$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft File: 7loKCg1eD1xijRpwW1rGj-8gxG8.mft (raw, json) Hash identifier: 0HLGFHBmEuHTEVa5J7E2JiIBqKqhI00ZcIzwpzFzbgQ= Subject key identifier: 4B:A1:B3:FC:C8:FB:E2:1A:4A:7B:43:6E:A5:98:35:F0:F9:1F:12:F6 Authority key identifier: EE:5A:0A:0A:0D:5E:0F:5C:62:8D:1A:70:5B:5A:C6:8F:EF:20:C4:6F Certificate issuer: /CN=A91AB574/serialNumber=EE5A0A0A0D5E0F5C628D1A705B5AC68FEF20C46F Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7loKCg1eD1xijRpwW1rGj-8gxG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft Manifest number: D0 Signing time: Sun 27 Apr 2025 04:34:07 +0000 Manifest this update: Sun 27 Apr 2025 04:34:07 +0000 Manifest next update: Sun 04 May 2025 04:34:07 +0000 Files and hashes: 1: 7loKCg1eD1xijRpwW1rGj-8gxG8.crl (hash: QgRv9l9MIDYhs/lIk74GXawnO4onCO5jrIP8atNYTUM=) 2: 521FC3D8E74211EE9A78EC6EC4F9AE02.roa (hash: Evu2uB2GkC2WPAp+Ym3GMN1P169UzI1o+wjhgoORlbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.crl rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7loKCg1eD1xijRpwW1rGj-8gxG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB574, serialNumber=EE5A0A0A0D5E0F5C628D1A705B5AC68FEF20C46F Validity Not Before: Apr 27 04:34:07 2025 GMT Not After : May 4 04:34:07 2025 GMT Subject: CN=680db3bf-596a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:44:9c:30:5e:a1:7c:7a:d6:1c:21:b3:13:c3: 16:50:d6:f6:07:af:01:f9:bf:dd:88:be:df:e1:a7: 79:af:61:52:2f:23:57:ba:d7:10:e5:18:36:d1:6e: 31:55:05:d7:f9:96:1a:86:10:9f:5f:d7:17:21:bc: 10:3b:dc:a4:f2:53:17:1e:ac:57:50:df:46:28:6f: fe:fa:3d:b7:17:4b:f9:73:0d:c4:24:5d:a5:70:85: 97:22:f8:8c:1c:20:e3:c8:14:a9:43:62:7f:8e:16: 77:a3:99:a8:08:be:7e:6c:7a:57:7a:2b:da:f0:af: ec:b2:5f:9e:be:4b:1a:5d:3b:5b:66:c9:fb:61:9a: 90:3f:bf:99:16:7d:6b:ee:ab:80:6f:b7:f7:17:c0: 3f:e8:0d:57:00:e4:67:97:5e:1e:bd:a3:d9:e0:05: 46:85:d1:11:3e:76:64:ce:53:96:e1:6a:86:d2:2f: dd:90:89:7f:49:94:5b:42:ec:91:c2:09:af:fc:cc: b6:42:60:04:d1:5d:22:f7:c3:aa:9c:46:19:43:d3: ee:55:66:cd:99:68:9c:80:20:e7:b2:c9:fc:9d:5d: ea:e2:24:4a:79:16:50:de:85:f8:03:04:eb:c9:cd: 0d:27:a2:7e:99:7a:43:c9:94:73:55:fb:7b:33:51: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:B3:FC:C8:FB:E2:1A:4A:7B:43:6E:A5:98:35:F0:F9:1F:12:F6 X509v3 Authority Key Identifier: keyid:EE:5A:0A:0A:0D:5E:0F:5C:62:8D:1A:70:5B:5A:C6:8F:EF:20:C4:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7loKCg1eD1xijRpwW1rGj-8gxG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB574/F07EBA26E74111EE93E8FC6DC4F9AE02/7loKCg1eD1xijRpwW1rGj-8gxG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:c1:59:a0:59:4e:6c:f6:06:67:b5:18:a5:3a:8c:e4:1a:09: