$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft File: Gu-1HeyOsHlip15FnOIQp0ABBPs.mft (raw, json) Hash identifier: xk1JAu4jV8pB8+QeSG1867mY+0CLxopbNHy3IYKxxas= Subject key identifier: B6:BC:D2:B0:C2:29:1B:B1:D1:6F:61:D9:D3:63:54:F6:F9:81:6D:92 Authority key identifier: 1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB Certificate issuer: /CN=A91D3DAE/serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft Manifest number: 347B Signing time: Mon 28 Apr 2025 14:47:54 +0000 Manifest this update: Mon 28 Apr 2025 14:47:53 +0000 Manifest next update: Mon 05 May 2025 14:47:53 +0000 Files and hashes: 1: Gu-1HeyOsHlip15FnOIQp0ABBPs.crl (hash: 7R3ad+7OPtitCHeIrHeKNG2qklCaPzK603xChGXl2vs=) 2: 232E8BFEFEA411EDBC673B4BC4F9AE02.roa (hash: 2R/JIm+dy3J9QEhBrc+vl6TnBvASBKCKIARBdM+hz20=) 3: 229F27ACFEA411EDBC673B4BC4F9AE02.roa (hash: GofCRUflvDRo1yALF5A3qEW6x0Z/FLZHjkmP8REXKAE=) 4: 220E32CEFEA411EDBC673B4BC4F9AE02.roa (hash: /ZfamkrcyVX98fX+BafwQ7UNJGR9Hte2HxcSkHXGZs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3DAE, serialNumber=1AEFB51DEC8EB07962A75E459CE210A7400104FB Validity Not Before: Apr 28 14:47:53 2025 GMT Not After : May 5 14:47:53 2025 GMT Subject: CN=680f951a-97e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:64:1e:2d:ca:88:37:f9:62:d5:c5:e7:67:d5: 0d:7c:70:34:95:d8:4d:fd:75:96:d4:2e:0e:76:0b: 12:60:23:e6:09:da:9b:a7:dc:84:ac:af:9b:6d:a6: 0e:05:a6:fb:07:8b:7e:1a:ea:df:52:bb:24:91:9e: 4b:1b:d4:0a:e4:b3:35:31:d1:6c:0b:bb:a1:55:39: ed:2d:7d:69:cc:44:69:1f:ce:c1:c4:95:2a:7a:f9: 4c:37:c4:09:9c:6e:e3:a8:e3:46:56:9b:85:e0:59: 14:8d:be:88:1b:49:97:87:fe:74:f6:bb:c2:56:8b: f5:3f:58:52:3f:6a:39:68:3c:98:fd:17:91:ec:17: 95:21:4b:96:7f:e8:96:37:61:74:8b:75:6d:ff:1f: 0e:3d:05:0c:d2:b0:fc:06:7a:22:c9:50:46:b2:36: 35:d7:8c:45:85:0b:32:d9:c7:d8:be:79:29:f1:85: 91:10:82:fc:1f:3a:49:2a:ab:1b:56:6e:05:f7:ac: 09:d7:1c:20:e5:8d:57:0e:4f:7d:4b:b7:b2:0b:66: e8:c5:23:bf:51:cf:f5:d1:98:55:30:06:50:c7:4a: 05:fc:70:d9:69:47:da:47:78:01:15:29:b5:24:73: ef:4a:85:75:f7:d3:63:6c:17:36:f2:cd:6a:e8:e5: 38:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:BC:D2:B0:C2:29:1B:B1:D1:6F:61:D9:D3:63:54:F6:F9:81:6D:92 X509v3 Authority Key Identifier: keyid:1A:EF:B5:1D:EC:8E:B0:79:62:A7:5E:45:9C:E2:10:A7:40:01:04:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gu-1HeyOsHlip15FnOIQp0ABBPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3DAE/FEFBCC8E1D8F11E2B54A7DEF08B02CD2/Gu-1HeyOsHlip15FnOIQp0ABBPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:65:e1:45:78:e0:a9:a6:d8:14:3a:73:bd:8c:3a:12:00:0f: 