$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft File: nJSl3M9qZbaJhscEOEbHIb0zvpk.mft (raw, json) Hash identifier: xWQLqKRXG9IJWw2qEcAUtwcVed9Yd2SiY1nEX7Vp22c= Subject key identifier: 32:4B:08:62:D7:C6:C4:B2:9C:8C:AB:CF:4E:AA:95:2E:A2:BB:E3:B3 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft Manifest number: 0D0E Signing time: Sat 26 Apr 2025 17:55:46 +0000 Manifest this update: Sat 26 Apr 2025 17:55:45 +0000 Manifest next update: Sat 03 May 2025 17:55:45 +0000 Files and hashes: 1: nJSl3M9qZbaJhscEOEbHIb0zvpk.crl (hash: k1tRRUMCCbaARCLe8xzvNAf9pYnwj9bHDnliZoiFdI8=) 2: 064D129A56EA11EA84DC982BC4F9AE02.roa (hash: 6Rm16lqV7D8ogEdcWjZlICaxyf3FBMg+FZuEOmrvZ+E=) 3: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (hash: Kvq9xzCrVcc/vYKOgXHbGDUWHenbRQHuJZ7CogmXIPc=) 4: 2BABEEB482EE11EAB170FD4BC4F9AE02.roa (hash: 7Q5TQ0GutKyzM0PazgyPbgCiIYVuSp/HifdYRSL6/UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3361 (0xd21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Apr 26 17:55:45 2025 GMT Not After : May 3 17:55:45 2025 GMT Subject: CN=680d1e21-7764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b0:cc:1e:61:0c:ff:1a:98:3a:2e:14:37:e0: dd:63:b8:15:af:16:77:20:70:b4:65:69:f4:0a:65: 0d:72:84:20:91:07:4c:f2:4e:f9:e4:47:57:d6:a8: 3f:f3:ec:08:cd:c2:58:0a:7a:ee:75:4d:1b:83:e1: e4:0e:d2:39:7a:4c:f2:d0:14:88:07:98:9c:d0:8f: f5:ed:14:71:3a:1d:46:a7:5a:9b:30:f0:c5:33:1a: 31:10:aa:b5:ff:33:47:e0:54:ac:06:ad:1a:78:b7: 8d:7b:37:2f:eb:64:cf:74:9f:de:aa:76:c9:fb:88: b9:9a:96:17:01:7b:d7:ee:7f:dc:db:fb:8f:ab:6a: f8:1c:76:98:82:7f:d0:8a:2f:c9:7c:8f:ce:df:b1: a2:aa:94:88:2d:a9:20:ae:e0:36:74:0b:de:61:79: bc:38:31:4b:ff:e8:44:83:e1:33:5a:18:a5:f8:0c: ca:c4:c7:a5:8e:83:b6:1f:e0:93:3b:66:4b:2b:fe: 66:da:55:5d:6c:d7:83:40:b4:5c:6d:30:92:47:24: 18:84:e6:52:8d:91:ed:6e:2f:8f:5e:b8:68:75:0e: 90:68:b6:49:4a:0c:be:c1:7d:fa:90:35:2f:c1:37: 56:29:21:1e:b2:1c:59:42:0e:3c:26:e9:0d:02:7c: d6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4B:08:62:D7:C6:C4:B2:9C:8C:AB:CF:4E:AA:95:2E:A2:BB:E3:B3 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ef:ed:56:e3:6f:26:1c:a6:3f:17:be:e6:f3:59:7b:5e:18: 5c:c7:06:6d:70:73:df:f3:42:fc:37:24:99:e3:8e:c5:37:d9: c8:e2:27:a6:9e:7d:bb:01:cf:58:aa:74:73:2d:fa:83:01:20: f1:c2:77:c2:70:c3:11:ad:46:bd:f7:f5:85:5f:d1:f1:0e:e7: 1d:15:a0:6e:fd:26:2c:1a:87:ed:7a:18:8a:11:96:a3:41:df: 6b:a2:ef:67:41:ee:dc:17:52:a8:9f:1d:91:99:1f:8b:4b:c2: ee:ec:bb:3d:bd:1e:d8:f8:51:bd:16:2c:87:3b:b2:87:10:94: 6f:8e:47:f0:41:ed:09:0e:fa:2e:61:6d:70:1b:5f:4f:89:2f: f9:59:c1:fa:3a:e2:f4:2b:2e:e2:60:b2:8e:44:13:63:49:a9: 54:18:6a:c9:5e:b7:3e:3a:e7:2c:9f:c2:ce:d4:7c:6f:74:b5: 86:0a:a7:b4:8d:cc:2c:33:3c:ca:50:3a:59:2f:20:00:3d:10: d4:ac:6d:5d:88:6a:be:fa:c7:0e:73:83:18:ab:ff:ae:79:b6: f7:83:4f:6b:11:cf:e5:f4:14:48:bc:09:24:a8:77:66:58:8a: 30:46:06:98:06:7a:96:08:53:25:bf:69:18:6f:be:3c:6e:91: 96:6d:cc:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNDI2MTc1NTQ1WhcNMjUwNTAzMTc1NTQ1WjAYMRYwFAYD VQQDEw02ODBkMWUyMS03NzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobDMHmEM/xqYOi4UN+DdY7gVrxZ3IHC0ZWn0CmUNcoQgkQdM8k755EdX1qg/ 8+wIzcJYCnrudU0bg+HkDtI5ekzy0BSIB5ic0I/17RRxOh1Gp1qbMPDFMxoxEKq1 /zNH4FSsBq0aeLeNezcv62TPdJ/eqnbJ+4i5mpYXAXvX7n/c2/uPq2r4HHaYgn/Q ii/JfI/O37GiqpSILakgruA2dAveYXm8ODFL/+hEg+EzWhil+AzKxMeljoO2H+CT O2ZLK/5m2lVdbNeDQLRcbTCSRyQYhOZSjZHtbi+PXrhodQ6QaLZJSgy+wX36kDUv wTdWKSEeshxZQg48JukNAnzWvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJLCGLX xsSynIyrz06qlS6iu+OzMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjZBMC82MjVGRjcyNkQ5RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpi YUpoc2NFT0ViSEliMHp2cGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK7+1W428mHKY/F77m81l7XhhcxwZtcHPf80L8NySZ447FN9nI4iem nn27Ac9YqnRzLfqDASDxwnfCcMMRrUa99/WFX9HxDucdFaBu/SYsGoftehiKEZaj Qd9rou9nQe7cF1Konx2RmR+LS8Lu7Ls9vR7Y+FG9FiyHO7KHEJRvjkfwQe0JDvou YW1wG19PiS/5WcH6OuL0Ky7iYLKORBNjSalUGGrJXrc+Oucsn8LO1HxvdLWGCqe0 jcwsMzzKUDpZLyAAPRDUrG1diGq++scOc4MYq/+uebb3g09rEc/l9BRIvAkkqHdm WIowRgaYBnqWCFMlv2kYb748bpGWbcz7 -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:02 2025 by rpki-client on console.sobornost.net