$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft File: MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft (raw, json) Hash identifier: EAtzs2QE6Tg8kV6GmSNuFfXNUw36bUbifDXvs3KJdtI= Subject key identifier: 47:E2:BD:49:5E:D6:3A:F5:F4:6E:E5:15:9E:38:02:E9:58:D3:80:BB Authority key identifier: 31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF Certificate issuer: /CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft Manifest number: 5F Signing time: Wed 23 Apr 2025 06:11:35 +0000 Manifest this update: Wed 23 Apr 2025 06:11:35 +0000 Manifest next update: Wed 30 Apr 2025 06:11:35 +0000 Files and hashes: 1: MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl (hash: mxs3Hl/wIOpCc38/l84kT77yCA2mpk1cl36GOMUkUZI=) 2: BE48D4AA927D11EF9651FC4AC4F9AE02.roa (hash: izRhlY7DGrfvs8MmjLdXrrQgAeYYKtyct/uQzFPAxkk=) 3: D9BE56E2927D11EFB83ACB5CC4F9AE02.roa (hash: gD5kq8/HSPW50HYpmldu2HRZWRqRsB+3dXKbKp9PeAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 06:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8203, serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Validity Not Before: Apr 23 06:11:35 2025 GMT Not After : Apr 30 06:11:35 2025 GMT Subject: CN=68088497-3024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:aa:2f:11:23:8c:2e:02:df:1b:d3:9b:a1:c3: df:08:b3:3a:8d:aa:d7:94:88:69:07:fb:fd:73:e7: 5e:22:f5:71:65:7e:eb:4c:c2:c5:67:8d:dd:55:55: 05:8c:cd:5f:7e:ed:29:8a:29:01:79:bf:39:a0:ce: 7f:03:72:0a:3a:e2:29:24:61:e8:37:bc:40:e7:9c: 5d:ad:a4:5f:23:07:8c:53:bc:b6:15:bd:ca:95:45: 9c:8b:de:9a:35:e7:b0:1e:16:d4:f0:3c:f4:bf:c4: 02:50:39:f2:16:0a:d7:c7:56:0f:0d:93:66:82:ad: 43:61:03:21:d0:39:97:fe:3f:06:55:54:d9:83:9d: b1:de:74:93:1b:05:48:f9:22:da:ee:76:99:ba:1c: c3:c5:ab:e4:e5:39:c3:51:96:65:7f:20:8b:52:ce: 2d:22:a0:e7:8d:2b:93:79:1d:1b:21:34:85:ba:13: c7:cf:23:57:91:bf:7b:e8:2e:5a:3a:64:dd:50:33: 27:a8:1b:0d:2e:19:62:f0:67:f1:c7:1c:f3:2d:41: 0c:41:2a:c2:8f:09:a1:9a:58:42:d9:cd:f2:60:b0: 7b:af:8a:84:42:71:51:f1:11:3c:68:86:68:02:15: 63:89:a1:92:ce:0a:67:56:e7:be:55:91:f7:14:c0: 1a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E2:BD:49:5E:D6:3A:F5:F4:6E:E5:15:9E:38:02:E9:58:D3:80:BB X509v3 Authority Key Identifier: keyid:31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:c2:0d:d6:94:6e:91:75:59:6d:77:c4:fe:f1:a4:40:ff:00: 91:da:eb:be:bc:44:c2:a8:fa:fd:c9:a4:eb:23:6e:37:4b:57: 91:cb:b6:62:e6:6a:f6:72:d9:5d:a0:d8:63:c9:3d:d6:94:ba: 95:9a:92:56:28:7e:a5:0a:8a:d4:85:3b:0c:34:1c:c2:f5:b9: 51:4d:9f:c7:3e:0b:c8:51:68:b0:09:8b:6f:8e:48:b6:bc:4f: 64:c3:d5:c8:5d:e3:7a:9b:60:77:ec:29:41:e2:94:ac:c3:7b: dc:16:0d:7a:a2:ec:18:b7:72:1d:f3:b4:f2:e4:09:70:10:df: 18:d5:a8:25:cc:ce:47:5d:97:86:6a:bb:ea:7a:aa:d7:dd:e5: 7a:26:78:c8:32:d5:9c:2e:7e:df:13:83:28:8d:55:71:66:2d: 15:42:c7:f6:33:52:c8:dd:ec:c5:55:6c:6d:a6:4e:5a:44:b1: ab:f4:3c:b1:8b:19:e7:b6:cc:ba:2c:3e:db:39:35:f0:21:c5: 82:07:f1:c8:1c:86:2f:07:db:a3:66:18:9a:98:47:71:ae:c6: 13:c3:a8:86:0c:30:40:d6:68:3a:ec:25:aa:15:19:7b:a1:79: 13:2f:01:7f:4b:3f:44:79:4c:a2:50:14:f0:ae:e3:85:0b:7b: 45:a2:dc:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODIwMzExMC8GA1UEBRMoMzFEMjFENUNFRTVGQUNERUYzQzhDMUM4N0QwRDczOTFG OUY3M0FGRjAeFw0yNTA0MjMwNjExMzVaFw0yNTA0MzAwNjExMzVaMBgxFjAUBgNV BAMTDTY4MDg4NDk3LTMwMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7qi8RI4wuAt8b05uhw98IszqNqteUiGkH+/1z514i9XFlfutMwsVnjd1VVQWM zV9+7SmKKQF5vzmgzn8Dcgo64ikkYeg3vEDnnF2tpF8jB4xTvLYVvcqVRZyL3po1 57AeFtTwPPS/xAJQOfIWCtfHVg8Nk2aCrUNhAyHQOZf+PwZVVNmDnbHedJMbBUj5 Itrudpm6HMPFq+TlOcNRlmV/IItSzi0ioOeNK5N5HRshNIW6E8fPI1eRv3voLlo6 ZN1QMyeoGw0uGWLwZ/HHHPMtQQxBKsKPCaGaWELZzfJgsHuvioRCcVHxETxohmgC FWOJoZLOCmdW575VkfcUwBohAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR+K9SV7W OvX0buUVnjgC6VjTgLswHwYDVR0jBBgwFoAUMdIdXO5frN7zyMHIfQ1zkfn3Ov8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MjAzL0JDNTE1REFBOTI3 QTExRUZCNTY0M0M0RUM0RjlBRTAyL01kSWRYTzVmck43enlNSElmUTF6a2ZuM092 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWRJZFhPNWZyTjd6eU1ISWZRMXprZm4zT3Y4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 MjAzL0JDNTE1REFBOTI3QTExRUZCNTY0M0M0RUM0RjlBRTAyL01kSWRYTzVmck43 enlNSElmUTF6a2ZuM092OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFnCDdaUbpF1WW13xP7xpED/AJHa6768RMKo+v3JpOsjbjdLV5HLtmLm avZy2V2g2GPJPdaUupWaklYofqUKitSFOww0HML1uVFNn8c+C8hRaLAJi2+OSLa8 T2TD1chd43qbYHfsKUHilKzDe9wWDXqi7Bi3ch3ztPLkCXAQ3xjVqCXMzkddl4Zq u+p6qtfd5XomeMgy1Zwuft8TgyiNVXFmLRVCx/YzUsjd7MVVbG2mTlpEsav0PLGL Gee2zLosPts5NfAhxYIH8cgchi8H26NmGJqYR3GuxhPDqIYMMEDWaDrsJaoVGXuh eRMvAX9LP0R5TKJQFPCu44ULe0Wi3BM= -----END CERTIFICATE-----Generated at Wed Apr 23 09:03:18 2025 by rpki-client on console.sobornost.net