$ rpki-client -vvf rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft File: 7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft (raw, json) Hash identifier: EmRGlrdhcWUQy3y08HXssVXD65mP52xd0yZX8+w+RTA= Subject key identifier: AF:AA:72:6F:74:CF:9D:81:1C:5B:06:B1:01:D5:5E:F5:A7:60:9B:E1 Authority key identifier: EF:30:A2:41:46:DF:66:B1:FA:6F:BA:5D:67:67:69:EB:64:B3:87:AA Certificate issuer: /CN=A91D63AF/serialNumber=EF30A24146DF66B1FA6FBA5D676769EB64B387AA Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft Manifest number: F5 Signing time: Sun 27 Apr 2025 04:12:28 +0000 Manifest this update: Sun 27 Apr 2025 04:12:28 +0000 Manifest next update: Sun 04 May 2025 04:12:28 +0000 Files and hashes: 1: 7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl (hash: /dLfeo5B9I5p28FWBLBHfy/1Pn6cApHgCfAoKct3KV4=) 2: E3E47D36B6B911EE8E72C641C4F9AE02.roa (hash: yzICNTcM283Dqn+31XlCHYK+SaKesuIOk3Z/S3+BpWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D63AF, serialNumber=EF30A24146DF66B1FA6FBA5D676769EB64B387AA Validity Not Before: Apr 27 04:12:28 2025 GMT Not After : May 4 04:12:28 2025 GMT Subject: CN=680daeac-89b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:53:2b:44:0d:20:bf:d7:d9:44:5f:82:44:77: 3b:03:ff:32:d5:07:7c:2a:6f:6c:78:cb:2e:4b:60: c3:48:ae:68:b5:5e:63:22:4a:8e:da:3e:7c:e5:f4: f3:f2:fa:ac:c6:ae:5d:c2:2e:9b:cd:06:5b:06:95: af:bc:b0:e3:e9:79:5c:41:90:1f:47:59:e1:0b:eb: d1:14:15:8a:b8:7c:88:76:6a:54:ed:67:a8:b0:70: 6e:c0:8b:b6:3a:fb:3e:00:b6:42:49:ba:13:d9:f3: b5:77:87:29:f8:12:c8:77:ef:f4:ac:04:9a:f3:9a: 9e:db:2d:09:0d:d6:dd:4e:5c:fc:0f:b5:a7:1b:f9: ce:79:5d:26:7c:a6:5e:3e:9f:59:20:41:9f:b9:4f: 7e:51:07:77:97:81:28:16:86:ac:7e:e0:f4:1a:50: cf:de:60:a1:8d:79:f3:a4:93:fa:4b:0e:c2:ab:cd: a3:ea:0d:21:b9:9a:61:c6:e3:dc:32:15:ce:22:fd: 21:ee:08:8c:89:e3:89:94:90:79:22:10:0b:85:01: 22:c6:b2:74:85:78:cd:f8:69:53:df:d1:33:ef:01: aa:20:6a:78:a8:a2:b5:a6:06:1b:57:ee:b1:18:87: bb:59:ff:f1:0a:e2:4a:61:82:8d:18:0e:e9:b4:64: 18:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:AA:72:6F:74:CF:9D:81:1C:5B:06:B1:01:D5:5E:F5:A7:60:9B:E1 X509v3 Authority Key Identifier: keyid:EF:30:A2:41:46:DF:66:B1:FA:6F:BA:5D:67:67:69:EB:64:B3:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7zCiQUbfZrH6b7pdZ2dp62Szh6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D63AF/E14D1AB4B6A611EEA04A8B23C4F9AE02/7zCiQUbfZrH6b7pdZ2dp62Szh6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:b1:f0:cf:eb:40:a5:08:de:25:c3:55:78:89:1d:e6:f8:4b: