$ rpki-client -vvf rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft File: US2b3oE8t7x3GQqE-bGNuOtOIl8.mft (raw, json) Hash identifier: ajyTp0dgveDN+3ibGc0LLoPZ4fTgrsnSTBAOkO0B+/c= Subject key identifier: 32:1F:7F:C3:33:F3:47:6F:26:FB:15:08:4F:72:26:2D:C1:75:7D:9E Authority key identifier: 51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F Certificate issuer: /CN=A91C956C/serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft Manifest number: 04FC Signing time: Sat 26 Apr 2025 23:22:13 +0000 Manifest this update: Sat 26 Apr 2025 23:22:12 +0000 Manifest next update: Sat 03 May 2025 23:22:12 +0000 Files and hashes: 1: US2b3oE8t7x3GQqE-bGNuOtOIl8.crl (hash: 7rDhwqE0+s7HAsyV8SVNAkKoVfUz2oB5Twy7soiGg3k=) 2: 2F3F56C42BB411EF8D887F3AC4F9AE02.roa (hash: Qi+WEKvtCWtvGFWFUb38yBqHoAd83mtV7+scTOUOMc4=) 3: E1755B4E24D711EDBE2C660BC4F9AE02.roa (hash: aLricGiGlyJJZTbRrMECo3zkg40wJti6wIrN+dUyP7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C956C, serialNumber=512D9BDE813CB7BC77190A84F9B18DB8EB4E225F Validity Not Before: Apr 26 23:22:12 2025 GMT Not After : May 3 23:22:12 2025 GMT Subject: CN=680d6aa4-8a0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:de:10:67:a3:b1:1e:4c:37:e9:d1:44:27:fe: 16:14:7c:0d:3c:e8:26:f8:44:5d:e2:59:8c:f7:e6: ca:bb:a9:86:17:6d:69:49:02:fb:95:82:48:84:00: a3:28:8b:1b:4a:29:bd:09:50:d0:a1:42:f7:d7:ca: 17:7c:2e:f6:95:9f:42:63:8f:9a:fa:7b:a3:c9:4f: 7f:25:03:13:b4:39:87:d7:03:5d:6d:fe:99:fc:fb: 52:67:57:60:ad:c5:bf:87:09:05:e6:0b:d4:4d:c6: 0d:3c:4c:80:46:ae:f0:fb:d2:8d:a1:12:21:3a:09: 45:92:03:c4:30:e0:d4:0b:94:19:7e:35:8e:6d:de: 86:53:e9:b6:d9:dd:ad:fb:0d:65:81:65:bb:5e:22: 2f:33:b5:1d:20:89:64:89:ae:d0:ee:90:ef:5e:4a: ae:e3:31:40:b7:1d:5f:24:29:b1:4e:a8:6b:38:a1: ff:19:71:d1:31:a8:dc:22:b5:9b:1a:84:33:12:36: 3f:8b:cf:ed:50:fe:bd:f0:63:41:48:4c:56:45:60: bc:72:d0:23:38:3b:9c:f6:de:db:2e:42:5a:cd:46: 7a:5f:0b:61:a5:5a:38:35:e1:f8:c2:e6:f7:51:ef: 22:24:91:8f:3e:11:ce:97:1f:8c:6a:38:0b:dd:7e: cd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1F:7F:C3:33:F3:47:6F:26:FB:15:08:4F:72:26:2D:C1:75:7D:9E X509v3 Authority Key Identifier: keyid:51:2D:9B:DE:81:3C:B7:BC:77:19:0A:84:F9:B1:8D:B8:EB:4E:22:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US2b3oE8t7x3GQqE-bGNuOtOIl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C956C/FB305A5E0C8A11ECA3191B0CC4F9AE02/US2b3oE8t7x3GQqE-bGNuOtOIl8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b4:90:e6:4b:1e:f0:d0:aa:12:ad:8c:9f:6c:19:38:eb:02: 