$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: +HUSzg/nHjD4NlUwBGjLQqzURcVfUs7Ok5EpiyTehOk= Subject key identifier: CB:8E:4F:37:B1:89:3B:A2:C5:80:EB:C4:68:C7:8D:27:98:A2:8F:86 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0F7E Signing time: Mon 28 Apr 2025 17:47:54 +0000 Manifest this update: Mon 28 Apr 2025 17:47:54 +0000 Manifest next update: Mon 05 May 2025 17:47:54 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: vvSdo3nHiUVlBD5q5I6q7ThwBjPotX2SQnmenkE1BIQ=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4000 (0xfa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Apr 28 17:47:54 2025 GMT Not After : May 5 17:47:54 2025 GMT Subject: CN=680fbf4a-f12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e5:12:10:07:64:c5:0f:43:58:22:02:67:6c: 57:c2:a5:80:2b:40:10:14:61:b6:d9:8c:25:c9:f9: 17:e6:8c:f4:2a:29:21:47:43:da:37:6f:54:67:0b: e2:9b:59:61:31:95:6d:0d:8a:90:90:e2:02:d3:cc: 82:28:6c:cc:03:3a:30:90:24:b6:2e:43:53:b0:21: ec:0b:8e:22:ab:cf:40:cb:c6:0c:fc:84:ff:61:66: af:5d:1a:05:73:7f:98:31:ce:a1:17:06:ea:37:c1: 21:87:e2:42:ea:c1:1d:ad:bd:68:4c:19:5a:62:8e: 59:a1:e2:53:97:3c:9d:13:f7:4c:51:b9:65:1d:65: 4e:58:f8:61:38:8f:46:4c:31:6e:a1:1d:1a:62:bc: b9:cf:db:b0:47:51:82:ca:22:0b:30:7e:d1:92:7c: da:df:b9:d0:0b:af:07:2a:47:f6:f6:1c:c9:de:5d: db:b0:e0:20:e5:e1:62:62:51:cc:e4:ce:5e:dd:b4: d6:b1:99:e6:7c:e2:6e:00:83:6b:c8:db:21:74:84: f9:99:d1:84:6f:7b:f0:6e:9b:39:31:b8:f6:0e:7b: 29:ec:30:c1:20:8d:64:96:77:b3:55:00:8b:31:bd: 40:b3:a1:ac:a0:93:54:fb:8f:c0:ce:f2:ec:82:ab: 60:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:8E:4F:37:B1:89:3B:A2:C5:80:EB:C4:68:C7:8D:27:98:A2:8F:86 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:7a:b8:8c:4d:00:5b:cc:42:0a:e6:32:30:34:45:fe:a9:ad: b4:e3:31:a2:4a:5d:98:f2:24:df:db:ce:5f:5e:f0:f2:8f:9d: c6:c6:a1:02:76:6e:50:59:18:cc:ff:a7:25:3e:ff:39:d8:2f: ac:ef:9c:39:cd:c8:0d:be:b5:9f:5c:5e:c2:44:5b:69:31:8d: 3e:d8:8f:87:01:84:2f:60:27:03:b5:c5:a1:8d:33:37:de:d9: bb:15:bc:96:9a:c7:54:82:4f:a8:da:97:e0:d2:ce:8f:4f:7c: 0c:e1:a6:70:55:15:d5:9a:37:49:3d:08:6e:33:3a:13:48:82: 32:6d:c2:46:58:7b:06:17:1e:e5:b6:67:cf:77:0f:69:83:45: cc:87:92:8f:ab:af:20:b4:8d:63:5d:ac:d3:b3:d9:de:c4:66: bb:b9:e0:e3:08:df:02:1a:10:62:85:84:cf:a2:21:fb:15:64: 23:b4:5c:54:7c:08:1a:1b:f0:4a:bb:98:48:97:56:ea:e0:dd: 30:76:1a:15:a3:f6:7d:04:0b:d6:88:14:75:ba:f7:4e:d7:da: 1a:4b:c7:ef:99:57:59:76:26:a0:d0:0a:6a:09:08:04:5f:f0: 1d:93:36:38:a2:7d:3e:1f:f4:1b:b8:73:69:80:7d:c0:cb:a1: bb:0b:28:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwNDI4MTc0NzU0WhcNMjUwNTA1MTc0NzU0WjAYMRYwFAYD VQQDEw02ODBmYmY0YS1mMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAneUSEAdkxQ9DWCICZ2xXwqWAK0AQFGG22YwlyfkX5oz0KikhR0PaN29UZwvi m1lhMZVtDYqQkOIC08yCKGzMAzowkCS2LkNTsCHsC44iq89Ay8YM/IT/YWavXRoF c3+YMc6hFwbqN8Ehh+JC6sEdrb1oTBlaYo5ZoeJTlzydE/dMUbllHWVOWPhhOI9G TDFuoR0aYry5z9uwR1GCyiILMH7Rknza37nQC68HKkf29hzJ3l3bsOAg5eFiYlHM 5M5e3bTWsZnmfOJuAINryNshdIT5mdGEb3vwbps5Mbj2Dnsp7DDBII1klnezVQCL Mb1As6GsoJNU+4/AzvLsgqtgIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuOTzex iTuixYDrxGjHjSeYoo+GMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLeriMTQBbzEIK5jIwNEX+qa204zGiSl2Y8iTf285fXvDyj53GxqEC dm5QWRjM/6clPv852C+s75w5zcgNvrWfXF7CRFtpMY0+2I+HAYQvYCcDtcWhjTM3 3tm7FbyWmsdUgk+o2pfg0s6PT3wM4aZwVRXVmjdJPQhuMzoTSIIybcJGWHsGFx7l tmfPdw9pg0XMh5KPq68gtI1jXazTs9nexGa7ueDjCN8CGhBihYTPoiH7FWQjtFxU fAgaG/BKu5hIl1bq4N0wdhoVo/Z9BAvWiBR1uvdO19oaS8fvmVdZdiag0ApqCQgE X/AdkzY4on0+H/QbuHNpgH3Ay6G7Cyh9 -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:55 2025 by rpki-client on console.sobornost.net