b8:0a:e9:fc:08:1a:7e:5e:77:ef:89:94:70:43:a0:67:ef:6f: 4c:70:b5:77:37:8a:ea:97:1c:42:8e:9f:52:81:7a:26:6f:ee: e1:77:79:5c:d5:37:8d:3e:ab:1b:ee:3e:e9:ec:22:89:15:01: 12:f2:7b:a8:57:a8:c8:af:5c:f4:05:fd:60:ba:f3:55:04:1b: 1a:6a:c2:6c:79:51:e8:c8:b7:3f:28:c8:11:52:fb:85:58:37: c5:5c:67:60:46:f4:ee:57:b9:7f:f6:1a:67:57:fa:19:af:c3: c2:cc:84:7e:08:d5:c7:82:b7:e9:01:52:71:fe:00:6d:a2:e5: c8:1c:85:9b:60:37:78:dd:2d:37:f7:93:e1:51:cc:72:00:4e: 87:63:41:0e:62:ec:c7:af:ba:8f:9c:39:7f:b6:36:a5:71:7b: 52:1f:bc:15:e7:8d:80:58:b3:f8:fa:08:43:7a:ff:61:0d:42: 0f:cc:76:9a:65:0f:b6:65:08:bc:fc:5c:4e:f6:81:cc:1e:47: 5b:4e:29:31:74:0c:24:2f:76:73:b3:44:af:f6:1c:20:53:ca: 47:c3:f5:b9:af:93:c3:42:10:26:0b:ab:71:df:de:02:fb:e2: 9a:1b:75:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI1NzQxMTAvBgNVBAUTKEVFNUEwQTBBMEQ1RTBGNUM2MjhEMUE3MDVCNUFDNjhG RUYyMEM0NkYwHhcNMjUwNDI3MDQzNDA3WhcNMjUwNTA0MDQzNDA3WjAYMRYwFAYD VQQDEw02ODBkYjNiZi01OTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6EScMF6hfHrWHCGzE8MWUNb2B68B+b/diL7f4ad5r2FSLyNXutcQ5Rg20W4x VQXX+ZYahhCfX9cXIbwQO9yk8lMXHqxXUN9GKG/++j23F0v5cw3EJF2lcIWXIviM HCDjyBSpQ2J/jhZ3o5moCL5+bHpXeiva8K/ssl+evksaXTtbZsn7YZqQP7+ZFn1r 7quAb7f3F8A/6A1XAORnl14evaPZ4AVGhdERPnZkzlOW4WqG0i/dkIl/SZRbQuyR wgmv/My2QmAE0V0i98OqnEYZQ9PuVWbNmWicgCDnssn8nV3q4iRKeRZQ3oX4AwTr yc0NJ6J+mXpDyZRzVft7M1EAXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuhs/zI ++IaSntDbqWYNfD5HxL2MB8GA1UdIwQYMBaAFO5aCgoNXg9cYo0acFtaxo/vIMRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjU3NC9GMDdFQkEyNkU3 NDExMUVFOTNFOEZDNkRDNEY5QUUwMi83bG9LQ2cxZUQxeGlqUnB3VzFyR2otOGd4 RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdsb0tDZzFlRDF4aWpScHdXMXJHai04Z3hHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjU3NC9GMDdFQkEyNkU3NDExMUVFOTNFOEZDNkRDNEY5QUUwMi83bG9LQ2cxZUQx eGlqUnB3VzFyR2otOGd4RzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCowVmgWU5s9gZntRilOozkGgm4Cun8CBp+XnfviZRwQ6Bn729McLV3 N4rqlxxCjp9SgXomb+7hd3lc1TeNPqsb7j7p7CKJFQES8nuoV6jIr1z0Bf1guvNV BBsaasJseVHoyLc/KMgRUvuFWDfFXGdgRvTuV7l/9hpnV/oZr8PCzIR+CNXHgrfp AVJx/gBtouXIHIWbYDd43S0395PhUcxyAE6HY0EOYuzHr7qPnDl/tjalcXtSH7wV 542AWLP4+ghDev9hDUIPzHaaZQ+2ZQi8/FxO9oHMHkdbTikxdAwkL3Zzs0Sv9hwg U8pHw/W5r5PDQhAmC6tx394C++KaG3W8 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net