$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft File: gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft (raw, json) Hash identifier: l8RAHbJIxUvhMLOExIro7Y6GfaehIaRPenkVZLUSPTQ= Subject key identifier: 83:31:E4:DB:04:CC:49:79:30:BB:CC:29:2A:2C:60:25:4E:E6:31:65 Authority key identifier: 80:FB:52:63:6A:9E:50:C0:88:68:E6:27:52:0A:1A:0D:8A:87:F0:46 Certificate issuer: /CN=A91B3EDE/serialNumber=80FB52636A9E50C08868E627520A1A0D8A87F046 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft Manifest number: 1C Signing time: Sun 27 Apr 2025 06:44:21 +0000 Manifest this update: Sun 27 Apr 2025 06:44:21 +0000 Manifest next update: Sun 04 May 2025 06:44:21 +0000 Files and hashes: 1: gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl (hash: ZQ1b3o/PtAijcyf1g1afSeLoYsLVoFnjgev8EMnSPf4=) 2: BC66C474FB5C11EFB5FF765EC4F9AE02.roa (hash: AvVg/+A0MLB4qd4KAVoe6uLCEieXvb2jz5ivdG0pWoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3EDE, serialNumber=80FB52636A9E50C08868E627520A1A0D8A87F046 Validity Not Before: Apr 27 06:44:21 2025 GMT Not After : May 4 06:44:21 2025 GMT Subject: CN=680dd245-c713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:78:5a:b4:51:3f:5e:44:b0:fd:95:62:ba: 99:bf:94:7f:ad:5c:7c:69:a4:90:56:37:e8:2b:ce: 56:bf:5a:82:c6:f4:fb:ae:31:80:5a:f3:b9:f2:75: 6d:77:f9:d6:6e:e4:0e:a6:8c:35:b3:34:54:65:72: 78:e6:09:3e:3a:c7:92:7e:c3:2c:be:7c:86:b9:18: 1d:ad:60:b9:e1:10:b6:63:3b:31:6d:ab:e7:d0:47: b5:8f:17:ec:3c:19:bd:7b:1f:41:9f:97:1a:93:4f: 6f:13:68:c7:34:4b:05:71:ee:da:29:a7:0c:c2:38: 1b:f4:34:88:39:2c:4f:c4:e9:a4:f3:63:f4:26:ad: 6d:47:50:6a:82:ab:15:3b:69:79:03:4c:46:80:1f: 9c:e4:4d:35:bd:63:e1:09:0b:63:30:44:95:08:df: 27:67:75:36:d3:56:40:8b:32:a6:7e:80:2e:30:f4: 6a:f2:38:3b:51:5a:02:27:17:8a:b2:92:f8:1e:e8: 42:7a:83:c0:75:22:ed:a3:94:bb:fe:7a:32:29:89: 74:f8:5a:ce:cd:7b:c5:20:bf:b7:cc:0c:e5:c5:05: 06:e7:a0:3b:75:0a:01:be:9c:68:a8:90:35:8f:b6: ad:66:29:61:2a:64:6e:7e:37:ed:1b:a4:48:fc:04: ad:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:31:E4:DB:04:CC:49:79:30:BB:CC:29:2A:2C:60:25:4E:E6:31:65 X509v3 Authority Key Identifier: keyid:80:FB:52:63:6A:9E:50:C0:88:68:E6:27:52:0A:1A:0D:8A:87:F0:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gPtSY2qeUMCIaOYnUgoaDYqH8EY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3EDE/5904D970FB5C11EF8EAF311CC4F9AE02/gPtSY2qeUMCIaOYnUgoaDYqH8EY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:38:91:c9:14:24:69:59:34:c7:52:0f:24:86:05:9c:aa:d0: 