$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft File: tGhODWIsua_RLLX6PkiF382FAE0.mft (raw, json) Hash identifier: Q2hbo0KzU5XX/bRUdHRGb7cV9yP+m+je81zjc5erEI8= Subject key identifier: 8E:55:FF:E0:2B:56:1F:A1:B1:89:3A:4A:A1:8C:58:D0:27:6A:D4:03 Authority key identifier: B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D Certificate issuer: /CN=A91D4636/serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Certificate serial: 03A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft Manifest number: 0398 Signing time: Sun 27 Apr 2025 00:26:04 +0000 Manifest this update: Sun 27 Apr 2025 00:26:04 +0000 Manifest next update: Sun 04 May 2025 00:26:04 +0000 Files and hashes: 1: tGhODWIsua_RLLX6PkiF382FAE0.crl (hash: +W+ZUwzjks6btQKtFQlzANmKdPM+SpZYXJmsgNpPVhk=) 2: C458350E979C11EC8E769C43C4F9AE02.roa (hash: eviaeNHpTyeX/nwMhD0qRHeqmHQSy0IY0Lvxy4hMeV0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 928 (0x3a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4636, serialNumber=B4684E0D622CB9AFD12CB5FA3E4885DFCD85004D Validity Not Before: Apr 27 00:26:04 2025 GMT Not After : May 4 00:26:04 2025 GMT Subject: CN=680d799c-2211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:78:a2:cd:03:45:1e:f9:8b:71:16:99:84:a2: ec:49:c2:42:14:ea:2e:c4:0a:5e:74:54:0f:30:ed: 6e:82:f3:e3:4d:dd:08:25:c8:b7:0b:d6:d5:f8:d8: 8a:13:73:86:78:51:9b:c7:3e:c3:7f:54:dc:f4:cb: e9:2a:bf:11:58:5f:97:0e:e3:da:65:94:73:53:de: 34:ae:18:8e:87:e2:de:ea:a1:76:1c:be:9b:73:e7: 94:33:ef:1d:18:45:e1:3f:be:50:bf:7a:a9:90:f4: fe:c6:cd:1b:89:2e:8a:15:f4:e1:63:26:11:64:a5: d6:19:22:35:c3:40:b1:5e:b4:60:b4:73:11:6f:89: b1:75:ff:d8:71:29:54:7e:dd:21:8a:c7:a8:fd:5c: 9a:47:a3:ec:62:1e:4f:f1:d0:4b:09:81:48:09:b4: 6c:96:42:40:9c:71:ad:97:4b:7c:77:90:73:08:e6: 6e:91:8a:9f:1c:86:e0:5b:d1:23:85:22:1b:ae:25: 89:d8:f2:d7:d6:54:05:c1:e9:3f:3f:7a:e8:12:6a: ec:9d:58:6a:23:c1:14:f1:ee:51:0c:35:27:ad:33: af:3c:e7:19:7a:fc:b1:5e:c8:a3:0e:14:a5:67:9c: 16:a9:e3:2f:c8:ab:87:c8:e9:77:3c:ba:e8:c6:e6: ed:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:55:FF:E0:2B:56:1F:A1:B1:89:3A:4A:A1:8C:58:D0:27:6A:D4:03 X509v3 Authority Key Identifier: keyid:B4:68:4E:0D:62:2C:B9:AF:D1:2C:B5:FA:3E:48:85:DF:CD:85:00:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGhODWIsua_RLLX6PkiF382FAE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4636/2C9BC33C979911ECBE725A3CC4F9AE02/tGhODWIsua_RLLX6PkiF382FAE0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:09:a3:1c:f0:f7:40:0f:48:88:41:22:06:b0:c3:c9:6e:de: