e5: 0a:f1:48:8a:88:dc:fc:c4:b8:cf:74:4e:89:f9:32:18:31:0e: 5a:da:22:1a:7f:07:fb:04:95:01:4f:1c:46:11:42:db:d1:dc: 30:c5:54:37:8c:a0:a7:e2:0e:43:a9:2c:97:93:c9:a5:af:92: e5:d4:16:48:b4:ea:61:77:28:e5:75:d1:df:24:2d:80:8e:5e: a7:58:1e:0a:8e:66:30:cb:24:a9:b9:b4:f4:ef:6d:12:d3:2a: b3:21:41:5b:e4:40:74:38:49:21:a0:16:18:d0:2e:d2:53:cd: 0e:ec:29:b4:08:a8:e8:77:72:2c:24:ed:8d:00:da:6f:a6:60: cf:fa:ba:61:90:b8:57:a8:b0:7f:93:4f:a3:f3:7b:60:05:ad: d1:44:76:91:48:f5:22:f8:b9:fa:21:60:89:2e:80:cb:a4:87: 43:0b:16:a2:f1:b6:aa:a4:80:72:f7:37:c3:ae:e9:72:88:25: ea:41:83:3b:40:f7:12:01:85:3a:ed:2e:01:63:18:4e:46:bd: 43:bb:e8:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUwNDI3MDEyMjMyWhcNMjUwNTA0MDEyMjMyWjAYMRYwFAYD VQQDEw02ODBkODZkOC1hMmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn/EM7dEkzhFl7aP/Rtfc6HdYFB1o62Z12w4oe4IK52tFH0H4NkjIsTumrcv j5xS94JOlojClIT0WoAaq34Z0V/bLYboEGVX3BiOyLB1RE+dxtqcoelmpEp2BxWj swLD53hc8mY75C6NhtY0kjeciziNFJZfeHJOThhjf3M79JTCXT7xm72GB2zfFLpZ IFgoFOmGavTFO3UtnhDQqO45ilKcDYw5RGUI0YJ+GH7U9uoQ2p7yrdWqehqTvOte BkFykzzY5IdWAT0ZV5fLqYYjZvcW3Er6qYEHoVM6v8l/PJdbsQ92rzW+2OvFo+BE DR7uu7OHyqpgjdrzdn1HRt7u3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5rvSfB ZoJzssQHJjyppWnX2Y69MB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA7fF783unw7fhCei9BeSPxTsHEc/xzER7w5yRmsbuqOQpNE8vl+FB 1lhDtUhNq5yXpZ/TeOUK8UiKiNz8xLjPdE6J+TIYMQ5a2iIafwf7BJUBTxxGEULb 0dwwxVQ3jKCn4g5DqSyXk8mlr5Ll1BZItOphdyjlddHfJC2Ajl6nWB4KjmYwyySp ubT0720S0yqzIUFb5EB0OEkhoBYY0C7SU80O7Cm0CKjod3IsJO2NANpvpmDP+rph kLhXqLB/k0+j83tgBa3RRHaRSPUi+Ln6IWCJLoDLpIdDCxai8baqpIBy9zfDruly iCXqQYM7QPcSAYU67S4BYxhORr1Du+gm -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:06 2025 by rpki-client on console.sobornost.net