$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: x8XyFWH0beTrsMnk4iqjjTnUFOhG56NJHomlMuwZXBQ= Subject key identifier: 36:1E:41:94:6E:7C:CC:B6:38:46:43:5C:2F:88:D2:73:20:D0:36:B3 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B03 Signing time: Thu 24 Apr 2025 19:12:31 +0000 Manifest this update: Thu 24 Apr 2025 19:12:30 +0000 Manifest next update: Thu 01 May 2025 19:12:30 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: VNxyfyDX6/5Nz0kxC322sZpIUykyYH9iE8I7bj9Gr6w=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: gD5Iq8akoAlTIS4ryMBL5JIYOH1ViK0S3xNtIRVVfYc=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: 2OIryrqTJwARaXm6rXTbRJKfK80d24FVCzeiupTYqAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2831 (0xb0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Apr 24 19:12:30 2025 GMT Not After : May 1 19:12:30 2025 GMT Subject: CN=680a8d1f-2f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ff:1d:24:36:de:68:47:bd:d7:48:3e:b4:6f: 3a:8a:b8:d1:51:18:2d:bc:29:67:4a:7f:48:d5:22: c9:7b:88:28:5d:bd:99:d7:99:59:bf:9c:b9:80:5e: c5:68:4c:59:d4:d6:c1:d6:41:7f:d3:df:73:60:6a: 59:f7:53:08:16:af:c8:43:cd:2f:8b:60:02:cc:55: de:ce:36:9e:20:5a:70:d9:1a:8f:86:f1:5b:16:c0: 1a:8b:ac:93:29:69:8f:67:59:37:a0:ac:60:55:24: 6e:93:af:33:65:cd:a6:c4:d9:1d:1f:a9:88:49:8c: 0f:5c:f6:ea:05:e4:a7:4c:4d:93:fd:ba:ca:a7:d6: 72:af:7d:3f:7a:e4:b5:6e:f9:cb:41:f1:0d:42:bd: 46:9e:0a:99:8b:a1:63:cf:19:6c:3b:72:b9:49:c2: 21:1f:f0:86:5e:d2:15:53:d0:76:80:7e:db:bd:18: 8e:b3:27:c3:8a:13:95:a3:52:4d:60:a2:ca:20:05: 19:a7:50:77:90:a2:d1:03:68:39:1f:4a:a4:be:d6: 53:22:c3:9c:7e:d7:59:34:41:fc:8d:00:86:6f:17: 56:88:7d:6b:59:df:01:75:6a:6b:d4:f6:5b:2e:91: ca:c8:00:82:8d:f0:6a:ca:6e:ec:fd:2b:a0:68:3f: cf:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:1E:41:94:6E:7C:CC:B6:38:46:43:5C:2F:88:D2:73:20:D0:36:B3 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:7a:bb:d1:97:74:7d:bd:e0:24:9b:69:ee:01:16:a9:7f:ec: cd:5b:d8:cc:a8:97:99:c2:bb:e3:d8:2d:94:7c:00:b0:9b:27: b6:24:97:13:7a:f4:e6:37:94:27:e2:ef:8a:d6:42:78:bd:d1: 1d:a8:f8:a0:6a:7c:51:60:88:23:12:89:6a:54:5d:9c:76:48: 32:3f:55:63:15:c1:43:20:bb:fe:0c:b0:95:63:0c:24:f4:d1: 01:9a:17:fa:7f:a5:dd:c9:e4:ef:de:c5:1c:7f:6f:01:d4:e4: 49:eb:38:af:11:02:ae:cd:c9:b3:f9:00:f2:06:74:f0:ab:61: 79:cf:45:4f:74:cb:d2:85:8b:b2:25:eb:66:dc:89:bf:88:6b: 62:15:04:c5:b6:3e:b0:11:88:9e:56:3e:3b:a8:d8:fd:3e:fc: 8b:74:72:83:f7:90:38:5e:25:e3:94:bd:b6:23:6d:26:30:0c: d0:47:0b:a4:11:89:f0:87:17:13:6b:f0:f7:aa:5d:b2:93:48: 2b:99:60:2a:bf:4c:26:6b:ad:d6:a1:ff:82:de:f1:a8:f4:ec: 31:a6:87:15:65:a5:45:8d:56:c3:68:b3:4f:de:a6:fc:48:24: 08:a3:d2:30:ee:56:e7:24:aa:29:35:19:b4:a4:15:f4:9b:7a: a6:fa:73:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUwNDI0MTkxMjMwWhcNMjUwNTAxMTkxMjMwWjAYMRYwFAYD VQQDEw02ODBhOGQxZi0yZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqv8dJDbeaEe910g+tG86irjRURgtvClnSn9I1SLJe4goXb2Z15lZv5y5gF7F aExZ1NbB1kF/099zYGpZ91MIFq/IQ80vi2ACzFXezjaeIFpw2RqPhvFbFsAai6yT KWmPZ1k3oKxgVSRuk68zZc2mxNkdH6mISYwPXPbqBeSnTE2T/brKp9Zyr30/euS1 bvnLQfENQr1GngqZi6FjzxlsO3K5ScIhH/CGXtIVU9B2gH7bvRiOsyfDihOVo1JN YKLKIAUZp1B3kKLRA2g5H0qkvtZTIsOcftdZNEH8jQCGbxdWiH1rWd8BdWpr1PZb LpHKyACCjfBqym7s/SugaD/PnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYeQZRu fMy2OEZDXC+I0nMg0DazMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkervRl3R9veAkm2nuARapf+zNW9jMqJeZwrvj2C2UfACwmye2JJcT evTmN5Qn4u+K1kJ4vdEdqPiganxRYIgjEolqVF2cdkgyP1VjFcFDILv+DLCVYwwk 9NEBmhf6f6XdyeTv3sUcf28B1ORJ6zivEQKuzcmz+QDyBnTwq2F5z0VPdMvShYuy Jetm3Im/iGtiFQTFtj6wEYieVj47qNj9PvyLdHKD95A4XiXjlL22I20mMAzQRwuk EYnwhxcTa/D3ql2yk0grmWAqv0wma63Wof+C3vGo9OwxpocVZaVFjVbDaLNP3qb8 SCQIo9Iw7lbnJKopNRm0pBX0m3qm+nPd -----END CERTIFICATE-----Generated at Fri Apr 25 00:08:32 2025 by rpki-client on console.sobornost.net