$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft File: z0HNr0HFcAEpBkzvKEADvvC5v8I.mft (raw, json) Hash identifier: A+4GFveO3wgoamJbbSM+FQNj+29YyUXGbyN3hVVGLEo= Subject key identifier: 41:E2:2B:7F:0A:EB:23:A4:09:C5:76:92:99:C5:4C:F9:FC:F8:B1:23 Authority key identifier: CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 Certificate issuer: /CN=A91C0D37/serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft Manifest number: 0131 Signing time: Sun 27 Apr 2025 03:28:01 +0000 Manifest this update: Sun 27 Apr 2025 03:28:01 +0000 Manifest next update: Sun 04 May 2025 03:28:01 +0000 Files and hashes: 1: z0HNr0HFcAEpBkzvKEADvvC5v8I.crl (hash: +ygHbOYIHShXaabbyJeI0MMp1IuGT2dpHZ0B3PKWRFA=) 2: 00FEEFF0536911EE8594503BC4F9AE02.roa (hash: UhJmIkPW+O+GWS01w9gaCC6S0d+sAspRCQNygto2GKk=) 3: C85D80CE43F611EF84151D6FC4F9AE02.roa (hash: vWaXqpy2k96I+1CA27zHiuJx3GF9Cv72ehYlKrUeS00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0D37, serialNumber=CF41CDAF41C5700129064CEF284003BEF0B9BFC2 Validity Not Before: Apr 27 03:28:01 2025 GMT Not After : May 4 03:28:01 2025 GMT Subject: CN=680da441-f5d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:58:35:fe:29:39:c6:9f:e2:af:f8:05:06:08: 1f:0a:af:3b:e3:2e:7f:25:49:a6:2f:be:52:83:52: 7d:76:24:36:29:4e:5a:d1:81:bc:c7:95:03:81:d9: f0:0c:71:f7:2e:86:d3:95:de:69:81:7b:46:a7:1a: de:ef:bb:3c:ea:47:cd:e5:08:c2:71:70:38:b5:ce: d5:74:0d:9f:5e:fc:f3:a9:23:c6:e2:51:49:26:9b: 00:f7:d0:fc:35:5e:1d:01:22:62:68:7d:c6:8f:68: c2:73:7a:58:28:84:a1:ee:c3:78:c7:d7:8c:f0:ea: 83:95:ad:c0:73:5a:6e:8a:73:75:51:78:7e:6e:57: 5e:88:66:99:08:4a:72:7a:1e:e9:b1:51:c9:2f:81: 23:97:c9:05:67:a9:21:c9:de:18:a5:aa:12:f3:09: 97:71:a9:f3:0f:e7:59:a6:75:bd:28:b5:d0:f1:72: 9d:54:7f:5b:13:38:09:d4:ab:49:d8:4a:41:f6:5b: 33:54:fe:3a:a3:11:09:50:34:40:22:dd:90:9c:ad: 95:69:4a:41:93:c9:9a:5b:8a:d2:25:0f:ee:51:fb: 44:13:ac:88:d3:07:cb:8b:f6:db:3e:2a:06:a0:53: ab:91:68:bd:59:27:d0:3a:cd:96:90:c2:44:4e:22: 6f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E2:2B:7F:0A:EB:23:A4:09:C5:76:92:99:C5:4C:F9:FC:F8:B1:23 X509v3 Authority Key Identifier: keyid:CF:41:CD:AF:41:C5:70:01:29:06:4C:EF:28:40:03:BE:F0:B9:BF:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0HNr0HFcAEpBkzvKEADvvC5v8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0D37/0E8BCB38535B11EE9BF20A6BC4F9AE02/z0HNr0HFcAEpBkzvKEADvvC5v8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b7:cb:94:41:0c:eb:52:94:3b:f4:e2:17:b8:26:94:6e:e9: f4:ed:3c:25:cb:ea:0d:3b:41:18:35:58:95:bd:45:b5:59:ed: a1:24:48:cf:8c:b9:7c:0b:7f:62:c3:d1:36:41:54:eb:b0:cf: c8:6e:3f:34:0a:73:ea:07:50:6c:bc:53:e7:b0:de:ca:ad:b2: ad:a2:da:c9:b9:5b:6b:c0:0a:35:ef:88:89:b2:cf:1d:2f:65: 13:c9:18:07:06:ef:30:87:84:4f:a8:50:59:03:25:19:af:fb: 1d:78:b7:fb:ae:53:fb:e2:fb:36:75:f0:be:1e:08:f2:7e:12: 77:94:03:58:6c:95:dd:f4:84:eb:10:86:98:fc:58:f6:1c:31: c5:5c:d3:ca:0a:8b:a7:a5:50:df:74:e8:41:fa:bf:75:03:1f: a8:6c:17:0c:7e:ba:e2:35:43:40:56:f0:c6:95:f6:c6:b4:c3: 2c:a8:fe:e2:49:e0:ad:38:6b:e4:26:6d:aa:fd:2d:65:d0:a8: d6:62:55:2a:50:90:81:cb:a6:46:0b:b0:29:1d:b5:0c:c3:3c: 15:50:05:d1:c9:88:0d:4a:7c:e5:e2:89:64:e9:a9:00:57:22: e5:51:bb:fa:af:5f:50:04:98:bc:49:24:4b:95:f5:d2:b1:ee: 3d:d6:4f:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBEMzcxMTAvBgNVBAUTKENGNDFDREFGNDFDNTcwMDEyOTA2NENFRjI4NDAwM0JF RjBCOUJGQzIwHhcNMjUwNDI3MDMyODAxWhcNMjUwNTA0MDMyODAxWjAYMRYwFAYD VQQDEw02ODBkYTQ0MS1mNWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Vg1/ik5xp/ir/gFBggfCq874y5/JUmmL75Sg1J9diQ2KU5a0YG8x5UDgdnw DHH3LobTld5pgXtGpxre77s86kfN5QjCcXA4tc7VdA2fXvzzqSPG4lFJJpsA99D8 NV4dASJiaH3Gj2jCc3pYKISh7sN4x9eM8OqDla3Ac1puinN1UXh+bldeiGaZCEpy eh7psVHJL4Ejl8kFZ6khyd4YpaoS8wmXcanzD+dZpnW9KLXQ8XKdVH9bEzgJ1KtJ 2EpB9lszVP46oxEJUDRAIt2QnK2VaUpBk8maW4rSJQ/uUftEE6yI0wfLi/bbPioG oFOrkWi9WSfQOs2WkMJETiJvrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHiK38K 6yOkCcV2kpnFTPn8+LEjMB8GA1UdIwQYMBaAFM9Bza9BxXABKQZM7yhAA77wub/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEQzNy8wRThCQ0IzODUz NUIxMUVFOUJGMjBBNkJDNEY5QUUwMi96MEhOcjBIRmNBRXBCa3p2S0VBRHZ2QzV2 OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3owSE5yMEhGY0FFcEJrenZLRUFEdnZDNXY4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEQzNy8wRThCQ0IzODUzNUIxMUVFOUJGMjBBNkJDNEY5QUUwMi96MEhOcjBIRmNB RXBCa3p2S0VBRHZ2QzV2OEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnt8uUQQzrUpQ79OIXuCaUbun07Twly+oNO0EYNViVvUW1We2hJEjP jLl8C39iw9E2QVTrsM/Ibj80CnPqB1BsvFPnsN7KrbKtotrJuVtrwAo174iJss8d L2UTyRgHBu8wh4RPqFBZAyUZr/sdeLf7rlP74vs2dfC+HgjyfhJ3lANYbJXd9ITr EIaY/Fj2HDHFXNPKCounpVDfdOhB+r91Ax+obBcMfrriNUNAVvDGlfbGtMMsqP7i SeCtOGvkJm2q/S1l0KjWYlUqUJCBy6ZGC7ApHbUMwzwVUAXRyYgNSnzl4olk6akA VyLlUbv6r19QBJi8SSRLlfXSse491k/J -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:10 2025 by rpki-client on console.sobornost.net