$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft File: HuygOndlK5BwteEzgJoiODDInPk.mft (raw, json) Hash identifier: CfATNt6099TaY3hEX8spoKM98AhOzX+MZbvLtk3zihQ= Subject key identifier: 3B:D5:D7:17:89:38:D0:14:A6:EC:9B:4F:7C:B1:12:E5:4A:32:CF:7C Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 0259 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft Manifest number: 024E Signing time: Sun 27 Apr 2025 01:29:36 +0000 Manifest this update: Sun 27 Apr 2025 01:29:36 +0000 Manifest next update: Sun 04 May 2025 01:29:36 +0000 Files and hashes: 1: HuygOndlK5BwteEzgJoiODDInPk.crl (hash: 1U+IfxLd7xYj78XmPWczBTNmDAwSI8fOkOv7eAyc29g=) 2: AF13726403AD11F0B5D12A81C4F9AE02.roa (hash: XBaed8FJc7Gixv2UzCn4EyIQb1PKqJIn+WKksLyjxb8=) 3: 2080359097F711EF91AB0436C4F9AE02.roa (hash: ayF9Bv7+wkh7jzbmvM6fDF9jk/NLjmF1YhPtsg38ygk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56, serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Validity Not Before: Apr 27 01:29:36 2025 GMT Not After : May 4 01:29:36 2025 GMT Subject: CN=680d8880-8a7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e0:2f:ee:3f:ea:45:a7:dc:79:3e:10:bc:b5: b0:e2:39:09:e5:a7:b5:0e:51:aa:cf:1f:74:43:b7: 00:c7:5c:f1:0c:dc:4b:7e:50:2c:0b:9a:f1:d0:ea: eb:a8:89:f9:7f:d0:37:31:9a:b8:e9:54:2b:b4:89: fd:59:8a:3f:60:1c:97:bf:51:f8:58:ef:06:e9:64: 19:2d:71:b7:38:d0:57:0b:25:80:e0:8c:6d:50:8a: 7d:be:fa:e7:af:78:fe:cb:ca:7f:f2:9f:f1:5a:86: 5f:15:bf:51:20:e0:d9:0a:34:ed:ea:56:d8:45:6f: 1d:17:25:84:7a:15:d3:9c:14:f0:87:1f:8a:87:73: 9a:05:cc:ff:40:f7:7d:a8:a9:a0:48:af:9e:04:07: dc:af:19:fc:2f:48:f3:6c:54:1f:33:43:ea:af:58: 79:7f:66:60:22:00:38:42:a3:da:80:eb:90:c5:3b: 83:90:40:bf:0e:86:40:65:db:4c:40:aa:63:bd:af: 03:00:f3:3f:72:16:70:f2:5d:d3:9d:a1:50:7d:17: 38:d8:67:98:7a:ae:16:9e:5c:03:18:14:7e:2b:82: da:87:31:7f:65:a3:e4:9f:53:69:18:bf:f0:85:ce: e9:79:2a:b3:67:24:3b:8d:4b:30:5b:04:20:47:69: b7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D5:D7:17:89:38:D0:14:A6:EC:9B:4F:7C:B1:12:E5:4A:32:CF:7C X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:ae:24:2a:6a:4b:b3:99:4f:0e:48:6f:ed:af:93:34:cf:0a: c8:28:a9:45:30:79:f4:6e:97:a5:a7:9a:99:5b:c1:8e:c7:f8: e4:bc:29:4b:8d:57:b6:cc:88:2b:62:3d:ad:50:62:dd:ff:4f: bc:be:0a:20:b9:00:d8:f5:40:70:c6:38:9c:be:8e:7f:b9:97: c7:a4:c4:af:86:91:bf:36:d6:63:49:48:3f:70:23:bf:c1:b9: 7a:82:e9:78:ef:1d:8d:d5:cb:73:06:f1:c0:75:1e:14:a6:5c: 26:68:44:d6:2e:6d:ae:57:55:25:1a:4c:b4:29:35:22:14:ea: 4a:50:0c:44:92:22:ec:cf:7c:39:94:bc:4b:e4:2e:09:08:dd: c0:b9:43:b1:e4:b9:b4:f1:d5:96:2d:15:6c:2b:79:ed:5c:f5: 6b:f1:f3:b7:c2:d7:96:af:1b:14:63:41:aa:a7:f0:58:47:c6: 31:33:c2:68:bb:94:91:73:94:66:8b:f8:be:f8:bc:da:78:19: ba:af:50:bb:2e:79:f8:6c:3b:26:ec:de:43:c0:4a:1b:86:59: 42:7a:cb:30:ad:07:30:e8:ac:75:f7:62:e3:d9:fe:28:f7:2a: f6:21:1e:bf:22:0a:55:bf:07:9a:3c:05:5c:a3:be:61:5a:3f: 11:46:28:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjUwNDI3MDEyOTM2WhcNMjUwNTA0MDEyOTM2WjAYMRYwFAYD VQQDEw02ODBkODg4MC04YTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOAv7j/qRafceT4QvLWw4jkJ5ae1DlGqzx90Q7cAx1zxDNxLflAsC5rx0Orr qIn5f9A3MZq46VQrtIn9WYo/YByXv1H4WO8G6WQZLXG3ONBXCyWA4IxtUIp9vvrn r3j+y8p/8p/xWoZfFb9RIODZCjTt6lbYRW8dFyWEehXTnBTwhx+Kh3OaBcz/QPd9 qKmgSK+eBAfcrxn8L0jzbFQfM0Pqr1h5f2ZgIgA4QqPagOuQxTuDkEC/DoZAZdtM QKpjva8DAPM/chZw8l3TnaFQfRc42GeYeq4WnlwDGBR+K4LahzF/ZaPkn1NpGL/w hc7peSqzZyQ7jUswWwQgR2m3bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvV1xeJ ONAUpuybT3yxEuVKMs98MB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUQ1Ni84MThCNEQwMjFBQUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1 Qnd0ZUV6Z0pvaU9EREluUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbriQqakuzmU8OSG/tr5M0zwrIKKlFMHn0bpelp5qZW8GOx/jkvClL jVe2zIgrYj2tUGLd/0+8vgoguQDY9UBwxjicvo5/uZfHpMSvhpG/NtZjSUg/cCO/ wbl6gul47x2N1ctzBvHAdR4UplwmaETWLm2uV1UlGky0KTUiFOpKUAxEkiLsz3w5 lLxL5C4JCN3AuUOx5Lm08dWWLRVsK3ntXPVr8fO3wteWrxsUY0Gqp/BYR8YxM8Jo u5SRc5Rmi/i++LzaeBm6r1C7Lnn4bDsm7N5DwEobhllCesswrQcw6Kx192Lj2f4o 9yr2IR6/IgpVvweaPAVco75hWj8RRijR -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:09 2025 by rpki-client on console.sobornost.net