$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft File: MGSQ23RcleyGYUmf_IJkZnumf4o.mft (raw, json) Hash identifier: Nz08x3gU12OgVlYe5hZ9Y/eS8uG4ooh9X0Q9sRFMNKw= Subject key identifier: 0B:60:4F:8A:48:E3:74:2F:DA:7B:2D:A5:47:4D:5E:CA:CD:09:5B:F9 Authority key identifier: 30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A Certificate issuer: /CN=A91CE7A4/serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft Manifest number: 3B Signing time: Fri 25 Apr 2025 06:31:13 +0000 Manifest this update: Fri 25 Apr 2025 06:31:12 +0000 Manifest next update: Fri 02 May 2025 06:31:12 +0000 Files and hashes: 1: MGSQ23RcleyGYUmf_IJkZnumf4o.crl (hash: SPd69JVzLsuorXJFmnSvSdq5RGkvzdShfUzUJ/P7QTM=) 2: 19C407C0CC1011EFBC7E0050C4F9AE02.roa (hash: 0uD06YfXP8jJiypkQtgg/+0Dg/DOv6s8Gpjo5ybB4rE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE7A4, serialNumber=306490DB745C95EC8661499FFC8264667BA67F8A Validity Not Before: Apr 25 06:31:12 2025 GMT Not After : May 2 06:31:12 2025 GMT Subject: CN=680b2c31-eb09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6a:41:c4:95:99:2e:c6:ce:35:65:1f:41:21: ab:2d:ad:91:9c:01:f4:f9:40:b0:84:53:9a:77:ab: b1:fd:97:2c:a1:34:20:b1:af:73:4b:3a:fe:40:ba: 11:c6:83:93:1b:d3:38:be:a3:08:f9:a9:69:ab:9d: 68:99:05:06:57:74:02:2a:ba:bb:1f:48:35:f3:d1: 59:81:ea:35:7d:00:48:50:df:9b:b5:f6:d8:18:ca: 09:73:d9:52:37:6b:b5:58:e4:a3:d8:37:5d:93:32: 87:cd:d0:1d:f2:68:b4:0b:a4:b5:76:81:c2:f7:c0: a2:c9:b0:63:bc:af:10:73:89:cf:22:c9:70:e7:03: 9c:53:05:51:7e:bb:1d:f0:51:21:e4:a1:6d:30:3b: 2f:33:4c:ed:56:ae:42:3e:95:4d:79:b0:3d:c3:70: 73:32:32:38:0f:d8:d7:cb:f3:a1:cb:c3:8a:44:c5: 84:25:9c:bd:8a:46:86:fc:af:51:79:c7:5a:00:5d: ae:38:3f:56:fc:f2:bf:3f:db:d4:52:9b:a5:23:21: 2a:ca:2e:55:4e:47:ff:61:94:06:c7:6d:8e:c2:aa: 97:de:c7:fd:76:89:aa:a3:8d:2e:ae:00:85:51:bd: 09:05:bd:a6:13:ac:a6:b4:22:48:8f:ea:bd:68:ad: dd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:60:4F:8A:48:E3:74:2F:DA:7B:2D:A5:47:4D:5E:CA:CD:09:5B:F9 X509v3 Authority Key Identifier: keyid:30:64:90:DB:74:5C:95:EC:86:61:49:9F:FC:82:64:66:7B:A6:7F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGSQ23RcleyGYUmf_IJkZnumf4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE7A4/B890DFD2CC0F11EFA278FD4CC4F9AE02/MGSQ23RcleyGYUmf_IJkZnumf4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:88:25:d3:78:cd:97:12:44:7d:0e:e0:9c:27:21:10:b5:1d: 