$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft File: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft (raw, json) Hash identifier: V76PxAvHa4J0L90OmoIHH1xjvHUYJl8HcfjoZhIpmcE= Subject key identifier: 07:A5:33:B8:00:62:94:37:B4:AF:F4:F5:BF:2A:63:4E:EB:F0:2E:AB Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft Manifest number: 051A Signing time: Sat 26 Apr 2025 23:22:30 +0000 Manifest this update: Sat 26 Apr 2025 23:22:30 +0000 Manifest next update: Sat 03 May 2025 23:22:30 +0000 Files and hashes: 1: y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl (hash: 8dA0djFUbINk5G7A1kFSfyDUyXLEKijdzPnC48rLJAg=) 2: B0245792094611F089247D2CC4F9AE02.roa (hash: WzcjSkbp1L3UZdNgdiavQerl/BKgE6QHhDZV6MZpLAY=) 3: DB78EC4202C411F0A370F12EC4F9AE02.roa (hash: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY=) 4: DBEA4AA402C411F0A370F12EC4F9AE02.roa (hash: LglT88AP992wwS6++8oX+hvPgvXH2IXg5x9/81P07t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52, serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Validity Not Before: Apr 26 23:22:30 2025 GMT Not After : May 3 23:22:30 2025 GMT Subject: CN=680d6ab6-382e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f7:a5:af:28:34:f3:72:f5:fe:cd:0d:db:d6: a6:61:85:db:db:a0:d6:b6:08:37:97:31:aa:1d:01: 17:3a:af:8b:91:ce:cb:4d:42:28:82:db:d5:b3:37: 3a:f9:a2:cc:96:35:fc:11:51:5e:27:02:a9:1e:58: 92:bb:64:b7:5b:d9:83:0d:35:78:e3:2a:e4:fe:b7: de:3b:9f:f2:a8:3c:84:aa:b5:26:dd:82:52:4e:45: 14:33:86:44:a7:6c:bc:cf:36:4c:48:14:dd:a3:bf: 2d:f0:f5:2d:b0:45:c2:e9:84:27:78:69:7f:62:d6: 3b:97:a0:ce:31:f1:2c:b0:35:bb:a7:09:74:97:6a: 6b:15:9f:ed:1e:9b:25:2e:54:84:28:d0:03:86:88: 9c:a0:85:69:15:f7:bc:0c:4c:68:0d:8f:bd:4c:31: 8e:ad:55:a8:1e:77:80:c5:48:a3:56:33:bb:2d:1e: f9:82:0e:71:37:93:e6:79:b5:d8:cb:65:ef:91:b8: 0b:b9:cf:cf:23:45:1d:34:65:20:47:ee:bc:58:9e: e7:d2:81:84:87:93:81:e6:b2:0a:f0:1f:44:ef:50: 81:52:2d:22:53:8a:1f:bd:e2:11:dd:42:14:bd:e4: 39:36:69:ce:1d:80:84:78:bc:3a:72:09:d0:47:38: 5e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:A5:33:B8:00:62:94:37:B4:AF:F4:F5:BF:2A:63:4E:EB:F0:2E:AB X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:b8:c4:4b:80:ba:43:a8:45:76:c0:04:96:d9:e2:5f:52:35: 08:a4:9e:41:99:7d:26:84:b2:f7:3f:d6:46:37:7b:70:95:f6: ec:03:06:c2:06:d1:d2:a8:f9:88:a7:0b:7f:86:ec:1d:fe:aa: 15:ff:63:e2:15:93:24:22:94:8c:62:e7:84:0a:fe:b0:d1:b1: 57:0a:4c:37:f2:dd:35:b0:ba:01:3d:19:ba:13:3b:bd:72:72: 4c:88:b4:21:dc:b4:bb:ce:00:02:e8:1b:b8:74:ff:9e:72:b9: 4b:8c:18:e1:ac:b7:dd:6e:a8:33:d7:1b:f3:1f:ee:ac:2d:60: d3:f7:73:cc:75:e4:84:44:c3:2b:f3:56:15:bd:74:84:23:73: f5:9b:1a:8b:1f:65:05:aa:87:dc:63:dd:fe:74:24:ab:94:b2: c5:67:bc:c6:93:c4:3d:11:34:54:4f:e8:88:51:db:dc:4d:87: 48:bb:2c:52:28:7e:b7:6e:f6:e3:de:7e:c5:b2:d5:7f:49:23: 43:7a:3e:08:ec:92:de:aa:5c:a0:69:e2:47:dc:7e:35:c4:c8: 35:3e:55:e0:dd:d5:b4:a7:3c:49:27:6f:78:57:16:32:10:b9: 4a:f5:7d:01:2f:85:70:d3:89:96:b2:c5:e8:8f:01:3e:73:5b: ba:a2:cb:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTA0MjYyMzIyMzBaFw0yNTA1MDMyMzIyMzBaMBgxFjAUBgNV BAMTDTY4MGQ2YWI2LTM4MmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+96WvKDTzcvX+zQ3b1qZhhdvboNa2CDeXMaodARc6r4uRzstNQiiC29WzNzr5 osyWNfwRUV4nAqkeWJK7ZLdb2YMNNXjjKuT+t947n/KoPISqtSbdglJORRQzhkSn bLzPNkxIFN2jvy3w9S2wRcLphCd4aX9i1juXoM4x8SywNbunCXSXamsVn+0emyUu VIQo0AOGiJyghWkV97wMTGgNj71MMY6tVaged4DFSKNWM7stHvmCDnE3k+Z5tdjL Ze+RuAu5z88jRR00ZSBH7rxYnufSgYSHk4HmsgrwH0TvUIFSLSJTih+94hHdQhS9 5Dk2ac4dgIR4vDpyCdBHOF45AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUB6UzuABi lDe0r/T1vypjTuvwLqswHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QzUyLzZCNzE1MTYyMEQ3RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0Umkt Y1haRllPbHh4ZzI4andaMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD+4xEuAukOoRXbABJbZ4l9SNQiknkGZfSaEsvc/1kY3e3CV9uwDBsIG 0dKo+YinC3+G7B3+qhX/Y+IVkyQilIxi54QK/rDRsVcKTDfy3TWwugE9GboTO71y ckyItCHctLvOAALoG7h0/55yuUuMGOGst91uqDPXG/Mf7qwtYNP3c8x15IREwyvz VhW9dIQjc/WbGosfZQWqh9xj3f50JKuUssVnvMaTxD0RNFRP6IhR29xNh0i7LFIo frdu9uPefsWy1X9JI0N6Pgjskt6qXKBp4kfcfjXEyDU+VeDd1bSnPEknb3hXFjIQ uUr1fQEvhXDTiZayxeiPAT5zW7qiy1c= -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:08 2025 by rpki-client on console.sobornost.net