$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: t5r/xq322o7+dEbvXLJw+INoBaNt5T/jvpQH72mgru8= Subject key identifier: 91:24:90:2D:FE:3F:11:97:DD:08:65:18:B4:F1:35:81:FC:4A:38:53 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: D2 Signing time: Sun 27 Apr 2025 04:32:14 +0000 Manifest this update: Sun 27 Apr 2025 04:32:13 +0000 Manifest next update: Sun 04 May 2025 04:32:13 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: viGD5DRebkzng7+cfREAU6LlmJI3Vk+ompPNXxDEwlM=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: PDtdUX6JrHo4d5GjgXXthgA5sLxtJKv9u0i8nv/vqsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D, serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Apr 27 04:32:13 2025 GMT Not After : May 4 04:32:13 2025 GMT Subject: CN=680db34e-bc18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6f:6b:21:50:b2:c7:41:1c:c3:f5:4a:ea:54: e2:1a:70:c5:90:cf:ce:1a:3f:85:73:96:d1:89:34: 80:b2:f0:23:76:b8:7e:43:6f:35:95:9c:ed:0a:9b: 38:3f:13:8e:da:d6:9a:7f:9d:31:81:c4:d0:39:b1: 86:f5:30:e0:fb:9a:1a:ee:9d:28:a9:4f:46:8f:76: 5f:b8:4e:2e:b2:ed:5b:87:01:a0:98:2e:da:15:d6: 82:87:64:c4:29:38:52:7d:6e:06:aa:cf:6a:9d:98: 6b:9f:a5:1c:c8:71:d3:92:49:c9:fb:1e:03:94:0d: 19:02:98:03:49:d6:d2:34:ea:04:dd:25:ca:a9:fb: de:e4:e2:39:1e:a5:96:bb:e6:05:65:52:e3:3b:c7: 22:fe:45:dc:94:5d:d6:9a:a1:77:3a:9b:71:0c:45: 44:00:ee:c1:08:55:a7:85:4f:bd:ba:a0:c8:ee:03: a7:6c:d9:13:7f:09:10:6c:14:7d:be:95:4e:bf:0a: 71:80:8b:f4:b4:b9:c5:a9:c7:fe:ec:5a:27:29:07: c6:f7:bc:aa:7f:4f:b6:83:57:96:d4:dd:42:86:fd: 8c:ff:69:20:fd:6a:de:0b:57:e7:e9:9b:57:d7:24: ee:5c:03:1a:6b:ab:06:2e:0b:70:ce:ba:aa:39:d4: 98:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:24:90:2D:FE:3F:11:97:DD:08:65:18:B4:F1:35:81:FC:4A:38:53 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:e1:fd:f5:d8:3c:27:c9:a1:f5:40:a9:d4:c6:56:48:b8:29: fc:52:cb:56:88:f7:99:c0:d4:5e:28:d2:75:cd:89:01:10:d9: 21:fb:70:1b:3f:a6:43:74:fb:78:cd:00:de:34:82:1b:f5:bc: 8a:fa:f7:b5:39:52:92:3c:2e:5d:37:89:76:8e:9b:95:56:0d: bb:74:93:82:72:0b:e2:ae:e4:95:94:58:24:31:79:36:4f:53: 96:49:40:9e:25:c1:30:39:ec:42:84:00:06:38:92:da:ba:44: 1e:cd:a1:b7:d4:3c:52:f7:a0:b1:ed:ea:13:e4:d7:29:1e:85: de:55:45:c7:a0:09:94:80:42:2f:78:1e:fb:10:37:1b:a3:14: cc:99:67:be:a7:8c:81:66:5d:56:bf:22:19:70:d3:cd:e4:da: c6:31:77:47:8f:39:99:65:91:ec:ad:b8:b2:56:1a:11:fb:f5: d7:44:a2:22:28:9d:6c:bc:bf:89:ff:66:fa:4b:c8:ff:4f:a5: 28:fa:ce:06:17:08:ad:e7:40:26:68:06:f3:9c:b2:d2:c3:af: 16:c3:ad:87:94:2c:58:0c:03:1d:38:8e:8e:08:41:95:46:ee: 18:d7:6e:33:a3:97:e6:72:b7:3f:d7:ad:4b:b7:c9:6b:a7:62: f4:91:a5:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4NkQxMTAvBgNVBAUTKDI1NkI1RDE3OTBEMjRDNEQ2Qzk3MjA2NEU5MUM2QUYw MEJENjhFMzIwHhcNMjUwNDI3MDQzMjEzWhcNMjUwNTA0MDQzMjEzWjAYMRYwFAYD VQQDEw02ODBkYjM0ZS1iYzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m9rIVCyx0Ecw/VK6lTiGnDFkM/OGj+Fc5bRiTSAsvAjdrh+Q281lZztCps4 PxOO2taaf50xgcTQObGG9TDg+5oa7p0oqU9Gj3ZfuE4usu1bhwGgmC7aFdaCh2TE KThSfW4Gqs9qnZhrn6UcyHHTkknJ+x4DlA0ZApgDSdbSNOoE3SXKqfve5OI5HqWW u+YFZVLjO8ci/kXclF3WmqF3OptxDEVEAO7BCFWnhU+9uqDI7gOnbNkTfwkQbBR9 vpVOvwpxgIv0tLnFqcf+7FonKQfG97yqf0+2g1eW1N1Chv2M/2kg/WreC1fn6ZtX 1yTuXAMaa6sGLgtwzrqqOdSYIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEkkC3+ PxGX3QhlGLTxNYH8SjhTMB8GA1UdIwQYMBaAFCVrXReQ0kxNbJcgZOkcavAL1o4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjg2RC82RjA1ODIwRUU1 M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RFMXNseUJrNlJ4cThBdldq akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Qjg2RC82RjA1ODIwRUU1M0UxMUVFQTM4RjA4NzdDNEY5QUUwMi9KV3RkRjVEU1RF MXNseUJrNlJ4cThBdldqakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+4f312DwnyaH1QKnUxlZIuCn8UstWiPeZwNReKNJ1zYkBENkh+3Ab P6ZDdPt4zQDeNIIb9byK+ve1OVKSPC5dN4l2jpuVVg27dJOCcgviruSVlFgkMXk2 T1OWSUCeJcEwOexChAAGOJLaukQezaG31DxS96Cx7eoT5NcpHoXeVUXHoAmUgEIv eB77EDcboxTMmWe+p4yBZl1WvyIZcNPN5NrGMXdHjzmZZZHsrbiyVhoR+/XXRKIi KJ1svL+J/2b6S8j/T6Uo+s4GFwit50AmaAbznLLSw68Ww62HlCxYDAMdOI6OCEGV Ru4Y124zo5fmcrc/161Lt8lrp2L0kaWo -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net