$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft File: votHM7Guikc2t-kTJzPWVAkePSs.mft (raw, json) Hash identifier: H7MlxRxBEuQDZtFQfciwq9lh3pqpZz8/zEn3WemDKWk= Subject key identifier: DD:71:86:5F:AC:35:85:E3:FC:B0:43:31:09:21:58:36:82:1C:50:C4 Authority key identifier: BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B Certificate issuer: /CN=A91B23D9/serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft Manifest number: 3D Signing time: Sun 27 Apr 2025 06:18:36 +0000 Manifest this update: Sun 27 Apr 2025 06:18:36 +0000 Manifest next update: Sun 04 May 2025 06:18:35 +0000 Files and hashes: 1: votHM7Guikc2t-kTJzPWVAkePSs.crl (hash: VBN6JWiByEf9CYnXzApADRFT5ipNwb7LfRJGosjjsHc=) 2: A3815188C9D211EFB961F44DC4F9AE02.roa (hash: q3EE6bhQvO1jqMvzi5TnaMDMrsSHuVeWmQU0kCxzZeQ=) 3: 63817B3AC9D211EFBC6F934DC4F9AE02.roa (hash: +20O4NUWPTxqKeXepVeDCO/g+GXNSbJwYfdmkDR6B2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23D9, serialNumber=BE8B4733B1AE8A4736B7E9132733D654091E3D2B Validity Not Before: Apr 27 06:18:36 2025 GMT Not After : May 4 06:18:35 2025 GMT Subject: CN=680dcc3c-1550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:e7:c0:27:e3:3a:f2:08:99:59:39:f3:02: 21:c2:90:c5:7e:1e:6d:19:60:0d:a4:b5:6f:dc:a7: 67:0d:ee:33:44:2b:5e:19:07:f1:bf:05:fa:3c:19: 69:5c:85:bb:a4:ff:12:4d:2e:d4:e1:aa:1a:dd:e2: e0:39:4b:3a:5f:68:92:4f:24:c3:94:c6:76:c2:cf: 3c:d2:90:07:9f:24:ba:2f:f2:c3:db:fb:b8:14:f5: 29:e2:d4:d5:83:46:6c:09:be:14:d1:08:60:b8:30: c6:b3:61:b6:27:ed:1f:37:7e:82:c4:5d:33:2b:78: dd:74:a3:38:da:5f:5c:08:08:e9:23:d6:c3:c1:c1: 80:13:19:31:40:d0:84:69:26:9c:33:50:11:b7:f4: fc:f7:b4:39:a4:10:0b:fb:52:8e:9f:38:06:d1:9a: d8:82:70:76:a1:f5:19:e5:b1:ca:ee:41:59:af:6d: 7b:f4:b4:f1:76:fc:a5:cc:15:9c:5a:36:3a:9f:e1: f7:74:ed:db:24:91:8b:70:9b:20:5f:d7:04:f7:f0: 99:ac:00:37:64:38:d1:56:a3:f8:4f:d2:7b:76:29: cc:60:d9:a0:df:95:ab:2a:ea:23:06:55:2a:30:61: a1:0e:f3:b2:79:fb:bb:ee:12:ac:72:ce:c9:ce:7f: eb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:71:86:5F:AC:35:85:E3:FC:B0:43:31:09:21:58:36:82:1C:50:C4 X509v3 Authority Key Identifier: keyid:BE:8B:47:33:B1:AE:8A:47:36:B7:E9:13:27:33:D6:54:09:1E:3D:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/votHM7Guikc2t-kTJzPWVAkePSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23D9/7B8BD6CCC9D111EF975BDC4BC4F9AE02/votHM7Guikc2t-kTJzPWVAkePSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:ed:c0:a7:db:f3:4d:c0:57:e0:76:15:81:48:bd:42:48:91: