$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: uXa7KHiPatYnJrP5mIeOK3aaEpPYMYQyProyZ41GbVw= Subject key identifier: 3F:28:17:F7:05:FF:7F:FC:8E:F0:CE:87:5D:22:BE:FF:9E:8B:A2:AF Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: 95 Signing time: Sun 27 Apr 2025 05:14:19 +0000 Manifest this update: Sun 27 Apr 2025 05:14:19 +0000 Manifest next update: Sun 04 May 2025 05:14:19 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: bsDzIRWSgk2DAmsuQ2UrJQKE2x7iuThOQT2yUIyD9y0=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: fPKFaBZi29sZTZtbLlYUsELWzYxUxH7zVg+U9ijvWSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Validity Not Before: Apr 27 05:14:19 2025 GMT Not After : May 4 05:14:19 2025 GMT Subject: CN=680dbd2b-c82b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:6a:8a:f4:58:8c:64:a5:b0:25:11:f0:20: 2d:53:1d:40:08:39:94:dc:5c:a1:17:cf:9b:a2:4d: 26:4b:b1:3d:9a:ea:a6:12:1a:31:82:5f:e7:ef:4d: a4:d0:fa:39:b2:6a:e2:4d:43:00:c3:fa:06:d3:11: a5:22:7b:e5:9a:f8:8a:43:1f:06:05:ee:e1:6c:43: 70:85:bb:88:ef:e4:6f:f4:15:f7:69:56:c0:1d:68: 5f:46:ad:13:05:e3:a9:c5:ea:63:be:e8:c2:89:4b: da:0c:02:7c:52:de:8f:c0:59:a1:0b:c4:b7:17:3a: 11:94:4b:07:35:57:b4:0f:9f:f6:1b:d6:f0:ed:f7: a8:7f:2e:8b:48:bc:f4:ae:a5:ba:6a:bc:35:79:24: 8f:53:66:db:bb:39:e1:df:4f:67:3b:e0:44:87:00: 21:88:43:2d:98:17:c4:75:9e:bb:80:81:de:8e:76: 66:5c:e2:de:12:67:ab:a6:fa:21:67:75:22:04:3a: 26:3c:63:82:81:99:a9:80:4a:b5:0b:a3:3e:7d:55: db:0a:2e:ea:ae:81:17:70:a1:82:1c:1d:dc:a1:99: 2e:d6:14:c7:74:3c:7e:4f:f2:d4:6e:e9:d8:17:df: 0a:c0:b6:8c:e4:fa:81:22:10:d5:be:b7:d7:1e:ab: d6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:28:17:F7:05:FF:7F:FC:8E:F0:CE:87:5D:22:BE:FF:9E:8B:A2:AF X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:e4:27:7b:f4:08:07:d8:ed:db:e9:26:52:29:db:69:b8:88: f6:ec:f8:a8:ba:70:07:88:25:03:39:7d:8a:ce:56:ba:0c:ab: da:99:74:77:10:32:2f:61:11:29:76:e2:80:97:72:0e:f3:f3: 16:59:0a:e1:68:bc:07:5b:39:14:1c:3f:3d:b9:5f:a1:97:e1: a4:27:e8:c4:9c:50:42:7f:ec:9b:5c:60:dc:cb:12:8e:d7:88: 71:15:95:79:cf:42:53:18:0b:8f:44:09:67:43:09:93:2f:cc: 32:a1:b5:30:8b:5e:49:96:70:f2:99:c3:3b:93:73:f2:db:0d: f5:c0:80:58:3b:3b:56:23:6b:3d:48:cf:10:67:2f:06:ad:1b: 1c:99:15:4a:46:33:54:4c:7d:d2:33:44:4f:75:27:77:92:2e: d8:6c:ff:f6:65:28:e2:7a:f2:93:aa:2f:56:fc:b7:ca:7a:96: ee:c1:43:93:48:c7:d2:8d:7f:a5:ea:75:a0:71:09:41:19:c3: c8:e7:14:07:4a:c7:27:5d:e8:98:5d:f0:be:64:fb:53:fe:e5: 53:92:cc:c9:c9:0d:8a:fa:a7:8f:58:05:a3:cd:6d:ec:35:11: 60:ee:ad:2a:ea:19:67:bd:ba:23:20:0b:86:26:6e:f3:18:a2: f1:be:e5:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz NTQxNTY5MTMwHhcNMjUwNDI3MDUxNDE5WhcNMjUwNTA0MDUxNDE5WjAYMRYwFAYD VQQDEw02ODBkYmQyYi1jODJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskVqivRYjGSlsCUR8CAtUx1ACDmU3FyhF8+bok0mS7E9muqmEhoxgl/n702k 0Po5smriTUMAw/oG0xGlInvlmviKQx8GBe7hbENwhbuI7+Rv9BX3aVbAHWhfRq0T BeOpxepjvujCiUvaDAJ8Ut6PwFmhC8S3FzoRlEsHNVe0D5/2G9bw7feofy6LSLz0 rqW6arw1eSSPU2bbuznh309nO+BEhwAhiEMtmBfEdZ67gIHejnZmXOLeEmerpvoh Z3UiBDomPGOCgZmpgEq1C6M+fVXbCi7qroEXcKGCHB3coZku1hTHdDx+T/LUbunY F98KwLaM5PqBIhDVvrfXHqvWSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8oF/cF /3/8jvDOh10ivv+ei6KvMB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GM0NBNjE3MjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0 c3lGZDJqcmZzQlUxUVZhUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi5Cd79AgH2O3b6SZSKdtpuIj27PiounAHiCUDOX2Kzla6DKvamXR3 EDIvYREpduKAl3IO8/MWWQrhaLwHWzkUHD89uV+hl+GkJ+jEnFBCf+ybXGDcyxKO 14hxFZV5z0JTGAuPRAlnQwmTL8wyobUwi15JlnDymcM7k3Py2w31wIBYOztWI2s9 SM8QZy8GrRscmRVKRjNUTH3SM0RPdSd3ki7YbP/2ZSjievKTqi9W/LfKepbuwUOT SMfSjX+l6nWgcQlBGcPI5xQHSscnXeiYXfC+ZPtT/uVTkszJyQ2K+qePWAWjzW3s NRFg7q0q6hlnvbojIAuGJm7zGKLxvuWJ -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:56 2025 by rpki-client on console.sobornost.net