f9:6f:40:20:2b:80:83:8e:08:e7:b3:77:8f:b2:d2:58:ab:db: 66:b8:36:76:6d:b2:55:41:01:11:24:80:c1:84:dd:d6:67:fa: 5b:f7:15:a2:9c:53:3d:8c:37:19:42:ba:10:ad:93:a3:2f:f3: b0:4b:bc:0d:3f:81:95:db:9b:ad:cd:e4:b6:88:9d:9e:b0:00: 81:35:11:a7:e3:04:16:b3:30:4b:b1:48:7d:f5:fa:3b:9a:2c: 37:7b:2b:ec:8b:8a:7d:a5:17:34:c4:fd:d1:13:cc:17:cd:44: 5f:db:37:ff:92:af:64:4d:14:c4:8b:d0:98:05:f5:73:ff:52: ef:f9:a6:3c:77:4f:59:81:3a:43:37:80:be:ef:ae:fc:cb:49: 55:17:0e:a5:c2:a0:07:ad:18:c3:fa:f9:d4:61:c4:af:24:a2: fc:67:06:9c:82:5a:22:31:99:18:bb:8e:83:b7:7d:25:96:14: df:0a:cd:fd:aa:34:41:0d:21:af:27:e6:5a:80:fa:d6:58:29: a4:8d:38:7d:14:d4:96:cd:50:04:b8:72:c4:6c:6a:77:cb:8e: 8b:73:db:66:e8:4f:b7:8a:25:ea:85:32:06:49:60:e6:f3:12: 70:6b:8c:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYzQUYxMTAvBgNVBAUTKEVGMzBBMjQxNDZERjY2QjFGQTZGQkE1RDY3Njc2OUVC NjRCMzg3QUEwHhcNMjUwNDI3MDQxMjI4WhcNMjUwNTA0MDQxMjI4WjAYMRYwFAYD VQQDEw02ODBkYWVhYy04OWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1MrRA0gv9fZRF+CRHc7A/8y1Qd8Km9seMsuS2DDSK5otV5jIkqO2j585fTz 8vqsxq5dwi6bzQZbBpWvvLDj6XlcQZAfR1nhC+vRFBWKuHyIdmpU7WeosHBuwIu2 Ovs+ALZCSboT2fO1d4cp+BLId+/0rASa85qe2y0JDdbdTlz8D7WnG/nOeV0mfKZe Pp9ZIEGfuU9+UQd3l4EoFoasfuD0GlDP3mChjXnzpJP6Sw7Cq82j6g0huZphxuPc MhXOIv0h7giMieOJlJB5IhALhQEixrJ0hXjN+GlT39Ez7wGqIGp4qKK1pgYbV+6x GIe7Wf/xCuJKYYKNGA7ptGQY2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+qcm90 z52BHFsGsQHVXvWnYJvhMB8GA1UdIwQYMBaAFO8wokFG32ax+m+6XWdnaetks4eq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjNBRi9FMTREMUFCNEI2 QTYxMUVFQTA0QThCMjNDNEY5QUUwMi83ekNpUVViZlpySDZiN3BkWjJkcDYyU3po Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd6Q2lRVWJmWnJINmI3cGRaMmRwNjJTemg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjNBRi9FMTREMUFCNEI2QTYxMUVFQTA0QThCMjNDNEY5QUUwMi83ekNpUVViZlpy SDZiN3BkWjJkcDYyU3poNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4sfDP60ClCN4lw1V4iR3m+Ev5b0AgK4CDjgjns3ePstJYq9tmuDZ2 bbJVQQERJIDBhN3WZ/pb9xWinFM9jDcZQroQrZOjL/OwS7wNP4GV25utzeS2iJ2e sACBNRGn4wQWszBLsUh99fo7miw3eyvsi4p9pRc0xP3RE8wXzURf2zf/kq9kTRTE i9CYBfVz/1Lv+aY8d09ZgTpDN4C+7678y0lVFw6lwqAHrRjD+vnUYcSvJKL8Zwac gloiMZkYu46Dt30llhTfCs39qjRBDSGvJ+ZagPrWWCmkjTh9FNSWzVAEuHLEbGp3 y46Lc9tm6E+3iiXqhTIGSWDm8xJwa4y4 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:56 2025 by rpki-client on console.sobornost.net