f9:6f:fe:d5:ec:34:d6:de:a9:84:ae:84:a0:3c:6b:7a:74:57: eb:e1:f0:a9:d5:37:d8:21:4a:a9:3e:80:ac:c0:37:8d:24:96: 88:d5:dd:b7:d3:fd:9a:81:8b:1f:83:84:0b:81:9f:86:14:dc: 6f:c2:be:c6:9f:81:35:09:d8:35:6e:f1:ca:54:5d:a2:46:08: 2b:f2:2a:11:cc:c8:ef:e7:5c:22:21:dd:bf:16:c8:60:cc:6c: 11:6c:35:2b:26:65:70:9d:6f:2b:dc:f6:69:e4:4a:2c:b5:50: 67:c1:2f:6f:a4:61:27:62:ce:fa:6b:9e:25:ed:e7:44:e1:04: d7:b8:15:ea:3d:cb:3f:9f:73:c1:80:57:4e:9f:35:c8:69:32: 8d:0f:bc:98:b2:2d:f2:a9:fc:d9:9d:2a:07:54:6e:2d:96:f3: b2:1a:36:03:dd:4d:eb:ca:b9:21:fb:28:8e:34:dc:fe:07:e8: d1:32:ea:32:6e:91:96:c0:97:0e:96:05:5f:92:68:b7:3d:d7: 67:f8:55:a5:f5:5a:dd:d9:d5:4c:a9:60:ea:21:41:a4:72:c4: ea:bf:14:34:d3:9d:cd:a8:88:17:f7:7d:bb:a0:6a:fa:f1:22: d3:87:48:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MjNEOTExMC8GA1UEBRMoQkU4QjQ3MzNCMUFFOEE0NzM2QjdFOTEzMjczM0Q2NTQw OTFFM0QyQjAeFw0yNTA0MjcwNjE4MzZaFw0yNTA1MDQwNjE4MzVaMBgxFjAUBgNV BAMTDTY4MGRjYzNjLTE1NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvP+fAJ+M68giZWTnzAiHCkMV+Hm0ZYA2ktW/cp2cN7jNEK14ZB/G/Bfo8GWlc hbuk/xJNLtThqhrd4uA5SzpfaJJPJMOUxnbCzzzSkAefJLov8sPb+7gU9Sni1NWD RmwJvhTRCGC4MMazYbYn7R83foLEXTMreN10ozjaX1wICOkj1sPBwYATGTFA0IRp JpwzUBG39Pz3tDmkEAv7Uo6fOAbRmtiCcHah9RnlscruQVmvbXv0tPF2/KXMFZxa Njqf4fd07dskkYtwmyBf1wT38JmsADdkONFWo/hP0nt2Kcxg2aDflasq6iMGVSow YaEO87J5+7vuEqxyzsnOf+tDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3XGGX6w1 heP8sEMxCSFYNoIcUMQwHwYDVR0jBBgwFoAUvotHM7Guikc2t+kTJzPWVAkePSsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyM0Q5LzdCOEJENkNDQzlE MTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtjMnQta1RKelBXVkFrZVBT cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdm90SE03R3Vpa2MydC1rVEp6UFdWQWtlUFNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIy M0Q5LzdCOEJENkNDQzlEMTExRUY5NzVCREM0QkM0RjlBRTAyL3ZvdEhNN0d1aWtj MnQta1RKelBXVkFrZVBTcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFrtwKfb803AV+B2FYFIvUJIkflv/tXsNNbeqYSuhKA8a3p0V+vh8KnV N9ghSqk+gKzAN40klojV3bfT/ZqBix+DhAuBn4YU3G/CvsafgTUJ2DVu8cpUXaJG CCvyKhHMyO/nXCIh3b8WyGDMbBFsNSsmZXCdbyvc9mnkSiy1UGfBL2+kYSdizvpr niXt50ThBNe4Feo9yz+fc8GAV06fNchpMo0PvJiyLfKp/NmdKgdUbi2W87IaNgPd TevKuSH7KI403P4H6NEy6jJukZbAlw6WBV+SaLc912f4VaX1Wt3Z1UypYOohQaRy xOq/FDTTnc2oiBf3fbugavrxItOHSFY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net