$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft File: BdNlUA2kssABifPGyllQ4AdMfEo.mft (raw, json) Hash identifier: yV8yk7WVa8k+oBCUKPxKnBmokvEE+kNowUYvDcbF2rg= Subject key identifier: 54:6C:79:DD:14:83:12:1F:46:09:52:23:F1:61:4C:C3:CD:C5:5A:67 Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft Manifest number: 01CA Signing time: Fri 25 Apr 2025 02:15:38 +0000 Manifest this update: Fri 25 Apr 2025 02:15:37 +0000 Manifest next update: Fri 02 May 2025 02:15:37 +0000 Files and hashes: 1: BdNlUA2kssABifPGyllQ4AdMfEo.crl (hash: /o623HRvvd+NhxCo+dtL0D57lCCO4MfMA0OA0Jj43hs=) 2: 999FA66011C711EF80B27457C4F9AE02.roa (hash: O9DoSIXGoRGfPB1leReaXjE3LSp6RO52qLUkhTkRojY=) 3: AD0CC70C122411EF8BEED51AC4F9AE02.roa (hash: sLDSVMLU6jI3BpmMuSVMPzt56rvnKddxBYgL4QmGgG0=) 4: A6524550C4E411EEAFF83C50C4F9AE02.roa (hash: d4lk9eKDk4hQ5jM/CM/7dtQ4pw21vQcp7xDVqjydE4E=) 5: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (hash: UGxKabSt5VefJdKh3JQwjTM53St2aD5lvYeCqBjnhKg=) 6: 99D4FC3212DC11EFB2470B7FC4F9AE02.roa (hash: E6NCI4JuiZoY4K+zXIld9/zlqD6qc3HulCUWdCEuTgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: Apr 25 02:15:37 2025 GMT Not After : May 2 02:15:37 2025 GMT Subject: CN=680af04a-24c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9b:2b:b3:47:73:6a:eb:6f:78:b1:fe:f9:ce: c0:1f:09:dd:e3:30:24:71:e3:32:55:12:ba:de:b1: 37:ea:50:d4:aa:cc:cb:96:97:98:e5:8b:d9:7d:8e: 9e:b7:02:85:25:fd:69:8c:a6:15:e5:a0:b0:65:2a: de:dd:e3:3f:72:75:dd:3a:f4:f1:4c:9b:96:6d:aa: bb:a2:19:7a:48:6d:9b:d0:b9:ec:88:ae:41:99:31: 52:d3:04:d6:13:1a:a8:41:c2:88:13:8a:68:de:8c: a5:0e:2d:ea:4a:75:7f:88:a2:a0:eb:fa:35:b1:82: 00:ac:9e:bd:ac:b9:b2:74:38:46:98:cc:01:09:89: c4:6a:03:a9:2a:3c:61:5f:80:94:56:14:ce:4b:9d: 1d:56:a7:0a:84:21:db:91:c3:9e:bb:a8:4e:22:fa: 5e:c0:16:79:06:7b:9b:55:44:f8:84:b0:06:17:31: 68:5a:cf:69:07:36:5c:8e:d0:57:61:4f:61:0c:0d: ce:f1:1b:ab:68:a8:58:1a:67:f3:fa:b5:06:c6:57: f5:eb:5b:0e:3a:a6:5c:ce:4f:83:a2:fe:bc:48:bc: d4:f1:3f:0a:df:21:7b:4f:64:a4:54:bf:82:78:ea: 2f:75:3f:d3:67:16:01:88:8a:20:09:c2:1e:b7:a5: fd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:6C:79:DD:14:83:12:1F:46:09:52:23:F1:61:4C:C3:CD:C5:5A:67 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:50:20:be:c8:9f:58:04:a0:44:fb:c3:7b:73:a5:5b:f8:21: 4b:df:85:a9:d5:f3:b5:ab:ac:8a:15:0a:dd:f6:7f:ba:a1:24: 88:6c:4f:dd:b7:40:24:86:ce:8f:92:c2:0d:30:34:ca:74:86: bc:12:fc:14:2e:46:64:5b:09:67:68:33:08:1b:27:6f:65:a0: f4:90:89:26:c2:29:fe:e0:e3:de:a9:a3:3f:a0:36:a6:dd:31: e3:00:e9:21:25:72:3f:4a:2a:33:63:93:56:80:18:56:c5:48: c1:cf:9f:72:f2:e3:eb:42:3c:5c:90:39:9e:a8:ca:8f:07:35: 9c:92:0c:84:d9:f4:88:9f:9f:1f:b0:39:e5:bb:c6:a8:f1:2d: 57:ab:79:13:69:94:0e:28:80:c9:00:80:7e:4a:5a:15:fb:3a: 56:75:9c:80:c4:5e:70:1b:91:b5:87:91:a5:df:d2:77:f9:02: 1d:b4:ab:c3:dc:46:57:0c:5b:ea:a4:60:5e:68:42:ec:7b:fc: 58:27:c9:e3:5d:b3:f7:30:21:ce:86:26:bd:67:f0:ba:37:12: 1b:c1:bb:ae:4b:5a:22:0b:32:13:05:6c:43:0e:89:d1:39:d1: 7f:e8:51:cb:59:17:23:b6:53:e4:23:f6:c9:25:67:cd:f4:91: ec:95:c9:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjUwNDI1MDIxNTM3WhcNMjUwNTAyMDIxNTM3WjAYMRYwFAYD VQQDEw02ODBhZjA0YS0yNGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZsrs0dzautveLH++c7AHwnd4zAkceMyVRK63rE36lDUqszLlpeY5YvZfY6e twKFJf1pjKYV5aCwZSre3eM/cnXdOvTxTJuWbaq7ohl6SG2b0LnsiK5BmTFS0wTW ExqoQcKIE4po3oylDi3qSnV/iKKg6/o1sYIArJ69rLmydDhGmMwBCYnEagOpKjxh X4CUVhTOS50dVqcKhCHbkcOeu6hOIvpewBZ5BnubVUT4hLAGFzFoWs9pBzZcjtBX YU9hDA3O8RuraKhYGmfz+rUGxlf161sOOqZczk+Dov68SLzU8T8K3yF7T2SkVL+C eOovdT/TZxYBiIogCcIet6X9hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRsed0U gxIfRglSI/FhTMPNxVpnMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9FQTY3QTk4QzdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3Nz QUJpZlBHeWxsUTRBZE1mRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFUCC+yJ9YBKBE+8N7c6Vb+CFL34Wp1fO1q6yKFQrd9n+6oSSIbE/d t0Akhs6PksINMDTKdIa8EvwULkZkWwlnaDMIGydvZaD0kIkmwin+4OPeqaM/oDam 3THjAOkhJXI/SiozY5NWgBhWxUjBz59y8uPrQjxckDmeqMqPBzWckgyE2fSIn58f sDnlu8ao8S1Xq3kTaZQOKIDJAIB+SloV+zpWdZyAxF5wG5G1h5Gl39J3+QIdtKvD 3EZXDFvqpGBeaELse/xYJ8njXbP3MCHOhia9Z/C6NxIbwbuuS1oiCzITBWxDDonR OdF/6FHLWRcjtlPkI/bJJWfN9JHslckZ -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:10 2025 by rpki-client on console.sobornost.net