$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft File: iX261kcCN4pu4YYw4Yv3Whcpgmk.mft (raw, json) Hash identifier: H/nUkM1Yz6310ZCetQFDeuTLgzXoa2PRC+Oes3SRZVc= Subject key identifier: 3F:0B:1B:FC:00:37:16:1F:23:3C:DC:32:C1:B9:AA:B7:B0:9F:10:56 Authority key identifier: 89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 Certificate issuer: /CN=A91D8117/serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft Manifest number: F1 Signing time: Sun 27 Apr 2025 04:15:47 +0000 Manifest this update: Sun 27 Apr 2025 04:15:47 +0000 Manifest next update: Sun 04 May 2025 04:15:47 +0000 Files and hashes: 1: iX261kcCN4pu4YYw4Yv3Whcpgmk.crl (hash: wL2Q5D4FcHuW2a6Tgele15DlWO3USTOfPQvve/6rdRw=) 2: D442A7A0BE2E11EEAFAF1934C4F9AE02.roa (hash: GqeiAvi13dSKvLM+fHPrB98afI5mQF/DJh5CG60rs0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8117, serialNumber=897DBAD64702378A6EE18630E18BF75A17298269 Validity Not Before: Apr 27 04:15:47 2025 GMT Not After : May 4 04:15:47 2025 GMT Subject: CN=680daf73-34dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a6:e0:08:c9:66:4a:75:e7:32:54:bf:8f:21: 72:b6:7d:c3:07:e7:13:b2:40:31:93:7d:31:22:6d: 8a:fd:45:41:bd:ae:8d:f0:61:3e:d1:aa:01:74:9b: f6:d4:f5:41:9d:50:c3:3c:82:17:94:8c:34:16:b4: 11:c0:b8:ff:10:06:32:ff:c9:c0:a4:f0:17:5b:da: 09:31:14:ed:0f:ae:3d:04:ef:c5:b9:a0:84:1e:c7: f2:58:54:61:2e:20:22:ed:a1:92:d7:07:7e:ec:35: 24:66:f1:cd:ab:c7:7e:5e:59:52:6a:ec:13:af:6b: d1:5b:d3:23:d8:00:17:48:54:d0:3c:df:79:e6:cb: 3c:0c:69:37:2e:bd:75:d1:f1:50:72:8e:10:31:d2: b4:fc:bd:0c:43:ce:d8:94:97:ce:07:24:b3:58:23: 42:69:47:f0:df:fb:85:9d:7b:93:11:0c:25:48:88: 11:70:38:8a:64:32:bc:46:d8:fa:fb:6f:0c:05:fa: b8:56:47:08:99:05:a6:34:f1:fb:01:bd:9b:22:cc: cb:d8:37:3b:e9:51:46:df:31:8e:f7:5b:c1:80:08: a5:b4:fc:9f:03:2a:cd:2e:d0:fc:d0:b7:17:4e:04: d2:32:61:15:75:c7:d0:ea:61:52:f4:f5:2d:9c:ac: 0d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:0B:1B:FC:00:37:16:1F:23:3C:DC:32:C1:B9:AA:B7:B0:9F:10:56 X509v3 Authority Key Identifier: keyid:89:7D:BA:D6:47:02:37:8A:6E:E1:86:30:E1:8B:F7:5A:17:29:82:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iX261kcCN4pu4YYw4Yv3Whcpgmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8117/8E28E794BE2D11EE8536D030C4F9AE02/iX261kcCN4pu4YYw4Yv3Whcpgmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:5f:30:8b:72:74:d1:10:d1:dd:6b:ce:6e:37:68:dd:30:3d: ea:e3:f5:ce:91:6e:d9:34:c1:7f:01:d9:4c:8d:58:3e:24:70: 50:a6:22:06:b5:c9:00:64:89:53:f3:54:c8:e2:41:4c:76:d1: d0:10:9e:75:08:6c:d5:b2:de:7f:f2:86:74:ca:0b:b0:1e:b9: e7:25:07:07:da:1c:9f:e9:c5:e9:64:28:66:7c:be:d0:1d:40: 7a:e9:5a:16:51:87:2e:a7:fe:19:2b:ea:d3:e3:07:05:42:14: c3:05:73:ca:07:a1:85:af:80:fe:31:31:49:69:fe:22:ae:c7: 68:66:02:bb:00:74:7d:86:95:dd:42:7e:45:39:c0:f5:dd:57: 16:63:92:bb:ce:71:6d:69:dc:5d:2e:1f:b6:92:a8:e6:e7:27: bd:7c:cb:2d:f1:71:89:da:14:17:b9:f4:5f:e5:0e:1d:bc:63: bf:a9:b5:9a:4c:e1:f3:17:7d:78:4a:d3:bb:69:82:2c:54:68: 2a:61:3d:2e:cc:d7:af:d1:94:f7:14:d2:be:74:40:1f:df:29: 1b:aa:49:f3:49:c8:8a:48:27:c7:11:30:5f:cc:45:ee:ae:b9: a2:92:0b:15:4d:bd:98:85:7a:8e:f3:83:be:83:05:a5:12:09: 59:2d:60:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMTcxMTAvBgNVBAUTKDg5N0RCQUQ2NDcwMjM3OEE2RUUxODYzMEUxOEJGNzVB MTcyOTgyNjkwHhcNMjUwNDI3MDQxNTQ3WhcNMjUwNTA0MDQxNTQ3WjAYMRYwFAYD VQQDEw02ODBkYWY3My0zNGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qbgCMlmSnXnMlS/jyFytn3DB+cTskAxk30xIm2K/UVBva6N8GE+0aoBdJv2 1PVBnVDDPIIXlIw0FrQRwLj/EAYy/8nApPAXW9oJMRTtD649BO/FuaCEHsfyWFRh LiAi7aGS1wd+7DUkZvHNq8d+XllSauwTr2vRW9Mj2AAXSFTQPN955ss8DGk3Lr11 0fFQco4QMdK0/L0MQ87YlJfOBySzWCNCaUfw3/uFnXuTEQwlSIgRcDiKZDK8Rtj6 +28MBfq4VkcImQWmNPH7Ab2bIszL2Dc76VFG3zGO91vBgAiltPyfAyrNLtD80LcX TgTSMmEVdcfQ6mFS9PUtnKwNiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8LG/wA NxYfIzzcMsG5qrewnxBWMB8GA1UdIwQYMBaAFIl9utZHAjeKbuGGMOGL91oXKYJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODExNy84RTI4RTc5NEJF MkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040cHU0WVl3NFl2M1doY3Bn bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYMjYxa2NDTjRwdTRZWXc0WXYzV2hjcGdtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODExNy84RTI4RTc5NEJFMkQxMUVFODUzNkQwMzBDNEY5QUUwMi9pWDI2MWtjQ040 cHU0WVl3NFl2M1doY3BnbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWXzCLcnTRENHda85uN2jdMD3q4/XOkW7ZNMF/AdlMjVg+JHBQpiIG tckAZIlT81TI4kFMdtHQEJ51CGzVst5/8oZ0yguwHrnnJQcH2hyf6cXpZChmfL7Q HUB66VoWUYcup/4ZK+rT4wcFQhTDBXPKB6GFr4D+MTFJaf4irsdoZgK7AHR9hpXd Qn5FOcD13VcWY5K7znFtadxdLh+2kqjm5ye9fMst8XGJ2hQXufRf5Q4dvGO/qbWa TOHzF314StO7aYIsVGgqYT0uzNev0ZT3FNK+dEAf3ykbqknzSciKSCfHETBfzEXu rrmikgsVTb2YhXqO84O+gwWlEglZLWA1 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:57 2025 by rpki-client on console.sobornost.net