$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft File: a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft (raw, json) Hash identifier: ar62TLa5p3YSnoHusdKJf20COoVFk7DdKc1pvMr3qSc= Subject key identifier: 87:53:00:5B:41:B3:3E:D5:30:1F:FB:01:F0:72:C0:5C:5B:40:F9:3D Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft Manifest number: 3A Signing time: Sun 27 Apr 2025 06:32:47 +0000 Manifest this update: Sun 27 Apr 2025 06:32:47 +0000 Manifest next update: Sun 04 May 2025 06:32:47 +0000 Files and hashes: 1: a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl (hash: Od0hCNwirvkEyHOls06T21qniqNo2PleRjtvJ3UMtx8=) 2: 6667EA1E20F811F0A8A8B152C4F9AE02.roa (hash: OmV8c2WyaE/U5jA5VcIK/FgCq7kVUSULlHMoYeHpWw8=) 3: 04241E3222F011F0B021396DC4F9AE02.roa (hash: IjQPfIj5/AzM9Gvm8PKFUDMbCEL6tis3DH+Pa1Gh85o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: Apr 27 06:32:47 2025 GMT Not After : May 4 06:32:47 2025 GMT Subject: CN=680dcf8f-d765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:58:40:74:ae:6f:47:60:7e:b6:d8:f6:76:ff: 04:92:49:40:2b:03:4c:f2:62:42:e3:a8:6f:dd:ee: 79:2e:d9:9d:4b:16:e0:3c:4f:8f:3e:e3:c5:a5:d0: 90:2e:29:2b:fb:6a:8c:eb:90:71:93:15:dc:d7:ae: ac:f1:8c:46:81:4e:55:93:f2:e3:14:0e:06:93:bf: f4:e0:73:d6:ee:1a:00:b2:46:40:4b:c9:17:d0:1f: 7b:9c:4a:cc:93:06:28:35:6b:35:77:c2:12:cd:59: 92:d9:2a:30:e9:4b:7b:a5:3a:54:06:5d:28:bf:9b: b0:99:8e:d3:32:12:63:a1:b4:be:54:51:f2:02:ca: 9d:0c:04:76:54:aa:ea:99:ee:20:af:48:86:82:76: d7:b5:9e:3f:07:a7:ef:a6:a3:ae:64:a1:55:18:af: e1:cc:9c:93:4f:2a:21:b0:aa:eb:41:dd:01:6e:6c: f3:7f:9a:58:aa:bb:f1:10:da:59:85:53:55:f8:f5: 2b:63:3f:14:06:5c:7b:70:94:0a:43:d6:08:2c:12: 49:66:65:20:cf:86:31:7b:40:19:a7:96:58:61:5f: 12:33:62:b3:a4:bf:a5:3b:2f:12:a4:b7:3b:dd:f5: 67:22:83:0b:bd:39:fc:f8:68:7d:30:0e:1c:c6:c2: 29:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:53:00:5B:41:B3:3E:D5:30:1F:FB:01:F0:72:C0:5C:5B:40:F9:3D X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:34:b1:73:b2:41:b8:09:4a:73:41:26:9d:2f:1f:a0:29:8a: 92:e7:9a:98:91:ae:a2:4c:1d:48:b8:09:b9:44:a0:5b:f4:52: e5:c7:fe:c1:05:8d:eb:3e:64:f0:38:a7:1e:be:60:36:3d:78: 38:e2:62:d4:30:e5:ff:51:19:d9:6c:bd:9d:38:ec:2c:55:60: da:9d:f6:b6:c4:fb:55:6a:80:96:d9:0b:84:71:76:69:e8:0c: 98:2e:c0:b5:2f:3c:bb:c3:0a:8c:dd:24:72:17:2d:b0:44:05: bd:31:0a:81:04:dc:7e:53:e8:e0:42:d9:1e:9a:ca:0f:47:8c: e9:50:71:64:71:ac:ec:cf:d6:de:ef:3c:fb:a6:72:92:7e:61: 82:da:46:c9:c0:a3:98:a7:a7:06:5d:e6:d3:04:81:76:ad:4a: 33:cd:97:d0:4a:56:d5:3a:6c:30:93:a7:57:aa:6c:fd:c7:3e: 95:7d:ab:db:a3:99:8a:6f:a2:dc:8f:8d:d3:e4:40:4e:69:04: 68:57:73:2e:74:85:db:f5:d2:95:d4:d9:d8:fd:00:cd:e8:08: 01:d2:1b:04:8b:43:16:7c:56:3e:66:d7:06:84:d5:55:4c:c5: 63:04:4b:b3:10:89:6d:5f:e8:5f:70:ea:6a:c5:89:3b:35:7d: 22:e5:8c:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC REVFQjExMC8GA1UEBRMoNkI2M0E2MEU3RDdGNTFEMDM4NzI4QzY0MjU5MDYwNDcw MTZDOTkwNDAeFw0yNTA0MjcwNjMyNDdaFw0yNTA1MDQwNjMyNDdaMBgxFjAUBgNV BAMTDTY4MGRjZjhmLWQ3NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnWEB0rm9HYH622PZ2/wSSSUArA0zyYkLjqG/d7nku2Z1LFuA8T48+48Wl0JAu KSv7aozrkHGTFdzXrqzxjEaBTlWT8uMUDgaTv/Tgc9buGgCyRkBLyRfQH3ucSsyT Big1azV3whLNWZLZKjDpS3ulOlQGXSi/m7CZjtMyEmOhtL5UUfICyp0MBHZUquqZ 7iCvSIaCdte1nj8Hp++mo65koVUYr+HMnJNPKiGwqutB3QFubPN/mliqu/EQ2lmF U1X49StjPxQGXHtwlApD1ggsEklmZSDPhjF7QBmnllhhXxIzYrOkv6U7LxKktzvd 9Wcigwu9Ofz4aH0wDhzGwinRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUh1MAW0Gz PtUwH/sB8HLAXFtA+T0wHwYDVR0jBBgwFoAUa2OmDn1/UdA4coxkJZBgRwFsmQQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJERUVCLzFFRTdGQTYwRTVG NDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21R US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYTJPbURuMV9VZEE0Y294a0paQmdSd0ZzbVFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE RUVCLzFFRTdGQTYwRTVGNDExRUZBQkQzOUQ3RUM0RjlBRTAyL2EyT21EbjFfVWRB NGNveGtKWkJnUndGc21RUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACQ0sXOyQbgJSnNBJp0vH6ApipLnmpiRrqJMHUi4CblEoFv0UuXH/sEF jes+ZPA4px6+YDY9eDjiYtQw5f9RGdlsvZ047CxVYNqd9rbE+1VqgJbZC4Rxdmno DJguwLUvPLvDCozdJHIXLbBEBb0xCoEE3H5T6OBC2R6ayg9HjOlQcWRxrOzP1t7v PPumcpJ+YYLaRsnAo5inpwZd5tMEgXatSjPNl9BKVtU6bDCTp1eqbP3HPpV9q9uj mYpvotyPjdPkQE5pBGhXcy50hdv10pXU2dj9AM3oCAHSGwSLQxZ8Vj5m1waE1VVM xWMES7MQiW1f6F9w6mrFiTs1fSLljBI= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net