$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json) Hash identifier: joGaBFDuhks/QLWDM07rNvON8oCz7KvpRsAxmsmskiM= Subject key identifier: 9D:82:3F:5E:E4:29:23:00:93:F2:29:06:17:7B:63:50:00:BD:83:AC Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Certificate serial: 0235 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft Manifest number: 0230 Signing time: Sun 27 Apr 2025 01:32:41 +0000 Manifest this update: Sun 27 Apr 2025 01:32:41 +0000 Manifest next update: Sun 04 May 2025 01:32:41 +0000 Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: pQ79rN5PpcU4UKEGF+mnBmBC5NUNf7nLNifvROvlUyE=) 2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: F+DLJ1aQV5oLLpGFe5erh1ip1G2eNsPVMkZyfdufJjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 565 (0x235) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C95AA, serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Validity Not Before: Apr 27 01:32:41 2025 GMT Not After : May 4 01:32:41 2025 GMT Subject: CN=680d8939-61f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:1d:02:ee:f3:f9:d7:95:39:cb:96:79:f8: a0:e0:eb:35:e0:39:0a:23:51:cc:ba:be:50:37:4c: 44:f4:26:51:85:40:29:b7:2d:61:d3:fc:6a:4f:c3: 60:40:6c:8f:37:79:e4:5a:50:bc:30:86:d6:c1:ca: 47:6c:a4:89:f2:1d:be:ae:3a:cd:1b:a0:14:c0:cd: 0d:97:0b:84:dc:47:b0:0e:63:21:0c:b4:b1:75:4e: 6e:bb:0d:28:5a:d1:b8:87:0d:65:1b:32:3f:6a:d7: 7a:c4:4f:e0:88:73:62:84:b5:eb:e5:24:53:90:54: 88:f3:44:95:ca:ee:30:4f:25:11:d3:23:17:ba:08: 93:22:df:53:51:30:83:58:21:19:fa:08:f2:dd:b2: c9:70:b0:d1:a5:06:07:8e:62:84:74:78:ab:5d:ff: 40:d0:a8:17:e0:2d:ad:c6:a6:7a:45:07:5f:00:7a: 90:e1:9a:15:d7:a8:2b:57:2b:46:fc:3a:61:f3:c0: 8a:aa:3c:4a:fa:c0:1c:a2:ac:7e:d5:9c:59:b4:ca: 10:2e:29:37:59:b2:9e:1d:67:3f:3f:78:aa:24:3a: ae:7d:31:97:c1:b4:85:0b:46:d7:98:55:ad:d6:b7: 4f:63:12:82:ab:65:4b:94:7a:56:d3:a4:9f:03:d8: cf:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:82:3F:5E:E4:29:23:00:93:F2:29:06:17:7B:63:50:00:BD:83:AC X509v3 Authority Key Identifier: keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:1a:13:7a:26:47:9f:7c:7c:f3:7d:73:bd:da:46:b9:99:db: 76:94:12:97:2e:b4:7c:19:6f:df:6a:7b:5e:eb:68:07:e9:36: 67:5e:fe:09:81:98:7a:f5:db:d2:4c:3c:ad:04:46:72:f3:4c: ed:a9:89:8e:71:f4:c7:b5:15:99:11:8e:9d:bb:3e:2c:77:01: 2c:b0:d8:e3:fe:2d:b8:00:c5:3a:c5:4e:c4:e0:a1:dc:35:63: 4f:92:a5:09:38:da:64:8f:5e:f2:a5:37:b5:ce:8b:6e:9a:54: f3:aa:fd:73:54:28:64:92:d4:0a:0c:cf:4e:72:53:dd:27:f4: b7:85:55:06:8d:00:b0:72:ff:d7:ea:38:1a:44:c0:38:86:9c: f5:4c:ec:b4:33:1b:29:82:77:f1:cd:00:b0:66:10:d4:82:68: e7:4a:ba:c5:17:2b:3d:cf:9b:99:82:1c:7d:ff:52:c4:33:f0: 68:f0:2c:ac:0e:a7:38:b3:13:8e:68:cd:bc:be:5d:13:09:29: 8f:c6:58:09:f0:b7:19:37:e6:c6:59:ed:f7:92:31:cf:b4:20: 03:32:1a:6c:b7:2f:7c:33:03:8c:56:77:6a:23:35:16:4f:1b: d4:43:a7:72:17:e7:a5:03:11:a2:d7:c0:20:dd:03:1a:27:0c: 21:65:2b:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB MTk5ODczRDQwHhcNMjUwNDI3MDEzMjQxWhcNMjUwNTA0MDEzMjQxWjAYMRYwFAYD VQQDEw02ODBkODkzOS02MWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx00dAu7z+deVOcuWefig4Os14DkKI1HMur5QN0xE9CZRhUApty1h0/xqT8Ng QGyPN3nkWlC8MIbWwcpHbKSJ8h2+rjrNG6AUwM0NlwuE3EewDmMhDLSxdU5uuw0o WtG4hw1lGzI/atd6xE/giHNihLXr5SRTkFSI80SVyu4wTyUR0yMXugiTIt9TUTCD WCEZ+gjy3bLJcLDRpQYHjmKEdHirXf9A0KgX4C2txqZ6RQdfAHqQ4ZoV16grVytG /Dph88CKqjxK+sAcoqx+1ZxZtMoQLik3WbKeHWc/P3iqJDqufTGXwbSFC0bXmFWt 1rdPYxKCq2VLlHpW06SfA9jPQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2CP17k KSMAk/IpBhd7Y1AAvYOsMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0 MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx dmxOaENhYXZtXy1obVljOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaGhN6JkeffHzzfXO92ka5mdt2lBKXLrR8GW/fante62gH6TZnXv4J gZh69dvSTDytBEZy80ztqYmOcfTHtRWZEY6duz4sdwEssNjj/i24AMU6xU7E4KHc NWNPkqUJONpkj17ypTe1zotumlTzqv1zVChkktQKDM9OclPdJ/S3hVUGjQCwcv/X 6jgaRMA4hpz1TOy0MxspgnfxzQCwZhDUgmjnSrrFFys9z5uZghx9/1LEM/Bo8Cys Dqc4sxOOaM28vl0TCSmPxlgJ8LcZN+bGWe33kjHPtCADMhpsty98MwOMVndqIzUW TxvUQ6dyF+elAxGi18Ag3QMaJwwhZSuJ -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net