$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft File: HdM6aLwLXJMQ__Uq1zlBINECpic.mft (raw, json) Hash identifier: SI1evw+rvJ31wxiJnTisrjlk33xvP5vaCvparG+JGFM= Subject key identifier: 04:3A:43:FA:23:75:1C:2F:DA:B1:3A:2D:ED:1F:A7:1E:7F:B0:B6:1D Authority key identifier: 1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 Certificate issuer: /CN=A91C5319/serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft Manifest number: 65 Signing time: Sun 27 Apr 2025 05:49:44 +0000 Manifest this update: Sun 27 Apr 2025 05:49:43 +0000 Manifest next update: Sun 04 May 2025 05:49:43 +0000 Files and hashes: 1: HdM6aLwLXJMQ__Uq1zlBINECpic.crl (hash: pu2/ROKt5uLqDRK2hiuoHk2CNex7gZCjhboeRe0dlJg=) 2: C7500EC88C2F11EF82B2F55CC4F9AE02.roa (hash: KqwFgUGGWmZ6w/oc9lE/9i1V2X5VufgZVt2vhykEeNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5319, serialNumber=1DD33A68BC0B5C9310FFF52AD7394120D102A627 Validity Not Before: Apr 27 05:49:43 2025 GMT Not After : May 4 05:49:43 2025 GMT Subject: CN=680dc577-46c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e2:cd:cd:a4:f0:3e:90:c2:7e:c3:d5:f8:c6: 8a:ab:59:89:6b:c2:93:b7:fc:ad:fe:df:0d:4f:49: ad:5e:91:91:65:a9:ea:6f:e2:1c:d8:1d:af:d5:ac: cf:06:93:7c:fe:08:ef:61:91:b7:3c:a2:01:d2:8a: a4:7f:ac:98:99:37:65:85:54:05:ba:25:8f:50:9b: 16:0b:27:66:90:9c:1a:88:da:71:e3:4c:bf:29:bf: 60:16:79:d7:53:28:36:1a:75:3f:71:97:b1:05:55: 46:08:f6:56:9c:15:f0:20:9d:02:40:a5:df:79:a6: 87:05:76:db:13:5b:74:e0:f0:3b:21:ef:26:dd:73: 4f:ec:e4:01:82:79:e0:95:4a:ff:9c:26:bc:d8:7e: e1:ae:bb:99:b4:47:d6:5f:4c:8d:9d:7c:b9:d9:da: 74:74:58:d4:92:f7:6a:91:fe:21:7a:83:22:13:92: f9:83:17:6e:64:e4:05:e8:90:95:82:f5:b3:d2:02: a3:72:12:b2:17:6e:fd:20:fa:e7:f8:95:0f:7a:61: 46:63:b8:01:38:84:2b:44:e8:ac:87:4e:7f:7a:f1: f1:28:84:8a:8b:77:40:3c:dd:30:c8:9c:72:cb:51: a9:99:c2:2f:f6:9e:dc:4e:7d:52:bf:46:2b:df:c8: c4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3A:43:FA:23:75:1C:2F:DA:B1:3A:2D:ED:1F:A7:1E:7F:B0:B6:1D X509v3 Authority Key Identifier: keyid:1D:D3:3A:68:BC:0B:5C:93:10:FF:F5:2A:D7:39:41:20:D1:02:A6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HdM6aLwLXJMQ__Uq1zlBINECpic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5319/F94D41C88C2C11EF8122EC11C4F9AE02/HdM6aLwLXJMQ__Uq1zlBINECpic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:71:87:29:36:20:87:91:88:83:de:57:35:64:68:7f:ef:ea: 