17:2d:d3:cb:4e:ec:b5:2b:44:13:5c:8f:59:9f:56:14:da:85: 40:51:1e:4d:4d:94:e0:43:ea:db:c5:91:d3:31:54:13:de:6d: 4e:f2:1b:64:9b:56:20:e0:d1:22:75:cf:a1:6f:3f:4e:19:10: 00:b7:c0:17:45:4a:67:76:1d:71:80:ff:4f:fe:40:89:bf:a8: ad:8b:31:ae:b4:2c:c1:66:8a:de:93:04:2b:a8:15:a4:1d:57: b6:7c:19:68:b2:06:48:17:d6:6a:e2:26:64:ef:83:9e:0a:4f: d9:26:11:30:16:5b:5f:e7:5d:85:67:f0:0d:03:55:c2:98:b0: 65:28:4d:a6:11:3a:fd:1b:2d:b2:1a:6a:5b:90:fb:97:fc:23: 59:08:0b:b1:9b:6e:5e:65:2f:e4:11:36:7d:53:68:1b:eb:fa: be:d2:35:d1:4f:d7:67:cc:18:56:9d:2f:89:01:5e:d5:11:78: 3f:00:b4:f9:54:7f:d8:72:47:b0:14:94:71:3f:b6:ee:5d:c4: ae:d7:51:01:62:f4:51:8e:37:50:69:23:a6:ef:88:61:0c:9c: 3f:4c:dd:8f:76:b9:f1:51:22:84:fc:05:d9:25:8c:4c:51:6f: 2a:e8:bf:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEQUUxMTAvBgNVBAUTKDFBRUZCNTFERUM4RUIwNzk2MkE3NUU0NTlDRTIxMEE3 NDAwMTA0RkIwHhcNMjUwNDI4MTQ0NzUzWhcNMjUwNTA1MTQ0NzUzWjAYMRYwFAYD VQQDEw02ODBmOTUxYS05N2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGQeLcqIN/li1cXnZ9UNfHA0ldhN/XWW1C4OdgsSYCPmCdqbp9yErK+bbaYO Bab7B4t+GurfUrskkZ5LG9QK5LM1MdFsC7uhVTntLX1pzERpH87BxJUqevlMN8QJ nG7jqONGVpuF4FkUjb6IG0mXh/509rvCVov1P1hSP2o5aDyY/ReR7BeVIUuWf+iW N2F0i3Vt/x8OPQUM0rD8BnoiyVBGsjY114xFhQsy2cfYvnkp8YWREIL8HzpJKqsb Vm4F96wJ1xwg5Y1XDk99S7eyC2boxSO/Uc/10ZhVMAZQx0oF/HDZaUfaR3gBFSm1 JHPvSoV199NjbBc28s1q6OU4hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLa80rDC KRux0W9h2dNjVPb5gW2SMB8GA1UdIwQYMBaAFBrvtR3sjrB5YqdeRZziEKdAAQT7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0RBRS9GRUZCQ0M4RTFE OEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NIbGlwMTVGbk9JUXAwQUJC UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d1LTFIZXlPc0hsaXAxNUZuT0lRcDBBQkJQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0RBRS9GRUZCQ0M4RTFEOEYxMUUyQjU0QTdERUYwOEIwMkNEMi9HdS0xSGV5T3NI bGlwMTVGbk9JUXAwQUJCUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdZeFFeOCpptgUOnO9jDoSAA8XLdPLTuy1K0QTXI9Zn1YU2oVAUR5N TZTgQ+rbxZHTMVQT3m1O8htkm1Yg4NEidc+hbz9OGRAAt8AXRUpndh1xgP9P/kCJ v6itizGutCzBZorekwQrqBWkHVe2fBlosgZIF9Zq4iZk74OeCk/ZJhEwFltf512F Z/ANA1XCmLBlKE2mETr9Gy2yGmpbkPuX/CNZCAuxm25eZS/kETZ9U2gb6/q+0jXR T9dnzBhWnS+JAV7VEXg/ALT5VH/YckewFJRxP7buXcSu11EBYvRRjjdQaSOm74hh DJw/TN2PdrnxUSKE/AXZJYxMUW8q6L+C -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net