$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft File: OU6gholcbxfZNlSKMiOLgs95KU0.mft (raw, json) Hash identifier: m4C3dcrXsRFCzUFyP4BlXO95aavirO454VancCqR2dM= Subject key identifier: F0:29:73:4E:FF:46:60:88:97:FB:99:A4:26:BD:E5:EE:B4:C8:D8:F5 Authority key identifier: 39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D Certificate issuer: /CN=A91AAE16/serialNumber=394EA086895C6F17D936548A32238B82CF79294D Certificate serial: 0FA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft Manifest number: 0F9A Signing time: Mon 28 Apr 2025 17:46:54 +0000 Manifest this update: Mon 28 Apr 2025 17:46:53 +0000 Manifest next update: Mon 05 May 2025 17:46:53 +0000 Files and hashes: 1: OU6gholcbxfZNlSKMiOLgs95KU0.crl (hash: 9TdB6Fk52Db7vUwZLZoO9v39ypXBCyZ4Z/kjbQshgQM=) 2: 68DA14E65BB211E9BF474F16C4F9AE02.roa (hash: m7Wy3YFoVjfJbST/TvC6OeEgaS0QkcmFqzNu4bjOVjA=) 3: B2409F28DF9311EEBF6BC36DC4F9AE02.roa (hash: J6dUTU+B3rYnE6IuMVXfZpLt706z/3t+VN2bTVaCwns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4007 (0xfa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE16, serialNumber=394EA086895C6F17D936548A32238B82CF79294D Validity Not Before: Apr 28 17:46:53 2025 GMT Not After : May 5 17:46:53 2025 GMT Subject: CN=680fbf0e-2744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:27:d2:77:fc:56:f7:d0:9d:d3:f4:7a:80: bc:ed:47:d6:c6:d9:e1:bb:99:11:c2:69:16:9f:da: d9:e3:60:97:8c:36:e3:14:ce:44:34:4e:40:3a:4d: bc:1d:ff:59:99:5d:40:d4:f4:00:b7:47:09:e5:bd: bb:45:9e:6c:37:79:6d:00:cf:34:8c:ce:ed:45:c1: 79:58:cb:19:2d:d1:82:27:6f:bf:5b:92:ca:50:ea: 10:75:b5:5e:6e:97:7d:bd:fb:04:16:b3:62:68:aa: 41:74:37:3c:dd:e1:e2:ac:3e:4e:c1:9d:3e:a3:60: f3:ab:b4:6b:ca:e9:dc:d4:c3:03:74:02:f7:8b:e0: 76:f9:62:a2:64:12:43:37:1b:7e:7f:bf:f7:3e:2c: bc:22:ff:f9:83:b6:2a:10:79:37:94:5a:4f:cf:b9: d5:8f:a2:3a:20:ca:1a:df:da:d6:ae:59:55:c2:a6: f1:25:81:20:ce:d8:8a:99:96:37:96:82:c3:9f:f6: 64:01:f3:19:c2:14:b7:4b:b2:5c:bc:07:37:02:3e: 96:11:eb:7e:6a:6d:61:08:d8:40:93:c3:c9:66:14: d6:df:d9:b3:21:5b:b9:c6:45:d1:60:b3:a7:88:8f: fa:ba:ed:8b:63:cb:e4:b7:0f:26:0c:f8:a1:cb:7b: ca:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:29:73:4E:FF:46:60:88:97:FB:99:A4:26:BD:E5:EE:B4:C8:D8:F5 X509v3 Authority Key Identifier: keyid:39:4E:A0:86:89:5C:6F:17:D9:36:54:8A:32:23:8B:82:CF:79:29:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OU6gholcbxfZNlSKMiOLgs95KU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE16/174885505BB111E98B103B13C4F9AE02/OU6gholcbxfZNlSKMiOLgs95KU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:84:c0:6d:d1:d8:9e:ab:d4:1a:3b:32:e2:ff:a8:f3:db:f3: 