$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft File: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft (raw, json) Hash identifier: G1i8cD6fBB9fqzGhncc69isdP6PuYYPw/zNTzNAch3s= Subject key identifier: FC:14:F3:74:CF:F4:3A:46:7B:D0:FC:30:EB:D9:7B:A2:AF:A1:CF:14 Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0C9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft Manifest number: 0C66 Signing time: Mon 28 Apr 2025 18:45:16 +0000 Manifest this update: Mon 28 Apr 2025 18:45:15 +0000 Manifest next update: Mon 05 May 2025 18:45:15 +0000 Files and hashes: 1: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl (hash: GnnicWDstPvD7/i9NUnhmbjw0Wo5/5ph93TmDdabZGs=) 2: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (hash: QL/NLzdNbP6VC/RbcjFAhO7P1ptgQDlD2OI4FmLsmtY=) 3: 12561046368911EEA0CB766BC4F9AE02.roa (hash: /GknOelDIGsOfVA5prSm5KZ1UJQ7GqbrCT0cnToz+2g=) 4: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (hash: 0OHkdOYwWuHEae6hLLfEVYlgXJ3hl5nkCEg2iieXkpI=) 5: 22E63812221211EF9624DB0CC4F9AE02.roa (hash: MDORN4dVK/WKX8D1PrktvMyAAOKMRM6BT7nSAEts5I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3226 (0xc9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Apr 28 18:45:15 2025 GMT Not After : May 5 18:45:15 2025 GMT Subject: CN=680fccbc-17f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:ad:d1:76:c7:35:4c:7d:e1:f0:ad:1e:d5: 3d:8e:12:ee:b7:b3:94:ed:4b:a7:21:8c:4a:e6:0c: 60:b7:de:79:c5:53:51:6a:c7:13:63:73:73:20:fb: 66:5d:7c:d4:cb:d6:f2:fc:6b:91:b7:df:d0:4c:cd: 4a:44:d5:80:09:d3:a4:fc:9c:07:b7:91:6c:14:e4: 0b:92:02:a9:1b:da:f1:0c:c6:7a:c0:68:3a:25:32: a1:01:b8:b0:49:34:dd:55:c0:5d:17:79:67:02:ce: b9:08:ba:d2:a7:8b:32:c1:46:3c:32:97:8a:f1:e9: 61:30:87:f5:21:6a:e3:3e:06:d2:78:f1:83:3e:70: c7:2f:82:09:81:75:03:a4:6a:6d:56:86:8f:d7:49: 83:19:39:df:b8:a7:a9:c6:90:6d:23:e2:37:c0:57: 0a:6c:86:07:c5:e8:6a:87:67:87:4e:6b:e4:08:a7: a5:9e:4c:e8:a2:86:de:02:4b:98:fc:29:a1:dc:0c: 42:aa:ce:00:77:82:78:48:5b:9d:73:9a:fa:7d:78: 42:b8:ff:af:63:6c:c5:82:da:c8:07:c7:98:fa:69: 7c:d3:cc:f2:56:78:ec:90:86:0b:2d:3c:c8:e2:a7: a0:9e:13:3e:28:06:dc:22:8c:20:e6:66:a2:04:75: af:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:14:F3:74:CF:F4:3A:46:7B:D0:FC:30:EB:D9:7B:A2:AF:A1:CF:14 X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:d1:14:52:11:73:10:a5:94:85:fd:44:73:17:b6:04:b4:fe: 9d:df:25:85:1c:54:0e:78:04:93:46:75:30:93:3d:75:a8:00: 1b:2b:3a:65:1a:6c:81:5a:a5:b1:bf:42:c2:cb:bd:3e:a5:46: a4:2d:20:a3:25:58:a1:39:d2:a9:21:e5:b0:d4:63:50:91:63: 84:7f:88:fa:87:8e:5e:a1:f7:03:82:dd:3a:fa:9e:35:07:b4: ce:1e:17:7b:fc:ad:57:96:92:de:64:1d:5b:1e:69:1b:6f:29: 8a:39:c9:43:70:4c:8b:79:f3:44:61:0d:b0:8a:14:fc:7e:92: 79:0e:d1:62:43:64:02:00:e8:82:97:0f:a8:c7:20:7d:86:e0: 8d:13:eb:77:a9:f6:88:9c:78:97:e7:2c:de:cc:6f:03:86:1f: 49:e0:49:2a:0f:3f:a9:7e:fd:1b:21:f5:44:37:91:68:60:2d: 42:2a:aa:6c:91:3c:41:90:0b:bf:3c:1d:f6:52:16:fc:71:62: 02:ca:60:40:f3:1c:d3:a9:1a:2f:6b:cd:a3:6e:77:17:fb:d7: 34:a4:57:d3:a5:7e:2a:4b:e3:c5:52:c4:b5:1b:0e:e1:b7:65: 25:b4:af:4a:2b:3e:66:87:21:fc:2b:e7:59:24:ac:bb:28:e8: c0:93:a6:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUwNDI4MTg0NTE1WhcNMjUwNTA1MTg0NTE1WjAYMRYwFAYD VQQDEw02ODBmY2NiYy0xN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAni2t0XbHNUx94fCtHtU9jhLut7OU7UunIYxK5gxgt955xVNRascTY3NzIPtm XXzUy9by/GuRt9/QTM1KRNWACdOk/JwHt5FsFOQLkgKpG9rxDMZ6wGg6JTKhAbiw STTdVcBdF3lnAs65CLrSp4sywUY8MpeK8elhMIf1IWrjPgbSePGDPnDHL4IJgXUD pGptVoaP10mDGTnfuKepxpBtI+I3wFcKbIYHxehqh2eHTmvkCKelnkzooobeAkuY /Cmh3AxCqs4Ad4J4SFudc5r6fXhCuP+vY2zFgtrIB8eY+ml808zyVnjskIYLLTzI 4qegnhM+KAbcIowg5maiBHWvowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwU83TP 9DpGe9D8MOvZe6Kvoc8UMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE4MC9COThFODFENjA1QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3kt Q0dqY0M0X0tJOVNsOEgxM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA40RRSEXMQpZSF/URzF7YEtP6d3yWFHFQOeASTRnUwkz11qAAbKzpl GmyBWqWxv0LCy70+pUakLSCjJVihOdKpIeWw1GNQkWOEf4j6h45eofcDgt06+p41 B7TOHhd7/K1XlpLeZB1bHmkbbymKOclDcEyLefNEYQ2wihT8fpJ5DtFiQ2QCAOiC lw+oxyB9huCNE+t3qfaInHiX5yzezG8Dhh9J4EkqDz+pfv0bIfVEN5FoYC1CKqps kTxBkAu/PB32Uhb8cWICymBA8xzTqRova82jbncX+9c0pFfTpX4qS+PFUsS1Gw7h t2UltK9KKz5mhyH8K+dZJKy7KOjAk6bm -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:53 2025 by rpki-client on console.sobornost.net