$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: G+9I0o2BmoZahpzRs84zNjJJhLRAwC2F/WtAqF3im+M= Subject key identifier: 96:16:F6:46:AA:A4:72:05:D3:20:11:BD:95:10:9E:DC:43:10:D9:71 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 89 Signing time: Sun 27 Apr 2025 05:23:09 +0000 Manifest this update: Sun 27 Apr 2025 05:23:08 +0000 Manifest next update: Sun 04 May 2025 05:23:08 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: TfN29oSip1ajGuwzTeW1cHvg22TuyM6KdlRxCVu2Zo8=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790, serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Apr 27 05:23:08 2025 GMT Not After : May 4 05:23:08 2025 GMT Subject: CN=680dbf3c-d348 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:20:2e:fd:b7:8a:40:a8:8d:20:12:0c:cb: ae:89:17:d8:90:96:bb:46:f2:64:31:02:fe:2b:cc: 01:96:5e:9e:64:c9:bf:9b:88:4d:0b:48:0f:b8:0f: 09:bb:cb:78:d6:89:f3:3b:a5:5e:ae:25:91:e1:fa: a5:62:97:1b:f1:09:27:ac:6e:62:79:6d:c2:8e:53: 67:96:2a:e6:8c:33:20:f6:ca:01:fd:92:7d:9f:69: 07:47:8e:e5:7b:92:b0:50:d1:ac:52:c1:73:cd:d1: 4f:17:e2:88:31:10:f3:d3:76:26:84:1d:c7:6e:73: 08:03:5e:d5:ba:8a:60:81:d1:54:f2:80:48:a7:58: 2a:c8:3d:b2:a5:e6:b2:a3:25:7c:71:b7:1c:ca:f1: 71:98:03:b4:41:4f:19:32:85:35:c1:45:ee:8d:be: 87:04:1c:d8:fb:a3:80:61:51:47:fc:3d:f8:23:48: 1e:74:41:9f:21:4e:71:53:37:c7:5a:db:39:ad:de: 8f:c3:57:fd:62:32:b4:bd:14:5f:0b:76:e9:ec:5e: 92:3a:4a:47:d2:a7:c4:19:91:06:05:c9:b1:1a:1e: 9b:9b:d3:15:bf:12:69:dd:c3:fe:dc:5a:c2:be:c2: 3c:99:ac:bf:8d:76:d9:49:ff:d1:02:36:75:8a:b8: 4f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:16:F6:46:AA:A4:72:05:D3:20:11:BD:95:10:9E:DC:43:10:D9:71 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:0f:f1:6e:85:03:54:00:62:3d:c8:5a:90:b3:de:dd:0c:f3: dc:82:84:81:08:45:3c:7d:ff:ed:6c:23:07:ee:86:e9:3d:b8: 1c:cd:ce:87:83:f7:8f:94:f0:6a:93:5e:55:89:fe:fb:d5:3a: cd:97:53:a4:2a:9a:fd:f9:87:44:02:40:9f:4b:30:d7:f3:6a: ec:01:d4:52:da:08:ec:1f:c7:4f:ee:2b:7c:34:5e:aa:7d:e6: fa:b9:34:e2:7d:b6:80:98:60:dc:9d:37:da:f8:27:44:da:d5: 72:b5:6f:92:14:67:c6:7f:29:3a:ca:4a:32:5d:71:72:17:33: 23:45:da:8f:d0:33:9a:b6:1a:5a:11:30:2b:17:0e:d3:f0:0a: 85:d3:37:b1:04:a4:0b:9a:6c:30:0d:44:1a:f4:eb:64:df:34: a9:db:7b:bd:fa:a3:bc:84:9c:fc:55:22:e6:0c:36:e2:0e:fd: 7d:af:c0:ab:f5:3b:5d:e3:68:41:9b:d1:4b:1c:05:42:af:50: 7b:40:d5:84:84:8f:d5:b6:ed:67:58:b9:92:88:e0:e2:ce:b6: ed:ed:b9:65:f8:83:b0:9e:3c:03:85:39:85:02:73:f6:8a:57: 57:31:11:ee:9e:c9:a6:d6:8f:13:96:45:bf:d3:8c:f9:9f:84: bf:56:99:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OTAxMTAvBgNVBAUTKDg5NDI4OUFENDBFRTdFNjI2RjVDRDgyRkNFQzU0MDZE QjkxRTFFNzEwHhcNMjUwNDI3MDUyMzA4WhcNMjUwNTA0MDUyMzA4WjAYMRYwFAYD VQQDEw02ODBkYmYzYy1kMzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHUgLv23ikCojSASDMuuiRfYkJa7RvJkMQL+K8wBll6eZMm/m4hNC0gPuA8J u8t41onzO6VeriWR4fqlYpcb8QknrG5ieW3CjlNnlirmjDMg9soB/ZJ9n2kHR47l e5KwUNGsUsFzzdFPF+KIMRDz03YmhB3HbnMIA17VuopggdFU8oBIp1gqyD2ypeay oyV8cbccyvFxmAO0QU8ZMoU1wUXujb6HBBzY+6OAYVFH/D34I0gedEGfIU5xUzfH Wts5rd6Pw1f9YjK0vRRfC3bp7F6SOkpH0qfEGZEGBcmxGh6bm9MVvxJp3cP+3FrC vsI8may/jXbZSf/RAjZ1irhP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYW9kaq pHIF0yARvZUQntxDENlxMB8GA1UdIwQYMBaAFIlCia1A7n5ib1zYL87FQG25Hh5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc5MC83MTgwNUJBQzVB RTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZtSnZYTmd2enNWQWJia2VI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9pVUtKclVEdWZt SnZYTmd2enNWQWJia2VIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCD/FuhQNUAGI9yFqQs97dDPPcgoSBCEU8ff/tbCMH7obpPbgczc6H g/ePlPBqk15Vif771TrNl1OkKpr9+YdEAkCfSzDX82rsAdRS2gjsH8dP7it8NF6q feb6uTTifbaAmGDcnTfa+CdE2tVytW+SFGfGfyk6ykoyXXFyFzMjRdqP0DOathpa ETArFw7T8AqF0zexBKQLmmwwDUQa9Otk3zSp23u9+qO8hJz8VSLmDDbiDv19r8Cr 9Ttd42hBm9FLHAVCr1B7QNWEhI/Vtu1nWLmSiODizrbt7bll+IOwnjwDhTmFAnP2 ildXMRHunsmm1o8TlkW/04z5n4S/Vplb -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net