$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft File: AJko8LjNMO2gVjCoumdOdiqdKDM.mft (raw, json) Hash identifier: Bw/S/WcbafB+XpH425wRr+s30/oNmoxjnNJAGYOEHXI= Subject key identifier: 1C:A2:E4:32:C3:7E:31:05:6A:41:1E:44:84:A6:69:E0:59:00:10:55 Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft Manifest number: 0133 Signing time: Sun 27 Apr 2025 03:31:11 +0000 Manifest this update: Sun 27 Apr 2025 03:31:10 +0000 Manifest next update: Sun 04 May 2025 03:31:10 +0000 Files and hashes: 1: AJko8LjNMO2gVjCoumdOdiqdKDM.crl (hash: Z7o07CwYIvIrwA/q/rW4eyOVSKvzovcPUkHAYKDG8XY=) 2: EC56413A5B4B11EE9A031C81C4F9AE02.roa (hash: L51Q68tVx2XVC4mIdbJx6yL7uZTn+EZdlLwf/zTugIc=) 3: 7022F6EE5B4611EE9093F11EC4F9AE02.roa (hash: 4Ob8OZ5S2H/WLKjYmff77WuX2DfNbq1F3IyX9D66TLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: Apr 27 03:31:10 2025 GMT Not After : May 4 03:31:10 2025 GMT Subject: CN=680da4fe-9519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3f:ea:57:60:bb:f9:12:e4:b0:02:a0:8d:7d: 32:88:76:89:cd:52:0a:3d:45:bf:09:84:6f:cb:3c: f1:72:9a:1f:e8:5d:da:0b:f8:e9:97:82:52:ee:19: 4e:ac:57:bd:78:8b:f2:43:14:46:5e:a0:87:36:c1: 20:61:97:9e:67:dc:f6:a0:1f:8a:c0:2a:37:7e:b2: 64:1a:d1:5d:e6:6d:0a:ec:01:6b:e9:a9:2a:8b:1d: 9e:75:02:b2:ba:db:84:2e:3a:d3:ae:ce:9e:03:cc: 4e:e4:8c:69:90:38:d8:42:27:95:45:20:54:88:b4: a7:a0:eb:25:12:bd:ea:a2:da:f7:bc:c1:82:3e:57: d7:f1:ed:a0:e1:d6:1b:21:0b:79:a6:ab:3d:f3:ad: 6e:b9:da:d7:a3:50:7c:23:a0:7c:ea:67:fb:a1:4d: 23:13:cf:39:5f:b3:f2:40:82:85:f0:45:d6:dd:23: 61:89:03:22:ce:76:82:6f:01:f6:f4:b2:22:4a:4d: d9:c3:74:db:ce:f8:90:66:90:a6:f2:83:bb:b9:df: d1:3e:7a:cc:25:9b:64:f1:47:82:58:05:bc:1b:4a: cc:38:90:ab:4f:7c:87:89:76:e9:a3:06:a5:97:64: 2b:7a:de:39:ba:85:3e:ca:2e:2b:61:a7:47:54:83: 55:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A2:E4:32:C3:7E:31:05:6A:41:1E:44:84:A6:69:E0:59:00:10:55 X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e0:e0:30:8b:7a:da:e7:2d:4e:42:bf:ac:da:6b:a5:98:7d: fc:fa:57:7c:db:8c:50:c0:42:9f:bf:d2:54:f0:8f:6a:b4:f7: 3e:a4:c3:a5:76:b0:6b:96:5b:d6:0b:d1:1d:84:8a:4a:5d:19: ba:8e:08:8c:0b:20:90:04:28:56:cc:39:00:81:76:53:4a:65: df:60:d2:7a:e6:39:cf:9b:0b:27:e4:fe:c5:88:e9:bc:d1:37: cb:6d:d3:04:78:d5:b7:dd:45:9b:1b:39:9c:a0:68:f6:e1:d8: 28:e0:91:13:74:38:20:84:b1:e1:66:96:1d:b9:72:e0:f3:da: 84:0f:80:20:b6:98:0c:df:85:fc:88:50:00:f3:ee:26:9f:2a: 16:76:14:3e:af:ad:7a:96:cc:51:f2:74:e7:b0:08:a0:51:6c: 8f:af:69:97:cb:fc:0e:ee:4c:0f:18:17:3f:6b:25:95:7c:d5: b2:53:0b:8a:da:5f:d6:0b:43:a8:da:03:2e:a3:85:db:65:62: c3:b7:4f:8f:1d:50:0b:ca:b5:29:e7:53:f6:88:0d:ce:12:13: e9:2f:ae:72:b2:ae:35:af:99:e0:e8:9a:d0:70:fc:c1:e7:34: d5:93:40:76:eb:26:cb:dc:10:f9:3f:2e:ff:bf:ac:00:ec:4f: d8:18:a9:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjUwNDI3MDMzMTEwWhcNMjUwNTA0MDMzMTEwWjAYMRYwFAYD VQQDEw02ODBkYTRmZS05NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0D/qV2C7+RLksAKgjX0yiHaJzVIKPUW/CYRvyzzxcpof6F3aC/jpl4JS7hlO rFe9eIvyQxRGXqCHNsEgYZeeZ9z2oB+KwCo3frJkGtFd5m0K7AFr6akqix2edQKy utuELjrTrs6eA8xO5IxpkDjYQieVRSBUiLSnoOslEr3qotr3vMGCPlfX8e2g4dYb IQt5pqs9861uudrXo1B8I6B86mf7oU0jE885X7PyQIKF8EXW3SNhiQMiznaCbwH2 9LIiSk3Zw3TbzviQZpCm8oO7ud/RPnrMJZtk8UeCWAW8G0rMOJCrT3yHiXbpowal l2Qret45uoU+yi4rYadHVINV/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByi5DLD fjEFakEeRISmaeBZABBVMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9CMzc0OTcxMDVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1P MmdWakNvdW1kT2RpcWRLRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA14OAwi3ra5y1OQr+s2mulmH38+ld824xQwEKfv9JU8I9qtPc+pMOl drBrllvWC9EdhIpKXRm6jgiMCyCQBChWzDkAgXZTSmXfYNJ65jnPmwsn5P7FiOm8 0TfLbdMEeNW33UWbGzmcoGj24dgo4JETdDgghLHhZpYduXLg89qED4AgtpgM34X8 iFAA8+4mnyoWdhQ+r616lsxR8nTnsAigUWyPr2mXy/wO7kwPGBc/ayWVfNWyUwuK 2l/WC0Oo2gMuo4XbZWLDt0+PHVALyrUp51P2iA3OEhPpL65ysq41r5ng6JrQcPzB 5zTVk0B26ybL3BD5Py7/v6wA7E/YGKkY -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net