$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: KCzuLcIUW6pIEUmkrdtcq7yiFagLlc7v6m+D41OlYNQ= Subject key identifier: 48:8D:37:9B:07:58:36:37:02:81:C5:84:E3:83:8D:57:5F:62:5B:94 Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0B50 Signing time: Sat 26 Apr 2025 18:56:48 +0000 Manifest this update: Sat 26 Apr 2025 18:56:47 +0000 Manifest next update: Sat 03 May 2025 18:56:47 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: ghYCxWJkJfDNREUDNLtISruCoLfF9NM3Z4DTVQ7qcm0=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: dZqvR0xqd13+DRj0vsCnaFuawrKyEqpLXk81wck6o3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003, serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Apr 26 18:56:47 2025 GMT Not After : May 3 18:56:47 2025 GMT Subject: CN=680d2c70-bdd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:57:1b:c1:6b:37:74:91:4a:87:84:4d:4e:3d: e9:78:27:34:ca:f3:f5:23:5b:50:9f:0d:09:7c:e2: 55:72:b5:41:3a:d9:71:aa:e5:06:58:71:a8:09:71: e8:c8:47:30:09:51:e4:86:37:65:f4:5f:81:92:05: 95:48:7e:c0:d6:ab:d8:40:97:7f:95:23:88:7b:38: 5d:7f:d1:60:e0:ad:65:a8:c7:fc:57:d9:2f:98:e8: 66:2f:50:39:6d:e3:c3:81:f3:49:ac:3b:24:04:19: d5:79:a3:91:32:a4:a0:10:23:4c:10:44:37:36:03: 05:5b:da:d0:37:29:e9:ea:ab:fa:20:d1:67:c0:16: 10:c2:0d:cf:b5:5d:49:7f:3f:b6:77:83:f2:62:8d: 3d:a6:33:6b:ed:dd:75:49:ed:fe:c1:a7:f0:93:e1: 66:12:1e:22:11:cc:59:5b:cb:01:3f:9f:57:f9:f8: ae:81:0d:6d:d2:28:d2:da:f2:bf:46:32:ad:57:d2: f4:91:89:ab:8a:2f:ec:c0:96:1d:fe:e0:f9:de:e9: 22:9d:74:1c:4b:af:d4:d6:a4:55:89:c2:60:35:51: 33:42:b6:c6:00:27:5d:68:0a:3c:13:54:73:7f:4b: 5c:3c:5c:87:64:2c:6b:ca:13:ef:75:e6:8f:55:3e: b5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:8D:37:9B:07:58:36:37:02:81:C5:84:E3:83:8D:57:5F:62:5B:94 X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:cc:9c:b9:46:f3:98:6c:0b:4f:3e:7d:76:69:30:d2:5c:42: b6:85:80:6f:9e:13:8b:e0:c6:dc:5a:32:1e:ee:c5:17:0a:7b: dc:de:29:53:96:cf:a3:b6:c2:1f:ce:b7:c8:30:2b:d5:3b:f4: 47:93:97:cc:e0:b3:bc:e0:ae:62:33:47:ca:69:a9:c0:59:cb: 44:ed:36:d8:84:b3:b9:5e:b8:90:3b:9e:c9:ee:eb:37:66:43: 80:89:7b:87:64:36:0c:86:b5:7e:dd:b5:56:4c:e4:d8:ca:a4: a2:91:6c:db:e1:6e:88:5d:7c:6d:1c:fb:b2:36:4a:69:c3:7e: f1:01:71:4b:1e:1a:f8:64:62:b3:90:47:94:36:ec:1d:eb:e5: 8c:93:e9:c1:3c:d0:92:64:96:e8:07:03:c1:a6:e0:c7:57:97: 9b:e7:ef:e1:87:bd:20:f7:fc:10:96:b0:fd:7f:67:f6:7f:94: dc:f8:f6:f5:83:d6:3e:44:fe:cb:99:91:cb:ae:e8:b6:1a:ca: 2d:b7:69:97:98:46:98:08:b0:5e:51:ec:8f:7d:ba:62:86:c6: 4e:d0:e1:cc:42:85:8a:e0:3c:1c:7a:94:20:9c:2e:14:4d:39: 9c:a8:95:a0:63:c4:fe:eb:48:d7:4b:86:01:3c:87:0b:52:6d: 39:65:b9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjUwNDI2MTg1NjQ3WhcNMjUwNTAzMTg1NjQ3WjAYMRYwFAYD VQQDEw02ODBkMmM3MC1iZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFcbwWs3dJFKh4RNTj3peCc0yvP1I1tQnw0JfOJVcrVBOtlxquUGWHGoCXHo yEcwCVHkhjdl9F+BkgWVSH7A1qvYQJd/lSOIezhdf9Fg4K1lqMf8V9kvmOhmL1A5 bePDgfNJrDskBBnVeaORMqSgECNMEEQ3NgMFW9rQNynp6qv6INFnwBYQwg3PtV1J fz+2d4PyYo09pjNr7d11Se3+wafwk+FmEh4iEcxZW8sBP59X+fiugQ1t0ijS2vK/ RjKtV9L0kYmrii/swJYd/uD53ukinXQcS6/U1qRVicJgNVEzQrbGACddaAo8E1Rz f0tcPFyHZCxryhPvdeaPVT61RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiNN5sH WDY3AoHFhOODjVdfYluUMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtzJy5RvOYbAtPPn12aTDSXEK2hYBvnhOL4MbcWjIe7sUXCnvc3ilT ls+jtsIfzrfIMCvVO/RHk5fM4LO84K5iM0fKaanAWctE7TbYhLO5XriQO57J7us3 ZkOAiXuHZDYMhrV+3bVWTOTYyqSikWzb4W6IXXxtHPuyNkppw37xAXFLHhr4ZGKz kEeUNuwd6+WMk+nBPNCSZJboBwPBpuDHV5eb5+/hh70g9/wQlrD9f2f2f5Tc+Pb1 g9Y+RP7LmZHLrui2Gsott2mXmEaYCLBeUeyPfbpihsZO0OHMQoWK4DwcepQgnC4U TTmcqJWgY8T+60jXS4YBPIcLUm05Zblz -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:02 2025 by rpki-client on console.sobornost.net