$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft File: MCcwgVkVGUGrc0xyBhfff9zCQQw.mft (raw, json) Hash identifier: YGVmX3l4UndZTnMWH5uMV7Vov16oUQNOcYoz26RpF6I= Subject key identifier: 36:E8:AF:FB:8B:69:86:80:1C:23:0D:27:B9:FA:CE:BE:E9:62:2F:27 Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 0FA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft Manifest number: 0F94 Signing time: Sat 26 Apr 2025 17:27:37 +0000 Manifest this update: Sat 26 Apr 2025 17:27:36 +0000 Manifest next update: Sat 03 May 2025 17:27:36 +0000 Files and hashes: 1: MCcwgVkVGUGrc0xyBhfff9zCQQw.crl (hash: wRHGF3zKa7kdcKL0zaVz5jR1l6TLjackW3F8jO+KXKU=) 2: 1777F060A7CE11E980B87114C4F9AE02.roa (hash: i64vfdji890ANCl5YMpyOV8jWap61B1TOBtseX1k9yo=) 3: D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa (hash: lfk+4Thjte/8mxDau4fVVC5BnCAQU527/fFvJ+PCi+M=) 4: 35A169488D8611E9B1106E6FC4F9AE02.roa (hash: N5DA+WC/u1NASlrDagzy8orn68GI1lN08P1lx5z1UXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4009 (0xfa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8, serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: Apr 26 17:27:36 2025 GMT Not After : May 3 17:27:36 2025 GMT Subject: CN=680d1788-5600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bf:40:6b:fb:23:98:b7:82:fe:83:6e:c2:22: 56:a2:87:7e:82:2b:58:74:f3:bc:19:23:1a:6b:27: 3e:76:b3:2b:8d:7e:c5:ed:b6:4d:5e:78:b8:62:6d: e6:c6:19:63:4f:a9:9d:4f:8f:9b:e9:cb:6d:d7:52: 71:35:9a:5d:96:c4:3d:30:04:2c:90:36:5b:dc:72: 90:01:74:bc:80:75:e6:18:6f:2b:e5:80:a8:7c:ae: bf:df:2e:39:6d:e4:76:9c:44:cb:21:62:64:8a:51: c2:c6:b6:01:58:96:59:01:1c:48:bb:d2:b1:11:d9: 10:6e:1d:31:d0:ea:ba:45:e7:48:c9:f0:e4:a4:da: ff:8d:00:35:84:1e:b0:89:55:e0:77:1c:ef:84:d1: a8:9f:e1:d9:92:9e:f4:04:e6:21:f9:fa:f2:e4:63: 57:9d:ca:75:5b:e5:8b:d9:3a:d8:6a:e9:4c:c9:1c: c9:f3:e0:a0:7a:36:89:f4:09:8e:57:98:75:5e:4c: 27:71:5d:5d:7a:bd:2e:96:07:6d:d2:01:94:b4:b4: f7:9d:48:13:9f:a3:ce:ba:ee:1e:40:e5:ac:49:b0: 12:24:50:4e:8f:f3:58:03:79:d4:6c:07:10:4c:00: d2:77:bf:ef:d8:bd:ea:54:f5:e5:20:57:e6:44:3f: 1e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E8:AF:FB:8B:69:86:80:1C:23:0D:27:B9:FA:CE:BE:E9:62:2F:27 X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3e:27:ed:79:0e:4e:12:bd:15:ff:a1:9f:49:0b:59:bd:e5: fb:74:0f:31:49:e3:66:89:71:80:36:e2:a0:9f:40:af:70:cf: 29:5b:07:a5:3e:8d:3a:f4:74:61:1f:0c:2f:5f:71:23:cb:88: cd:a0:c7:07:6a:16:b6:76:77:47:15:20:b6:80:c1:82:65:b8: 4e:7b:59:6b:5f:d5:ef:76:9c:8f:37:1a:15:b7:a4:b0:5c:74: d4:11:23:78:bf:57:07:6c:09:72:0d:c2:30:b9:bd:9d:15:0d: 3e:4e:9f:69:57:e1:1a:31:46:9a:dd:5d:53:7a:52:b1:b9:4e: 05:68:e0:0c:eb:c4:0f:c4:7a:91:b0:b5:ea:53:74:74:7a:16: 39:72:bf:25:f1:36:a9:a7:ed:5c:cf:cf:7e:9b:e4:0c:20:1c: 79:da:c6:dc:dc:17:f5:5a:71:f5:00:aa:6d:84:ec:82:8d:01: a1:b2:8d:52:ab:5e:20:05:63:24:c2:f0:50:ed:1b:65:c0:8b: ce:2d:09:f3:b7:df:79:70:44:b9:43:ec:f2:49:b2:0c:d1:f5: 97:66:e3:66:ce:75:0b:c0:d5:6a:7d:30:77:3c:1b:c3:e1:b2: 72:23:d1:13:e7:53:96:41:f1:e3:72:79:1b:b3:6f:00:a1:3c: 4c:a0:8b:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjUwNDI2MTcyNzM2WhcNMjUwNTAzMTcyNzM2WjAYMRYwFAYD VQQDEw02ODBkMTc4OC01NjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzr9Aa/sjmLeC/oNuwiJWood+gitYdPO8GSMaayc+drMrjX7F7bZNXni4Ym3m xhljT6mdT4+b6ctt11JxNZpdlsQ9MAQskDZb3HKQAXS8gHXmGG8r5YCofK6/3y45 beR2nETLIWJkilHCxrYBWJZZARxIu9KxEdkQbh0x0Oq6RedIyfDkpNr/jQA1hB6w iVXgdxzvhNGon+HZkp70BOYh+fry5GNXncp1W+WL2TrYaulMyRzJ8+CgejaJ9AmO V5h1XkwncV1der0ulgdt0gGUtLT3nUgTn6POuu4eQOWsSbASJFBOj/NYA3nUbAcQ TADSd7/v2L3qVPXlIFfmRD8ePQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbor/uL aYaAHCMNJ7n6zr7pYi8nMB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTdFOC9GMTZFMTg1NjVDNTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdV R3JjMHh5QmhmZmY5ekNRUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMPifteQ5OEr0V/6GfSQtZveX7dA8xSeNmiXGANuKgn0CvcM8pWwel Po069HRhHwwvX3Ejy4jNoMcHaha2dndHFSC2gMGCZbhOe1lrX9XvdpyPNxoVt6Sw XHTUESN4v1cHbAlyDcIwub2dFQ0+Tp9pV+EaMUaa3V1TelKxuU4FaOAM68QPxHqR sLXqU3R0ehY5cr8l8Tapp+1cz89+m+QMIBx52sbc3Bf1WnH1AKpthOyCjQGhso1S q14gBWMkwvBQ7RtlwIvOLQnzt995cES5Q+zySbIM0fWXZuNmznULwNVqfTB3PBvD 4bJyI9ET51OWQfHjcnkbs28AoTxMoIu6 -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:02 2025 by rpki-client on console.sobornost.net