$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: gDSYjH+fOWLxPebSB1tknWep+uXQQi2CjBNdCnZTmAo= Subject key identifier: E6:BC:F6:36:7D:DC:C1:C7:91:3D:C6:9F:55:FE:1C:30:08:47:AD:56 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1A74 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1A6D Signing time: Mon 28 Apr 2025 15:48:52 +0000 Manifest this update: Mon 28 Apr 2025 15:48:52 +0000 Manifest next update: Mon 05 May 2025 15:48:52 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: I/D6flS5tr57gifGzl5hlN+Z7HoB59pJ4NoRy+pGczg=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: EvR5gfpmDfAVmSaNBVyf31LRk9wTqTU6OTSsCqxA5UQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6772 (0x1a74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Apr 28 15:48:52 2025 GMT Not After : May 5 15:48:52 2025 GMT Subject: CN=680fa364-8f45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:14:9f:d4:87:b8:a1:5e:85:a2:20:5b:7c:71: 6d:ff:43:45:28:da:a4:1f:46:36:a0:c1:8b:83:28: 41:e5:b7:25:21:9c:2c:52:b0:9f:8f:4c:85:e5:ff: 7f:20:36:7b:3c:88:4b:53:54:10:a3:75:c2:ef:6a: dc:db:7c:a3:9a:df:ce:7e:d2:a5:c3:7c:04:0d:6e: 18:58:52:18:2e:0c:40:44:70:8b:8d:2e:38:51:62: 00:f7:53:ac:b5:ed:e5:d3:51:ca:59:05:bb:14:35: eb:09:2e:94:ca:09:2e:3b:07:69:61:bf:dc:8d:4d: be:c8:72:9c:f1:e7:bd:e4:50:b9:bd:3f:92:d7:d7: ee:e1:a1:a6:fe:77:c8:ec:24:e6:78:1d:e0:80:9d: 57:e8:6d:a1:33:a6:51:e4:15:d0:a0:c7:37:12:9f: 31:98:f2:a2:62:41:fd:63:00:80:2c:78:4b:d7:2a: a1:fa:ee:d7:46:4d:8a:1e:f7:6f:00:1c:49:4e:4e: da:11:75:a9:6d:72:00:75:e4:7f:20:ac:c4:b6:27: f7:28:67:7b:6f:da:dc:95:5d:d6:fc:d3:d2:0e:cc: 26:ce:0e:a4:01:bc:23:35:01:ac:cc:1c:69:2b:6b: 02:3d:8c:db:91:ae:70:3b:57:dc:ee:ca:8f:14:ad: 29:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BC:F6:36:7D:DC:C1:C7:91:3D:C6:9F:55:FE:1C:30:08:47:AD:56 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:2f:b3:84:fc:48:1c:10:4c:3b:e1:7d:37:b5:b3:02:fc:c3: 67:ea:b2:8b:42:62:23:f9:99:af:92:a4:f5:f5:7c:33:bd:13: 16:9c:71:a8:a8:5e:06:e5:f5:2d:23:05:bb:c2:13:e6:9a:6f: 6e:0b:e8:e7:ae:62:69:d6:86:2d:d4:1a:d9:6e:06:d0:9a:64: 66:97:e4:e2:bc:66:d6:64:84:5c:59:49:f3:5b:eb:e2:f0:e2: 88:94:16:54:1c:79:a0:75:77:02:e2:75:50:28:73:5e:a5:61: a7:75:77:a9:e2:ba:3c:f2:e4:8d:bf:31:31:f5:da:c0:3a:88: 22:f2:92:d9:6f:d2:e1:df:7a:d0:62:86:8a:7c:f9:83:9a:f9: e3:a9:23:29:e1:e7:5e:7e:86:8d:0c:ab:a9:11:9e:8b:10:b6: 30:ed:21:20:60:6d:3a:a5:83:53:f2:40:70:fe:8c:41:8b:45: 63:84:b1:3e:ab:89:73:27:c7:0a:61:8a:9c:61:de:c6:e3:d9: be:38:79:16:f5:0d:68:1d:03:8c:17:c4:b1:b0:97:ec:9d:57: e5:1e:b2:a4:84:8c:fd:b2:0a:64:37:6c:24:cc:2e:74:5f:cf: 3c:d7:36:95:fc:16:0f:aa:20:ff:e6:65:b8:9c:b0:f7:d5:6e: 1f:50:55:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjUwNDI4MTU0ODUyWhcNMjUwNTA1MTU0ODUyWjAYMRYwFAYD VQQDEw02ODBmYTM2NC04ZjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RSf1Ie4oV6FoiBbfHFt/0NFKNqkH0Y2oMGLgyhB5bclIZwsUrCfj0yF5f9/ IDZ7PIhLU1QQo3XC72rc23yjmt/OftKlw3wEDW4YWFIYLgxARHCLjS44UWIA91Os te3l01HKWQW7FDXrCS6UygkuOwdpYb/cjU2+yHKc8ee95FC5vT+S19fu4aGm/nfI 7CTmeB3ggJ1X6G2hM6ZR5BXQoMc3Ep8xmPKiYkH9YwCALHhL1yqh+u7XRk2KHvdv ABxJTk7aEXWpbXIAdeR/IKzEtif3KGd7b9rclV3W/NPSDswmzg6kAbwjNQGszBxp K2sCPYzbka5wO1fc7sqPFK0piQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOa89jZ9 3MHHkT3Gn1X+HDAIR61WMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUL7OE/EgcEEw74X03tbMC/MNn6rKLQmIj+ZmvkqT19XwzvRMWnHGo qF4G5fUtIwW7whPmmm9uC+jnrmJp1oYt1BrZbgbQmmRml+TivGbWZIRcWUnzW+vi 8OKIlBZUHHmgdXcC4nVQKHNepWGndXep4ro88uSNvzEx9drAOogi8pLZb9Lh33rQ YoaKfPmDmvnjqSMp4edefoaNDKupEZ6LELYw7SEgYG06pYNT8kBw/oxBi0VjhLE+ q4lzJ8cKYYqcYd7G49m+OHkW9Q1oHQOMF8SxsJfsnVflHrKkhIz9sgpkN2wkzC50 X8881zaV/BYPqiD/5mW4nLD31W4fUFUL -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net