$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft File: 0y2jboghgi5r08gs_6mE56kJw_Y.mft (raw, json) Hash identifier: iPMBjEJhiX1QhTdVKDpGQ1ANoOeWuz3a+FABmre8Sus= Subject key identifier: 9D:24:67:3E:8D:B4:5D:3F:1B:0D:51:48:01:C9:45:5A:50:75:BF:3C Authority key identifier: D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 Certificate issuer: /CN=A91B8EF9/serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Certificate serial: 33BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft Manifest number: 33B1 Signing time: Mon 28 Apr 2025 15:27:06 +0000 Manifest this update: Mon 28 Apr 2025 15:27:05 +0000 Manifest next update: Mon 05 May 2025 15:27:05 +0000 Files and hashes: 1: 0y2jboghgi5r08gs_6mE56kJw_Y.crl (hash: HEFiXc1z0FH4fVDPue4MU2MKmKMrBYaVIYM2uQCvnGk=) 2: A1C2C79680FE11E985D53F55C4F9AE02.roa (hash: Ko3Luk3NXRMVTdrKjxB+T1Aq5Rz7BTBaPzcxuwLSdz4=) 3: A30DC17880FE11E985D53F55C4F9AE02.roa (hash: FAySI2su8cL3vKBRY/mDcgCBdpz6IW+fV0g4HW92eb8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:27:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13247 (0x33bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8EF9, serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Validity Not Before: Apr 28 15:27:05 2025 GMT Not After : May 5 15:27:05 2025 GMT Subject: CN=680f9e4a-81ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a3:60:af:5c:f2:11:ed:e7:20:c5:c2:5b:0a: 38:a5:bc:1d:ce:73:b7:76:b5:8a:b3:f0:1a:7d:e7: e7:8f:36:c5:fe:e2:88:6c:72:87:ef:36:72:11:d9: 82:7f:6e:a4:3d:d4:55:fc:05:c1:5a:4b:11:8b:42: 67:c1:45:fa:c6:3c:5a:30:9b:81:02:55:46:92:9f: 46:d2:98:64:3f:a5:4f:82:2b:2f:89:e3:6c:e3:77: b4:73:18:5d:39:57:80:b6:40:a8:4e:a3:61:56:3e: 6b:e4:73:b2:dc:35:d3:b7:eb:24:bb:3d:41:e3:e5: ad:dd:a0:e5:f1:12:a4:ed:df:d4:e8:8c:ba:6a:4c: 55:dd:d6:0b:6b:e6:3d:d1:b2:3f:ba:65:1f:a6:b3: d5:88:d6:e3:d6:8e:ed:c2:9d:03:2f:f0:64:f2:27: 02:d1:92:3f:54:24:ef:49:9a:6b:e2:10:91:44:b2: db:16:a5:0c:d2:2b:8b:98:5c:9c:d3:c0:f7:bc:5a: 8b:31:80:5c:e1:ec:ba:cd:53:6e:35:3f:e5:26:95: d3:21:d8:f8:1a:8a:a6:df:09:6d:bf:6b:4d:ea:7c: bc:f7:1d:ab:3a:02:cb:86:68:1b:4e:32:a4:65:2a: 7b:ae:83:c3:ab:9e:06:9a:02:b0:6b:c3:b7:41:b0: 63:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:24:67:3E:8D:B4:5D:3F:1B:0D:51:48:01:C9:45:5A:50:75:BF:3C X509v3 Authority Key Identifier: keyid:D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:8c:a3:1a:b6:f3:c4:5e:8b:c9:81:6e:2a:68:ee:22:14:8f: 7f:a4:8f:1d:31:87:ba:59:27:f9:dd:d6:4b:fd:f0:1f:90:34: 86:b1:9c:1c:51:2c:76:45:ce:99:5c:7c:af:88:35:4d:a9:3c: d3:3c:24:89:1f:6f:6b:62:ec:bd:b2:34:3e:a6:d6:77:35:27: d4:50:0c:24:12:0a:5e:ef:fa:4a:3b:06:d0:ff:24:7b:be:80: ae:51:dc:87:a1:3f:ff:26:db:f1:54:a1:66:25:b1:88:96:54: f3:5e:5b:da:12:ea:ac:7a:b3:94:c8:17:0d:ed:ef:75:27:3e: 7d:06:67:94:a9:a6:90:40:26:c1:a4:1e:71:6b:86:43:ce:17: 7f:b0:df:ff:28:55:5e:31:03:a7:90:94:4d:01:6e:5e:9b:b7: f0:8e:ff:b2:90:42:b1:1b:07:a8:c1:fa:80:45:aa:5f:b9:d0: 0b:fa:96:ca:a8:4b:2c:86:a1:bc:d5:83:86:0c:08:56:eb:59: b5:2f:eb:42:58:6c:ae:ef:14:44:72:fa:75:a8:84:45:d3:be: 7e:0f:64:20:70:dc:95:db:c9:46:57:ef:d8:a7:17:d5:df:8f: 1b:f4:92:ae:e4:cd:d1:47:c6:f3:d4:dc:30:1b:aa:16:10:81: 48:6f:25:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFRjkxMTAvBgNVBAUTKEQzMkRBMzZFODgyMTgyMkU2QkQzQzgyQ0ZGQTk4NEU3 QTkwOUMzRjYwHhcNMjUwNDI4MTUyNzA1WhcNMjUwNTA1MTUyNzA1WjAYMRYwFAYD VQQDEw02ODBmOWU0YS04MWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6Ngr1zyEe3nIMXCWwo4pbwdznO3drWKs/AafefnjzbF/uKIbHKH7zZyEdmC f26kPdRV/AXBWksRi0JnwUX6xjxaMJuBAlVGkp9G0phkP6VPgisvieNs43e0cxhd OVeAtkCoTqNhVj5r5HOy3DXTt+skuz1B4+Wt3aDl8RKk7d/U6Iy6akxV3dYLa+Y9 0bI/umUfprPViNbj1o7twp0DL/Bk8icC0ZI/VCTvSZpr4hCRRLLbFqUM0iuLmFyc 08D3vFqLMYBc4ey6zVNuNT/lJpXTIdj4Goqm3wltv2tN6ny89x2rOgLLhmgbTjKk ZSp7roPDq54GmgKwa8O3QbBjHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0kZz6N tF0/Gw1RSAHJRVpQdb88MB8GA1UdIwQYMBaAFNMto26IIYIua9PILP+phOepCcP2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEVGOS80NEE4MDVFRTQ0 QzkxMUUyQjM1QUM0ODQyOTc5QkIyMC8weTJqYm9naGdpNXIwOGdzXzZtRTU2a0p3 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5Mmpib2doZ2k1cjA4Z3NfNm1FNTZrSndfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEVGOS80NEE4MDVFRTQ0QzkxMUUyQjM1QUM0ODQyOTc5QkIyMC8weTJqYm9naGdp NXIwOGdzXzZtRTU2a0p3X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+jKMatvPEXovJgW4qaO4iFI9/pI8dMYe6WSf53dZL/fAfkDSGsZwc USx2Rc6ZXHyviDVNqTzTPCSJH29rYuy9sjQ+ptZ3NSfUUAwkEgpe7/pKOwbQ/yR7 voCuUdyHoT//JtvxVKFmJbGIllTzXlvaEuqserOUyBcN7e91Jz59BmeUqaaQQCbB pB5xa4ZDzhd/sN//KFVeMQOnkJRNAW5em7fwjv+ykEKxGweowfqARapfudAL+pbK qEsshqG81YOGDAhW61m1L+tCWGyu7xREcvp1qIRF075+D2QgcNyV28lGV+/YpxfV 348b9JKu5M3RR8bz1NwwG6oWEIFIbyW6 -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net