$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: 1Zndn8OcYztN+T8Or10Rg/j7xSlkLS+QGBiYz+yCqfg= Subject key identifier: E7:7B:84:83:4B:E2:02:42:D3:0D:54:47:DB:24:0F:95:57:B5:10:7F Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 014D Signing time: Sun 27 Apr 2025 03:16:36 +0000 Manifest this update: Sun 27 Apr 2025 03:16:35 +0000 Manifest next update: Sun 04 May 2025 03:16:35 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: DChHMNA/GL+d2jsauIEMHBac+HMWvyVL1/4VT9agCNI=) 2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: ed3VnRz1sRChg/cFQmGXFi6QslMtcDU5X1xXHCQiW6k=) 3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Apr 27 03:16:35 2025 GMT Not After : May 4 03:16:35 2025 GMT Subject: CN=680da193-8c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:aa:f9:ca:0e:09:3d:08:cb:8e:29:bb:1d:4e: e1:a1:95:6e:dd:d9:da:aa:3c:b3:db:43:fb:f1:5f: 2a:8a:b3:f6:2f:5e:97:09:20:52:f3:d9:b9:f1:2e: 77:aa:26:bf:6f:da:23:8c:7b:c9:d9:1e:db:8e:56: 1d:f6:61:61:8f:12:b3:52:72:71:86:26:46:dc:6b: 73:db:45:e5:4b:cf:2c:f6:d1:0b:ed:f6:0b:f8:cb: 58:de:73:97:eb:e5:3e:76:e3:2f:fc:97:80:17:2c: 3e:ed:f2:c9:43:3a:2e:a5:42:8a:40:4f:03:10:2f: 43:b8:e1:d2:16:ca:33:2c:be:8c:9b:df:93:20:a8: eb:76:fc:46:3d:9f:32:e0:6b:4f:6b:91:c1:0b:f8: 81:85:c4:17:19:65:cb:6a:e7:a9:71:c3:1b:73:d0: a1:7e:4d:1e:69:52:fc:40:66:08:6b:3d:ed:b7:3e: 9a:1d:ef:ce:eb:22:b5:28:75:e5:b8:d4:c5:d9:1f: 4b:5f:f1:ad:5c:b0:15:e4:7c:62:8d:54:06:30:86: 2d:6f:17:31:26:2e:6a:9a:d3:b5:eb:f7:b7:c1:b0: 8a:81:87:ef:f3:4b:5c:78:59:f9:ec:0d:a1:a8:01: 89:3d:9a:ef:ce:7b:e0:49:54:3f:c4:2f:25:c9:34: bd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:7B:84:83:4B:E2:02:42:D3:0D:54:47:DB:24:0F:95:57:B5:10:7F X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:be:83:9f:87:75:76:4d:a4:6c:99:da:b2:93:38:49:fc:09: 3c:a6:da:1d:db:b2:2b:10:6c:42:bd:06:86:53:b3:96:eb:2c: 42:93:d7:54:60:03:97:6e:d6:75:e1:40:14:b1:82:0e:c0:b4: de:16:c1:f5:f0:fd:39:67:b2:66:d2:73:e2:89:03:2e:71:6e: d5:e5:b5:95:b7:aa:5e:71:67:6a:51:dd:14:9c:7a:8b:b5:c9: ed:96:a9:64:5c:21:69:07:d3:76:9c:9e:a9:c4:86:9a:d8:50: 83:26:58:f0:05:eb:cf:95:6b:3b:65:7f:82:c8:e9:37:71:26: 1a:e8:c9:f5:d6:43:cb:26:d6:72:b3:36:89:12:de:36:60:a6: 09:6c:0b:ae:f6:47:a6:eb:34:f8:cc:60:3f:a6:48:98:a9:e0: 04:1c:18:17:e4:f6:38:87:3b:c8:9d:a4:f0:3e:b5:c6:b0:0d: c1:8e:97:5d:b7:3c:94:7a:e7:a3:e0:96:ef:cf:4d:88:05:c1: 79:5a:9b:ce:27:c4:ef:c2:ca:ae:0b:38:b8:8f:e2:3d:1d:15: 73:1a:75:46:f6:0e:66:28:fd:47:75:e9:ba:40:4d:ba:e6:a9: e0:06:fc:d9:48:c6:46:ac:04:0b:5f:78:06:6a:f1:ea:a9:32: 37:40:40:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUwNDI3MDMxNjM1WhcNMjUwNTA0MDMxNjM1WjAYMRYwFAYD VQQDEw02ODBkYTE5My04YzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76r5yg4JPQjLjim7HU7hoZVu3dnaqjyz20P78V8qirP2L16XCSBS89m58S53 qia/b9ojjHvJ2R7bjlYd9mFhjxKzUnJxhiZG3Gtz20XlS88s9tEL7fYL+MtY3nOX 6+U+duMv/JeAFyw+7fLJQzoupUKKQE8DEC9DuOHSFsozLL6Mm9+TIKjrdvxGPZ8y 4GtPa5HBC/iBhcQXGWXLauepccMbc9Chfk0eaVL8QGYIaz3ttz6aHe/O6yK1KHXl uNTF2R9LX/GtXLAV5HxijVQGMIYtbxcxJi5qmtO16/e3wbCKgYfv80tceFn57A2h qAGJPZrvznvgSVQ/xC8lyTS97wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOd7hINL 4gJC0w1UR9skD5VXtRB/MB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByvoOfh3V2TaRsmdqykzhJ/Ak8ptod27IrEGxCvQaGU7OW6yxCk9dU YAOXbtZ14UAUsYIOwLTeFsH18P05Z7Jm0nPiiQMucW7V5bWVt6pecWdqUd0UnHqL tcntlqlkXCFpB9N2nJ6pxIaa2FCDJljwBevPlWs7ZX+CyOk3cSYa6Mn11kPLJtZy szaJEt42YKYJbAuu9kem6zT4zGA/pkiYqeAEHBgX5PY4hzvInaTwPrXGsA3Bjpdd tzyUeuej4Jbvz02IBcF5WpvOJ8TvwsquCzi4j+I9HRVzGnVG9g5mKP1Hdem6QE26 5qngBvzZSMZGrAQLX3gGavHqqTI3QEBk -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:07 2025 by rpki-client on console.sobornost.net