$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: hGDOTJ3iVq62MXoti0IMsfq1sLn31c8SyCz3VTuNzs4= Subject key identifier: 39:0F:F5:92:8A:1E:67:AE:38:81:BD:55:61:5E:91:DE:C4:11:3B:4D Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0C39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0C32 Signing time: Sat 26 Apr 2025 18:18:23 +0000 Manifest this update: Sat 26 Apr 2025 18:18:23 +0000 Manifest next update: Sat 03 May 2025 18:18:23 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: saTAEm33gA7BAfArbwFGK3fCnGyJrgAeging9/WiSm0=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3129 (0xc39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Apr 26 18:18:23 2025 GMT Not After : May 3 18:18:23 2025 GMT Subject: CN=680d236f-a9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7d:ba:8b:c5:31:12:2b:04:15:b7:a5:75:c2: 04:b8:dc:99:bb:fc:c4:f9:c4:89:21:9e:01:37:00: 48:e5:30:a3:77:bd:31:bc:16:29:de:fc:a2:74:fd: 25:93:e5:6b:ec:53:7c:86:65:f7:4d:80:45:61:b1: ec:00:2c:02:02:d1:d3:eb:b9:c9:b2:e5:fa:ea:53: f9:3c:6a:51:23:84:93:79:39:00:8e:eb:88:c5:f0: e9:a8:4c:6b:49:b2:5b:c4:50:50:3f:23:d4:88:c1: 9b:7f:d1:b9:0c:bd:e4:31:3d:d9:85:78:11:af:fc: 9f:4b:d3:0a:25:12:2a:86:f8:26:c2:de:af:fe:51: 19:a5:86:18:d7:e9:a1:87:4d:43:37:51:78:97:7a: 37:35:fc:82:af:2a:59:c7:29:49:17:c7:03:08:01: 45:45:11:67:c8:9b:fe:3f:cf:1f:6c:9e:95:53:df: 40:07:73:72:77:f6:b1:f8:cd:28:cf:a8:74:fa:dc: 12:a7:1e:f1:9c:0c:af:a6:c8:52:7d:7e:ba:3a:b6: ca:cb:a1:88:d8:f8:ec:22:ed:d6:b3:7c:8f:e8:73: 41:f6:16:5b:ff:55:96:35:99:5d:e0:9a:f5:8c:aa: fb:bd:b5:3c:47:f2:54:2f:52:0b:b6:b1:a6:e9:0d: 0c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:0F:F5:92:8A:1E:67:AE:38:81:BD:55:61:5E:91:DE:C4:11:3B:4D X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:b2:2f:5f:e6:7d:b1:58:e0:ee:6e:a2:69:98:c1:76:6e:3b: 82:a1:e5:03:c4:b6:c9:0e:df:77:ec:03:d5:68:74:48:40:61: 8d:56:f4:57:80:96:18:4d:5d:76:ae:02:e2:3b:35:bc:a3:38: fc:c0:80:3a:b9:b6:6e:15:8c:83:5e:b8:3c:c5:6b:2c:cc:a6: b2:d4:49:e4:02:65:a6:45:4b:05:6b:a4:4e:d2:1c:55:cd:08: 93:36:82:a4:8a:97:7b:04:e1:68:ce:03:b4:aa:8f:e7:c1:4b: f9:41:d1:73:bf:c4:88:05:db:7e:52:62:ef:10:9b:2e:d8:f0: 67:35:d5:20:4c:45:3c:3a:03:72:e7:75:50:2c:4b:2a:0f:10: 7c:7a:5a:ab:82:9b:d1:92:bc:20:19:b2:7d:fd:62:8f:b8:8d: 6f:be:d2:ff:b5:fa:e8:48:44:c2:03:6b:11:6d:66:c5:66:aa: d5:c1:39:bc:13:ab:59:f7:ef:b3:43:a9:10:41:a9:63:be:f1: 96:a5:75:34:44:06:de:b9:4c:52:01:fc:35:08:98:19:bf:28: 90:02:29:77:67:ca:7a:a3:90:05:58:7c:12:21:4c:4d:72:07: 27:19:a9:f9:e7:6b:8a:4c:31:de:cc:81:d7:11:e9:61:f1:3f: 9b:22:67:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUwNDI2MTgxODIzWhcNMjUwNTAzMTgxODIzWjAYMRYwFAYD VQQDEw02ODBkMjM2Zi1hOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1X26i8UxEisEFbeldcIEuNyZu/zE+cSJIZ4BNwBI5TCjd70xvBYp3vyidP0l k+Vr7FN8hmX3TYBFYbHsACwCAtHT67nJsuX66lP5PGpRI4STeTkAjuuIxfDpqExr SbJbxFBQPyPUiMGbf9G5DL3kMT3ZhXgRr/yfS9MKJRIqhvgmwt6v/lEZpYYY1+mh h01DN1F4l3o3NfyCrypZxylJF8cDCAFFRRFnyJv+P88fbJ6VU99AB3Nyd/ax+M0o z6h0+twSpx7xnAyvpshSfX66OrbKy6GI2PjsIu3Ws3yP6HNB9hZb/1WWNZld4Jr1 jKr7vbU8R/JUL1ILtrGm6Q0MhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkP9ZKK HmeuOIG9VWFekd7EETtNMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDsi9f5n2xWODubqJpmMF2bjuCoeUDxLbJDt937APVaHRIQGGNVvRX gJYYTV12rgLiOzW8ozj8wIA6ubZuFYyDXrg8xWsszKay1EnkAmWmRUsFa6RO0hxV zQiTNoKkipd7BOFozgO0qo/nwUv5QdFzv8SIBdt+UmLvEJsu2PBnNdUgTEU8OgNy 53VQLEsqDxB8elqrgpvRkrwgGbJ9/WKPuI1vvtL/tfroSETCA2sRbWbFZqrVwTm8 E6tZ9++zQ6kQQaljvvGWpXU0RAbeuUxSAfw1CJgZvyiQAil3Z8p6o5AFWHwSIUxN cgcnGan552uKTDHezIHXEelh8T+bImcz -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:01 2025 by rpki-client on console.sobornost.net