17:10:fe:89:88:1a:21:64:8e:61:f8:4d:e2:0a:6a:bd:2b:01: a6:8e:9b:27:7f:7b:4d:7a:22:e5:c1:7a:53:a5:4b:ab:92:9c: 55:51:87:3c:99:b9:1e:e1:ca:0b:a8:49:b9:06:72:46:7b:7a: 8c:7f:02:dd:ad:55:2d:da:7d:18:cf:59:6c:45:0b:68:96:8f: e1:90:dc:56:73:a2:f6:cf:25:76:3e:3d:49:78:60:5b:2d:eb: 88:6f:2a:19:82:88:19:1d:bb:bc:a5:56:ce:f8:84:3d:fa:e5: df:fd:d9:d9:56:3a:af:92:53:d5:e1:48:a3:a0:d0:bd:33:03: 09:4f:ba:98:15:5f:eb:54:46:e1:a8:78:fa:32:64:cd:fb:a2: 9c:7d:79:be:00:01:d1:c3:44:61:65:b8:24:db:0c:f5:10:9a: 2e:eb:e4:0b:17:9c:d2:18:5c:0a:ad:54:7b:f8:41:43:01:e7: 86:e4:5e:30:1f:b7:07:b7:f5:1c:db:c7:e4:0e:70:fe:1c:ec: 41:bf:91:09:1d:9b:6f:7a:9a:0c:38:c8:97:5c:aa:13:c6:91: 1a:2f:fd:04:41:8b:86:76:56:c1:dd:2d:b4:6e:7e:e2:28:03: c7:61:a8:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC M0VERTExMC8GA1UEBRMoODBGQjUyNjM2QTlFNTBDMDg4NjhFNjI3NTIwQTFBMEQ4 QTg3RjA0NjAeFw0yNTA0MjcwNjQ0MjFaFw0yNTA1MDQwNjQ0MjFaMBgxFjAUBgNV BAMTDTY4MGRkMjQ1LWM3MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVR3hatFE/XkSw/ZViupm/lH+tXHxppJBWN+grzla/WoLG9PuuMYBa87nydW13 +dZu5A6mjDWzNFRlcnjmCT46x5J+wyy+fIa5GB2tYLnhELZjOzFtq+fQR7WPF+w8 Gb17H0GflxqTT28TaMc0SwVx7toppwzCOBv0NIg5LE/E6aTzY/QmrW1HUGqCqxU7 aXkDTEaAH5zkTTW9Y+EJC2MwRJUI3ydndTbTVkCLMqZ+gC4w9GryODtRWgInF4qy kvge6EJ6g8B1Iu2jlLv+ejIpiXT4Ws7Ne8Ugv7fMDOXFBQbnoDt1CgG+nGiokDWP tq1mKWEqZG5+N+0bpEj8BK3nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgzHk2wTM SXkwu8wpKixgJU7mMWUwHwYDVR0jBBgwFoAUgPtSY2qeUMCIaOYnUgoaDYqH8EYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzRURFLzU5MDREOTcwRkI1 QzExRUY4RUFGMzExQ0M0RjlBRTAyL2dQdFNZMnFlVU1DSWFPWW5VZ29hRFlxSDhF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1B0U1kycWVVTUNJYU9ZblVnb2FEWXFIOEVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz RURFLzU5MDREOTcwRkI1QzExRUY4RUFGMzExQ0M0RjlBRTAyL2dQdFNZMnFlVU1D SWFPWW5VZ29hRFlxSDhFWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACo4kckUJGlZNMdSDySGBZyq0BcQ/omIGiFkjmH4TeIKar0rAaaOmyd/ e016IuXBelOlS6uSnFVRhzyZuR7hyguoSbkGckZ7eox/At2tVS3afRjPWWxFC2iW j+GQ3FZzovbPJXY+PUl4YFst64hvKhmCiBkdu7ylVs74hD365d/92dlWOq+SU9Xh SKOg0L0zAwlPupgVX+tURuGoePoyZM37opx9eb4AAdHDRGFluCTbDPUQmi7r5AsX nNIYXAqtVHv4QUMB54bkXjAftwe39Rzbx+QOcP4c7EG/kQkdm296mgw4yJdcqhPG kRov/QRBi4Z2VsHdLbRufuIoA8dhqKY= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net