$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: c48szIrMl+JgiA59NCK0rVN9Ie4/J+53uG5ogV9hgyg= Subject key identifier: 00:CE:8B:1D:D3:DD:BA:9E:D4:C7:57:21:EF:5B:D1:5E:B0:46:0C:FA Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 02F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 027E Signing time: Sun 27 Apr 2025 02:14:47 +0000 Manifest this update: Sun 27 Apr 2025 02:14:46 +0000 Manifest next update: Sun 04 May 2025 02:14:46 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: fVxhTh0L+TMryoRgGionFM+8BJWw0RcufqzNwlRs6ac=) 2: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: 8ElsEHtT0SW1j1aAkI7fCGcQz8Vw9D+aynR3ExaKcpk=) 3: E9472C0C144111EFB247B936C4F9AE02.roa (hash: wHjXPfNun9RuHv5l5OYEYCPot6D2oIZI1EWmOF7YI7Y=) 4: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: bL7WlFADw3cMus0TM2SD+wI5B/pCkUnpQijrEhDa4U0=) 5: E9258B3C037211EE9E15EE32C4F9AE02.roa (hash: KWqY8FSRWxgMExPo7oJjW6FyKZgvDdNOUOLjG23lp4c=) 6: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: ptIGt2wYMEPKhzv8i8tfWNEfDe4elqSnf1QbHzmubdk=) 7: FECE3C3C855711EF8E79C52BC4F9AE02.roa (hash: qIG1nrRqmqeXhlJ4QfxZpQrhglB0XBpLi9GUgb6DFzg=) 8: E879EE7C144111EFB247B936C4F9AE02.roa (hash: qwsK6I5KvMQVVTxqatHLY4Gc06wI8z6a8GKH4pqG5s4=) 9: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: IjfhL1iMdoF6vbj8qmgjKEyAn1TdguzASGP9+nLwaQc=) 10: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: zMUCXonIy5tOWaMiCq30fCZFtIY4G0iHQ+o2rUhkbic=) 11: E22CE7EE2F9511EF8B14626CC4F9AE02.roa (hash: IZWdty8UW5xSEAar+QuBFmv4J1Y/hYIXpLhgyiEViIk=) 12: F9A864386AAB11EF8FEBE576C4F9AE02.roa (hash: Q+LuT/2pIJ9IStVr144XnzBFQZyXtxyXwoGNHoKHCCk=) 13: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: sAfUcNCOt118LSTGd2ByOqCl6kCgTi6ZVqAMUJEtk3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 752 (0x2f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Apr 27 02:14:46 2025 GMT Not After : May 4 02:14:46 2025 GMT Subject: CN=680d9317-8001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:b0:0d:01:98:11:01:eb:27:a8:03:6a:9a: 3d:2e:91:5e:17:0f:52:f6:ad:78:4e:d9:df:ac:d1: 5f:f6:e8:15:92:f3:96:7f:90:70:10:5e:df:5e:79: f9:8c:3f:4d:be:4e:b3:e7:8e:f6:dd:4d:e5:1e:0b: ba:ef:55:a2:1b:d1:f4:21:73:19:a8:0e:0a:79:16: 43:a6:fb:28:dc:3e:3f:f4:0b:22:84:4e:e0:b7:99: c1:e4:07:52:83:8f:1a:03:4f:7c:48:55:12:dc:2a: a2:fb:f4:f1:eb:7f:99:6b:bd:1d:03:82:eb:c2:83: d6:b8:04:7a:25:cb:03:18:46:f8:a6:60:3d:8e:96: 