$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: kAaWazJj7du9vSlruAyiIbZ/18jgScEKt0N93tjuirQ= Subject key identifier: C3:ED:08:59:10:84:34:5A:13:88:FA:8C:16:C7:7F:85:3B:1F:08:3A Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0418 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 040F Signing time: Sun 27 Apr 2025 00:05:58 +0000 Manifest this update: Sun 27 Apr 2025 00:05:58 +0000 Manifest next update: Sun 04 May 2025 00:05:58 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: 3H9EwwJthrRcvsO+tcG4+JTAAmf+2YOt0cAXW0kgmq4=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Apr 27 00:05:58 2025 GMT Not After : May 4 00:05:58 2025 GMT Subject: CN=680d74e6-5b6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e8:bd:8e:fa:03:91:32:3f:22:80:e3:ea:9f: b8:70:31:19:1c:35:75:95:7c:de:8d:59:35:ed:f1: 7d:80:0f:19:38:73:ba:e8:7a:81:aa:95:0c:65:d1: fc:b3:88:38:be:9c:d3:30:b8:65:7c:ed:56:79:03: ce:98:03:1b:f4:68:ef:39:f4:f2:b4:28:5c:65:1a: ef:10:16:4f:48:56:a9:c6:80:be:aa:36:26:a0:a3: 4a:f7:7a:f8:9b:88:a4:25:06:6c:6e:7a:1d:62:8d: 5e:ff:af:3b:20:df:66:a9:d7:91:af:52:14:4a:06: d1:e6:0d:bf:12:6c:83:16:ca:32:df:f5:bb:35:06: 49:b8:c1:9d:8c:3b:6d:27:60:f1:9d:c7:b4:86:34: a5:bc:2b:8e:b2:d8:af:98:af:34:3b:e2:ac:4b:22: 7b:57:2a:8a:61:3e:5c:fb:c2:02:7e:19:86:6e:e5: ee:71:37:a3:11:91:03:cd:26:db:a8:f5:2c:69:24: 25:26:7a:72:66:c5:0b:a0:d9:25:02:2a:f2:42:4f: b3:a2:ce:87:0f:f0:4a:43:69:81:4b:e7:88:f5:b5: 1b:37:4e:d8:c9:5b:91:d9:f0:2a:e5:f1:75:43:1e: 51:68:0b:e1:29:96:ae:1f:3d:68:62:49:8f:f7:81: 8d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:ED:08:59:10:84:34:5A:13:88:FA:8C:16:C7:7F:85:3B:1F:08:3A X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:96:b1:4d:27:9f:b0:b7:13:53:5e:e1:23:a7:92:66:71:d4: 03:5d:48:90:b4:57:49:a5:20:1a:fe:bb:5c:70:7e:a7:89:07: 49:d4:7c:61:73:95:d4:76:40:a2:4e:3b:38:31:1b:be:a1:c6: 14:5a:a5:4c:b9:e1:7b:0b:b2:3a:5f:47:13:09:94:31:9c:92: a9:b2:07:81:84:3d:2b:e8:34:c5:3e:ee:81:f1:52:4f:7e:87: 62:1c:9d:56:6d:fa:c1:86:4e:4e:04:81:8a:5a:ac:9b:64:de: cf:09:ad:2a:07:b7:8a:cb:8b:e7:2d:f2:7d:da:cc:fa:52:2a: db:57:d1:0f:b6:5d:33:84:38:6c:c2:35:3f:34:7f:b2:ad:69: ce:8c:d0:76:e6:80:b2:dd:d7:81:c9:35:13:a1:46:ef:71:1e: d1:44:65:c1:15:a0:90:28:25:07:e0:e9:b1:b2:84:b5:98:43: e1:01:d1:3d:f1:7e:82:d4:dc:15:bc:0c:74:33:47:f9:d0:75: be:e0:60:1f:9c:6e:bb:ae:2a:99:a8:0c:a3:a7:4c:b9:56:6e: 24:14:37:2b:97:3d:49:8d:16:6f:c2:57:29:c4:d3:d0:8d:0b: 7e:81:72:6d:09:67:43:a7:66:5e:d5:b1:7e:53:25:73:27:db: 83:fa:29:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwNDI3MDAwNTU4WhcNMjUwNTA0MDAwNTU4WjAYMRYwFAYD VQQDEw02ODBkNzRlNi01YjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Oi9jvoDkTI/IoDj6p+4cDEZHDV1lXzejVk17fF9gA8ZOHO66HqBqpUMZdH8 s4g4vpzTMLhlfO1WeQPOmAMb9GjvOfTytChcZRrvEBZPSFapxoC+qjYmoKNK93r4 m4ikJQZsbnodYo1e/687IN9mqdeRr1IUSgbR5g2/EmyDFsoy3/W7NQZJuMGdjDtt J2Dxnce0hjSlvCuOstivmK80O+KsSyJ7VyqKYT5c+8ICfhmGbuXucTejEZEDzSbb qPUsaSQlJnpyZsULoNklAiryQk+zos6HD/BKQ2mBS+eI9bUbN07YyVuR2fAq5fF1 Qx5RaAvhKZauHz1oYkmP94GNdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPtCFkQ hDRaE4j6jBbHf4U7Hwg6MB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1lrFNJ5+wtxNTXuEjp5JmcdQDXUiQtFdJpSAa/rtccH6niQdJ1Hxh c5XUdkCiTjs4MRu+ocYUWqVMueF7C7I6X0cTCZQxnJKpsgeBhD0r6DTFPu6B8VJP fodiHJ1WbfrBhk5OBIGKWqybZN7PCa0qB7eKy4vnLfJ92sz6UirbV9EPtl0zhDhs wjU/NH+yrWnOjNB25oCy3deByTUToUbvcR7RRGXBFaCQKCUH4OmxsoS1mEPhAdE9 8X6C1NwVvAx0M0f50HW+4GAfnG67riqZqAyjp0y5Vm4kFDcrlz1JjRZvwlcpxNPQ jQt+gXJtCWdDp2Ze1bF+UyVzJ9uD+ikF -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net