$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: HZmSGIWpm4gYfSV4m6HVZaogdJwpLI4DQ8S1Hz+nNlg= Subject key identifier: 15:5A:FF:47:7E:03:62:89:19:CC:DB:8B:61:8C:D3:50:0C:FF:6D:DA Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: 86 Signing time: Sun 27 Apr 2025 05:22:46 +0000 Manifest this update: Sun 27 Apr 2025 05:22:45 +0000 Manifest next update: Sun 04 May 2025 05:22:45 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: 70KGtp1bJ+LcmA4dnXnmz9FoFsl7P6A24CqDbVDAOTk=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: dP/ms8awhu5P0L5X1kq3UaHwPpJfEdsfRvw8IFgrpFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Apr 27 05:22:45 2025 GMT Not After : May 4 05:22:45 2025 GMT Subject: CN=680dbf25-a5de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:0d:bb:8b:5a:ec:f4:7d:21:0a:79:a8:4b:67: 6c:54:79:e5:84:e1:cd:b9:4a:a5:01:a2:b8:2d:6b: b6:22:8a:19:c8:5c:4a:3a:56:f4:0b:b0:87:a0:d1: ce:e6:42:54:ce:ad:6e:3f:5d:40:d3:4c:bb:90:1b: d9:78:bb:78:c7:17:9a:bd:94:73:9f:e1:fc:29:37: 5c:fe:c2:21:71:0c:32:cf:4a:19:ca:c8:b8:52:27: a6:53:ac:66:c0:13:69:85:82:c1:69:ff:78:5b:6d: e0:7f:12:f2:48:27:48:3f:cd:51:af:3e:d3:59:56: 58:fd:c8:e1:65:e1:9e:f1:26:1e:b5:70:3e:80:ce: 55:e4:a0:36:36:02:d5:1e:0d:15:58:c9:51:28:e2: 1a:59:16:6d:74:7e:c6:f3:4c:14:7f:84:b6:5d:4c: f1:bb:f5:19:f7:05:86:70:5f:bf:20:47:de:7d:76: 21:38:7c:c3:b4:32:a3:2a:93:21:ce:0c:fc:6b:dc: f7:ad:37:b7:54:fc:e2:eb:6b:8b:53:f2:dc:95:82: 08:10:d6:8b:48:b5:2b:69:45:c3:46:c7:3b:f1:97: c7:59:90:86:dc:27:e1:2f:98:6e:2a:d5:4d:75:ec: 31:d5:20:66:10:f7:9e:59:f6:db:e1:33:45:6e:4e: f8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:5A:FF:47:7E:03:62:89:19:CC:DB:8B:61:8C:D3:50:0C:FF:6D:DA X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:bb:18:0d:45:a3:b7:76:ab:3d:61:1d:4b:01:49:83:4c:e8: 86:4e:dd:b1:ec:8d:97:75:0e:97:8a:61:3f:fa:94:34:b5:0e: a4:75:e5:7d:9c:0a:32:e3:22:46:67:c2:da:18:ea:7c:3e:d0: 10:ae:d0:13:96:ea:65:39:a7:15:a8:37:5a:40:a0:6c:45:da: 58:c6:fc:f3:70:29:cb:26:98:51:86:7a:4e:35:a9:26:fd:b6: ad:4c:39:57:16:e4:98:6d:62:2a:ec:a3:0b:c9:6e:4b:01:e3: 1a:75:f9:71:07:eb:af:4d:8e:bd:22:d1:0b:94:c3:2e:81:be: a2:8a:93:fd:9e:5a:15:ba:5d:09:1c:20:91:89:6f:6c:a7:9f: d6:4e:a1:3b:93:21:44:08:19:ed:dc:21:c0:e7:d2:6e:c3:42: ce:a8:35:f7:3f:d2:24:3b:86:ba:55:97:f0:da:9c:ed:76:d9: 0b:6e:5f:44:6f:28:a6:39:2d:37:ab:80:2d:f3:9d:54:1e:71: 26:6e:87:ee:d3:72:52:43:ee:4d:a7:66:e1:d6:6b:83:33:86: 63:da:26:75:ce:a4:96:b3:3d:57:89:c5:09:1b:fc:64:26:25: 68:86:66:30:ca:12:44:af:f6:b0:f5:81:3c:a7:f3:ca:98:22: f7:da:e0:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUwNDI3MDUyMjQ1WhcNMjUwNTA0MDUyMjQ1WjAYMRYwFAYD VQQDEw02ODBkYmYyNS1hNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAow27i1rs9H0hCnmoS2dsVHnlhOHNuUqlAaK4LWu2IooZyFxKOlb0C7CHoNHO 5kJUzq1uP11A00y7kBvZeLt4xxeavZRzn+H8KTdc/sIhcQwyz0oZysi4UiemU6xm wBNphYLBaf94W23gfxLySCdIP81Rrz7TWVZY/cjhZeGe8SYetXA+gM5V5KA2NgLV Hg0VWMlRKOIaWRZtdH7G80wUf4S2XUzxu/UZ9wWGcF+/IEfefXYhOHzDtDKjKpMh zgz8a9z3rTe3VPzi62uLU/LclYIIENaLSLUraUXDRsc78ZfHWZCG3CfhL5huKtVN dewx1SBmEPeeWfbb4TNFbk74NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVa/0d+ A2KJGczbi2GM01AM/23aMB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI2Mi9CRDI5QjgxNjVBRTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0Wlgy dWhQck1VM3VNNHlpUWVKeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALuxgNRaO3dqs9YR1LAUmDTOiGTt2x7I2XdQ6XimE/+pQ0tQ6kdeV9 nAoy4yJGZ8LaGOp8PtAQrtATluplOacVqDdaQKBsRdpYxvzzcCnLJphRhnpONakm /batTDlXFuSYbWIq7KMLyW5LAeMadflxB+uvTY69ItELlMMugb6iipP9nloVul0J HCCRiW9sp5/WTqE7kyFECBnt3CHA59Juw0LOqDX3P9IkO4a6VZfw2pztdtkLbl9E byimOS03q4At851UHnEmbofu03JSQ+5Np2bh1muDM4Zj2iZ1zqSWsz1XicUJG/xk JiVohmYwyhJEr/aw9YE8p/PKmCL32uC8 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:56 2025 by rpki-client on console.sobornost.net