$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: U5p7yx7PFPfXvPuQ3ZvPc1PgifGZOOaGcnoMVHD8BWk= Subject key identifier: 36:4C:BD:15:BD:B6:FF:D6:6E:4C:E7:9A:54:63:84:9F:E4:BD:92:67 Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C52 Signing time: Mon 28 Apr 2025 18:42:15 +0000 Manifest this update: Mon 28 Apr 2025 18:42:15 +0000 Manifest next update: Mon 05 May 2025 18:42:15 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: fSjaHrq3qxDCxE44JyQzghQcuKWigIBv5B02yM4cvqg=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3182 (0xc6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Apr 28 18:42:15 2025 GMT Not After : May 5 18:42:15 2025 GMT Subject: CN=680fcc07-6bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a3:ac:c6:0f:72:e9:37:eb:4f:ce:67:33:90: 68:a9:12:51:70:05:6a:c0:2f:ff:d4:72:03:a1:d2: 4e:4c:e6:13:21:3e:82:73:97:44:6c:87:52:4e:13: 58:fc:b9:b8:09:2b:5e:61:3f:94:2a:98:83:b0:d4: 78:26:9e:3d:37:95:a2:15:ae:3c:32:a2:69:67:d7: cd:85:ff:10:57:af:cb:ee:d0:67:d4:ec:af:d3:af: 35:6a:f2:ff:cb:cf:99:02:82:88:4d:5c:7e:e5:49: 9d:1f:02:d8:e5:9a:18:84:7c:16:a7:d8:ad:9e:cb: b8:16:de:24:98:3f:2a:0c:41:82:5c:5f:0b:68:52: c6:06:ae:2e:39:a5:78:82:18:14:b8:f1:86:95:bb: 26:ec:5e:75:82:9c:45:a3:62:37:4c:05:ce:12:6f: 74:cb:5c:7f:d2:f2:16:89:90:02:35:a7:aa:39:25: 44:29:c6:62:39:07:31:19:59:79:23:25:d4:03:f0: 25:af:ba:ae:f6:14:a3:e7:a2:08:e7:e1:f5:bf:af: 6c:c8:0c:6c:db:3c:a0:1d:57:51:34:b4:3d:e1:e6: e1:14:f3:99:e9:26:c9:73:24:40:aa:04:5c:f6:74: 8e:fc:0c:a5:8f:ff:a9:b7:90:f6:19:f0:5c:87:b3: be:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:4C:BD:15:BD:B6:FF:D6:6E:4C:E7:9A:54:63:84:9F:E4:BD:92:67 X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:8e:bc:62:77:0f:c4:a9:d4:f2:9f:3b:9e:ec:93:b7:29:61: be:69:b2:27:23:33:c5:61:dd:f6:9a:d7:8d:fd:7f:d2:12:5a: 72:8e:ef:8a:73:a7:b3:a4:da:d2:94:4c:ed:eb:52:7a:34:f7: 1a:c4:96:66:77:f6:e3:46:24:ee:d0:da:c5:b0:97:77:03:94: 4c:55:e1:00:1f:39:50:39:f6:4b:43:f7:ab:23:4e:58:42:49: 58:36:ee:7d:87:ca:45:9c:67:00:ae:84:d2:5b:46:25:64:f0: 62:17:08:cc:08:18:06:fe:27:84:dd:f4:79:f8:e1:48:44:dd: 14:b4:51:b8:8e:52:3b:19:c7:f8:e1:79:c6:f5:02:46:69:55: 46:36:61:bd:a3:d8:4b:d8:91:c9:49:3a:15:1e:5a:dd:6a:26: 3d:b0:d7:b6:41:e0:7b:bb:8b:29:54:90:ee:37:05:3e:67:58: fd:52:8a:dd:13:02:cc:f7:ea:d9:e4:09:64:f2:b5:ce:f2:4c: b1:fe:c7:bc:78:dc:e5:b2:2d:d0:3c:a3:bd:b4:59:f5:6d:d5: 19:f8:6e:e2:04:4c:6c:dc:91:38:82:b1:c5:f7:fc:8f:e1:84: 7f:66:2b:c0:f5:2e:fa:51:d2:2c:42:1a:01:7d:7e:09:c7:10: 29:39:5d:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjUwNDI4MTg0MjE1WhcNMjUwNTA1MTg0MjE1WjAYMRYwFAYD VQQDEw02ODBmY2MwNy02YmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KOsxg9y6TfrT85nM5BoqRJRcAVqwC//1HIDodJOTOYTIT6Cc5dEbIdSThNY /Lm4CSteYT+UKpiDsNR4Jp49N5WiFa48MqJpZ9fNhf8QV6/L7tBn1Oyv0681avL/ y8+ZAoKITVx+5UmdHwLY5ZoYhHwWp9itnsu4Ft4kmD8qDEGCXF8LaFLGBq4uOaV4 ghgUuPGGlbsm7F51gpxFo2I3TAXOEm90y1x/0vIWiZACNaeqOSVEKcZiOQcxGVl5 IyXUA/Alr7qu9hSj56II5+H1v69syAxs2zygHVdRNLQ94ebhFPOZ6SbJcyRAqgRc 9nSO/Aylj/+pt5D2GfBch7O+TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZMvRW9 tv/WbkznmlRjhJ/kvZJnMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABjrxidw/EqdTynzue7JO3KWG+abInIzPFYd32mteN/X/SElpyju+K c6ezpNrSlEzt61J6NPcaxJZmd/bjRiTu0NrFsJd3A5RMVeEAHzlQOfZLQ/erI05Y QklYNu59h8pFnGcAroTSW0YlZPBiFwjMCBgG/ieE3fR5+OFIRN0UtFG4jlI7Gcf4 4XnG9QJGaVVGNmG9o9hL2JHJSToVHlrdaiY9sNe2QeB7u4spVJDuNwU+Z1j9Uord EwLM9+rZ5Alk8rXO8kyx/se8eNzlsi3QPKO9tFn1bdUZ+G7iBExs3JE4grHF9/yP 4YR/ZivA9S76UdIsQhoBfX4JxxApOV3y -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:59 2025 by rpki-client on console.sobornost.net