5b:94:4f:86:00:0f:05:a4:d4:cf:be:68:b0:47:49: 7a:fb:f8:53:fe:9d:56:b8:99:c5:ad:53:33:33:e6: 53:3b:45:73:1a:c9:45:6f:f6:2a:55:86:75:4e:f9: 73:e4:0a:1d:86:74:5a:ba:f0:b3:5c:e8:66:17:e9: 50:65:61:41:63:1d:a2:bb:b3:d8:de:5e:35:85:8c: 5e:0b:ac:65:9e:a2:96:70:cb:21:71:1a:f1:13:81: 07:b5:e0:99:95:de:3f:34:cf:85:df:cd:16:b4:9c: c1:9c:d4:21:d8:1a:ee:4d:2b:5f:33:a4:f5:8d:0b: 87:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:CE:8B:1D:D3:DD:BA:9E:D4:C7:57:21:EF:5B:D1:5E:B0:46:0C:FA X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:1b:ee:75:ca:e0:69:4c:1e:72:e8:6c:f1:52:61:67:60:2c: b8:3c:d0:7b:11:9d:12:7b:a4:f0:ad:ee:4c:4d:c3:a2:3f:11: 6e:8b:21:54:0f:a4:6a:21:d5:19:8f:5e:91:fb:3a:16:41:25: 20:d1:f7:64:44:51:f3:69:71:99:7b:52:2e:fd:50:86:25:5c: e8:01:fe:59:7c:14:00:7e:05:20:77:22:a3:ac:18:75:e6:51: b6:b0:3e:24:fe:3d:a6:12:28:ef:45:0c:d5:f2:35:02:8a:5c: 34:83:94:1d:b0:d6:18:1d:c6:66:b8:be:5b:18:5f:c8:18:66: cd:a8:ac:80:87:09:00:4d:b7:36:54:e5:c9:92:28:22:93:11: 42:f7:7b:78:ce:4f:a5:2f:5b:90:3a:ee:6a:c4:2e:f5:6c:5b: 18:82:e7:c4:77:07:f5:f0:47:f6:a1:a2:9c:48:a3:25:85:09: f9:1b:b4:aa:c8:dc:e0:a0:7f:68:dc:89:90:14:52:f3:e1:77: db:f2:a3:c8:70:7c:04:25:d0:90:10:04:28:5b:78:a7:6f:43: 82:9d:42:b2:97:58:84:5f:f7:b3:0f:94:49:5c:8e:52:3c:24: 0e:57:29:8f:1f:cc:c7:a2:e6:cb:71:84:45:4c:a0:9e:e4:34: b6:42:63:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjUwNDI3MDIxNDQ2WhcNMjUwNTA0MDIxNDQ2WjAYMRYwFAYD VQQDEw02ODBkOTMxNy04MDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqywDQGYEQHrJ6gDapo9LpFeFw9S9q14TtnfrNFf9ugVkvOWf5BwEF7fXnn5 jD9Nvk6z54723U3lHgu671WiG9H0IXMZqA4KeRZDpvso3D4/9AsihE7gt5nB5AdS g48aA098SFUS3Cqi+/Tx63+Za70dA4LrwoPWuAR6JcsDGEb4pmA9jpZblE+GAA8F pNTPvmiwR0l6+/hT/p1WuJnFrVMzM+ZTO0VzGslFb/YqVYZ1Tvlz5AodhnRauvCz XOhmF+lQZWFBYx2iu7PY3l41hYxeC6xlnqKWcMshcRrxE4EHteCZld4/NM+F380W tJzBnNQh2BruTStfM6T1jQuHQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADOix3T 3bqe1MdXIe9b0V6wRgz6MB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQG+51yuBpTB5y6GzxUmFnYCy4PNB7EZ0Se6Twre5MTcOiPxFuiyFU D6RqIdUZj16R+zoWQSUg0fdkRFHzaXGZe1Iu/VCGJVzoAf5ZfBQAfgUgdyKjrBh1 5lG2sD4k/j2mEijvRQzV8jUCilw0g5QdsNYYHcZmuL5bGF/IGGbNqKyAhwkATbc2 VOXJkigikxFC93t4zk+lL1uQOu5qxC71bFsYgufEdwf18Ef2oaKcSKMlhQn5G7Sq yNzgoH9o3ImQFFLz4Xfb8qPIcHwEJdCQEAQoW3inb0OCnUKyl1iEX/ezD5RJXI5S PCQOVymPH8zHoubLcYRFTKCe5DS2QmOe -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:08 2025 by rpki-client on console.sobornost.net