b9:a3:6e:b5:04:ac:87:65:3d:92:22:2d:8e:4f:df:f9:3d:0d: 33:08:5c:69:12:a7:db:31:be:66:f7:13:f9:2e:56:8b:a6:cd: 7e:d1:d7:af:8f:68:40:f9:a7:66:0a:67:82:17:9e:3f:7e:69: 76:ca:3f:c0:08:bc:3b:32:35:9d:c1:88:20:87:99:c7:0f:0d: a9:7f:79:53:ed:ec:37:7f:7c:a5:bf:b5:5b:22:b8:47:27:2c: 66:1c:17:5f:a5:6d:ed:90:9d:32:09:c3:71:b4:d6:72:e2:d8: 81:67:cb:cc:cd:e4:8f:d6:68:64:65:d2:cd:c0:e6:fc:4a:33: 89:a4:28:99:da:01:e3:a2:28:c1:85:0b:60:4e:e8:7f:7b:1d: 72:64:95:3e:06:e4:70:ac:33:37:e5:ec:2c:3f:28:7d:56:b2: eb:bd:a9:0b:70:dd:5b:07:90:9c:74:89:5c:75:e8:cc:56:b2: 4d:ec:36:76:ec:bf:3d:6f:34:a6:5c:d7:d4:fa:b1:de:6e:a8: f6:eb:26:a8:ce:46:ae:59:c6:52:19:c6:b9:75:a4:c1:3e:94: 01:4d:00:60:e1:0d:11:1a:8d:1c:6c:87:75:f0:52:2d:0c:79: 04:53:3d:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MzYxMTAvBgNVBAUTKEI0Njg0RTBENjIyQ0I5QUZEMTJDQjVGQTNFNDg4NURG Q0Q4NTAwNEQwHhcNMjUwNDI3MDAyNjA0WhcNMjUwNTA0MDAyNjA0WjAYMRYwFAYD VQQDEw02ODBkNzk5Yy0yMjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3iizQNFHvmLcRaZhKLsScJCFOouxApedFQPMO1ugvPjTd0IJci3C9bV+NiK E3OGeFGbxz7Df1Tc9MvpKr8RWF+XDuPaZZRzU940rhiOh+Le6qF2HL6bc+eUM+8d GEXhP75Qv3qpkPT+xs0biS6KFfThYyYRZKXWGSI1w0CxXrRgtHMRb4mxdf/YcSlU ft0hiseo/VyaR6PsYh5P8dBLCYFICbRslkJAnHGtl0t8d5BzCOZukYqfHIbgW9Ej hSIbriWJ2PLX1lQFwek/P3roEmrsnVhqI8EU8e5RDDUnrTOvPOcZevyxXsijDhSl Z5wWqeMvyKuHyOl3PLroxubt2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5V/+Ar Vh+hsYk6SqGMWNAnatQDMB8GA1UdIwQYMBaAFLRoTg1iLLmv0Sy1+j5Ihd/NhQBN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYzNi8yQzlCQzMzQzk3 OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3VhX1JMTFg2UGtpRjM4MkZB RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHaE9EV0lzdWFfUkxMWDZQa2lGMzgyRkFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYzNi8yQzlCQzMzQzk3OTkxMUVDQkU3MjVBM0NDNEY5QUUwMi90R2hPRFdJc3Vh X1JMTFg2UGtpRjM4MkZBRTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgCaMc8PdAD0iIQSIGsMPJbt65o261BKyHZT2SIi2OT9/5PQ0zCFxp EqfbMb5m9xP5LlaLps1+0devj2hA+admCmeCF54/fml2yj/ACLw7MjWdwYggh5nH Dw2pf3lT7ew3f3ylv7VbIrhHJyxmHBdfpW3tkJ0yCcNxtNZy4tiBZ8vMzeSP1mhk ZdLNwOb8SjOJpCiZ2gHjoijBhQtgTuh/ex1yZJU+BuRwrDM35ewsPyh9VrLrvakL cN1bB5CcdIlcdejMVrJN7DZ27L89bzSmXNfU+rHebqj26yaozkauWcZSGca5daTB PpQBTQBg4Q0RGo0cbId18FItDHkEUz3u -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:12 2025 by rpki-client on console.sobornost.net