$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft File: bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft (raw, json) Hash identifier: Kbfwxs2WwPeaVx0fcsxw5mb64mNeDxgwHF9n6AsbLSQ= Subject key identifier: B2:FF:18:F0:58:84:EA:56:0E:1B:77:72:13:4B:DE:47:57:27:44:7C Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft Manifest number: AD Signing time: Sun 27 Apr 2025 04:59:33 +0000 Manifest this update: Sun 27 Apr 2025 04:59:32 +0000 Manifest next update: Sun 04 May 2025 04:59:32 +0000 Files and hashes: 1: bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl (hash: NG/igWOoUp1IVGL8P0j4P6340Crs9Ogq3L7fH9s9nsE=) 2: AA97516E24CA11EFB59A9379C4F9AE02.roa (hash: vY7AsZ08Pw1TlHVY7hGbU3NQuV3eecatAeSNrTUiOFk=) 3: A1732A0E24CA11EF93486579C4F9AE02.roa (hash: c1fiRMTzx+sKc+PUXDGG2MhU2IceNjiS5ZTGcmsSFDc=) 4: 41A8950C272F11EF9D0A0C5CC4F9AE02.roa (hash: Zeo9E1pvK7pqXxcoNJpNgvy4k5rrUkurswNhSqNf24s=) 5: A074721624CA11EF93486579C4F9AE02.roa (hash: EAuwmClXGMo+6npZ19N/RRkMj4x/6MUGDRCOhMDeS9A=) 6: 0E49D1E024CC11EFB113A27BC4F9AE02.roa (hash: NR/+YgQkm7A4mmhSV+xz9O4OYp+ZS9oT3gP6zL7oedM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A, serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Validity Not Before: Apr 27 04:59:32 2025 GMT Not After : May 4 04:59:32 2025 GMT Subject: CN=680db9b4-06c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:38:61:0c:ff:2e:a4:c5:31:49:a6:d2:af:bf: c1:d8:e2:4b:0b:01:00:6f:16:a2:e6:0b:45:e9:bf: 93:0d:d9:d5:e8:51:8f:5a:ad:1c:7d:cf:a9:e3:2c: 7e:5b:fe:08:3f:ba:5c:1d:d8:3d:0b:32:55:01:29: 6e:f9:4f:31:d1:b8:62:f5:96:a4:2c:17:fb:25:1d: 0b:a7:44:92:48:10:f9:aa:9a:3c:96:be:39:3c:32: c3:3e:f5:ec:44:4a:a2:37:ed:c0:ea:cc:4c:4c:28: 73:65:61:11:30:f2:b4:69:e4:8c:ec:2e:31:7f:c8: 05:5b:c4:47:62:6d:66:9e:7d:3d:6d:d3:4e:81:82: 7a:7e:3c:6b:16:43:b5:ba:c8:ff:f4:16:77:d1:c0: 96:25:6e:84:cc:0c:7f:9b:97:b7:1e:3d:b6:44:0d: 27:e1:aa:af:9e:91:c0:bf:16:e8:87:82:0b:30:24: 1b:3e:1f:49:e5:35:2e:a3:52:d1:01:07:d1:55:20: 41:a1:e3:d5:c5:8d:da:33:89:91:ee:c8:ea:9b:d8: 2c:6d:66:37:1b:78:93:55:40:01:0a:2a:7d:4b:5c: 3f:a1:d0:20:61:e5:a7:01:98:df:8d:36:46:d5:fa: f0:0f:05:f1:43:6a:27:b7:80:c6:8b:fc:1f:f6:df: 46:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FF:18:F0:58:84:EA:56:0E:1B:77:72:13:4B:DE:47:57:27:44:7C