$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft File: oWw_hyQag9GqVIDUKnT099HOXS4.mft (raw, json) Hash identifier: rTqaZKnxe/+fAfHUjOsc4SG9cJ9tqlFXhNPvO3M5a28= Subject key identifier: 5C:0B:6A:FA:EA:39:43:69:86:AE:AD:4A:3D:2E:C1:6F:20:BB:3F:05 Authority key identifier: A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E Certificate issuer: /CN=A91CE620/serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft Manifest number: 0106 Signing time: Sun 27 Apr 2025 03:55:41 +0000 Manifest this update: Sun 27 Apr 2025 03:55:41 +0000 Manifest next update: Sun 04 May 2025 03:55:41 +0000 Files and hashes: 1: oWw_hyQag9GqVIDUKnT099HOXS4.crl (hash: q7P1fOEeN6UR9N1DEuY4PlTOjOyI86cvnY3A+bi1rLY=) 2: 1960E628919111EE9A03A712C4F9AE02.roa (hash: 9Znpr7cUcbnkoOK/tzYENSEz+mUbSse0tP+On0Rl+NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE620, serialNumber=A16C3F87241A83D1AA5480D42A74F4F7D1CE5D2E Validity Not Before: Apr 27 03:55:41 2025 GMT Not After : May 4 03:55:41 2025 GMT Subject: CN=680daabd-5dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:db:08:ee:c3:13:49:02:dd:44:61:6f:57:31: 56:6a:04:74:8f:b8:ba:bb:bb:ec:75:01:b2:be:ca: ba:e2:e1:15:94:61:46:94:e2:28:f9:ee:f3:35:f3: 4c:5b:5b:d8:2d:b8:f3:4a:32:fb:7e:8a:fc:fb:b5: 64:69:0e:e5:00:3e:29:08:c7:66:90:39:b7:7f:97: b5:c5:2d:36:53:4c:c8:7d:93:53:9c:1d:df:88:e8: 19:a5:d3:ee:62:64:0d:3d:3f:c1:84:ac:e5:72:3f: 33:0c:9f:8f:2f:58:06:8a:e8:cf:0f:28:1d:f0:29: a4:04:b3:e5:14:b4:e0:27:af:15:05:14:fc:f6:34: 09:b4:1a:c9:ee:a3:d6:a1:12:7c:7a:8c:b4:5c:b4: 46:fd:79:b7:83:ba:89:2b:a5:e9:70:70:4c:1a:9f: 58:ac:9e:47:64:3b:78:c5:3e:69:86:52:69:31:a1: 82:6e:fe:1b:66:7c:65:30:4d:46:15:91:02:85:6b: eb:fe:53:c7:df:f8:c4:0e:05:f0:4a:c3:5f:ca:e9: 3e:50:14:c3:94:86:62:a9:db:c4:2a:7b:cb:15:69: f7:e6:b1:8e:6a:15:e5:d0:ac:71:6e:23:be:d7:c5: dd:31:b9:25:15:08:bd:bb:db:52:71:74:a6:03:08: 48:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0B:6A:FA:EA:39:43:69:86:AE:AD:4A:3D:2E:C1:6F:20:BB:3F:05 X509v3 Authority Key Identifier: keyid:A1:6C:3F:87:24:1A:83:D1:AA:54:80:D4:2A:74:F4:F7:D1:CE:5D:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oWw_hyQag9GqVIDUKnT099HOXS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE620/3AA59ADC919011EE87FEE00BC4F9AE02/oWw_hyQag9GqVIDUKnT099HOXS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c2:e0:56:3a:88:96:d3:3c:19:d8:0d:fd:05:52:32:d7:ba: 