$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: StbjlWMU6Pgfl6ezv3R5oTHmEWdan1PAP5KT7+umb4M= Subject key identifier: D1:91:78:E2:15:2F:FD:94:9A:45:2F:37:91:C3:E9:75:26:4F:F0:C4 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0707 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 0700 Signing time: Sat 26 Apr 2025 21:36:33 +0000 Manifest this update: Sat 26 Apr 2025 21:36:32 +0000 Manifest next update: Sat 03 May 2025 21:36:32 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: yQYzZqsBEwoemMSG5EODA3jjBkmE693eDg8xCeED1RM=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1799 (0x707) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Apr 26 21:36:32 2025 GMT Not After : May 3 21:36:32 2025 GMT Subject: CN=680d51e1-bdf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:89:01:d6:93:58:e8:f9:6d:05:e8:9e:a1:90: ff:33:e4:54:d0:61:f7:31:c0:b5:57:38:8b:88:06: 27:65:3a:79:10:3d:c2:6a:e7:d7:47:47:05:dd:3d: 33:43:ea:b8:70:95:83:52:75:a4:3d:2b:6d:fe:ec: 51:0d:e7:65:73:cd:5f:e7:c6:3b:92:bb:90:5d:ef: 0e:43:dc:96:88:94:00:6f:76:5a:35:ec:5e:a5:fe: e4:32:a5:e9:59:68:d1:e7:ac:9f:ac:41:91:51:94: 8d:d4:17:19:71:e5:29:ce:8f:d3:52:e0:f6:cb:24: 68:6f:8f:9f:00:66:1d:43:bc:02:47:bc:dc:98:fa: 03:f4:3b:87:42:49:3e:94:a4:a1:a9:b5:22:5d:0b: 30:05:9a:3a:dc:24:02:25:5c:c5:d2:55:81:78:1c: 31:34:4f:66:f6:bf:a0:b2:36:86:5d:72:e0:07:80: 3d:77:cd:98:91:d9:37:02:d3:c1:8e:4e:fe:1b:6e: 51:01:31:26:19:03:09:4e:fb:7b:d8:0f:63:aa:a9: 4d:2a:51:a6:ce:ff:2c:64:4a:bf:ea:af:bb:0f:ea: 6b:7c:16:cb:7a:1f:2c:6d:3f:77:8e:9b:d8:f0:a5: 6e:a7:9c:4b:4c:21:7f:99:27:5f:c0:18:0d:51:f9: 8f:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:91:78:E2:15:2F:FD:94:9A:45:2F:37:91:C3:E9:75:26:4F:F0:C4 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:8a:48:c4:bb:94:8b:2f:6f:b0:59:c1:19:59:30:40:55:c8: a1:06:e5:6a:cb:03:65:f7:0f:be:8d:40:7c:89:ba:2b:2e:0b: 98:11:2d:b4:fb:3b:b7:85:cf:16:24:8f:30:67:6f:fc:e7:11: 18:55:0e:a2:4b:53:5d:a3:49:d0:d4:9a:e4:05:3d:a2:c8:64: 5e:b1:4e:01:41:19:2c:a3:d7:64:29:cc:78:9c:1c:e4:5f:73: 74:a3:25:0e:f7:17:19:3e:6b:73:ee:5e:de:42:fc:a8:4a:bf: 23:61:56:31:b1:dc:fa:5d:62:53:bf:ba:b8:23:9e:01:68:69: b4:6a:c3:8f:5a:f7:b9:bb:1c:2e:a1:81:f5:9f:21:9b:b7:a1: 49:27:e8:df:28:e4:7a:cd:d6:37:be:60:e2:1a:6a:3e:16:c4: 04:ff:e3:88:42:cc:8c:a7:ef:66:98:f0:e2:f3:a1:c2:eb:53: c6:72:c5:aa:3c:d2:c5:e7:67:d2:3d:c2:22:14:4a:c2:a0:80: 58:50:41:48:36:4f:49:9d:fc:18:c1:09:c4:b1:11:58:56:d0: f1:5f:a6:9b:2c:04:dd:0c:bc:60:53:94:b5:b2:39:c2:a9:9d: 2a:69:5b:52:07:bc:f8:c3:6e:a3:b5:d4:4f:3c:b7:83:0b:29: aa:b0:68:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUwNDI2MjEzNjMyWhcNMjUwNTAzMjEzNjMyWjAYMRYwFAYD VQQDEw02ODBkNTFlMS1iZGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4okB1pNY6PltBeieoZD/M+RU0GH3McC1VziLiAYnZTp5ED3CaufXR0cF3T0z Q+q4cJWDUnWkPStt/uxRDedlc81f58Y7kruQXe8OQ9yWiJQAb3ZaNexepf7kMqXp WWjR56yfrEGRUZSN1BcZceUpzo/TUuD2yyRob4+fAGYdQ7wCR7zcmPoD9DuHQkk+ lKShqbUiXQswBZo63CQCJVzF0lWBeBwxNE9m9r+gsjaGXXLgB4A9d82Ykdk3AtPB jk7+G25RATEmGQMJTvt72A9jqqlNKlGmzv8sZEq/6q+7D+prfBbLeh8sbT93jpvY 8KVup5xLTCF/mSdfwBgNUfmPzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGReOIV L/2UmkUvN5HD6XUmT/DEMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuikjEu5SLL2+wWcEZWTBAVcihBuVqywNl9w++jUB8iborLguYES20 +zu3hc8WJI8wZ2/85xEYVQ6iS1Ndo0nQ1JrkBT2iyGResU4BQRkso9dkKcx4nBzk X3N0oyUO9xcZPmtz7l7eQvyoSr8jYVYxsdz6XWJTv7q4I54BaGm0asOPWve5uxwu oYH1nyGbt6FJJ+jfKOR6zdY3vmDiGmo+FsQE/+OIQsyMp+9mmPDi86HC61PGcsWq PNLF52fSPcIiFErCoIBYUEFINk9JnfwYwQnEsRFYVtDxX6abLATdDLxgU5S1sjnC qZ0qaVtSB7z4w26jtdRPPLeDCymqsGgB -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:09 2025 by rpki-client on console.sobornost.net