$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: VAnMOTGK7LabRkkYohcC6J1Us0HMdeCVYm41N4xT57I= Subject key identifier: C5:A5:F1:AC:17:B5:F5:70:10:C2:1F:C8:2D:40:21:5B:37:4B:D7:EC Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: DB Signing time: Fri 25 Apr 2025 04:37:08 +0000 Manifest this update: Fri 25 Apr 2025 04:37:07 +0000 Manifest next update: Fri 02 May 2025 04:37:07 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: szNlwIqLzXbwElZv5ffHbo0duap7ZY0Bski2KwgzE5k=) 2: 675CAE1C097B11F089FAE77FC4F9AE02.roa (hash: kVfsFUwUwrb1+YlFZkxlvXafQa5nM+gSN0EAtRmVnos=) 3: C63D0814097B11F0B1329480C4F9AE02.roa (hash: VpvWI0nd92qtQK/BsL7Qtr/7IONXUo8ggsacYg9dezE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Apr 25 04:37:07 2025 GMT Not After : May 2 04:37:07 2025 GMT Subject: CN=680b1173-880e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:24:eb:df:0a:cf:c3:1f:9c:35:84:f3:4f:e3: 61:83:82:38:97:e7:4f:05:fd:06:08:af:8c:c4:94: b9:f5:06:7e:e7:c9:0b:3c:ce:a0:0d:a5:07:1a:eb: 8f:33:91:50:43:3f:56:1d:9d:6a:c9:ee:cb:6e:37: 05:8d:c9:ae:95:3b:2c:4e:57:74:a1:37:a0:57:54: 23:89:5e:db:50:f3:b7:9e:42:94:f5:f7:56:2e:e9: ff:ff:33:68:bf:6f:c4:b7:7e:33:97:98:d0:77:e3: c1:59:6d:c5:a3:0a:dd:d1:56:10:6c:a6:cf:c2:b1: 2a:46:d5:0b:a4:37:0e:e2:91:b3:67:79:e3:08:4b: b0:2c:30:ae:c2:57:35:c2:2e:9e:25:76:ef:bb:3e: 1b:34:37:29:71:04:2e:1b:40:3f:71:db:18:12:f6: 21:51:68:39:b6:1e:2b:bf:34:8d:b6:1c:1c:2c:04: c1:c0:3e:d1:10:e4:ad:c5:3f:eb:c2:10:c1:01:64: b1:95:03:ad:9e:6b:82:0c:fa:b6:99:a1:21:e6:5e: 0a:c7:82:05:5e:e1:2e:41:89:3e:2e:cc:cf:b9:b2: 89:7b:75:1e:60:8a:d4:56:52:71:63:9d:8d:bf:51: 40:6d:84:e4:c6:5d:85:57:02:a0:61:ff:da:80:c8: d5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A5:F1:AC:17:B5:F5:70:10:C2:1F:C8:2D:40:21:5B:37:4B:D7:EC X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:58:af:41:27:a2:bd:70:95:14:8f:a2:90:eb:0c:3e:99:03: a4:ee:e8:be:22:ad:86:38:2b:9e:17:92:05:01:e8:a0:52:98: 73:76:78:0a:a2:4b:44:48:4d:da:27:c3:cc:b2:14:84:22:24: 57:df:2f:41:43:ee:96:33:a6:35:73:1b:0b:59:4b:be:e3:f2: c8:b0:9d:da:c2:b2:94:ed:a9:d6:1b:78:ef:0d:a4:37:04:e4: 43:73:d0:60:b5:bc:77:40:b5:97:f7:a5:36:7e:fd:40:13:1d: 10:47:eb:4e:9f:80:d4:7d:0c:1e:69:f3:dc:94:59:35:41:3b: 05:23:41:60:fc:8f:93:f8:08:54:54:8a:1b:8d:96:18:e5:b2: 33:c6:b1:ff:0c:9a:d3:c5:2e:58:91:10:94:44:18:d3:db:9c: 9f:6a:e3:c8:92:20:e3:f5:cb:e5:92:ff:43:0f:e4:b6:54:d3: 38:7c:36:56:55:c7:1a:3e:6c:19:cd:3a:83:c5:34:8f:d8:33: 5c:57:09:74:5a:bc:86:17:ec:5d:06:52:65:63:92:76:f9:75: fe:6d:7c:47:93:9c:63:89:8a:6b:24:8e:9d:f6:87:d1:00:12: ba:88:fd:cc:8b:55:40:a4:da:b3:23:18:a9:14:d4:3a:5a:0e: 96:3d:bd:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUwNDI1MDQzNzA3WhcNMjUwNTAyMDQzNzA3WjAYMRYwFAYD VQQDEw02ODBiMTE3My04ODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniTr3wrPwx+cNYTzT+Nhg4I4l+dPBf0GCK+MxJS59QZ+58kLPM6gDaUHGuuP M5FQQz9WHZ1qye7LbjcFjcmulTssTld0oTegV1QjiV7bUPO3nkKU9fdWLun//zNo v2/Et34zl5jQd+PBWW3Fowrd0VYQbKbPwrEqRtULpDcO4pGzZ3njCEuwLDCuwlc1 wi6eJXbvuz4bNDcpcQQuG0A/cdsYEvYhUWg5th4rvzSNthwcLATBwD7REOStxT/r whDBAWSxlQOtnmuCDPq2maEh5l4Kx4IFXuEuQYk+LszPubKJe3UeYIrUVlJxY52N v1FAbYTkxl2FVwKgYf/agMjVtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWl8awX tfVwEMIfyC1AIVs3S9fsMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJWK9BJ6K9cJUUj6KQ6ww+mQOk7ui+Iq2GOCueF5IFAeigUphzdngK oktESE3aJ8PMshSEIiRX3y9BQ+6WM6Y1cxsLWUu+4/LIsJ3awrKU7anWG3jvDaQ3 BORDc9Bgtbx3QLWX96U2fv1AEx0QR+tOn4DUfQweafPclFk1QTsFI0Fg/I+T+AhU VIobjZYY5bIzxrH/DJrTxS5YkRCURBjT25yfauPIkiDj9cvlkv9DD+S2VNM4fDZW VccaPmwZzTqDxTSP2DNcVwl0WryGF+xdBlJlY5J2+XX+bXxHk5xjiYprJI6d9ofR ABK6iP3Mi1VApNqzIxipFNQ6Wg6WPb2o -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:59 2025 by rpki-client on console.sobornost.net