$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft File: HUXnKUVKJCRGewPPyZfX6xhK52Y.mft (raw, json) Hash identifier: z1m6600LPSaQ9rz2S3tXg/GO88nsqlb0hKet2wjWhbM= Subject key identifier: 48:58:38:93:A3:D9:14:08:C1:04:79:4B:0A:3C:4B:22:8A:64:4E:9C Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft Manifest number: 39 Signing time: Sun 27 Apr 2025 06:21:51 +0000 Manifest this update: Sun 27 Apr 2025 06:21:50 +0000 Manifest next update: Sun 04 May 2025 06:21:50 +0000 Files and hashes: 1: HUXnKUVKJCRGewPPyZfX6xhK52Y.crl (hash: r7Ps5OMjURxzbFhRsfIv+991aH0VH3aog/CbLUQBsNw=) 2: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (hash: ky3VVMd3//RxqftA8fTaKeSx7YmcJGB1DWo9MLV8eHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Apr 27 06:21:50 2025 GMT Not After : May 4 06:21:50 2025 GMT Subject: CN=680dccfe-2f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:23:45:8e:aa:b1:a7:5c:f1:bb:53:ff:93:91: 1e:f0:94:4b:67:e2:0c:fb:3a:3e:ae:60:66:aa:da: f3:d1:ee:9b:ac:ae:6a:47:a6:cf:59:81:7b:0c:38: cf:ea:3a:7c:70:ea:f0:2e:f0:f3:39:f7:6d:09:7d: df:52:44:14:56:d1:b2:38:78:78:ab:24:49:e2:0e: 07:82:ab:cf:ce:31:c3:0c:c1:66:f9:b8:3b:e3:ac: 25:6b:4e:39:9e:bb:63:78:05:f8:fd:35:44:86:9f: c9:2f:9d:36:fc:68:9e:5d:67:71:ef:03:eb:dc:8b: 31:37:eb:ef:7e:6b:78:8b:52:78:98:d1:ba:3d:b3: fb:32:97:dd:38:af:b2:ab:5a:43:c9:b6:b5:12:35: 36:69:01:aa:ef:b5:6b:ec:d3:fe:b2:aa:d4:48:4f: 41:dc:29:4a:e1:62:3c:55:5b:3d:0b:2c:b4:9b:22: 89:f6:98:c2:75:c1:7f:b6:a9:e6:d5:53:7d:01:f3: 86:4c:79:43:ad:c9:f8:61:49:2b:ff:fe:01:7f:ff: 8e:7c:77:6b:09:f4:9e:d0:d0:ad:c5:76:27:f9:87: da:57:ad:a1:21:ef:f9:fa:c5:1a:3c:2a:92:f4:4f: 93:bb:14:ac:f9:c0:92:aa:f0:19:e7:ac:6f:e9:c8: 4a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:58:38:93:A3:D9:14:08:C1:04:79:4B:0A:3C:4B:22:8A:64:4E:9C X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:b0:e7:ae:77:37:da:e1:5a:48:ab:8b:44:63:bf:60:30:c9: a2:d1:74:21:a0:5d:d4:23:92:42:1e:f6:bc:86:a2:ee:a7:13: 4b:5c:ba:e1:7d:c5:d5:ee:31:b6:5b:6f:bb:4f:44:a6:29:13: 1f:ed:70:06:6f:00:b3:03:c5:19:72:6a:aa:61:d9:fa:86:45: 81:5f:b6:9b:5b:6a:70:94:ff:4c:6e:fe:92:7e:b4:6a:e1:a4: c2:f3:1e:99:25:4e:59:fc:d0:2a:7d:bf:f2:1c:f2:97:1b:c0: 1a:90:21:62:49:a7:53:f7:fd:73:97:87:43:92:ca:1c:15:d8: 39:4d:13:fe:cd:2e:62:e6:96:4a:65:65:47:47:dd:7f:4a:50: 00:1e:7b:45:c2:69:49:27:a1:1a:6d:bf:ed:78:75:32:bc:d4: e1:5c:2b:3c:22:b7:68:da:d3:ab:c4:a3:53:f3:fa:dd:0d:89: 59:ab:a9:f4:38:d6:bf:32:63:7f:d8:e8:c4:5b:cd:a9:5e:cc: 81:8a:9c:dd:52:1d:3c:41:c3:7e:5d:38:33:fe:9e:3b:ca:9c: af:5e:65:90:94:cd:56:c7:6b:2e:49:da:fe:a4:0a:c4:22:cb: db:5d:87:8f:34:c6:c3:1d:cb:14:93:61:02:d8:f0:ae:2e:29: 01:06:85:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoMUQ0NUU3Mjk0NTRBMjQyNDQ2N0IwM0NGQzk5N0Q3RUIx ODRBRTc2NjAeFw0yNTA0MjcwNjIxNTBaFw0yNTA1MDQwNjIxNTBaMBgxFjAUBgNV BAMTDTY4MGRjY2ZlLTJmNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNI0WOqrGnXPG7U/+TkR7wlEtn4gz7Oj6uYGaq2vPR7pusrmpHps9ZgXsMOM/q Onxw6vAu8PM5920Jfd9SRBRW0bI4eHirJEniDgeCq8/OMcMMwWb5uDvjrCVrTjme u2N4Bfj9NUSGn8kvnTb8aJ5dZ3HvA+vcizE36+9+a3iLUniY0bo9s/syl904r7Kr WkPJtrUSNTZpAarvtWvs0/6yqtRIT0HcKUrhYjxVWz0LLLSbIon2mMJ1wX+2qebV U30B84ZMeUOtyfhhSSv//gF//458d2sJ9J7Q0K3Fdif5h9pXraEh7/n6xRo8KpL0 T5O7FKz5wJKq8BnnrG/pyErfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUSFg4k6PZ FAjBBHlLCjxLIopkTpwwHwYDVR0jBBgwFoAUHUXnKUVKJCRGewPPyZfX6xhK52Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzU4MjNBRjg2Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFVYbktVVktKQ1JHZXdQUHlaZlg2eGhLNTJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx NURDLzU4MjNBRjg2Q0VFRDExRUZCRDY1NTUxMUM0RjlBRTAyL0hVWG5LVVZLSkNS R2V3UFB5WmZYNnhoSzUyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKGw5653N9rhWkiri0Rjv2AwyaLRdCGgXdQjkkIe9ryGou6nE0tcuuF9 xdXuMbZbb7tPRKYpEx/tcAZvALMDxRlyaqph2fqGRYFftptbanCU/0xu/pJ+tGrh pMLzHpklTln80Cp9v/Ic8pcbwBqQIWJJp1P3/XOXh0OSyhwV2DlNE/7NLmLmlkpl ZUdH3X9KUAAee0XCaUknoRptv+14dTK81OFcKzwit2ja06vEo1Pz+t0NiVmrqfQ4 1r8yY3/Y6MRbzalezIGKnN1SHTxBw35dODP+njvKnK9eZZCUzVbHay5J2v6kCsQi y9tdh480xsMdyxSTYQLY8K4uKQEGhdc= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net