$ rpki-client -vvf rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft File: O6JVjKXxoDfZaW9WeugTZ8buNeY.mft (raw, json) Hash identifier: nL22OKPGLUP0SI/naBuR0jCyzzFpvarJLFxwuii3PeQ= Subject key identifier: 36:ED:E4:B1:13:5E:EA:23:F7:05:1C:6A:59:41:59:40:70:F9:16:B6 Authority key identifier: 3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 Certificate issuer: /CN=A91C022C/serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft Manifest number: 35 Signing time: Sun 27 Apr 2025 06:25:41 +0000 Manifest this update: Sun 27 Apr 2025 06:25:40 +0000 Manifest next update: Sun 04 May 2025 06:25:40 +0000 Files and hashes: 1: O6JVjKXxoDfZaW9WeugTZ8buNeY.crl (hash: /PcbvlloC39JiEVS6lWpoAoqT+FykjXqiv2NZXTR+tc=) 2: 372B21F6D4BA11EFA5BAA345C4F9AE02.roa (hash: 0VQHEL6AI7GrKoKG052X6QJW7qwnCtlNzYdHLuxNwGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C022C, serialNumber=3BA2558CA5F1A037D9696F567AE81367C6EE35E6 Validity Not Before: Apr 27 06:25:40 2025 GMT Not After : May 4 06:25:40 2025 GMT Subject: CN=680dcde5-3aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c7:30:3d:fc:2e:bd:6d:ea:b8:5c:cd:cf:b5: 0d:c1:83:2e:4d:f6:a2:47:96:3d:fb:92:df:d1:42: f0:95:46:df:12:42:7a:7a:2e:a6:54:b9:cc:29:d3: 95:a3:f3:9b:68:a7:2c:53:df:80:fa:fc:85:29:2a: a2:80:1e:88:cb:6a:69:47:a8:7c:cb:e1:5d:b6:7c: c5:20:b7:41:4e:e2:47:ef:06:76:a0:cc:17:29:a4: 07:48:ca:42:b0:da:fd:84:d5:6b:ef:c5:6d:e5:1c: 31:59:bc:86:85:80:83:c4:26:b0:99:07:f3:1e:a2: 35:fe:9c:02:15:18:70:de:85:6f:b1:aa:66:de:30: ca:f0:fc:28:4e:f1:f4:ff:8d:93:2b:87:47:78:7d: 5d:3e:59:c1:c9:ee:89:4e:33:aa:10:68:70:f5:23: 48:e8:43:06:b5:8c:a5:84:b7:76:96:76:f4:ab:48: f1:8a:94:1e:f5:fe:3d:0b:bc:a7:36:34:6a:d5:00: e1:87:e4:a0:cc:35:e8:8c:8a:a6:ad:ba:f8:b0:4a: dd:35:c6:51:3f:e8:c6:d4:1b:4c:14:52:9c:42:91: 0c:1e:33:8c:29:77:d3:1f:3f:d2:3d:83:97:c1:1b: 48:fb:53:65:60:30:ac:16:e4:99:98:a8:60:42:58: 2f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:ED:E4:B1:13:5E:EA:23:F7:05:1C:6A:59:41:59:40:70:F9:16:B6 X509v3 Authority Key Identifier: keyid:3B:A2:55:8C:A5:F1:A0:37:D9:69:6F:56:7A:E8:13:67:C6:EE:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O6JVjKXxoDfZaW9WeugTZ8buNeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C022C/B1C18230D4B911EF9FA8E24FC4F9AE02/O6JVjKXxoDfZaW9WeugTZ8buNeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:4a:cc:f4:d1:a0:ad:1b:18:24:30:3e:55:56:b7:3f:20:30: 