$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft File: 2-mhAMSp66SyzRomcTKN73j-duE.mft (raw, json) Hash identifier: cMUqgtjtiE+ZVIj/FSwqi17rLXEqWZ3e8Xczi1OqXws= Subject key identifier: 83:56:BA:D2:37:D5:0E:74:9D:EC:9D:58:50:B2:E2:5D:A3:79:AE:42 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 0605 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft Manifest number: 0601 Signing time: Sat 26 Apr 2025 22:33:56 +0000 Manifest this update: Sat 26 Apr 2025 22:33:56 +0000 Manifest next update: Sat 03 May 2025 22:33:56 +0000 Files and hashes: 1: 2-mhAMSp66SyzRomcTKN73j-duE.crl (hash: tG5svq/pJ7WFa1XFGCgTvZj2s0WSF/eutOaTjV2T1to=) 2: A0D57302A33D11EBA479491CC4F9AE02.roa (hash: 29wrV3aOIMAFp0GF5fJZDO6ldPmXnBQp+J/+s7gWVoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1541 (0x605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: Apr 26 22:33:56 2025 GMT Not After : May 3 22:33:56 2025 GMT Subject: CN=680d5f54-b9fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f7:61:d8:77:fa:a9:98:7c:95:ff:04:66:ba: 99:a9:93:9a:43:c8:85:21:e1:99:29:93:22:95:0a: 75:37:e3:1d:38:4f:40:79:93:d4:79:26:6d:dd:c2: 00:25:d6:9d:98:56:a2:78:d0:35:ad:97:8e:ec:96: 78:99:1f:93:48:6e:d5:e1:a8:dd:ac:90:5b:0b:de: d9:fd:a9:e0:2f:31:82:ff:89:2d:3a:f5:18:4a:d6: e0:9d:2d:69:31:4a:18:d3:e5:46:9f:52:5e:36:76: cf:cd:f7:6f:bb:af:e8:e7:a6:63:b7:19:81:7e:27: bb:39:43:94:9a:8a:4c:31:c7:27:9e:fe:7b:ab:2f: a2:c4:d8:da:34:fd:fe:3c:cc:f7:13:5e:50:23:77: e8:b2:b7:f3:1b:18:70:f0:05:fa:89:bf:21:0c:4e: 83:89:c7:3a:5d:7d:e9:aa:2b:0c:95:f9:8c:99:4d: db:61:83:51:1f:76:b5:1e:99:27:11:d2:f9:76:b1: 87:7c:d0:8c:80:1d:3e:f7:34:06:62:97:f7:14:29: 90:bd:28:16:ae:27:4c:b9:cb:6d:8c:e0:f6:d8:ba: 63:f4:82:a3:ea:49:6e:12:e7:5f:88:5d:dd:5a:df: fe:41:50:a7:39:1f:b3:0f:fd:5b:de:13:b4:b5:f8: d2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:56:BA:D2:37:D5:0E:74:9D:EC:9D:58:50:B2:E2:5D:A3:79:AE:42 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:a1:66:dc:a4:59:08:30:8f:be:8f:77:79:9f:2f:9f:91:ce: fc:04:30:d7:43:88:25:ff:a1:81:85:21:51:43:dd:0c:25:1c: 86:64:a9:46:c8:94:6b:99:9f:d5:8a:b8:5a:76:dd:04:62:ee: 08:3c:c4:1a:0a:2a:64:de:7d:25:61:3f:e5:11:5f:84:0b:1f: ed:e6:f1:a2:a2:8c:75:ef:84:4d:3c:6e:9a:43:e7:42:4b:e0: b3:1d:7b:92:b3:20:4e:42:88:8f:e9:b8:61:a3:d3:16:bb:81: 88:34:a9:a5:45:a6:94:25:fd:af:68:f6:af:d4:01:c4:93:f7: f5:e3:ef:e2:e6:f7:11:9a:c3:8c:ee:2e:0c:a6:01:fe:ba:8e: a1:1f:c6:b9:fe:39:0d:9a:ba:a8:a0:ea:ed:68:21:32:33:57: c3:d1:f4:1b:ce:fa:d8:ab:b6:7c:10:f0:92:e0:02:5f:ba:ff: 20:a2:40:eb:f5:23:fd:45:37:52:91:f4:c8:17:98:d5:40:46: e0:37:08:67:7d:da:39:1d:6a:01:ce:0d:e0:7b:9f:3b:90:62: bb:98:8e:6f:d5:bd:44:12:3c:9e:fe:4d:25:7b:3b:03:bd:5c: 28:96:87:78:0f:ad:90:fe:fa:67:8b:83:25:46:a4:ba:e9:d7: 8d:bf:e2:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNDI2MjIzMzU2WhcNMjUwNTAzMjIzMzU2WjAYMRYwFAYD VQQDEw02ODBkNWY1NC1iOWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pdh2Hf6qZh8lf8EZrqZqZOaQ8iFIeGZKZMilQp1N+MdOE9AeZPUeSZt3cIA JdadmFaieNA1rZeO7JZ4mR+TSG7V4ajdrJBbC97Z/angLzGC/4ktOvUYStbgnS1p MUoY0+VGn1JeNnbPzfdvu6/o56ZjtxmBfie7OUOUmopMMccnnv57qy+ixNjaNP3+ PMz3E15QI3fosrfzGxhw8AX6ib8hDE6Dicc6XX3pqisMlfmMmU3bYYNRH3a1Hpkn EdL5drGHfNCMgB0+9zQGYpf3FCmQvSgWridMucttjOD22Lpj9IKj6kluEudfiF3d Wt/+QVCnOR+zD/1b3hO0tfjSMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINWutI3 1Q50neydWFCy4l2jea5CMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qjc0RC8xRDcxM0QwOEEzM0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2 U3l6Um9tY1RLTjczai1kdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZoWbcpFkIMI++j3d5ny+fkc78BDDXQ4gl/6GBhSFRQ90MJRyGZKlG yJRrmZ/Virhadt0EYu4IPMQaCipk3n0lYT/lEV+ECx/t5vGioox174RNPG6aQ+dC S+CzHXuSsyBOQoiP6bhho9MWu4GINKmlRaaUJf2vaPav1AHEk/f14+/i5vcRmsOM 7i4MpgH+uo6hH8a5/jkNmrqooOrtaCEyM1fD0fQbzvrYq7Z8EPCS4AJfuv8gokDr 9SP9RTdSkfTIF5jVQEbgNwhnfdo5HWoBzg3ge587kGK7mI5v1b1EEjye/k0lezsD vVwolod4D62Q/vpni4MlRqS66deNv+Jr -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:06 2025 by rpki-client on console.sobornost.net