X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:9f:fe:93:09:04:8c:5d:a1:a5:c7:f3:3b:e5:4a:19:bd:d3: 06:41:e5:96:9f:4b:dd:f1:d8:24:e8:cd:ab:16:d6:f7:5e:0e: d3:22:1c:c9:ed:6b:94:0c:2a:a1:c1:7f:6c:34:63:e6:32:a0: 75:a5:18:f2:da:c6:33:6e:e5:bd:cc:9a:07:3f:13:07:43:e5: c3:df:98:4a:c3:e9:92:4a:1d:08:72:2c:cd:ed:1e:4f:27:6c: 57:02:cd:d8:90:ed:a8:23:7e:65:83:0d:0a:1e:21:5c:f1:74: fc:24:b4:de:50:52:b4:cc:b6:09:82:76:f6:83:13:f7:1c:97: 3c:d4:ab:60:66:f7:a3:9f:90:79:c2:98:5e:9d:b4:a7:8f:c7: 2d:47:d3:94:f5:11:2c:3b:1e:85:3b:e2:40:24:bd:4c:2e:3c: 1a:e0:33:48:72:83:e5:63:93:5f:84:07:d0:b3:c5:85:78:1d: 77:c5:eb:86:9d:cf:b7:3d:3e:cf:20:40:95:8b:e9:4f:aa:c9: d4:03:55:4d:05:b0:c9:cd:75:cf:61:fb:b1:b1:f8:02:7d:39: 9d:7c:6d:10:1e:5f:f3:48:1f:92:ae:e3:7e:58:1a:7b:d6:97: aa:d1:e4:fa:66:11:5b:1a:52:67:59:5f:d4:f3:af:d9:8a:b1: 0a:8d:53:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDOEExMTAvBgNVBAUTKDZDRTdCNTc1MEU2RTE3RDNEMzlFQjVCMDg3RkQzRkFE NTk1OUYzMjUwHhcNMjUwNDI3MDQ1OTMyWhcNMjUwNTA0MDQ1OTMyWjAYMRYwFAYD VQQDEw02ODBkYjliNC0wNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2jhhDP8upMUxSabSr7/B2OJLCwEAbxai5gtF6b+TDdnV6FGPWq0cfc+p4yx+ W/4IP7pcHdg9CzJVASlu+U8x0bhi9ZakLBf7JR0Lp0SSSBD5qpo8lr45PDLDPvXs REqiN+3A6sxMTChzZWERMPK0aeSM7C4xf8gFW8RHYm1mnn09bdNOgYJ6fjxrFkO1 usj/9BZ30cCWJW6EzAx/m5e3Hj22RA0n4aqvnpHAvxboh4ILMCQbPh9J5TUuo1LR AQfRVSBBoePVxY3aM4mR7sjqm9gsbWY3G3iTVUABCip9S1w/odAgYeWnAZjfjTZG 1frwDwXxQ2ont4DGi/wf9t9GVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLL/GPBY hOpWDht3chNL3kdXJ0R8MB8GA1UdIwQYMBaAFGzntXUObhfT0561sIf9P61ZWfMl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkM4QS82MUVDNDkxNjI0 QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9iT2UxZFE1dUY5UFRucld3aF8wX3JWbFo4 eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi9iT2UxZFE1dUY5 UFRucld3aF8wX3JWbFo4eVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATn/6TCQSMXaGlx/M75UoZvdMGQeWWn0vd8dgk6M2rFtb3Xg7TIhzJ 7WuUDCqhwX9sNGPmMqB1pRjy2sYzbuW9zJoHPxMHQ+XD35hKw+mSSh0IcizN7R5P J2xXAs3YkO2oI35lgw0KHiFc8XT8JLTeUFK0zLYJgnb2gxP3HJc81KtgZvejn5B5 wphenbSnj8ctR9OU9REsOx6FO+JAJL1MLjwa4DNIcoPlY5NfhAfQs8WFeB13xeuG nc+3PT7PIECVi+lPqsnUA1VNBbDJzXXPYfuxsfgCfTmdfG0QHl/zSB+SruN+WBp7 1peq0eT6ZhFbGlJnWV/U86/ZirEKjVM5 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net