$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft File: hpBNLQLbigWb7ZOPL46u88Qgb9A.mft (raw, json) Hash identifier: Y0ed2jAuxeJsFVtGMo40o3JHKZo5Jqv5zncjYL8Fol4= Subject key identifier: A1:16:BA:60:F9:D9:36:41:B4:F9:8D:0E:E9:EA:C9:7F:6B:4F:92:D6 Authority key identifier: 86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 Certificate issuer: /CN=A91D4ACD/serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft Manifest number: 75 Signing time: Fri 25 Apr 2025 05:49:09 +0000 Manifest this update: Fri 25 Apr 2025 05:49:08 +0000 Manifest next update: Fri 02 May 2025 05:49:08 +0000 Files and hashes: 1: hpBNLQLbigWb7ZOPL46u88Qgb9A.crl (hash: FxyzfMvPSNOd/jpATljFVDZf+ymNcJNKg17BI4oFtpI=) 2: 388D7E38797D11EF8CA64711C4F9AE02.roa (hash: psVpSVTIe8+AZiKNpgFs07aLN6Bb1+TjrtoRE57p52A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4ACD, serialNumber=86904D2D02DB8A059BED938F2F8EAEF3C4206FD0 Validity Not Before: Apr 25 05:49:08 2025 GMT Not After : May 2 05:49:08 2025 GMT Subject: CN=680b2255-cf0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:55:6a:46:ff:3f:b7:00:d3:70:4d:29:c1:94: b2:52:aa:21:46:ca:e3:37:ae:37:9d:29:7a:d3:c0: 05:22:1b:3a:95:18:1a:36:37:0b:c0:37:f8:d1:df: 81:0b:92:8e:5a:5d:ba:74:22:86:e7:4e:00:36:c9: 20:b3:df:f5:ff:f7:61:81:4a:91:58:a9:05:5a:a7: 99:7c:f7:18:c8:01:81:4c:f0:5c:85:b8:88:10:39: 82:a4:82:fc:7a:ec:70:50:e1:2e:0f:1b:a3:80:ab: 8d:59:eb:99:9d:a5:72:2e:d2:63:a3:50:8c:15:ea: 42:08:65:e5:aa:13:1a:82:af:d1:f0:75:85:87:cb: 04:d5:8b:9c:1d:ea:68:21:39:75:0f:d9:f5:e6:79: b1:be:44:70:5d:89:75:0e:61:af:9e:ab:0b:a4:f1: 2b:82:7b:83:c8:95:0d:6d:14:3d:23:e2:d1:d2:82: 16:61:a7:45:94:f8:9c:9b:f3:98:f1:79:a1:1c:ba: f6:e8:ee:40:ec:b9:1a:3f:ff:a1:7e:c5:5b:36:51: 26:de:eb:97:ea:cf:48:fe:78:d0:6d:34:b5:89:58: 82:b0:88:9e:15:ea:a0:6b:c8:fe:59:b3:ee:1a:b9: a6:32:8b:1e:f4:d3:08:49:f7:98:4c:87:29:8e:5e: f3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:16:BA:60:F9:D9:36:41:B4:F9:8D:0E:E9:EA:C9:7F:6B:4F:92:D6 X509v3 Authority Key Identifier: keyid:86:90:4D:2D:02:DB:8A:05:9B:ED:93:8F:2F:8E:AE:F3:C4:20:6F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hpBNLQLbigWb7ZOPL46u88Qgb9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4ACD/1F53569E756E11EF9CA46E51C4F9AE02/hpBNLQLbigWb7ZOPL46u88Qgb9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:cc:ab:4e:8a:a8:98:ce:12:2a:28:09:b9:76:99:e8:1b:3c: cb:ad:b8:d6:a1:e7:de:d3:99:22:35:7d:1c:91:f7:47:5a:df: 03:09:5f:e4:ce:58:a8:96:7a:ac:ee:0e:12:e0:83:aa:24:72: b5:53:83:08:aa:96:0e:13:47:4a:78:cc:1e:b5:86:2e:f2:ba: d9:db:65:88:75:e4:95:60:e9:ca:e0:bd:5f:1a:5f:a8:ef:27: e4:81:07:38:e1:81:f1:ae:d8:3e:de:20:7d:de:52:53:7e:c4: 75:ca:71:3b:2e:25:34:da:59:61:00:fa:44:b0:b4:0a:83:fa: a4:bb:c6:43:fa:4b:fe:bd:93:a1:a3:e6:b6:7f:12:7b:11:de: 3e:c5:73:f5:71:0c:75:93:09:bd:2d:e8:91:bb:c9:5d:81:b9: 05:65:6e:99:fa:98:e8:24:a9:d3:5a:56:8a:2d:33:8d:4c:ad: e3:49:24:0f:db:85:ba:d6:7e:20:67:a5:b7:e9:71:c8:1a:96: 6d:1f:09:03:cf:9b:15:ca:4f:2c:bf:6b:06:16:14:b7:d6:02: 5a:ba:5f:d1:45:a1:ce:4d:d7:4a:72:83:dc:b9:5f:b8:55:06: f0:06:6e:e9:5c:29:1d:35:06:ee:7b:6b:db:dc:71:0b:d0:30: a9:c8:be:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEFDRDExMC8GA1UEBRMoODY5MDREMkQwMkRCOEEwNTlCRUQ5MzhGMkY4RUFFRjND NDIwNkZEMDAeFw0yNTA0MjUwNTQ5MDhaFw0yNTA1MDIwNTQ5MDhaMBgxFjAUBgNV BAMTDTY4MGIyMjU1LWNmMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEVWpG/z+3ANNwTSnBlLJSqiFGyuM3rjedKXrTwAUiGzqVGBo2NwvAN/jR34EL ko5aXbp0IobnTgA2ySCz3/X/92GBSpFYqQVap5l89xjIAYFM8FyFuIgQOYKkgvx6 7HBQ4S4PG6OAq41Z65mdpXIu0mOjUIwV6kIIZeWqExqCr9HwdYWHywTVi5wd6mgh OXUP2fXmebG+RHBdiXUOYa+eqwuk8SuCe4PIlQ1tFD0j4tHSghZhp0WU+Jyb85jx eaEcuvbo7kDsuRo//6F+xVs2USbe65fqz0j+eNBtNLWJWIKwiJ4V6qBryP5Zs+4a uaYyix700whJ95hMhymOXvNBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoRa6YPnZ NkG0+Y0O6erJf2tPktYwHwYDVR0jBBgwFoAUhpBNLQLbigWb7ZOPL46u88Qgb9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QUNELzFGNTM1NjlFNzU2 RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdXYjdaT1BMNDZ1ODhRZ2I5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaHBCTkxRTGJpZ1diN1pPUEw0NnU4OFFnYjlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 QUNELzFGNTM1NjlFNzU2RTExRUY5Q0E0NkU1MUM0RjlBRTAyL2hwQk5MUUxiaWdX YjdaT1BMNDZ1ODhRZ2I5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMzMq06KqJjOEiooCbl2megbPMutuNah597TmSI1fRyR90da3wMJX+TO WKiWeqzuDhLgg6okcrVTgwiqlg4TR0p4zB61hi7yutnbZYh15JVg6crgvV8aX6jv J+SBBzjhgfGu2D7eIH3eUlN+xHXKcTsuJTTaWWEA+kSwtAqD+qS7xkP6S/69k6Gj 5rZ/EnsR3j7Fc/VxDHWTCb0t6JG7yV2BuQVlbpn6mOgkqdNaVootM41MreNJJA/b hbrWfiBnpbfpccgalm0fCQPPmxXKTyy/awYWFLfWAlq6X9FFoc5N10pyg9y5X7hV BvAGbulcKR01Bu57a9vccQvQMKnIvvA= -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:13 2025 by rpki-client on console.sobornost.net