$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft File: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft (raw, json) Hash identifier: 57zBd44WX8cXbNmBHYXxOCjbBw0L0YuDmcw3RyHLQMs= Subject key identifier: 4B:FC:03:6E:BC:C9:8C:96:D2:90:B0:21:46:82:BB:D2:5C:17:E6:45 Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 1882 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft Manifest number: 187C Signing time: Mon 28 Apr 2025 15:54:39 +0000 Manifest this update: Mon 28 Apr 2025 15:54:39 +0000 Manifest next update: Mon 05 May 2025 15:54:39 +0000 Files and hashes: 1: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl (hash: dGbFt/Ak0PjX15ubpIAAM3J4IET0szn7hzNgTx+/LYs=) 2: AEA7C9C0818911EA81577016C4F9AE02.roa (hash: WuIJH5EmbtRmJmFCN//mGN8XhCDwfYBWN+2IltuHvZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6274 (0x1882) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Validity Not Before: Apr 28 15:54:39 2025 GMT Not After : May 5 15:54:39 2025 GMT Subject: CN=680fa4bf-c205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4d:0f:48:19:d1:a2:3f:88:34:e2:5a:74:e6: 54:ef:ef:31:dd:57:32:39:e1:22:8b:8d:28:51:11: 1b:3b:e3:d8:60:b2:ed:79:e4:f9:bf:2a:b2:c5:71: ce:3a:11:92:23:74:af:78:7e:2b:41:63:35:b4:97: 80:ed:28:b2:dd:9b:a8:93:b8:b4:8c:3e:25:e1:27: 54:2a:cf:9b:9d:fd:51:f1:3b:af:af:82:e1:0a:c3: 10:09:fc:c6:66:89:b4:cd:22:fd:47:13:3d:72:16: 7e:73:ac:68:46:1a:0e:ee:d0:e2:49:06:64:1a:fc: 18:1b:a2:06:b0:09:01:b7:65:77:5a:23:a9:97:ee: 97:de:68:84:10:f4:a1:20:06:85:e3:b3:9b:09:93: dd:6c:d1:e8:a2:06:b0:af:16:3d:93:f9:4e:9f:88: d2:e0:a8:f9:c5:b2:7d:f4:55:66:84:e7:b3:42:83: d4:01:21:98:a0:8a:a9:40:41:d3:b1:64:18:54:d5: 8b:36:a5:e8:d4:fa:6d:72:a6:c5:c2:d6:37:da:70: fb:84:b3:05:c1:8a:98:7b:a2:54:71:04:59:cd:fb: ae:89:bd:f7:18:d9:b2:72:c3:27:11:ed:55:89:be: e2:0e:8a:5d:fe:6d:b2:75:fd:69:b6:ed:58:3a:f8: 18:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FC:03:6E:BC:C9:8C:96:D2:90:B0:21:46:82:BB:D2:5C:17:E6:45 X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:44:50:91:a0:15:56:a1:3d:c1:82:63:6a:c7:28:48:de:f8: 6a:49:e2:7c:40:cb:fc:32:0a:d6:56:99:ec:40:b2:54:d9:ea: 0d:64:cf:02:53:4d:c8:93:b9:11:55:09:83:b7:86:0f:54:0c: 88:bc:a8:fe:bc:94:64:09:ec:33:a7:e6:dd:0d:eb:ad:2b:d0: 3b:cf:29:47:8c:48:f7:77:5e:e3:00:9a:0d:21:5b:14:34:c8: 4b:df:0d:b7:86:25:5f:dd:f6:03:c0:18:d2:dd:74:2d:15:27: ff:8e:7c:5e:e4:b9:3e:6c:23:ea:ac:88:a6:4c:bb:a9:8b:96: d4:be:ef:6a:8a:33:81:98:4d:ca:9d:15:97:f5:be:ef:ce:9c: 2a:dc:6c:9a:10:c0:e6:d7:1c:62:df:87:dc:44:19:b9:38:00: cb:71:aa:af:ec:52:30:40:4a:51:b5:ed:aa:d9:32:0b:3b:29: d1:3f:fc:ab:16:fb:42:86:32:90:0d:c7:f2:d7:46:dc:fb:2a: 4a:5d:24:e1:cd:7c:c9:60:1b:83:2b:94:c1:27:71:8d:f5:68: dc:a5:40:93:f9:dd:83:77:e5:e4:17:02:d8:81:ab:ad:fc:45: 1c:5c:df:21:eb:88:b9:be:45:5e:7f:e2:a5:44:6f:bd:ca:94: 9a:bf:fd:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjUwNDI4MTU1NDM5WhcNMjUwNTA1MTU1NDM5WjAYMRYwFAYD VQQDEw02ODBmYTRiZi1jMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk00PSBnRoj+INOJadOZU7+8x3VcyOeEii40oUREbO+PYYLLteeT5vyqyxXHO OhGSI3SveH4rQWM1tJeA7Siy3Zuok7i0jD4l4SdUKs+bnf1R8Tuvr4LhCsMQCfzG Zom0zSL9RxM9chZ+c6xoRhoO7tDiSQZkGvwYG6IGsAkBt2V3WiOpl+6X3miEEPSh IAaF47ObCZPdbNHoogawrxY9k/lOn4jS4Kj5xbJ99FVmhOezQoPUASGYoIqpQEHT sWQYVNWLNqXo1PptcqbFwtY32nD7hLMFwYqYe6JUcQRZzfuuib33GNmycsMnEe1V ib7iDopd/m2ydf1ptu1YOvgYKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEv8A268 yYyW0pCwIUaCu9JcF+ZFMB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81MEM2OTI5MjlEMjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhs Z3ZGYTNlN254b0poSEsybEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCERFCRoBVWoT3BgmNqxyhI3vhqSeJ8QMv8MgrWVpnsQLJU2eoNZM8C U03Ik7kRVQmDt4YPVAyIvKj+vJRkCewzp+bdDeutK9A7zylHjEj3d17jAJoNIVsU NMhL3w23hiVf3fYDwBjS3XQtFSf/jnxe5Lk+bCPqrIimTLupi5bUvu9qijOBmE3K nRWX9b7vzpwq3GyaEMDm1xxi34fcRBm5OADLcaqv7FIwQEpRte2q2TILOynRP/yr FvtChjKQDcfy10bc+ypKXSThzXzJYBuDK5TBJ3GN9WjcpUCT+d2Dd+XkFwLYgaut /EUcXN8h64i5vkVef+KlRG+9ypSav/1e -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net