28:4e:b7:36:a7:b1:62:ac:a7:0a:8f:b7:ae:4c:78:4b:4b:0f: 4f:f0:ff:71:a1:a8:7d:55:41:02:66:db:c2:ab:e1:0a:ed:c7: 2a:9b:94:d6:8f:41:4f:7e:a0:6c:49:a6:e4:83:b5:c4:23:05: 49:36:74:51:44:a2:9d:3b:66:09:c5:27:37:26:22:aa:74:69: 6d:fd:03:d2:76:e4:88:72:dc:45:a0:f5:9b:3d:bf:03:3a:c4: f3:08:5c:d6:d9:28:22:7c:95:71:68:ae:cf:74:9d:9d:3a:a3: a9:5f:8a:3c:d6:bc:f2:c0:d9:97:7b:62:f6:0c:7f:47:18:c1: 58:69:95:86:62:3d:d4:4a:7e:a7:c2:4a:94:2c:79:f0:ec:bf: 0d:3b:c1:23:8c:05:25:2c:10:5f:e2:4a:d0:72:8e:a1:69:f9: 13:61:07:ae:e5:f4:63:93:e0:b8:31:c5:2b:bd:b0:57:04:71: 63:8c:64:21:9b:65:ad:da:1b:ef:f4:bb:3f:e1:44:61:b8:fa: 9e:88:06:d6:1b:f5:6a:a5:73:34:ab:66:c4:33:1c:39:02:96: a9:06:2f:ac:93:57:a5:51:1a:b6:0d:30:bf:58:a5:d3:06:cd: 74:fd:fe:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NkMxMTAvBgNVBAUTKDUxMkQ5QkRFODEzQ0I3QkM3NzE5MEE4NEY5QjE4REI4 RUI0RTIyNUYwHhcNMjUwNDI2MjMyMjEyWhcNMjUwNTAzMjMyMjEyWjAYMRYwFAYD VQQDEw02ODBkNmFhNC04YTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA394QZ6OxHkw36dFEJ/4WFHwNPOgm+ERd4lmM9+bKu6mGF21pSQL7lYJIhACj KIsbSim9CVDQoUL318oXfC72lZ9CY4+a+nujyU9/JQMTtDmH1wNdbf6Z/PtSZ1dg rcW/hwkF5gvUTcYNPEyARq7w+9KNoRIhOglFkgPEMODUC5QZfjWObd6GU+m22d2t +w1lgWW7XiIvM7UdIIlkia7Q7pDvXkqu4zFAtx1fJCmxTqhrOKH/GXHRMajcIrWb GoQzEjY/i8/tUP698GNBSExWRWC8ctAjODuc9t7bLkJazUZ6XwthpVo4NeH4wub3 Ue8iJJGPPhHOlx+MajgL3X7NawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIff8Mz 80dvJvsVCE9yJi3BdX2eMB8GA1UdIwQYMBaAFFEtm96BPLe8dxkKhPmxjbjrTiJf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2Qy9GQjMwNUE1RTBD OEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3eDNHUXFFLWJHTnVPdE9J bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTMmIzb0U4dDd4M0dRcUUtYkdOdU90T0lsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2Qy9GQjMwNUE1RTBDOEExMUVDQTMxOTFCMENDNEY5QUUwMi9VUzJiM29FOHQ3 eDNHUXFFLWJHTnVPdE9JbDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUtJDmSx7w0KoSrYyfbBk46wIoTrc2p7FirKcKj7euTHhLSw9P8P9x oah9VUECZtvCq+EK7ccqm5TWj0FPfqBsSabkg7XEIwVJNnRRRKKdO2YJxSc3JiKq dGlt/QPSduSIctxFoPWbPb8DOsTzCFzW2SgifJVxaK7PdJ2dOqOpX4o81rzywNmX e2L2DH9HGMFYaZWGYj3USn6nwkqULHnw7L8NO8EjjAUlLBBf4krQco6hafkTYQeu 5fRjk+C4McUrvbBXBHFjjGQhm2Wt2hvv9Ls/4URhuPqeiAbWG/VqpXM0q2bEMxw5 ApapBi+sk1elURq2DTC/WKXTBs10/f6I -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net