$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD705/BA1DB762FB7411EC96A5B430C4F9AE02/dHzHy9sivZpILTNRgJ3qm8FGAoQ.mft File: dHzHy9sivZpILTNRgJ3qm8FGAoQ.mft (raw, json) Hash identifier: 6XjXQF7fd5AenrAcUB+323RrUJ2XLVMDPAinVAlk5fE= Subject key identifier: 85:8B:5B:A3:3E:45:93:44:4D:FF:E5:84:59:A6:51:A5:27:3E:E5:1A Authority key identifier: 74:7C:C7:CB:DB:22:BD:9A:48:2D:33:51:80:9D:EA:9B:C1:46:02:84 Certificate issuer: /CN=A91AD705/serialNumber=747CC7CBDB22BD9A482D3351809DEA9BC1460284 Certificate serial: 029B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHzHy9sivZpILTNRgJ3qm8FGAoQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD705/BA1DB762FB7411EC96A5B430C4F9AE02/dHzHy9sivZpILTNRgJ3qm8FGAoQ.mft Manifest number: 0297 Signing time: Sun 27 Apr 2025 01:10:31 +0000 Manifest this update: Sun 27 Apr 2025 01:10:30 +0000 Manifest next update: Sun 04 May 2025 01:10:30 +0000 Files and hashes: 1: dHzHy9sivZpILTNRgJ3qm8FGAoQ.crl (hash: hNJUgUb/CmxNtzk8itA+bbJ9Z131sG4+8xFVkw7PKtk=) 2: D628208AFB7611EC96592431C4F9AE02.roa (hash: tDCtD935JtRcgKFjdurBw3JcU/lSCjaGyyfEOwNOFIg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD705/BA1DB762FB7411EC96A5B430C4F9AE02/dHzHy9sivZpILTNRgJ3qm8FGAoQ.crl rsync://rpki.apnic.net/member_repository/A91AD705/BA1DB762FB7411EC96A5B430C4F9AE02/dHzHy9sivZpILTNRgJ3qm8FGAoQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHzHy9sivZpILTNRgJ3qm8FGAoQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD705, serialNumber=747CC7CBDB22BD9A482D3351809DEA9BC1460284 Validity Not Before: Apr 27 01:10:30 2025 GMT Not After : May 4 01:10:30 2025 GMT Subject: CN=680d8407-b240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:00:0c:6c:f8:63:5d:83:e7:9d:70:48:14:9f: bb:c0:2f:99:5c:6f:14:95:0f:38:d7:0d:08:98:0b: 54:d7:06:89:d9:2e:42:c3:5f:c8:c4:34:85:59:87: a7:0a:32:f7:23:ca:7a:ed:f1:a2:84:b1:78:34:2e: e3:d8:69:cf:3c:06:ef:f0:21:d4:8d:fd:a2:6c:79: 06:41:2e:c1:af:20:e0:c7:df:4d:30:ae:df:23:db: 7b:d8:dd:aa:22:f7:c6:c0:9c:60:ab:01:81:80:10: 14:e6:ef:63:c8:0e:8f:03:2c:6c:34:40:f1:18:33: 6b:d5:7e:ab:72:6e:9f:e9:22:ec:ce:3e:09:00:22: 25:5f:e9:4f:ec:c2:86:14:1c:9c:14:0b:96:e0:ad: 21:8b:a7:c6:fa:22:13:d7:25:20:db:aa:6d:09:ac: 59:ee:30:e0:d5:2a:28:7a:e1:0c:82:00:f7:60:5f: c6:f9:be:30:be:ac:ee:b2:25:85:2a:77:bf:f4:46: df:d1:84:b1:64:d9:e6:44:8c:d2:9f:6c:57:c0:6e: 86:18:36:e8:3d:51:9d:48:c5:d7:6e:19:dc:fa:ad: b7:05:04:1e:71:7a:46:10:52:11:7e:c7:38:4c:d3: 22:1f:ea:55:44:b6:f8:02:cd:ee:18:02:76:61:27: 9a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8B:5B:A3:3E:45:93:44:4D:FF:E5:84:59:A6:51:A5:27:3E:E5:1A X509v3 Authority Key Identifier: