$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF286/1CE2B0C4669411EEA0452951C4F9AE02/EBEGw3VRsRR1-6qyOQEVt6zygC0.mft File: EBEGw3VRsRR1-6qyOQEVt6zygC0.mft (raw, json) Hash identifier: HGKJj2/vyIzVPDUeTQ8NW0gfniKRT7ylMMNFDOUVP+U= Subject key identifier: D4:C0:C8:DE:F2:CB:A9:3A:3E:35:25:46:11:A7:B2:79:09:47:B3:17 Authority key identifier: 10:11:06:C3:75:51:B1:14:75:FB:AA:B2:39:01:15:B7:AC:F2:80:2D Certificate issuer: /CN=A91BF286/serialNumber=101106C37551B11475FBAAB2390115B7ACF2802D Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EBEGw3VRsRR1-6qyOQEVt6zygC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF286/1CE2B0C4669411EEA0452951C4F9AE02/EBEGw3VRsRR1-6qyOQEVt6zygC0.mft Manifest number: 0126 Signing time: Sun 27 Apr 2025 03:36:09 +0000 Manifest this update: Sun 27 Apr 2025 03:36:08 +0000 Manifest next update: Sun 04 May 2025 03:36:08 +0000 Files and hashes: 1: EBEGw3VRsRR1-6qyOQEVt6zygC0.crl (hash: E+0LbjbI3oHDYmRkMSSIEGIoq51MEWLXVJ0tl6yh58w=) 2: 44BA2B8C671011EEB41FB227C4F9AE02.roa (hash: 8KY8F5aAbZQBF/Qe5iecqKDmzqJcSSXnzASxQlPbo4g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF286/1CE2B0C4669411EEA0452951C4F9AE02/EBEGw3VRsRR1-6qyOQEVt6zygC0.crl rsync://rpki.apnic.net/member_repository/A91BF286/1CE2B0C4669411EEA0452951C4F9AE02/EBEGw3VRsRR1-6qyOQEVt6zygC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EBEGw3VRsRR1-6qyOQEVt6zygC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF286, serialNumber=101106C37551B11475FBAAB2390115B7ACF2802D Validity Not Before: Apr 27 03:36:08 2025 GMT Not After : May 4 03:36:08 2025 GMT Subject: CN=680da629-df17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0f:5a:94:80:6f:c6:01:eb:1c:4a:84:3e:1b: eb:2c:0a:ed:ed:f7:b9:95:46:a3:a6:0c:f9:4c:6b: e0:52:41:e5:d3:7a:6b:65:33:3d:ff:99:e3:c1:e3: d9:69:0e:29:c2:4d:f9:d9:58:1a:6b:ea:9b:bb:35: 0a:f2:3f:e0:9b:68:c0:c1:1f:71:18:92:b4:f9:98: 74:12:ce:fd:fe:e1:e5:10:be:94:22:08:0c:00:e6: 5f:95:ce:d7:c2:03:6b:77:ab:ba:2c:e6:21:40:06: 3c:58:ff:29:1e:5d:9a:14:41:d8:7c:14:0e:99:74: 9d:fa:3a:4b:99:40:09:ea:ec:7c:c2:3d:60:59:d2: c2:ad:4c:f7:3e:8e:c5:af:d6:44:4a:e5:6d:7b:af: 46:09:c4:7e:4d:74:9a:96:97:94:8b:0d:56:07:d8: 30:90:54:95:b3:af:f2:da:96:3e:63:3e:ab:ab:78: fb:74:e6:54:16:ee:c8:61:29:52:3d:0b:dd:04:de: 6b:b4:6c:07:ce:1f:73:b3:9a:94:13:68:81:2a:ae: 0a:d5:4a:87:af:93:0a:cd:f9:03:5e:35:0f:d8:4d: 08:96:c0:10:9c:13:74:1c:5e:49:ad:b5:96:19:29: 9e:2b:f8:81:ef:95:b4:51:36:07:05:29:b6:8e:3c: d3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C0:C8:DE:F2:CB:A9:3A:3E:35:25:46:11:A7:B2:79:09:47:B3:17 X509v3 Authority Key Identifier: