$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: VBkFEexhYWdHmsECPCVpWlIFKArTVz8nptIKKltOEbo= Subject key identifier: 6E:51:05:4F:DB:67:05:0F:74:B5:35:C4:B2:BD:0F:1B:81:C3:6B:2F Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 77 Signing time: Sun 27 Apr 2025 05:35:37 +0000 Manifest this update: Sun 27 Apr 2025 05:35:37 +0000 Manifest next update: Sun 04 May 2025 05:35:37 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: eOo2e6zGFbHWwGE+e6QbVePcohyaT9OTJiqJaoPPjoY=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Apr 27 05:35:37 2025 GMT Not After : May 4 05:35:37 2025 GMT Subject: CN=680dc229-5824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:af:fa:95:11:91:5b:d5:bc:72:fa:e5:5a:0d: ad:f7:57:15:c1:64:5c:2a:75:09:5f:eb:93:72:d6: ca:fa:69:d8:1e:29:85:f9:e3:04:a6:c5:71:3e:93: 17:74:34:0b:61:b2:84:0d:8b:74:7a:26:e7:91:0e: 63:60:59:27:83:34:21:5c:b1:86:43:16:41:72:cd: 87:39:60:00:a0:bc:12:05:d1:ad:e9:bf:34:1b:e3: 74:42:32:45:dd:d7:1f:85:3c:d3:4c:54:4b:ea:a6: 19:64:56:22:75:bb:83:ec:ac:63:29:48:2b:df:47: db:8d:b1:d1:70:1e:ee:97:ba:4c:f7:e3:38:e2:63: 59:a7:d2:05:ec:22:02:41:48:d7:ce:05:b1:9e:29: 04:db:f9:91:41:bd:9b:1d:2c:78:2f:c2:3b:d4:49: 72:dc:2c:fc:f2:41:98:ed:e4:a5:aa:af:26:7c:cb: e4:57:cc:6c:8c:bb:48:62:4f:6b:f2:b1:36:45:2c: d4:b1:a3:da:b0:39:7e:ae:05:ca:64:0c:42:22:f6: 7e:4d:d8:c5:bb:4b:64:66:f9:f7:91:e5:f7:1a:ae: ef:ae:b4:da:ac:b9:ae:a8:91:5c:a9:dc:a0:84:02: 89:2c:a2:f7:0e:97:eb:db:4f:b3:59:dc:a7:77:2e: f4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:51:05:4F:DB:67:05:0F:74:B5:35:C4:B2:BD:0F:1B:81:C3:6B:2F X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7c:e9:49:e7:4d:7f:65:71:70:45:eb:3f:4a:f7:83:44:09: bb:e7:76:51:1e:56:14:11:3a:0e:80:7f:bf:01:79:ed:8e:ab: 28:e1:92:54:96:3e:0d:36:86:57:9b:0c:a6:d4:0e:9f:d8:4a: f5:f4:bb:35:8e:71:52:f3:ed:23:e6:d0:88:17:40:b5:d5:df: 55:03:a9:0a:f2:70:18:db:e0:de:77:b9:63:b5:b0:b3:51:c0: 93:c7:e8:64:4a:a2:05:cf:27:a1:ff:9d:1c:8c:b5:46:89:35: 80:af:c5:4f:8e:ef:e2:92:4a:97:a4:9d:f4:4b:b5:22:2b:2a: 70:23:c6:37:1f:6f:e6:d5:0a:3b:ad:4c:0b:41:3d:0f:c6:cc: 83:0e:2c:56:87:4d:4a:60:fd:20:3d:ec:ff:20:46:50:70:f3: 91:8e:4f:f8:62:b1:e1:7c:49:e3:a7:c8:11:9e:99:78:4a:88: c4:19:e1:3e:e5:dc:2c:45:ed:0e:c5:6b:f2:6c:8f:96:d3:ba: 01:d4:8b:47:0b:17:d3:29:64:f5:b5:f6:14:2d:58:3d:6e:33: fb:a8:53:e0:d4:3e:f9:d7:c0:d0:52:ee:74:43:1a:95:24:15: 25:f7:63:42:62:70:fd:f4:99:bc:46:77:b5:67:a7:9a:c0:53: 9f:b1:e9:de -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUFCOTExMC8GA1UEBRMoMzgxN0NGRTAwQTVGMUFDQzM2M0I0NzJGNEY2OURBODNC RUI1NjYxMzAeFw0yNTA0MjcwNTM1MzdaFw0yNTA1MDQwNTM1MzdaMBgxFjAUBgNV BAMTDTY4MGRjMjI5LTU4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtr/qVEZFb1bxy+uVaDa33VxXBZFwqdQlf65Ny1sr6adgeKYX54wSmxXE+kxd0 NAthsoQNi3R6JueRDmNgWSeDNCFcsYZDFkFyzYc5YACgvBIF0a3pvzQb43RCMkXd 1x+FPNNMVEvqphlkViJ1u4PsrGMpSCvfR9uNsdFwHu6Xukz34zjiY1mn0gXsIgJB SNfOBbGeKQTb+ZFBvZsdLHgvwjvUSXLcLPzyQZjt5KWqryZ8y+RXzGyMu0hiT2vy sTZFLNSxo9qwOX6uBcpkDEIi9n5N2MW7S2Rm+feR5fcaru+utNqsua6okVyp3KCE AoksovcOl+vbT7NZ3Kd3LvSRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUblEFT9tn BQ90tTXEsr0PG4HDay8wHwYDVR0jBBgwFoAUOBfP4ApfGsw2O0cvT2nag761ZhMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QUI5L0QxMThDMEJDNkU4 NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0JmUDRBcGZHc3cyTzBjdlQybmFnNzYxWmhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QUI5L0QxMThDMEJDNkU4NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3 Mk8wY3ZUMm5hZzc2MVpoTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF186UnnTX9lcXBF6z9K94NECbvndlEeVhQROg6Af78Bee2OqyjhklSW Pg02hlebDKbUDp/YSvX0uzWOcVLz7SPm0IgXQLXV31UDqQrycBjb4N53uWO1sLNR wJPH6GRKogXPJ6H/nRyMtUaJNYCvxU+O7+KSSpeknfRLtSIrKnAjxjcfb+bVCjut TAtBPQ/GzIMOLFaHTUpg/SA97P8gRlBw85GOT/hiseF8SeOnyBGemXhKiMQZ4T7l 3CxF7Q7Fa/Jsj5bTugHUi0cLF9MpZPW19hQtWD1uM/uoU+DUPvnXwNBS7nRDGpUk FSX3Y0JicP30mbxGd7Vnp5rAU5+x6d4= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net