keyid:74:7C:C7:CB:DB:22:BD:9A:48:2D:33:51:80:9D:EA:9B:C1:46:02:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD705/BA1DB762FB7411EC96A5B430C4F9AE02/dHzHy9sivZpILTNRgJ3qm8FGAoQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dHzHy9sivZpILTNRgJ3qm8FGAoQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD705/BA1DB762FB7411EC96A5B430C4F9AE02/dHzHy9sivZpILTNRgJ3qm8FGAoQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:6d:78:2b:c4:ab:7d:54:0f:4f:79:6d:fe:27:4f:c4:05:05: b3:67:31:d6:49:34:ca:09:b0:1a:12:ae:a6:a5:f6:d3:18:b6: 92:37:61:be:7b:6e:61:7e:00:b3:7f:74:bb:7d:06:42:f7:7c: 1b:19:90:df:92:6c:b8:b3:89:e5:9a:7c:04:95:af:5b:86:bb: c8:3e:da:eb:46:3b:4a:39:19:ce:04:27:7a:67:2f:2a:fa:eb: ee:95:bd:d8:81:d4:56:69:a1:67:a4:7f:eb:c7:b5:8c:ac:cb: 5b:8b:d4:45:ba:1c:2b:e5:c5:e2:22:55:c9:ed:61:f0:c1:1e: d4:b9:3a:98:7f:41:f9:61:a9:eb:3e:55:e0:93:09:9c:12:88: da:2c:9e:8c:36:fe:28:24:5b:01:4d:a0:ea:4c:fb:db:59:ff: 83:06:93:3f:2a:5a:6d:46:13:53:6b:03:8c:9d:59:a4:1c:d8: 79:0a:c9:f7:08:6b:8b:73:56:08:53:24:84:29:82:33:2c:28: bf:70:44:b9:e8:22:1f:4f:16:de:37:b7:1f:19:a5:d3:6f:00: c9:1e:ac:6b:f7:24:0f:5e:6b:88:c0:dc:0e:11:d0:88:d5:bb: 0f:ca:d1:cf:b9:cc:52:0b:b8:db:9b:d0:b6:03:bd:fb:ec:e6: 3d:98:76:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQ3MDUxMTAvBgNVBAUTKDc0N0NDN0NCREIyMkJEOUE0ODJEMzM1MTgwOURFQTlC QzE0NjAyODQwHhcNMjUwNDI3MDExMDMwWhcNMjUwNTA0MDExMDMwWjAYMRYwFAYD VQQDEw02ODBkODQwNy1iMjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgAMbPhjXYPnnXBIFJ+7wC+ZXG8UlQ841w0ImAtU1waJ2S5Cw1/IxDSFWYen CjL3I8p67fGihLF4NC7j2GnPPAbv8CHUjf2ibHkGQS7BryDgx99NMK7fI9t72N2q IvfGwJxgqwGBgBAU5u9jyA6PAyxsNEDxGDNr1X6rcm6f6SLszj4JACIlX+lP7MKG FBycFAuW4K0hi6fG+iIT1yUg26ptCaxZ7jDg1SooeuEMggD3YF/G+b4wvqzusiWF Kne/9Ebf0YSxZNnmRIzSn2xXwG6GGDboPVGdSMXXbhnc+q23BQQecXpGEFIRfsc4 TNMiH+pVRLb4As3uGAJ2YSeajQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWLW6M+ RZNETf/lhFmmUaUnPuUaMB8GA1UdIwQYMBaAFHR8x8vbIr2aSC0zUYCd6pvBRgKE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDcwNS9CQTFEQjc2MkZC NzQxMUVDOTZBNUI0MzBDNEY5QUUwMi9kSHpIeTlzaXZacElMVE5SZ0ozcW04RkdB b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RIekh5OXNpdlpwSUxUTlJnSjNxbThGR0FvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RDcwNS9CQTFEQjc2MkZCNzQxMUVDOTZBNUI0MzBDNEY5QUUwMi9kSHpIeTlzaXZa cElMVE5SZ0ozcW04RkdBb1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxbXgrxKt9VA9PeW3+J0/EBQWzZzHWSTTKCbAaEq6mpfbTGLaSN2G+ e25hfgCzf3S7fQZC93wbGZDfkmy4s4nlmnwEla9bhrvIPtrrRjtKORnOBCd6Zy8q +uvulb3YgdRWaaFnpH/rx7WMrMtbi9RFuhwr5cXiIlXJ7WHwwR7UuTqYf0H5Yanr PlXgkwmcEojaLJ6MNv4oJFsBTaDqTPvbWf+DBpM/KlptRhNTawOMnVmkHNh5Csn3 CGuLc1YIUySEKYIzLCi/cES56CIfTxbeN7cfGaXTbwDJHqxr9yQPXmuIwNwOEdCI 1bsPytHPucxSC7jbm9C2A7377OY9mHbd -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:07 2025 by rpki-client on console.sobornost.net