$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: Qi6cSl4Cl83TPAH01OTZ3MnpgChmWjTNg5NZPlOyRds= Subject key identifier: 96:09:43:42:C4:0A:F3:54:61:F4:56:83:21:20:5E:6C:4D:B2:A8:CF Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 3A Signing time: Sun 27 Apr 2025 06:20:53 +0000 Manifest this update: Sun 27 Apr 2025 06:20:52 +0000 Manifest next update: Sun 04 May 2025 06:20:52 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: mBNh8wNtvGHAGU4ml1OmXE+VtJIgNRFF07KGB2ioD6o=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Apr 27 06:20:52 2025 GMT Not After : May 4 06:20:52 2025 GMT Subject: CN=680dccc5-9e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:72:68:d7:03:90:5f:4a:96:52:81:f3:80:ad: 3e:7e:ca:a0:26:9e:b4:bf:29:23:2e:a4:bd:1c:a5: 2c:d9:c1:51:18:2e:fd:34:5f:f2:f6:43:e7:d9:a2: 96:c8:5a:4b:9f:92:74:bc:42:ab:4a:b1:4b:4d:0d: 87:77:4f:db:46:5e:22:fe:d5:6c:46:1d:51:75:13: e6:f1:cb:f3:4e:3e:10:b9:c4:f0:72:97:18:19:83: bf:d8:9c:87:c2:80:fa:92:81:bd:23:87:22:f7:89: 39:a9:52:27:2a:b6:51:e2:29:b4:be:d2:b8:0c:81: 28:1e:6e:06:f0:8f:ce:39:c0:23:7e:4b:ed:0d:b1: ff:2d:56:06:bc:3a:77:c2:c4:3e:d7:08:9d:23:b5: 96:8e:ca:fa:83:9b:20:5e:41:09:28:73:20:ec:80: 55:5f:b6:5d:7e:09:bc:5d:99:39:5d:d4:f7:82:f9: 16:d6:51:d4:e1:c1:11:e9:b1:d2:a7:a5:7a:f5:b2: 25:b3:2a:a6:b7:4e:4f:de:6e:a3:26:11:78:ab:2a: 42:34:65:05:9b:d0:00:a1:cc:ac:ae:20:eb:e9:a2: af:61:8e:00:b6:5f:5e:2a:92:e0:be:0a:88:25:91: 47:e6:41:a0:ce:b3:88:45:d0:ef:c0:d3:7b:54:17: 38:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:09:43:42:C4:0A:F3:54:61:F4:56:83:21:20:5E:6C:4D:B2:A8:CF X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:9a:10:8d:c7:20:57:97:f1:d6:ca:6d:64:81:c6:a6:89:ab: 31:46:9d:38:f1:26:b1:fe:1d:1e:a9:ad:e1:52:a6:f0:bd:00: a1:07:ea:ae:7d:fa:d3:20:8c:27:a4:74:2d:24:b4:6a:ff:db: 83:f7:70:16:80:39:f9:83:9e:f2:f1:0a:e6:ad:29:92:fe:f9: 02:a7:b4:0e:18:d2:24:7c:c6:15:9e:12:31:b5:62:be:5b:a8: ef:dd:6b:21:65:e1:13:f4:5f:0e:88:30:e0:63:17:3e:ac:de: 51:07:cf:06:6a:c1:84:3a:bf:da:a6:48:ab:26:94:8a:23:86: 9b:39:05:f0:b4:5c:7f:bb:7e:53:43:96:d3:3b:bf:db:28:ff: bc:1a:1c:49:8c:1f:e7:7b:33:74:df:8c:45:fa:3e:4f:dc:d2: ac:f4:95:68:8e:c1:37:94:71:fc:cb:8a:f7:4c:ef:66:94:bd: 0a:3f:be:62:84:af:bc:45:4d:f0:66:13:3c:8e:3b:f9:3d:c6: fa:33:f8:bb:b9:fc:03:5f:f6:36:d0:8b:ad:fe:fe:a0:1d:e8: 84:6a:c5:6a:93:fb:37:01:32:14:62:c8:0f:46:48:90:08:20: 49:89:50:ca:54:1c:3c:cd:e4:46:d2:9e:3c:8a:b5:b1:04:5d: 23:00:66:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoRTM4QTVFREUxOTY4QzkzNzVFNTE1NTFGQUU5ODg4OEEw QkI1NDQ5MDAeFw0yNTA0MjcwNjIwNTJaFw0yNTA1MDQwNjIwNTJaMBgxFjAUBgNV BAMTDTY4MGRjY2M1LTllN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD7cmjXA5BfSpZSgfOArT5+yqAmnrS/KSMupL0cpSzZwVEYLv00X/L2Q+fZopbI WkufknS8QqtKsUtNDYd3T9tGXiL+1WxGHVF1E+bxy/NOPhC5xPBylxgZg7/YnIfC gPqSgb0jhyL3iTmpUicqtlHiKbS+0rgMgSgebgbwj845wCN+S+0Nsf8tVga8OnfC xD7XCJ0jtZaOyvqDmyBeQQkocyDsgFVftl1+CbxdmTld1PeC+RbWUdThwRHpsdKn pXr1siWzKqa3Tk/ebqMmEXirKkI0ZQWb0AChzKyuIOvpoq9hjgC2X14qkuC+Cogl kUfmQaDOs4hF0O/A03tUFziFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlglDQsQK 81Rh9FaDISBebE2yqM8wHwYDVR0jBBgwFoAU44pe3hloyTdeUVUfrpiIigu1RJAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0RFM0Y4ODlBQ0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJK QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNDRwZTNobG95VGRlVVZVZnJwaUlpZ3UxUkpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0RFM0Y4ODlBQ0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyLzQ0cGUzaGxveVRk ZVVWVWZycGlJaWd1MVJKQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC6aEI3HIFeX8dbKbWSBxqaJqzFGnTjxJrH+HR6preFSpvC9AKEH6q59 +tMgjCekdC0ktGr/24P3cBaAOfmDnvLxCuatKZL++QKntA4Y0iR8xhWeEjG1Yr5b qO/dayFl4RP0Xw6IMOBjFz6s3lEHzwZqwYQ6v9qmSKsmlIojhps5BfC0XH+7flND ltM7v9so/7waHEmMH+d7M3TfjEX6Pk/c0qz0lWiOwTeUcfzLivdM72aUvQo/vmKE r7xFTfBmEzyOO/k9xvoz+Lu5/ANf9jbQi63+/qAd6IRqxWqT+zcBMhRiyA9GSJAI IEmJUMpUHDzN5EbSnjyKtbEEXSMAZo4= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net