$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft File: HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft (raw, json) Hash identifier: uUYf+5TWUcYodgdYXu1rczBnNXpYStcddOCFyiF1WNs= Subject key identifier: F0:28:2E:B6:FD:A7:6B:ED:6A:C2:3A:DA:D9:3A:AD:0D:59:FF:BD:EE Authority key identifier: 1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D Certificate issuer: /CN=A91B8E70/serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft Manifest number: 5E Signing time: Sun 27 Apr 2025 05:55:14 +0000 Manifest this update: Sun 27 Apr 2025 05:55:13 +0000 Manifest next update: Sun 04 May 2025 05:55:13 +0000 Files and hashes: 1: HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl (hash: CTZKKyEfjfB/S5cfalEWdeDIOgn3ChS0eA+OcDtj/oQ=) 2: 4E7F3B4C955B11EFACD8F26CC4F9AE02.roa (hash: bUTe8Abd/nlivZy+DnMi/ZY+jKUvF8aFrBtrqXIxRb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E70, serialNumber=1E656DDEC7E98D24A186FFDB6F597710AAFF2A8D Validity Not Before: Apr 27 05:55:13 2025 GMT Not After : May 4 05:55:13 2025 GMT Subject: CN=680dc6c1-fb62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6e:3e:8a:1b:19:05:11:45:a8:51:de:0d:da: f4:e2:fb:9f:b2:4e:da:ce:fe:cb:6b:86:ef:a3:d6: 98:25:f5:5b:6f:6c:d3:c5:b2:43:f1:90:1a:a2:8c: ec:e5:3c:20:df:90:97:7d:be:40:93:c9:f9:c0:ec: 5a:4c:a9:e0:32:d4:25:c0:ce:2a:04:05:fa:02:02: 25:05:f8:89:1f:f7:fd:11:8c:9b:19:ff:f3:44:fc: f6:11:3a:27:d9:dd:dc:27:ef:d5:b3:9e:9c:70:75: 40:9d:a2:b7:0b:05:74:53:92:92:30:e9:33:99:70: 7d:a3:f1:02:92:72:8e:32:27:85:2e:a2:b7:49:5d: 76:81:0a:9b:6c:1f:2c:f4:d4:ef:7f:61:13:88:1d: 1e:e9:85:22:e1:e0:2c:b4:2d:5b:08:57:6f:7e:4c: b1:90:58:d1:fc:0c:e1:1e:ce:ac:64:48:97:4a:4e: 29:4c:ad:75:38:20:e1:f9:72:3a:33:04:58:fb:5a: 67:f5:18:76:77:52:b3:1a:86:b3:ff:ff:01:ea:6f: 17:82:79:3a:4b:50:b5:9a:9e:2d:75:26:0f:4e:a6: 18:7a:56:bd:46:31:ba:ad:0e:00:5f:aa:04:09:b7: b5:55:69:2b:f5:a4:1e:31:51:5f:00:81:01:74:9f: a3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:28:2E:B6:FD:A7:6B:ED:6A:C2:3A:DA:D9:3A:AD:0D:59:FF:BD:EE X509v3 Authority Key Identifier: keyid:1E:65:6D:DE:C7:E9:8D:24:A1:86:FF:DB:6F:59:77:10:AA:FF:2A:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HmVt3sfpjSShhv_bb1l3EKr_Ko0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E70/35C76C7E955A11EFBD9E024AC4F9AE02/HmVt3sfpjSShhv_bb1l3EKr_Ko0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f9:f2:91:31:a1:5e:75:fb:c4:b2:00:37:61:17:15:a3:b9: fe:96:06:84:12:7b:c6:e7:78:2d:da:8d:6f:19:f8:96:54:f4: cb:24:0e:40:2a:e3:35:61:86:a4:2f:68:d4:d9:42:25:3f:0f: 89:65:55:99:12:78:25:43:fd:dc:1c:37:62:ce:3c:fe:8b:a6: cd:1f:01:fd:ac:9a:33:29:72:f1:17:5d:c3:7e:67:63:97:3d: 35:cd:21:dc:55:ba:58:17:60:a4:1a:2a:52:70:f7:af:31:14: c6:5a:de:74:05:b4:ff:41:55:83:cf:e8:b1:a7:61:9f:2e:47: 93:bb:cd:dd:d8:ac:dd:7b:36:8d:73:e6:3c:e3:a3:86:68:c8: 6b:d0:b6:c8:13:a1:9f:47:d3:8d:3d:bb:0a:ef:7a:b6:ce:56: 60:e2:81:ea:d2:c2:f5:b2:ed:2a:bb:08:b4:2b:b3:86:b3:5d: 88:be:6a:cd:46:c2:47:11:30:e0:f5:fa:d9:6c:03:1d:3e:ef: db:c1:3f:a9:a8:9c:9d:0b:cb:54:f1:6c:f0:56:03:24:41:9c: a8:f3:bb:ad:36:0d:5d:e7:2a:db:f9:6d:00:b2:fc:61:57:05: a4:af:d1:28:77:de:46:74:79:ab:6b:36:c8:16:6a:06:24:12: 26:1b:56:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OEU3MDExMC8GA1UEBRMoMUU2NTZEREVDN0U5OEQyNEExODZGRkRCNkY1OTc3MTBB QUZGMkE4RDAeFw0yNTA0MjcwNTU1MTNaFw0yNTA1MDQwNTU1MTNaMBgxFjAUBgNV BAMTDTY4MGRjNmMxLWZiNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsbj6KGxkFEUWoUd4N2vTi+5+yTtrO/strhu+j1pgl9VtvbNPFskPxkBqijOzl PCDfkJd9vkCTyfnA7FpMqeAy1CXAzioEBfoCAiUF+Ikf9/0RjJsZ//NE/PYROifZ 3dwn79WznpxwdUCdorcLBXRTkpIw6TOZcH2j8QKSco4yJ4UuordJXXaBCptsHyz0 1O9/YROIHR7phSLh4Cy0LVsIV29+TLGQWNH8DOEezqxkSJdKTilMrXU4IOH5cjoz BFj7Wmf1GHZ3UrMahrP//wHqbxeCeTpLULWani11Jg9Ophh6Vr1GMbqtDgBfqgQJ t7VVaSv1pB4xUV8AgQF0n6PzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8Cgutv2n a+1qwjra2TqtDVn/ve4wHwYDVR0jBBgwFoAUHmVt3sfpjSShhv/bb1l3EKr/Ko0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4RTcwLzM1Qzc2QzdFOTU1 QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNTaGh2X2JiMWwzRUtyX0tv MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSG1WdDNzZnBqU1NoaHZfYmIxbDNFS3JfS28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4 RTcwLzM1Qzc2QzdFOTU1QTExRUZCRDlFMDI0QUM0RjlBRTAyL0htVnQzc2ZwalNT aGh2X2JiMWwzRUtyX0tvMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIz58pExoV51+8SyADdhFxWjuf6WBoQSe8bneC3ajW8Z+JZU9MskDkAq 4zVhhqQvaNTZQiU/D4llVZkSeCVD/dwcN2LOPP6Lps0fAf2smjMpcvEXXcN+Z2OX PTXNIdxVulgXYKQaKlJw968xFMZa3nQFtP9BVYPP6LGnYZ8uR5O7zd3YrN17No1z 5jzjo4ZoyGvQtsgToZ9H0409uwrverbOVmDigerSwvWy7Sq7CLQrs4azXYi+as1G wkcRMOD1+tlsAx0+79vBP6monJ0Ly1TxbPBWAyRBnKjzu602DV3nKtv5bQCy/GFX BaSv0Sh33kZ0eatrNsgWagYkEiYbVkc= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net