$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: ylpTLzUKsnBeFt4NRakadK3nE7f4JAmUYy8eV5NM5bM= Subject key identifier: 1A:41:DA:EE:53:B6:81:55:FF:7F:C0:5F:E7:B0:40:F9:82:02:19:2C Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 091E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 090B Signing time: Mon 28 Apr 2025 20:48:48 +0000 Manifest this update: Mon 28 Apr 2025 20:48:47 +0000 Manifest next update: Mon 05 May 2025 20:48:47 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: llm/LYAkxeRY4CPPT0DdAIf7UIAtEV9jg4WqinZN3Qw=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: LRUqK0HbwhlophByZnm497LSzITbbBMeAuaK57/ofL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2334 (0x91e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6, serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: Apr 28 20:48:47 2025 GMT Not After : May 5 20:48:47 2025 GMT Subject: CN=680fe9af-48f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:50:ee:08:3f:bf:96:40:69:54:77:37:cf:21: c5:8c:15:9d:e9:ce:6a:61:cb:b7:f3:2f:ae:3b:de: d9:e7:26:bd:21:2a:a0:8b:1a:ed:b8:b3:36:05:e2: 97:6f:4b:d2:15:ee:19:e6:ab:fe:56:34:6d:4c:c2: 9c:97:3d:7a:00:47:56:70:47:1b:1a:f7:bc:c7:55: 8c:f5:4b:c9:bb:fe:60:27:4b:ee:45:d6:0e:e7:18: 91:19:f4:1c:d3:e5:eb:44:06:90:a2:51:50:d5:09: 44:03:ca:d5:69:fa:23:ec:52:ce:9d:70:eb:63:e5: 79:cc:4d:aa:37:4c:3c:e9:44:32:fa:47:c9:48:c9: f4:4b:20:74:68:68:9b:00:b3:ca:09:d2:fc:bc:8d: e4:4f:38:be:f5:38:74:4a:1e:f1:99:a9:1b:01:b5: 8e:6c:eb:1b:be:d3:43:bd:29:02:40:b5:4a:49:6d: 0c:a5:5f:bb:29:fa:d2:dd:72:e0:3f:9f:21:4c:cf: 86:69:09:ec:1a:aa:2d:72:ee:a1:2a:14:30:1b:69: 89:9b:0a:a2:c3:a2:4f:cf:bb:56:3e:6d:8c:d0:2d: 70:f0:08:df:f4:63:7d:79:a0:d5:19:10:72:87:f8: a5:2a:00:c3:95:32:f1:3d:27:37:f7:5d:2d:f4:a3: fc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:41:DA:EE:53:B6:81:55:FF:7F:C0:5F:E7:B0:40:F9:82:02:19:2C X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:56:3e:21:8a:c5:a4:02:5e:7b:38:90:33:81:64:5e:d1:69: 3f:37:4d:76:e2:19:65:32:e0:69:2f:ce:b9:44:93:06:45:3a: 47:ae:9a:c2:e0:a1:7b:87:a0:9d:05:c5:f5:47:ef:7b:84:e2: 5e:94:be:0d:d2:2b:f5:90:f2:54:c0:56:0e:47:af:9a:bd:17: 60:a4:c8:24:92:5b:4b:6b:ae:ae:69:d8:24:4a:a2:a7:05:5b: 56:7a:fd:3e:2a:21:fd:cc:33:9a:c5:7f:ef:e2:dc:83:89:78: 1c:4f:42:9b:d5:d0:93:1e:75:d0:6a:52:ff:8d:04:26:c4:6d: d0:cd:1d:d1:c0:fc:e4:03:99:dc:ab:8d:42:ac:da:12:4a:fa: 91:56:76:f7:3d:45:ce:da:72:b5:b2:41:ca:95:25:0a:28:28: 8e:ca:54:21:07:c8:4f:2e:0d:26:34:c6:c3:5b:34:0a:b8:ea: 8d:a7:77:74:8d:2d:d9:38:d6:a8:5d:42:00:6b:b8:4c:d9:cd: 8e:2d:03:fe:cd:1d:e7:a2:9a:b7:4b:f2:76:72:4e:82:a3:e4: aa:38:72:e9:7f:88:7a:76:90:57:98:a4:20:a1:07:b6:12:db: 7c:30:85:2b:df:d5:96:32:43:ea:bd:84:a0:55:ab:94:0e:20: 28:b9:a8:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjUwNDI4MjA0ODQ3WhcNMjUwNTA1MjA0ODQ3WjAYMRYwFAYD VQQDEw02ODBmZTlhZi00OGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VDuCD+/lkBpVHc3zyHFjBWd6c5qYcu38y+uO97Z5ya9ISqgixrtuLM2BeKX b0vSFe4Z5qv+VjRtTMKclz16AEdWcEcbGve8x1WM9UvJu/5gJ0vuRdYO5xiRGfQc 0+XrRAaQolFQ1QlEA8rVafoj7FLOnXDrY+V5zE2qN0w86UQy+kfJSMn0SyB0aGib ALPKCdL8vI3kTzi+9Th0Sh7xmakbAbWObOsbvtNDvSkCQLVKSW0MpV+7KfrS3XLg P58hTM+GaQnsGqotcu6hKhQwG2mJmwqiw6JPz7tWPm2M0C1w8Ajf9GN9eaDVGRBy h/ilKgDDlTLxPSc3910t9KP8RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpB2u5T toFV/3/AX+ewQPmCAhksMB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhVj4hisWkAl57OJAzgWRe0Wk/N0124hllMuBpL865RJMGRTpHrprC 4KF7h6CdBcX1R+97hOJelL4N0iv1kPJUwFYOR6+avRdgpMgkkltLa66uadgkSqKn BVtWev0+KiH9zDOaxX/v4tyDiXgcT0Kb1dCTHnXQalL/jQQmxG3QzR3RwPzkA5nc q41CrNoSSvqRVnb3PUXO2nK1skHKlSUKKCiOylQhB8hPLg0mNMbDWzQKuOqNp3d0 jS3ZONaoXUIAa7hM2c2OLQP+zR3nopq3S/J2ck6Co+SqOHLpf4h6dpBXmKQgoQe2 Ett8MIUr39WWMkPqvYSgVauUDiAouajE -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:54 2025 by rpki-client on console.sobornost.net