$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft File: CNJW1CbKIXH86BfGRSP4MqNpF70.mft (raw, json) Hash identifier: jo+6UUpWeti1q81z38qlKJb74FT13+Y6eGmWHV+Ys3U= Subject key identifier: 0D:C2:E5:D0:67:9F:0F:DB:F7:12:98:EB:E4:66:37:9D:69:44:0C:95 Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 0A3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft Manifest number: 0A1F Signing time: Mon 28 Apr 2025 20:15:40 +0000 Manifest this update: Mon 28 Apr 2025 20:15:39 +0000 Manifest next update: Mon 05 May 2025 20:15:39 +0000 Files and hashes: 1: CNJW1CbKIXH86BfGRSP4MqNpF70.crl (hash: b23RUjiYY4IZ5g+4/ld4W/nzso5u8Y3uhnD5HVm8SSc=) 2: F15AD62031FA11EE96640F3EC4F9AE02.roa (hash: ZBqZrZzLa2IT8UIY6w09sQHwLL5zrRzqV4vns9/3wIc=) 3: 54098620A37B11EFAC4F8E3CC4F9AE02.roa (hash: hSui0ebWc4lkxLtGfFPvwezZYPnLWYoUQ7IH9/TNQXs=) 4: 8F12C9C8391F11EFB455E565C4F9AE02.roa (hash: RxQekEsAzfRoaXQlF9gfuPb3rEYz9GMB9M+EsFimH7E=) 5: C6671418A37A11EFBED1AE3BC4F9AE02.roa (hash: t7QLTmlrwRSdzxwkZ3ICKVh+ifH3BRpvn3KoSgjF9OI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC, serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Apr 28 20:15:39 2025 GMT Not After : May 5 20:15:39 2025 GMT Subject: CN=680fe1ec-34a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:63:c9:e1:36:15:e5:3b:de:7c:d0:27:b1:dd: 43:b3:78:9f:e9:2d:bc:9d:37:e0:39:f6:bb:cb:b3: 12:e3:17:94:fc:fb:d1:93:0f:bf:43:4e:53:4b:74: d5:57:56:8a:27:b5:a0:36:b5:d8:11:6e:1a:9e:6a: 11:b4:34:6d:48:0f:31:12:88:74:83:c4:8d:6b:ac: 5f:84:5b:9a:bc:04:eb:e7:42:39:88:68:4e:07:6d: ff:8f:e4:79:b5:32:ca:3a:d7:c5:91:69:ad:2f:62: 66:3d:d2:51:23:bf:e8:d8:24:90:ac:b8:8a:02:56: cb:5b:97:15:1d:4c:56:fb:34:81:03:13:b9:ad:93: b5:d3:96:f4:22:5e:37:ab:f0:f1:e0:49:e9:02:ef: 12:71:c9:64:8f:84:f2:8a:1a:ab:b9:82:11:20:af: 50:1c:dd:97:10:be:26:17:7f:ee:5f:20:7c:8d:48: f9:71:7d:a0:0c:6d:e0:cd:1c:7a:4a:0a:c1:bb:bc: a9:f9:d7:54:6d:15:d7:ec:64:4a:7f:77:71:59:94: cb:4a:b6:c2:e2:00:a7:37:d6:c7:f5:2b:bd:93:f6: 2c:03:6d:10:57:8f:c1:99:7e:06:72:52:99:3c:6f: f5:11:0f:69:3c:f4:57:33:9a:7d:cc:dc:11:dd:44: 66:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C2:E5:D0:67:9F:0F:DB:F7:12:98:EB:E4:66:37:9D:69:44:0C:95 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:7b:4c:f4:f3:43:c4:11:f0:bc:0a:69:ab:fa:af:01:f7:3c: c5:05:87:75:57:a2:1c:88:6a:9b:20:7e:0c:e0:e9:75:89:80: 38:09:45:69:9b:ef:b5:d7:56:80:33:b2:e1:03:06:96:19:9f: e8:bb:a5:83:11:f4:a4:7f:00:c9:64:95:14:76:67:31:52:76: 6e:6d:74:5a:52:e1:30:c2:83:dd:f9:da:86:cc:59:d4:db:fb: 9f:04:f1:e4:2e:d3:f4:25:86:dd:91:3c:f8:87:a6:f7:bc:b8: b9:d8:80:de:90:3e:aa:e2:d0:23:35:e1:33:9d:de:1b:67:3a: 37:8f:1c:be:91:fb:5f:77:78:7e:42:ff:e5:b1:b9:fa:17:c6: 77:86:3e:5b:d1:fc:77:59:b1:00:10:1d:cb:c8:3f:f5:3f:76: e0:a1:20:3a:0a:91:45:21:11:fd:ec:e1:e0:88:d8:ae:4d:e2: d8:e5:f2:b5:63:d1:da:1d:ce:87:f9:23:48:64:66:91:ff:6c: 5f:7c:60:90:ca:49:42:97:7b:66:46:f8:b3:3c:1d:7e:d1:35: f3:78:7c:97:9f:5a:df:bb:c0:7d:22:92:9a:25:31:34:ed:cd: 6d:dc:a7:2d:53:f4:ff:3b:b8:82:b6:6f:3f:d3:76:d5:8d:5e: 3e:35:40:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjUwNDI4MjAxNTM5WhcNMjUwNTA1MjAxNTM5WjAYMRYwFAYD VQQDEw02ODBmZTFlYy0zNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmPJ4TYV5TvefNAnsd1Ds3if6S28nTfgOfa7y7MS4xeU/PvRkw+/Q05TS3TV V1aKJ7WgNrXYEW4anmoRtDRtSA8xEoh0g8SNa6xfhFuavATr50I5iGhOB23/j+R5 tTLKOtfFkWmtL2JmPdJRI7/o2CSQrLiKAlbLW5cVHUxW+zSBAxO5rZO105b0Il43 q/Dx4EnpAu8Scclkj4TyihqruYIRIK9QHN2XEL4mF3/uXyB8jUj5cX2gDG3gzRx6 SgrBu7yp+ddUbRXX7GRKf3dxWZTLSrbC4gCnN9bH9Su9k/YsA20QV4/BmX4GclKZ PG/1EQ9pPPRXM5p9zNwR3URmRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3C5dBn nw/b9xKY6+RmN51pRAyVMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZDQy9DREJDNTk4NjczMDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lY SDg2QmZHUlNQNE1xTnBGNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOe0z080PEEfC8Cmmr+q8B9zzFBYd1V6IciGqbIH4M4Ol1iYA4CUVp m++111aAM7LhAwaWGZ/ou6WDEfSkfwDJZJUUdmcxUnZubXRaUuEwwoPd+dqGzFnU 2/ufBPHkLtP0JYbdkTz4h6b3vLi52IDekD6q4tAjNeEznd4bZzo3jxy+kftfd3h+ Qv/lsbn6F8Z3hj5b0fx3WbEAEB3LyD/1P3bgoSA6CpFFIRH97OHgiNiuTeLY5fK1 Y9HaHc6H+SNIZGaR/2xffGCQyklCl3tmRvizPB1+0TXzeHyXn1rfu8B9IpKaJTE0 7c1t3KctU/T/O7iCtm8/03bVjV4+NUDy -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:54 2025 by rpki-client on console.sobornost.net