$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: qBtqVMq27mpB7jYMavUPxKhHW07ucxVC6/T0dYtxszY= Subject key identifier: 1E:7A:61:CD:CD:2A:7F:F0:EC:EE:9B:AB:49:09:E2:92:14:46:5B:95 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 07DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 07CD Signing time: Sat 26 Apr 2025 20:48:38 +0000 Manifest this update: Sat 26 Apr 2025 20:48:38 +0000 Manifest next update: Sat 03 May 2025 20:48:38 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: Y87k/L43lAcmiShoou/eLkSfbuVDJRERp2Q93D15ON4=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:11:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2012 (0x7dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Apr 26 20:48:38 2025 GMT Not After : May 3 20:48:38 2025 GMT Subject: CN=680d46a6-3825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bb:99:80:d0:51:fc:cd:a1:e0:30:42:e5:f1: b3:b5:de:bc:29:c2:15:67:e5:9b:5e:cf:c1:8d:3c: f2:ca:50:ce:f9:52:31:b1:a8:6b:d1:8d:b6:a1:1c: 4b:2a:eb:2f:10:0f:6e:ed:e1:f7:a0:09:d8:38:1f: 29:d7:43:ac:be:a5:bf:a1:e7:f2:37:07:5e:37:f1: f8:61:36:df:0e:2f:44:92:7a:59:59:1e:b8:00:4d: aa:d3:4f:29:cf:ba:f8:68:5e:96:f6:84:84:6a:d3: 08:94:87:26:f8:97:46:44:40:97:36:25:c6:c4:61: 16:dc:0b:2f:0b:48:81:9d:03:0d:18:14:bb:c8:a3: 74:a6:d4:c7:a7:b0:21:a7:72:ff:76:33:16:9b:38: 66:ab:23:c6:a1:23:4e:62:3d:30:7e:0d:15:d5:74: 33:b0:61:52:88:a0:7d:aa:4e:24:8a:97:77:ee:7f: 70:9c:22:fd:81:13:29:16:b3:67:86:98:cb:5b:4c: 0b:7e:04:90:28:14:ff:fb:71:1f:5c:0f:53:69:39: 9d:ad:cb:e2:e8:40:bf:23:a7:cd:4b:1e:2c:3b:78: 14:89:ec:81:71:d8:b6:47:b6:a6:dd:e9:19:93:73: 4a:53:bb:3f:ca:f1:e8:20:56:26:86:89:2e:cc:55: 52:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:7A:61:CD:CD:2A:7F:F0:EC:EE:9B:AB:49:09:E2:92:14:46:5B:95 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:60:a3:f0:70:08:20:ed:4f:91:ae:01:dc:3d:49:71:9e:c6: 1f:2f:37:16:18:27:38:39:24:3a:67:2a:d8:26:24:59:cb:ea: b4:b4:aa:ac:ca:5b:d9:35:82:e4:49:d8:a6:8b:6e:fd:ab:da: ea:4c:d6:61:f9:ff:66:d0:9e:08:62:59:2f:bb:97:fb:80:cd: 84:8b:2f:22:4a:b4:e4:97:21:77:e5:e3:d2:f9:02:b7:97:7f: 3f:5f:09:74:9e:9c:32:97:84:a1:98:44:ed:eb:66:ba:8e:07: b4:54:e5:6b:cd:95:64:ec:89:59:5c:5b:ad:83:a8:f4:9e:0c: a4:7a:a1:8f:a0:03:9c:2b:1a:1a:34:fe:83:26:3d:37:b8:fc: 42:78:1e:98:8d:fd:e2:de:33:8b:23:3c:3f:62:87:36:ea:f5: af:75:fb:70:62:17:71:a0:25:9a:12:ab:7e:06:f3:f2:12:62: df:2c:71:6b:2c:9b:47:53:38:af:99:ea:c4:58:93:64:94:e0: 79:7e:9e:46:e1:c5:24:48:a7:2e:0b:df:86:90:48:33:dc:ac: 38:39:34:87:dc:e0:af:9d:b4:e7:7c:bd:5a:b9:08:51:1a:17: dd:11:0f:0a:b9:4b:fa:4a:18:a7:9f:1a:00:3f:15:2a:f5:d0: 72:54:3d:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUwNDI2MjA0ODM4WhcNMjUwNTAzMjA0ODM4WjAYMRYwFAYD VQQDEw02ODBkNDZhNi0zODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7uZgNBR/M2h4DBC5fGztd68KcIVZ+WbXs/BjTzyylDO+VIxsahr0Y22oRxL KusvEA9u7eH3oAnYOB8p10OsvqW/oefyNwdeN/H4YTbfDi9EknpZWR64AE2q008p z7r4aF6W9oSEatMIlIcm+JdGRECXNiXGxGEW3AsvC0iBnQMNGBS7yKN0ptTHp7Ah p3L/djMWmzhmqyPGoSNOYj0wfg0V1XQzsGFSiKB9qk4kipd37n9wnCL9gRMpFrNn hpjLW0wLfgSQKBT/+3EfXA9TaTmdrcvi6EC/I6fNSx4sO3gUieyBcdi2R7am3ekZ k3NKU7s/yvHoIFYmhokuzFVSrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB56Yc3N Kn/w7O6bq0kJ4pIURluVMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAYKPwcAgg7U+RrgHcPUlxnsYfLzcWGCc4OSQ6ZyrYJiRZy+q0tKqs ylvZNYLkSdimi279q9rqTNZh+f9m0J4IYlkvu5f7gM2Eiy8iSrTklyF35ePS+QK3 l38/Xwl0npwyl4ShmETt62a6jge0VOVrzZVk7IlZXFutg6j0ngykeqGPoAOcKxoa NP6DJj03uPxCeB6Yjf3i3jOLIzw/Yoc26vWvdftwYhdxoCWaEqt+BvPyEmLfLHFr LJtHUzivmerEWJNklOB5fp5G4cUkSKcuC9+GkEgz3Kw4OTSH3OCvnbTnfL1auQhR GhfdEQ8KuUv6ShinnxoAPxUq9dByVD0o -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:11 2025 by rpki-client on console.sobornost.net