7e:9d:f8:e7:d6:47:8e:0c:93:52:7d:f6:76:ed:c7:e5:2f:7e: 55:1e:1e:7c:e4:93:f1:2a:c6:31:b9:70:f4:df:ce:3c:c0:d0: 89:0d:1a:10:98:15:c4:b0:8f:3b:e3:06:55:d5:88:6b:f9:9e: 98:ad:62:ba:35:e9:20:80:de:bb:bb:7b:19:6d:18:1d:89:db: 6b:d8:d5:39:a9:e3:7c:ee:2f:ec:44:49:33:63:c2:df:b1:68: 35:3f:3b:d1:43:36:1e:6b:1b:b6:3d:fc:58:0a:17:3a:76:ff: 42:91:1f:df:c9:16:fd:29:ef:4f:a9:b3:62:1f:11:80:a9:f9: b9:2f:59:7a:fe:a3:72:1c:34:67:5d:c0:c3:6f:31:76:b1:e2: 38:a2:5c:b9:80:68:4b:70:df:75:db:78:35:95:4f:ad:26:27: c9:df:d5:90:16:89:40:74:9f:22:4b:6a:87:16:be:b6:a3:b7: 2b:6c:8e:36:ab:14:b2:24:86:c4:7a:7a:46:df:08:ee:5b:aa: 14:57:f8:9c:46:46:0a:3f:21:ea:b1:9d:78:1f:5e:d1:cf:21: 2a:99:c8:b1:c8:ab:aa:21:96:af:8e:6e:68:2e:80:76:a8:c2: f2:2b:89:7b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTdBNDExMC8GA1UEBRMoMzA2NDkwREI3NDVDOTVFQzg2NjE0OTlGRkM4MjY0NjY3 QkE2N0Y4QTAeFw0yNTA0MjUwNjMxMTJaFw0yNTA1MDIwNjMxMTJaMBgxFjAUBgNV BAMTDTY4MGIyYzMxLWViMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaakHElZkuxs41ZR9BIastrZGcAfT5QLCEU5p3q7H9lyyhNCCxr3NLOv5AuhHG g5Mb0zi+owj5qWmrnWiZBQZXdAIqursfSDXz0VmB6jV9AEhQ35u19tgYyglz2VI3 a7VY5KPYN12TMofN0B3yaLQLpLV2gcL3wKLJsGO8rxBzic8iyXDnA5xTBVF+ux3w USHkoW0wOy8zTO1WrkI+lU15sD3DcHMyMjgP2NfL86HLw4pExYQlnL2KRob8r1F5 x1oAXa44P1b88r8/29RSm6UjISrKLlVOR/9hlAbHbY7Cqpfex/12iaqjjS6uAIVR vQkFvaYTrKa0IkiP6r1ord3VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC2BPikjj dC/aey2lR01eys0JW/kwHwYDVR0jBBgwFoAUMGSQ23RcleyGYUmf/IJkZnumf4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFN0E0L0I4OTBERkQyQ0Mw RjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5R1lVbWZfSUprWm51bWY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTUdTUTIzUmNsZXlHWVVtZl9JSmtabnVtZjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF N0E0L0I4OTBERkQyQ0MwRjExRUZBMjc4RkQ0Q0M0RjlBRTAyL01HU1EyM1JjbGV5 R1lVbWZfSUprWm51bWY0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC+IJdN4zZcSRH0O4JwnIRC1HX6d+OfWR44Mk1J99nbtx+UvflUeHnzk k/EqxjG5cPTfzjzA0IkNGhCYFcSwjzvjBlXViGv5npitYro16SCA3ru7exltGB2J 22vY1Tmp43zuL+xESTNjwt+xaDU/O9FDNh5rG7Y9/FgKFzp2/0KRH9/JFv0p70+p s2IfEYCp+bkvWXr+o3IcNGddwMNvMXax4jiiXLmAaEtw33XbeDWVT60mJ8nf1ZAW iUB0nyJLaocWvrajtytsjjarFLIkhsR6ekbfCO5bqhRX+JxGRgo/IeqxnXgfXtHP ISqZyLHIq6ohlq+ObmgugHaowvIriXs= -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:11 2025 by rpki-client on console.sobornost.net