$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: aF9mVqYdyfFKjqmUkC2eztxP6xDpP4BbBqRvFVbFW4A= Subject key identifier: D3:DB:EA:68:14:29:63:1E:92:8D:21:F8:7D:9A:18:26:5B:D1:86:46 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 062F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 0624 Signing time: Sat 26 Apr 2025 22:24:26 +0000 Manifest this update: Sat 26 Apr 2025 22:24:26 +0000 Manifest next update: Sat 03 May 2025 22:24:26 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: mgS7nyjajHrpKqU28xX1bM0cI09Z4F0HDfd4HTPDz2A=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D, serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Apr 26 22:24:26 2025 GMT Not After : May 3 22:24:26 2025 GMT Subject: CN=680d5d1a-fdde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:87:a7:9d:8a:88:27:e1:09:c6:1c:ea:59:c5: 42:22:d1:ac:e9:90:c1:e1:ba:de:21:38:23:4f:1f: 7b:28:96:b7:9b:4c:47:aa:5e:c7:58:6e:49:6c:85: 09:91:bf:75:b7:10:a6:e6:18:b0:5a:45:80:2b:bf: 8a:1a:82:9a:99:00:c6:03:0a:94:f8:5e:07:62:7e: d1:68:8d:de:41:5f:b2:bd:94:dd:23:c5:71:47:17: 0a:03:55:71:ea:78:b2:83:52:76:6c:8c:b2:fe:e4: ba:89:c7:cf:30:fd:25:5c:14:18:37:a3:33:31:40: 96:9d:6a:15:30:c8:1c:4b:ee:43:47:2a:00:70:2e: 41:8f:c8:d2:33:d6:62:b2:4f:18:61:0d:bd:ae:ce: 66:bc:40:22:3e:93:37:76:69:f5:6c:db:9c:03:5c: e9:7d:a2:e3:c4:68:6c:10:f4:ef:4e:66:58:ed:bd: f1:db:1d:bd:cd:0d:1c:16:9b:08:11:3c:7b:2a:2a: 79:f9:1d:bd:bb:9c:ee:e6:51:9b:86:0d:2e:3f:84: 5d:00:dc:e0:0d:e1:8c:96:8d:76:d3:ed:33:18:dd: 7a:84:55:a6:af:4e:94:17:0e:f1:37:ee:b4:f6:15: cc:8c:df:c7:0e:6e:64:a3:56:a6:e6:96:a0:94:4e: 84:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:DB:EA:68:14:29:63:1E:92:8D:21:F8:7D:9A:18:26:5B:D1:86:46 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1b:b6:25:85:07:42:95:ba:67:f0:9a:ab:70:69:f7:ff:52: 6b:aa:42:b1:d9:09:97:41:ac:4b:f7:1f:61:11:d2:27:73:4f: eb:1d:e0:f2:9e:b0:f3:f4:f7:49:00:d5:c9:27:1a:47:fd:28: 15:1e:38:97:15:7b:a8:24:c3:f7:5d:e6:33:a0:ca:26:0a:39: b9:47:34:e8:72:dc:4c:bb:11:13:ba:6e:ea:67:da:df:33:80: 44:92:5f:73:bb:5f:41:58:2e:03:fb:77:63:d0:b2:23:52:5e: bd:8f:a7:54:5a:45:8b:c5:39:2e:85:83:3b:5b:5b:d6:df:69: ca:50:ab:2e:0b:9e:13:59:0b:e5:d1:ca:ca:bf:e5:bf:62:56: ef:06:99:cc:bf:f8:1b:be:8b:13:17:86:d1:b7:4e:e0:a5:b7: 23:91:dd:aa:b5:a2:0c:88:ca:69:9a:c1:ff:69:75:2e:43:21: 16:59:28:aa:4e:a8:f1:54:59:3e:d9:74:f9:4f:a4:cb:33:cc: 73:41:46:fe:5d:98:b5:34:3e:b7:23:0b:2d:b2:f5:98:34:d8: d2:9c:87:0d:85:55:22:20:8f:2b:c9:fd:96:10:3a:f7:ec:d0: 75:9c:25:a5:b4:1e:80:7b:21:4a:34:4c:97:8a:06:f4:41:69: 7e:c3:6c:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjUwNDI2MjIyNDI2WhcNMjUwNTAzMjIyNDI2WjAYMRYwFAYD VQQDEw02ODBkNWQxYS1mZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYennYqIJ+EJxhzqWcVCItGs6ZDB4breITgjTx97KJa3m0xHql7HWG5JbIUJ kb91txCm5hiwWkWAK7+KGoKamQDGAwqU+F4HYn7RaI3eQV+yvZTdI8VxRxcKA1Vx 6niyg1J2bIyy/uS6icfPMP0lXBQYN6MzMUCWnWoVMMgcS+5DRyoAcC5Bj8jSM9Zi sk8YYQ29rs5mvEAiPpM3dmn1bNucA1zpfaLjxGhsEPTvTmZY7b3x2x29zQ0cFpsI ETx7Kip5+R29u5zu5lGbhg0uP4RdANzgDeGMlo120+0zGN16hFWmr06UFw7xN+60 9hXMjN/HDm5ko1am5paglE6EewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPb6mgU KWMeko0h+H2aGCZb0YZGMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/G7YlhQdClbpn8JqrcGn3/1JrqkKx2QmXQaxL9x9hEdInc0/rHeDy nrDz9PdJANXJJxpH/SgVHjiXFXuoJMP3XeYzoMomCjm5RzToctxMuxETum7qZ9rf M4BEkl9zu19BWC4D+3dj0LIjUl69j6dUWkWLxTkuhYM7W1vW32nKUKsuC54TWQvl 0crKv+W/YlbvBpnMv/gbvosTF4bRt07gpbcjkd2qtaIMiMppmsH/aXUuQyEWWSiq TqjxVFk+2XT5T6TLM8xzQUb+XZi1ND63IwstsvWYNNjSnIcNhVUiII8ryf2WEDr3 7NB1nCWltB6AeyFKNEyXigb0QWl+w2wa -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:09 2025 by rpki-client on console.sobornost.net