$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft File: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft (raw, json) Hash identifier: dKsPuhg3Shb/Tc65bpeCdOcxa1Znn2gkx6Yzb13UtDk= Subject key identifier: A3:16:DF:C0:45:95:9C:83:B4:A5:0B:32:EA:AE:65:0D:A4:1E:8D:A1 Authority key identifier: 85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 Certificate issuer: /CN=A91AAC4B/serialNumber=852046915185F855E09EB344788139430E740F07 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft Manifest number: 3A Signing time: Sun 27 Apr 2025 06:20:55 +0000 Manifest this update: Sun 27 Apr 2025 06:20:55 +0000 Manifest next update: Sun 04 May 2025 06:20:55 +0000 Files and hashes: 1: hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl (hash: gEnSxgmpE6QmeSusrvllL1gr/84Vmjf/LmBX8nRSB0g=) 2: B710956ACD7E11EFBBAE2137C4F9AE02.roa (hash: JjAbZf5k619HY4BxA5a3XYqwkE4mZ8Dpr0cRyMIFTZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=852046915185F855E09EB344788139430E740F07 Validity Not Before: Apr 27 06:20:55 2025 GMT Not After : May 4 06:20:55 2025 GMT Subject: CN=680dccc7-d544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:18:2d:c7:9d:e9:82:53:16:5e:1b:a0:76: af:36:8d:cc:71:98:d3:02:c8:f1:84:f6:a7:91:07: 8b:99:36:fe:09:a2:09:e3:28:bc:32:d2:5c:6d:27: 13:c5:5e:12:22:0b:fa:5c:81:95:90:f9:47:c5:1d: 8b:8e:99:f8:7b:4a:97:89:d3:f7:0a:31:a8:2e:fe: 0b:36:d2:62:d1:38:f9:2b:e7:a9:e1:77:3b:10:35: 92:92:42:e4:dc:8d:9e:47:3d:e6:a9:50:cb:63:55: 02:20:8e:13:dc:a4:fe:72:7e:75:a2:a5:62:08:ef: 89:b9:94:47:1a:55:0d:5c:43:c9:8d:47:09:60:8b: b9:dc:1f:be:ae:44:b5:95:c2:63:37:78:ac:e7:ac: 41:12:f0:d3:30:b5:6a:67:f7:ab:1a:9f:c5:6a:8c: 67:8c:24:6c:06:81:b5:15:53:ba:25:48:ff:a8:19: ce:9d:cc:18:52:52:67:34:3d:5c:1c:b1:4c:5a:24: 92:bd:f8:cb:12:de:35:92:c5:11:44:4e:b7:0f:d6: 31:16:59:73:7a:6b:86:f3:97:28:24:8e:97:c8:23: 09:f3:4e:ea:ff:0f:38:6d:bf:1c:f3:73:4d:d9:48: 71:8f:7b:39:7f:d5:bc:3a:d0:85:62:ef:74:25:81: 9c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:16:DF:C0:45:95:9C:83:B4:A5:0B:32:EA:AE:65:0D:A4:1E:8D:A1 X509v3 Authority Key Identifier: keyid:85:20:46:91:51:85:F8:55:E0:9E:B3:44:78:81:39:43:0E:74:0F:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/E635F796CD7D11EFAA07230AC4F9AE02/hSBGkVGF-FXgnrNEeIE5Qw50Dwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:58:9e:2f:d8:56:a9:cb:a5:d8:f7:a0:0d:b2:88:0d:af:05: d7:12:46:4a:4d:4b:21:7b:ef:c2:93:fc:9b:ee:e6:d9:4f:6e: e3:f5:6f:dd:66:7b:f5:b4:4f:dd:1a:57:76:bc:d8:21:85:4b: c5:46:a7:38:b0:8f:66:75:f7:0a:ae:57:13:d2:47:8d:7d:3f: 3e:8c:11:9b:fb:d3:22:39:46:01:f6:c9:f1:9f:38:4c:83:c7: a0:30:45:84:e0:33:6f:85:f4:da:dd:f8:86:1f:a0:8e:61:98: 85:1d:c8:66:b5:c7:69:2a:f5:a3:d0:ca:e7:5b:2d:c0:f2:0a: 5e:90:75:02:98:d5:08:0c:3a:c8:14:10:64:95:b4:8f:b0:14: 0e:1a:37:70:78:e7:64:9a:d2:02:57:1d:75:3b:33:2e:5a:07: c9:c4:8d:fc:59:9e:97:e3:a7:87:d4:bc:a1:b7:b2:94:1e:69: 9b:9a:8f:a1:5a:f9:e6:62:08:b5:99:ce:6a:c6:76:d4:df:dd: 15:7a:71:30:e6:9f:89:f2:ee:88:60:15:a5:b5:dc:bb:80:f5: 3d:02:34:c4:c5:b6:a2:7e:22:5b:87:0f:35:9d:b0:1a:ff:64: 74:79:d8:01:91:8a:a8:ff:93:57:0d:35:0a:c9:48:15:7e:1f: 3e:13:22:73 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QUM0QjExMC8GA1UEBRMoODUyMDQ2OTE1MTg1Rjg1NUUwOUVCMzQ0Nzg4MTM5NDMw RTc0MEYwNzAeFw0yNTA0MjcwNjIwNTVaFw0yNTA1MDQwNjIwNTVaMBgxFjAUBgNV BAMTDTY4MGRjY2M3LWQ1NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDALhgtx53pglMWXhugdq82jcxxmNMCyPGE9qeRB4uZNv4JognjKLwy0lxtJxPF XhIiC/pcgZWQ+UfFHYuOmfh7SpeJ0/cKMagu/gs20mLROPkr56nhdzsQNZKSQuTc jZ5HPeapUMtjVQIgjhPcpP5yfnWipWII74m5lEcaVQ1cQ8mNRwlgi7ncH76uRLWV wmM3eKznrEES8NMwtWpn96san8VqjGeMJGwGgbUVU7olSP+oGc6dzBhSUmc0PVwc sUxaJJK9+MsS3jWSxRFETrcP1jEWWXN6a4bzlygkjpfIIwnzTur/Dzhtvxzzc03Z SHGPezl/1bw60IVi73QlgZwBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoxbfwEWV nIO0pQsy6q5lDaQejaEwHwYDVR0jBBgwFoAUhSBGkVGF+FXgnrNEeIE5Qw50Dwcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBQzRCL0U2MzVGNzk2Q0Q3 RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZYZ25yTkVlSUU1UXc1MER3 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFNCR2tWR0YtRlhnbnJORWVJRTVRdzUwRHdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB QzRCL0U2MzVGNzk2Q0Q3RDExRUZBQTA3MjMwQUM0RjlBRTAyL2hTQkdrVkdGLUZY Z25yTkVlSUU1UXc1MER3Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM9Yni/YVqnLpdj3oA2yiA2vBdcSRkpNSyF778KT/Jvu5tlPbuP1b91m e/W0T90aV3a82CGFS8VGpziwj2Z19wquVxPSR419Pz6MEZv70yI5RgH2yfGfOEyD x6AwRYTgM2+F9Nrd+IYfoI5hmIUdyGa1x2kq9aPQyudbLcDyCl6QdQKY1QgMOsgU EGSVtI+wFA4aN3B452Sa0gJXHXU7My5aB8nEjfxZnpfjp4fUvKG3spQeaZuaj6Fa +eZiCLWZzmrGdtTf3RV6cTDmn4ny7ohgFaW13LuA9T0CNMTFtqJ+IluHDzWdsBr/ ZHR52AGRiqj/k1cNNQrJSBV+Hz4TInM= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net