88:e6:84:b9:41:8a:5e:95:b0:30:ec:24:71:59:a6:4a:20:51: e7:0e:b7:8b:fe:d4:89:78:95:87:fc:87:5b:eb:14:32:9f:3d: 3a:62:6e:b6:ca:ba:5d:c9:6e:54:83:3e:5b:da:5d:bb:53:58: 5e:82:c4:9e:a0:cd:71:ef:a8:51:4d:1d:3d:bf:fc:10:a1:4b: a6:3f:fe:6a:d1:22:00:0c:bc:db:c2:15:4d:73:80:ab:82:fa: e3:17:53:00:5b:dc:33:7d:bc:10:f0:73:fd:9f:b6:2f:a4:49: 6f:87:01:c0:9c:23:ef:ed:e6:89:2f:81:42:27:cd:ba:89:9e: ec:a3:bc:b3:3a:15:95:03:68:c9:29:21:14:c7:aa:5e:b1:97: 0e:9b:11:66:c8:93:47:40:0c:77:d3:1f:18:aa:e4:60:09:fb: e4:83:df:6a:ae:62:46:86:75:ca:18:56:b0:e3:6b:d6:75:f2: ea:a0:50:03:02:37:c1:31:de:97:8e:44:0d:a3:58:d6:55:30: 9c:cf:a6:28:1a:46:4e:c3:86:70:99:65:d0:72:26:0f:59:f9: 18:d6:07:e3:97:65:86:f8:cb:92:2a:e6:90:a1:7f:ee:52:22: f5:3a:47:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFMTYxMTAvBgNVBAUTKDM5NEVBMDg2ODk1QzZGMTdEOTM2NTQ4QTMyMjM4Qjgy Q0Y3OTI5NEQwHhcNMjUwNDI4MTc0NjUzWhcNMjUwNTA1MTc0NjUzWjAYMRYwFAYD VQQDEw02ODBmYmYwZS0yNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9wn0nf8VvfQndP0eoC87UfWxtnhu5kRwmkWn9rZ42CXjDbjFM5ENE5AOk28 Hf9ZmV1A1PQAt0cJ5b27RZ5sN3ltAM80jM7tRcF5WMsZLdGCJ2+/W5LKUOoQdbVe bpd9vfsEFrNiaKpBdDc83eHirD5OwZ0+o2Dzq7Rryunc1MMDdAL3i+B2+WKiZBJD Nxt+f7/3Piy8Iv/5g7YqEHk3lFpPz7nVj6I6IMoa39rWrllVwqbxJYEgztiKmZY3 loLDn/ZkAfMZwhS3S7JcvAc3Aj6WEet+am1hCNhAk8PJZhTW39mzIVu5xkXRYLOn iI/6uu2LY8vktw8mDPihy3vKUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPApc07/ RmCIl/uZpCa95e60yNj1MB8GA1UdIwQYMBaAFDlOoIaJXG8X2TZUijIji4LPeSlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUUxNi8xNzQ4ODU1MDVC QjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4ZlpObFNLTWlPTGdzOTVL VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09VNmdob2xjYnhmWk5sU0tNaU9MZ3M5NUtVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUUxNi8xNzQ4ODU1MDVCQjExMUU5OEIxMDNCMTNDNEY5QUUwMi9PVTZnaG9sY2J4 ZlpObFNLTWlPTGdzOTVLVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEhMBt0dieq9QaOzLi/6jz2/OI5oS5QYpelbAw7CRxWaZKIFHnDreL /tSJeJWH/Idb6xQynz06Ym62yrpdyW5Ugz5b2l27U1hegsSeoM1x76hRTR09v/wQ oUumP/5q0SIADLzbwhVNc4CrgvrjF1MAW9wzfbwQ8HP9n7YvpElvhwHAnCPv7eaJ L4FCJ826iZ7so7yzOhWVA2jJKSEUx6pesZcOmxFmyJNHQAx30x8YquRgCfvkg99q rmJGhnXKGFaw42vWdfLqoFADAjfBMd6XjkQNo1jWVTCcz6YoGkZOw4ZwmWXQciYP WfkY1gfjl2WG+MuSKuaQoX/uUiL1Okep -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:53 2025 by rpki-client on console.sobornost.net