keyid:10:11:06:C3:75:51:B1:14:75:FB:AA:B2:39:01:15:B7:AC:F2:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF286/1CE2B0C4669411EEA0452951C4F9AE02/EBEGw3VRsRR1-6qyOQEVt6zygC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EBEGw3VRsRR1-6qyOQEVt6zygC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF286/1CE2B0C4669411EEA0452951C4F9AE02/EBEGw3VRsRR1-6qyOQEVt6zygC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:c4:37:fb:f4:c2:b7:16:14:e2:82:52:b3:9f:83:ec:96:7e: d6:0c:c8:fe:60:bd:0e:5c:c7:6b:82:30:30:b4:44:e4:b0:94: 66:98:ed:19:47:a2:f7:f1:47:e2:b0:ee:65:24:42:4a:65:1b: 28:b9:a8:97:ee:47:9c:ef:9c:b9:1c:d0:82:d4:88:05:5e:16: 71:56:91:c2:80:be:dd:d3:4c:57:3b:9f:3e:81:96:ed:32:77: 07:52:cf:6a:8f:c9:f3:38:67:db:90:72:94:1d:dc:67:51:01: 43:e8:b4:80:e8:1d:82:5d:50:3f:fc:70:5e:cd:f2:b8:7d:9e: 16:08:3f:0e:05:4e:bc:b8:fe:14:3c:4b:e5:0a:bb:c9:4f:d3: bc:d0:ad:8e:f7:14:b4:e8:56:67:d3:b7:0d:66:48:b0:2b:30: 91:85:37:41:a5:06:c5:5b:9b:16:d7:c2:bc:d0:fb:5c:78:8a: 08:d7:66:f6:11:08:5c:a3:21:50:4b:11:0e:33:07:8e:0c:a4: a1:79:09:8a:02:d4:70:b4:3e:b4:6d:c1:72:c8:49:fb:f2:20: 36:a0:68:1f:ce:ab:b7:93:28:c1:f9:49:ae:d9:37:5b:ab:e0: 15:05:41:e2:8e:d6:b8:6e:87:f6:9f:c4:fc:6e:e3:8a:cc:d5: 37:e3:46:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyODYxMTAvBgNVBAUTKDEwMTEwNkMzNzU1MUIxMTQ3NUZCQUFCMjM5MDExNUI3 QUNGMjgwMkQwHhcNMjUwNDI3MDMzNjA4WhcNMjUwNTA0MDMzNjA4WjAYMRYwFAYD VQQDEw02ODBkYTYyOS1kZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQ9alIBvxgHrHEqEPhvrLArt7fe5lUajpgz5TGvgUkHl03prZTM9/5njwePZ aQ4pwk352Vgaa+qbuzUK8j/gm2jAwR9xGJK0+Zh0Es79/uHlEL6UIggMAOZflc7X wgNrd6u6LOYhQAY8WP8pHl2aFEHYfBQOmXSd+jpLmUAJ6ux8wj1gWdLCrUz3Po7F r9ZESuVte69GCcR+TXSalpeUiw1WB9gwkFSVs6/y2pY+Yz6rq3j7dOZUFu7IYSlS PQvdBN5rtGwHzh9zs5qUE2iBKq4K1UqHr5MKzfkDXjUP2E0IlsAQnBN0HF5JrbWW GSmeK/iB75W0UTYHBSm2jjzTAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTAyN7y y6k6PjUlRhGnsnkJR7MXMB8GA1UdIwQYMBaAFBARBsN1UbEUdfuqsjkBFbes8oAt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI4Ni8xQ0UyQjBDNDY2 OTQxMUVFQTA0NTI5NTFDNEY5QUUwMi9FQkVHdzNWUnNSUjEtNnF5T1FFVnQ2enln QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VCRUd3M1ZSc1JSMS02cXlPUUVWdDZ6eWdDMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI4Ni8xQ0UyQjBDNDY2OTQxMUVFQTA0NTI5NTFDNEY5QUUwMi9FQkVHdzNWUnNS UjEtNnF5T1FFVnQ2enlnQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3xDf79MK3FhTiglKzn4Psln7WDMj+YL0OXMdrgjAwtETksJRmmO0Z R6L38UfisO5lJEJKZRsouaiX7kec75y5HNCC1IgFXhZxVpHCgL7d00xXO58+gZbt MncHUs9qj8nzOGfbkHKUHdxnUQFD6LSA6B2CXVA//HBezfK4fZ4WCD8OBU68uP4U PEvlCrvJT9O80K2O9xS06FZn07cNZkiwKzCRhTdBpQbFW5sW18K80PtceIoI12b2 EQhcoyFQSxEOMweODKSheQmKAtRwtD60bcFyyEn78iA2oGgfzqu3kyjB+Umu2Tdb q+AVBUHijta4bof2n8T8buOKzNU340bm -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:09 2025 by rpki-client on console.sobornost.net