$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft File: HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft (raw, json) Hash identifier: dJnQDsJ7oLUOY41m3XK0UDoPxh5G+jX42doKGTdU4Ts= Subject key identifier: 33:3E:6C:36:40:D4:EF:04:25:A2:53:1E:B0:A5:68:14:D2:A0:04:81 Authority key identifier: 1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 Certificate issuer: /CN=A91B6066/serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft Manifest number: 1C Signing time: Sun 27 Apr 2025 06:44:28 +0000 Manifest this update: Sun 27 Apr 2025 06:44:28 +0000 Manifest next update: Sun 04 May 2025 06:44:28 +0000 Files and hashes: 1: HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl (hash: 3kvFwNA1Uf7/hL39El8QDOBcUQLuox//vxz8S9jEq+A=) 2: CB16EA82FB6411EF90E1E429C4F9AE02.roa (hash: Q6MiHP+R88hVP5uJ4adxJpvxkQ/xGhsrM9tNu/bI7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6066, serialNumber=1D4EC4253313B62C4844916B85DC0FFE4B07D508 Validity Not Before: Apr 27 06:44:28 2025 GMT Not After : May 4 06:44:28 2025 GMT Subject: CN=680dd24c-c6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:93:ff:bc:8e:ce:58:83:4c:88:8c:54:2b:48: 76:f3:9e:38:55:f3:65:ca:e7:b8:4d:58:ab:88:88: 71:7c:ec:be:61:b6:46:da:cb:3c:ad:9f:e6:c5:35: af:da:e6:57:7a:cf:35:da:67:89:70:75:08:8b:8b: 61:e3:b5:1c:75:71:05:99:40:5e:2f:1d:df:af:40: bb:da:98:07:86:38:00:73:9c:e8:a0:c8:44:56:97: 92:b1:95:3f:99:19:08:8e:70:09:99:31:f7:04:b3: 1f:8f:c8:7d:fb:80:d5:f5:6e:e4:20:9a:48:4e:1a: d6:85:72:2d:fe:b9:ed:27:1f:e7:dc:d3:2b:32:d5: aa:32:2a:82:bb:f2:3f:e2:f3:9f:11:1a:d9:ba:02: da:94:d5:b7:24:71:39:ee:ad:7f:0c:2d:92:78:db: 77:b8:29:97:07:3e:b1:c8:7b:ec:4a:83:eb:88:21: 88:1e:b4:be:db:02:d3:5d:bc:da:c7:d1:e8:54:86: 2a:27:93:39:69:e9:41:4c:c5:00:91:6a:f7:04:41: f7:db:30:e9:ff:ad:96:0a:69:7d:c1:8b:da:22:96: 8a:a2:2d:39:23:68:9e:dc:c4:06:d4:63:ee:6c:e9: 1d:bc:3c:1c:40:9b:57:27:99:17:d7:89:84:d1:69: d5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:3E:6C:36:40:D4:EF:04:25:A2:53:1E:B0:A5:68:14:D2:A0:04:81 X509v3 Authority Key Identifier: keyid:1D:4E:C4:25:33:13:B6:2C:48:44:91:6B:85:DC:0F:FE:4B:07:D5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HU7EJTMTtixIRJFrhdwP_ksH1Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6066/648A8832FB6411EFBC9B3529C4F9AE02/HU7EJTMTtixIRJFrhdwP_ksH1Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:51:1d:b0:8d:7f:b7:1e:33:a1:62:7d:7f:31:f1:57:80:65: 36:0b:3e:48:e4:72:23:0d:85:51:87:b1:c1:17:c8:0c:0d:65: 3d:d3:a0:39:22:fe:1f:33:a2:7a:f4:92:45:9b:8c:e1:91:da: 81:8f:ac:e4:65:d3:b4:07:03:3f:60:e5:d4:ba:80:fe:23:84: af:07:23:d6:62:aa:4d:56:67:c5:60:27:29:f6:f8:89:b6:6c: f1:7a:f2:3a:27:62:e7:16:af:9d:86:e6:2e:4e:b2:2b:b6:f1: 94:b1:a7:45:57:5f:27:f9:26:66:60:ca:79:f7:3e:68:6a:98: 8d:80:41:bd:11:be:98:ea:9f:e3:4d:d0:79:d2:b6:ce:50:bc: 13:13:15:12:de:a0:b0:33:22:5a:8e:44:28:57:69:a4:b2:12: 0f:96:bb:49:c7:71:d5:1b:8f:d8:e3:a5:ae:bc:e1:a4:72:7b: ec:dd:15:36:74:ab:ef:3d:83:ca:f1:75:0d:3f:99:9f:9f:8d: 90:80:2c:26:db:a0:ac:fa:dd:63:aa:f7:88:c2:9b:32:40:cb: ec:fc:2e:aa:58:73:30:e8:81:86:d3:5b:d9:91:91:bb:dd:e0: 23:55:b8:0c:59:65:0d:2d:17:b1:83:7f:81:bb:60:21:db:ea: 82:84:a3:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjA2NjExMC8GA1UEBRMoMUQ0RUM0MjUzMzEzQjYyQzQ4NDQ5MTZCODVEQzBGRkU0 QjA3RDUwODAeFw0yNTA0MjcwNjQ0MjhaFw0yNTA1MDQwNjQ0MjhaMBgxFjAUBgNV BAMTDTY4MGRkMjRjLWM2ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDak/+8js5Yg0yIjFQrSHbznjhV82XK57hNWKuIiHF87L5htkbayzytn+bFNa/a 5ld6zzXaZ4lwdQiLi2HjtRx1cQWZQF4vHd+vQLvamAeGOABznOigyERWl5KxlT+Z GQiOcAmZMfcEsx+PyH37gNX1buQgmkhOGtaFci3+ue0nH+fc0ysy1aoyKoK78j/i 858RGtm6AtqU1bckcTnurX8MLZJ423e4KZcHPrHIe+xKg+uIIYgetL7bAtNdvNrH 0ehUhionkzlp6UFMxQCRavcEQffbMOn/rZYKaX3Bi9oiloqiLTkjaJ7cxAbUY+5s 6R28PBxAm1cnmRfXiYTRadXbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMz5sNkDU 7wQlolMesKVoFNKgBIEwHwYDVR0jBBgwFoAUHU7EJTMTtixIRJFrhdwP/ksH1Qgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2MDY2LzY0OEE4ODMyRkI2 NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4SVJKRnJoZHdQX2tzSDFR Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSFU3RUpUTVR0aXhJUkpGcmhkd1Bfa3NIMVFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 MDY2LzY0OEE4ODMyRkI2NDExRUZCQzlCMzUyOUM0RjlBRTAyL0hVN0VKVE1UdGl4 SVJKRnJoZHdQX2tzSDFRZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEtRHbCNf7ceM6FifX8x8VeAZTYLPkjkciMNhVGHscEXyAwNZT3ToDki /h8zonr0kkWbjOGR2oGPrORl07QHAz9g5dS6gP4jhK8HI9Ziqk1WZ8VgJyn2+Im2 bPF68jonYucWr52G5i5Osiu28ZSxp0VXXyf5JmZgynn3PmhqmI2AQb0Rvpjqn+NN 0HnSts5QvBMTFRLeoLAzIlqORChXaaSyEg+Wu0nHcdUbj9jjpa684aRye+zdFTZ0 q+89g8rxdQ0/mZ+fjZCALCbboKz63WOq94jCmzJAy+z8LqpYczDogYbTW9mRkbvd 4CNVuAxZZQ0tF7GDf4G7YCHb6oKEo0Y= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net