$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft File: SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft (raw, json) Hash identifier: gnFRKybuNFb/l9hEFH1c5Jyy4qra/V/QgCIo5tn6RcE= Subject key identifier: BB:8B:BA:16:E7:13:1D:20:95:33:A3:9E:3E:3B:D9:6B:F6:E7:21:43 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft Manifest number: 0184 Signing time: Sun 27 Apr 2025 02:38:50 +0000 Manifest this update: Sun 27 Apr 2025 02:38:49 +0000 Manifest next update: Sun 04 May 2025 02:38:49 +0000 Files and hashes: 1: SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl (hash: xf6yV9YDQOEeceaLO//2R0+R9Ai/e6XgYYcC1/lxMPQ=) 2: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (hash: 3TVSr4533KCeTr9n4si0My+MCE5XOLUQ499rzcPilqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389, serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Apr 27 02:38:49 2025 GMT Not After : May 4 02:38:49 2025 GMT Subject: CN=680d98b9-307c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bf:45:aa:8d:04:c4:c2:94:cf:dd:cd:1d:e1: 3c:9e:8f:8c:82:a5:c3:2f:17:c1:7f:66:54:59:60: 4d:b6:a8:f9:17:7b:42:4a:3e:27:a8:be:dd:ee:94: 74:9a:be:bc:94:94:5e:42:58:28:cd:dc:db:64:52: 12:ff:bc:7e:66:f2:b3:71:12:d2:fc:43:58:69:1b: c6:f9:5d:f7:35:e5:54:2f:67:01:4d:16:28:34:d1: 1b:e6:79:c4:4e:d3:39:60:4e:0e:0e:0d:38:cb:47: bb:91:58:c7:58:a4:1f:3b:95:3f:f2:6a:71:a0:4e: 3b:f0:54:37:21:e9:b0:2a:45:5e:1b:a3:85:f3:fe: 75:ff:dc:d8:c4:8e:01:0b:1f:cd:48:aa:44:a2:d4: df:22:5b:3e:1c:ee:81:9b:fd:89:1e:8d:ed:4b:dc: 8e:36:79:4e:8e:df:96:53:39:bc:4b:da:6b:73:d7: c1:55:6c:31:5e:7e:16:fc:4b:21:c2:7f:bb:3c:f0: ff:c6:b9:d3:97:a3:55:eb:a2:f2:3b:ae:6c:61:c9: 46:a6:88:90:22:a3:01:c2:eb:4f:9b:e8:c3:46:50: 89:4b:bf:63:3c:be:ea:1a:1b:ff:9b:68:0d:2b:8f: cb:f8:a0:09:80:78:45:c3:a9:57:12:11:db:13:ad: c2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8B:BA:16:E7:13:1D:20:95:33:A3:9E:3E:3B:D9:6B:F6:E7:21:43 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:02:cb:4b:30:07:dc:34:bb:de:95:6a:aa:88:1f:e3:54:e9: 76:3f:1f:ca:67:a3:34:32:13:26:00:f4:a1:a3:a4:cc:e8:f1: 84:c3:7d:8a:a5:23:91:ba:e8:d9:3f:bf:f4:e6:ac:e6:b3:58: 33:5a:82:1f:d5:07:4c:91:4a:d8:b5:b2:31:0d:1b:f4:81:01: 3a:77:25:48:ee:f2:34:25:58:6a:78:f8:3a:d3:7b:c8:3c:36: 82:c9:63:71:ff:b7:86:f0:14:09:45:4f:a5:5f:fe:36:a6:28: fe:c8:84:89:ac:6c:ac:e5:69:13:ea:d3:2a:39:e8:3f:49:71: 82:2a:f7:22:cf:ba:24:b0:2b:00:67:f8:87:f8:cd:57:95:4f: 6b:1d:40:48:38:d4:6f:e5:e6:56:49:e7:19:5e:e7:1f:7a:5e: 5e:a8:1f:a8:15:12:8c:5d:16:db:1d:74:41:46:05:c2:0f:8b: d3:72:92:b6:b3:3e:70:04:75:ea:2e:18:37:58:fe:81:99:54: a0:e7:c7:c5:b2:34:d7:a8:c7:55:00:7e:22:ea:5a:81:fe:93: be:5f:fd:98:d7:7b:88:de:cc:d3:80:0d:5c:d3:fe:e2:28:73: ee:50:f9:3f:89:37:93:24:a5:c0:ee:2e:a5:b1:2f:4a:14:4d: 5c:6f:f4:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEzODkxMTAvBgNVBAUTKDQ4RjUwRTE2QjgzMDVBQTJDNzU2RDIxQzhGMEZENTA5 MzM4QTVDMjkwHhcNMjUwNDI3MDIzODQ5WhcNMjUwNTA0MDIzODQ5WjAYMRYwFAYD VQQDEw02ODBkOThiOS0zMDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo79Fqo0ExMKUz93NHeE8no+MgqXDLxfBf2ZUWWBNtqj5F3tCSj4nqL7d7pR0 mr68lJReQlgozdzbZFIS/7x+ZvKzcRLS/ENYaRvG+V33NeVUL2cBTRYoNNEb5nnE TtM5YE4ODg04y0e7kVjHWKQfO5U/8mpxoE478FQ3IemwKkVeG6OF8/51/9zYxI4B Cx/NSKpEotTfIls+HO6Bm/2JHo3tS9yONnlOjt+WUzm8S9prc9fBVWwxXn4W/Esh wn+7PPD/xrnTl6NV66LyO65sYclGpoiQIqMBwutPm+jDRlCJS79jPL7qGhv/m2gN K4/L+KAJgHhFw6lXEhHbE63CfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuLuhbn Ex0glTOjnj472Wv25yFDMB8GA1UdIwQYMBaAFEj1Dha4MFqix1bSHI8P1Qkzilwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTM4OS9CMjE3MEI3NEQz QTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dxTEhWdEljandfVkNUT0tY Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi9TUFVPRnJnd1dx TEhWdEljandfVkNUT0tYQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0AstLMAfcNLvelWqqiB/jVOl2Px/KZ6M0MhMmAPSho6TM6PGEw32K pSORuujZP7/05qzms1gzWoIf1QdMkUrYtbIxDRv0gQE6dyVI7vI0JVhqePg603vI PDaCyWNx/7eG8BQJRU+lX/42pij+yISJrGys5WkT6tMqOeg/SXGCKvciz7oksCsA Z/iH+M1XlU9rHUBIONRv5eZWSecZXucfel5eqB+oFRKMXRbbHXRBRgXCD4vTcpK2 sz5wBHXqLhg3WP6BmVSg58fFsjTXqMdVAH4i6lqB/pO+X/2Y13uI3szTgA1c0/7i KHPuUPk/iTeTJKXA7i6lsS9KFE1cb/RL -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:13 2025 by rpki-client on console.sobornost.net