1c:c2:49:83:02:2e:15:05:76:b9:ad:3b:73:99:88:67:cc:ed: 00:b5:3b:48:bd:79:ec:86:8c:35:8e:23:b4:70:ef:b3:a6:f1: f7:1c:ea:68:66:ba:ca:57:99:5c:7a:e1:c4:28:77:75:29:a2: e2:9c:84:ea:3b:67:66:98:16:1d:68:53:3e:cf:91:8f:39:4f: 56:5b:2c:3a:b2:f8:0d:b5:a0:2d:d4:0c:9e:99:fe:8e:49:ef: 32:1b:ab:a7:9d:22:67:5f:5b:02:44:ca:63:94:af:b1:ca:2f: 31:95:42:63:9b:bb:c6:aa:3d:14:76:eb:3e:0c:87:97:02:3c: 81:46:c8:d0:2f:64:37:13:69:a3:2c:c8:2a:83:67:67:3e:68: 2a:ab:52:fa:3e:f0:36:df:6a:49:f4:b3:0a:58:b2:27:49:15: 43:e9:24:47:2b:9a:f4:0b:3d:3b:5f:de:73:90:a7:13:62:e6: b2:30:6b:99:af:93:16:81:8f:26:e1:67:30:3a:9e:ea:9f:f3: b2:af:c4:fa:cb:d7:97:ed:7f:e0:12:82:42:89:2d:36:9a:a6: a2:54:c0:2c:d9:97:c6:9f:45:35:36:79:ba:dc:ca:79:6b:4f: d6:87:6c:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTMxOTExMC8GA1UEBRMoMUREMzNBNjhCQzBCNUM5MzEwRkZGNTJBRDczOTQxMjBE MTAyQTYyNzAeFw0yNTA0MjcwNTQ5NDNaFw0yNTA1MDQwNTQ5NDNaMBgxFjAUBgNV BAMTDTY4MGRjNTc3LTQ2YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK4s3NpPA+kMJ+w9X4xoqrWYlrwpO3/K3+3w1PSa1ekZFlqepv4hzYHa/VrM8G k3z+CO9hkbc8ogHSiqR/rJiZN2WFVAW6JY9QmxYLJ2aQnBqI2nHjTL8pv2AWeddT KDYadT9xl7EFVUYI9lacFfAgnQJApd95pocFdtsTW3Tg8Dsh7ybdc0/s5AGCeeCV Sv+cJrzYfuGuu5m0R9ZfTI2dfLnZ2nR0WNSS92qR/iF6gyITkvmDF25k5AXokJWC 9bPSAqNyErIXbv0g+uf4lQ96YUZjuAE4hCtE6KyHTn968fEohIqLd0A83TDInHLL UamZwi/2ntxOfVK/RivfyMSjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBDpD+iN1 HC/asTot7R+nHn+wth0wHwYDVR0jBBgwFoAUHdM6aLwLXJMQ//Uq1zlBINECpicw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1MzE5L0Y5NEQ0MUM4OEMy QzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpNUV9fVXExemxCSU5FQ3Bp Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSGRNNmFMd0xYSk1RX19VcTF6bEJJTkVDcGljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 MzE5L0Y5NEQ0MUM4OEMyQzExRUY4MTIyRUMxMUM0RjlBRTAyL0hkTTZhTHdMWEpN UV9fVXExemxCSU5FQ3BpYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABtxhyk2IIeRiIPeVzVkaH/v6hzCSYMCLhUFdrmtO3OZiGfM7QC1O0i9 eeyGjDWOI7Rw77Om8fcc6mhmuspXmVx64cQod3UpouKchOo7Z2aYFh1oUz7PkY85 T1ZbLDqy+A21oC3UDJ6Z/o5J7zIbq6edImdfWwJEymOUr7HKLzGVQmObu8aqPRR2 6z4Mh5cCPIFGyNAvZDcTaaMsyCqDZ2c+aCqrUvo+8Dbfakn0swpYsidJFUPpJEcr mvQLPTtf3nOQpxNi5rIwa5mvkxaBjybhZzA6nuqf87KvxPrL15ftf+ASgkKJLTaa pqJUwCzZl8afRTU2ebrcynlrT9aHbOc= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net