01:74:ba:00:65:af:ee:1f:f3:be:eb:e6:53:b5:c8:c9:b4:51: 59:06:71:ac:78:4f:16:78:14:7e:67:40:e6:f3:9e:b9:88:af: 04:0c:19:8c:8b:c3:62:99:6a:36:b9:0b:f7:11:28:6b:71:ce: 50:bf:fb:c3:66:ac:23:b9:b5:9d:05:a7:e3:a1:e7:86:ab:ad: 9f:29:ec:47:c3:37:78:4f:4a:b2:2a:63:50:34:60:7b:5f:d2: b8:94:9b:be:a3:36:34:43:87:93:00:ff:86:ee:a7:81:a0:95: 74:82:54:3f:51:f2:0c:df:f6:16:62:c1:b8:0a:41:47:28:5c: 91:22:af:8c:25:77:34:46:6e:26:7b:db:e3:60:ac:8d:c6:99: cc:bd:b5:50:9e:7e:19:76:53:00:2a:37:e8:39:d8:43:a5:f0: f1:20:1b:76:fb:c4:45:5f:70:a6:ca:48:81:ca:c5:d3:f8:3c: ab:2b:91:55:cf:9f:80:5d:54:be:36:fd:5d:06:18:6f:b8:df: fc:9d:f8:75:1c:bc:24:32:1d:03:da:24:2b:7b:ad:2d:2d:ee: b7:5c:d2:4f:a5:af:89:70:30:a3:ec:d1:fb:d0:74:69:b5:95: d5:fe:02:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2MjAxMTAvBgNVBAUTKEExNkMzRjg3MjQxQTgzRDFBQTU0ODBENDJBNzRGNEY3 RDFDRTVEMkUwHhcNMjUwNDI3MDM1NTQxWhcNMjUwNTA0MDM1NTQxWjAYMRYwFAYD VQQDEw02ODBkYWFiZC01ZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NsI7sMTSQLdRGFvVzFWagR0j7i6u7vsdQGyvsq64uEVlGFGlOIo+e7zNfNM W1vYLbjzSjL7for8+7VkaQ7lAD4pCMdmkDm3f5e1xS02U0zIfZNTnB3fiOgZpdPu YmQNPT/BhKzlcj8zDJ+PL1gGiujPDygd8CmkBLPlFLTgJ68VBRT89jQJtBrJ7qPW oRJ8eoy0XLRG/Xm3g7qJK6XpcHBMGp9YrJ5HZDt4xT5phlJpMaGCbv4bZnxlME1G FZEChWvr/lPH3/jEDgXwSsNfyuk+UBTDlIZiqdvEKnvLFWn35rGOahXl0KxxbiO+ 18XdMbklFQi9u9tScXSmAwhIhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwLavrq OUNphq6tSj0uwW8guz8FMB8GA1UdIwQYMBaAFKFsP4ckGoPRqlSA1Cp09PfRzl0u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTYyMC8zQUE1OUFEQzkx OTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5R3FWSURVS25UMDk5SE9Y UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29Xd19oeVFhZzlHcVZJRFVLblQwOTlIT1hTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTYyMC8zQUE1OUFEQzkxOTAxMUVFODdGRUUwMEJDNEY5QUUwMi9vV3dfaHlRYWc5 R3FWSURVS25UMDk5SE9YUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqwuBWOoiW0zwZ2A39BVIy17oBdLoAZa/uH/O+6+ZTtcjJtFFZBnGs eE8WeBR+Z0Dm8565iK8EDBmMi8NimWo2uQv3EShrcc5Qv/vDZqwjubWdBafjoeeG q62fKexHwzd4T0qyKmNQNGB7X9K4lJu+ozY0Q4eTAP+G7qeBoJV0glQ/UfIM3/YW YsG4CkFHKFyRIq+MJXc0Rm4me9vjYKyNxpnMvbVQnn4ZdlMAKjfoOdhDpfDxIBt2 +8RFX3CmykiBysXT+DyrK5FVz5+AXVS+Nv1dBhhvuN/8nfh1HLwkMh0D2iQre60t Le63XNJPpa+JcDCj7NH70HRptZXV/gI2 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net