7b:18:ce:1a:be:d7:9e:d4:26:c7:c2:54:3a:4b:8d:e9:df:b1: dd:18:54:49:31:cc:0d:3d:3d:41:c0:8b:03:da:58:3a:2e:e2: 71:9d:27:6d:3b:25:f7:9b:67:da:06:6d:26:5c:b8:15:5a:33: 84:53:2f:8e:2d:84:9d:d1:fe:4c:3d:3c:d2:7c:1f:c3:5d:ac: 3f:81:3c:ba:a7:83:22:6e:32:0f:75:b4:50:57:28:27:28:4a: 27:76:dd:05:43:a5:c0:3d:44:9c:ae:c4:83:47:31:b6:37:0d: 15:02:38:45:e1:d2:ff:8f:04:31:19:ac:36:05:18:0d:2e:0a: 3a:ed:ad:0b:5f:59:f1:47:3a:75:45:c1:ef:ed:8b:a9:1e:f5: 57:66:26:49:65:b7:34:dc:c3:c6:c7:9e:c7:7a:18:b8:1c:2a: cb:bc:0c:a1:6b:ed:f4:95:df:53:6d:78:9c:6b:d8:1d:df:17: 85:53:0a:46:ae:3c:fb:ae:6d:d4:62:ae:bd:f5:e9:ca:e8:96: f3:8f:8e:87:1e:f0:7e:fb:5e:71:df:8e:8d:83:91:25:66:81: 98:02:74:64:80:e5:c9:27:36:28:23:35:50:c6:d7:09:f7:01: bd:e7:12:b9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDIyQzExMC8GA1UEBRMoM0JBMjU1OENBNUYxQTAzN0Q5Njk2RjU2N0FFODEzNjdD NkVFMzVFNjAeFw0yNTA0MjcwNjI1NDBaFw0yNTA1MDQwNjI1NDBaMBgxFjAUBgNV BAMTDTY4MGRjZGU1LTNhZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6xzA9/C69beq4XM3PtQ3Bgy5N9qJHlj37kt/RQvCVRt8SQnp6LqZUucwp05Wj 85topyxT34D6/IUpKqKAHojLamlHqHzL4V22fMUgt0FO4kfvBnagzBcppAdIykKw 2v2E1WvvxW3lHDFZvIaFgIPEJrCZB/MeojX+nAIVGHDehW+xqmbeMMrw/ChO8fT/ jZMrh0d4fV0+WcHJ7olOM6oQaHD1I0joQwa1jKWEt3aWdvSrSPGKlB71/j0LvKc2 NGrVAOGH5KDMNeiMiqatuviwSt01xlE/6MbUG0wUUpxCkQweM4wpd9MfP9I9g5fB G0j7U2VgMKwW5JmYqGBCWC9jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNu3ksRNe 6iP3BRxqWUFZQHD5FrYwHwYDVR0jBBgwFoAUO6JVjKXxoDfZaW9WeugTZ8buNeYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMjJDL0IxQzE4MjMwRDRC OTExRUY5RkE4RTI0RkM0RjlBRTAyL082SlZqS1h4b0RmWmFXOVdldWdUWjhidU5l WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTzZKVmpLWHhvRGZaYVc5V2V1Z1RaOGJ1TmVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw MjJDL0IxQzE4MjMwRDRCOTExRUY5RkE4RTI0RkM0RjlBRTAyL082SlZqS1h4b0Rm WmFXOVdldWdUWjhidU5lWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJBKzPTRoK0bGCQwPlVWtz8gMHsYzhq+157UJsfCVDpLjenfsd0YVEkx zA09PUHAiwPaWDou4nGdJ207JfebZ9oGbSZcuBVaM4RTL44thJ3R/kw9PNJ8H8Nd rD+BPLqngyJuMg91tFBXKCcoSid23QVDpcA9RJyuxINHMbY3DRUCOEXh0v+PBDEZ rDYFGA0uCjrtrQtfWfFHOnVFwe/ti6ke9VdmJklltzTcw8bHnsd6GLgcKsu8DKFr 7fSV31NteJxr2B3fF4VTCkauPPuubdRirr316crolvOPjoce8H77XnHfjo2DkSVm gZgCdGSA5cknNigjNVDG1wn3Ab3nErk= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net