$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: 7xIcatxko8zxQ3eOYSeBVehTy/J+0fXyGqmmYHi7M1o= Subject key identifier: FA:50:DA:1C:F1:6C:E6:F9:0A:23:74:59:2C:A2:6F:48:2E:57:80:91 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 76 Signing time: Sun 27 Apr 2025 05:37:00 +0000 Manifest this update: Sun 27 Apr 2025 05:36:59 +0000 Manifest next update: Sun 04 May 2025 05:36:59 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: 9v3fM9By7Aq4sR+WcpVuE44GxijlyTYUquzzkfA7UlM=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Apr 27 05:36:59 2025 GMT Not After : May 4 05:36:59 2025 GMT Subject: CN=680dc27c-021b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:da:68:08:f4:8a:30:08:f9:38:25:00:fb:20: 7c:57:01:a6:41:41:c6:a5:02:1b:cd:7b:cb:53:29: 54:61:67:7a:db:44:b4:42:af:4e:0b:24:9b:f1:e9: e7:3c:69:e8:16:7c:59:28:53:52:a1:8a:5e:6a:c4: f7:09:e2:69:5e:c0:ef:78:ce:72:d7:57:4d:c6:c5: ae:a8:2b:16:13:c8:ce:e8:83:5d:2a:7b:08:8c:9a: 4e:f7:69:5d:45:32:54:75:a0:bf:0d:79:80:00:29: 3b:69:1b:ab:c9:32:6b:6d:d0:81:41:e4:92:8a:70: 78:e5:53:09:a3:0f:1d:9c:d4:fb:ee:b9:06:5d:86: 17:39:77:a2:c2:a5:a8:ac:2a:b1:a7:6c:f6:2b:20: b7:4c:85:79:34:f1:e9:42:24:50:c6:85:53:1b:ad: 4f:d1:d7:21:2e:74:15:37:45:73:f4:06:b9:cd:ea: 0e:5f:4a:1f:f0:3e:75:9c:df:5b:72:08:16:b6:a8: e7:0d:00:98:25:78:5a:09:ec:09:4e:9c:c0:1d:6d: 28:a1:a5:ba:56:69:05:a0:58:ee:ac:de:20:29:13: f1:18:21:f8:83:01:39:b5:42:a5:0d:a3:dd:33:85: a8:98:8c:8f:cd:8d:7a:a4:aa:3f:c6:b2:40:c8:53: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:50:DA:1C:F1:6C:E6:F9:0A:23:74:59:2C:A2:6F:48:2E:57:80:91 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:14:fd:f6:13:2f:eb:97:63:d9:05:08:1b:d4:d4:23:40:0d: 16:60:b4:3a:18:d4:b7:bf:48:cc:40:12:74:d3:1b:35:fe:99: 28:7c:ce:d8:86:64:3b:3b:63:0b:16:2f:68:4f:34:1a:ec:f3: 0b:04:a7:5b:a5:24:94:38:24:70:ac:42:28:3e:7a:d3:27:e0: d4:8c:bb:f7:0b:71:2c:27:37:46:4d:78:f5:6f:04:69:82:39: 4b:d4:e6:4b:17:7f:ce:b5:7d:1a:c3:e2:53:75:49:0e:53:34: 87:fd:15:97:0d:97:bc:6b:98:53:67:4a:ad:49:04:6b:63:0f: 04:5c:f0:df:0d:a7:d0:36:42:a4:b4:21:11:f7:9d:df:59:96: bd:8a:e6:d2:af:81:87:63:e0:08:27:05:3e:18:f0:f1:43:2e: 11:a1:cf:b7:cd:b5:14:d9:31:ce:55:35:d2:b5:e5:33:09:f6: 9f:6f:3f:9f:44:8b:4d:4b:3a:80:f8:a9:27:82:4f:24:79:2e: e4:d0:fd:57:4c:87:c8:5c:38:07:66:c5:b6:f1:a6:7e:ba:32: 72:52:81:ce:3f:ba:67:24:79:de:51:c7:f6:bd:06:4b:e0:07: 11:bf:e0:51:1a:91:36:21:26:eb:5b:e7:15:f2:de:f2:5a:3d: 7b:cc:29:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkE1QjExMC8GA1UEBRMoOEI0ODZBQ0NBRjEyQTY3QTk1Njg4RThEMTFCRDY1OEMw NDFDMTI1QTAeFw0yNTA0MjcwNTM2NTlaFw0yNTA1MDQwNTM2NTlaMBgxFjAUBgNV BAMTDTY4MGRjMjdjLTAyMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE2mgI9IowCPk4JQD7IHxXAaZBQcalAhvNe8tTKVRhZ3rbRLRCr04LJJvx6ec8 aegWfFkoU1Khil5qxPcJ4mlewO94znLXV03Gxa6oKxYTyM7og10qewiMmk73aV1F MlR1oL8NeYAAKTtpG6vJMmtt0IFB5JKKcHjlUwmjDx2c1PvuuQZdhhc5d6LCpais KrGnbPYrILdMhXk08elCJFDGhVMbrU/R1yEudBU3RXP0BrnN6g5fSh/wPnWc31ty CBa2qOcNAJgleFoJ7AlOnMAdbSihpbpWaQWgWO6s3iApE/EYIfiDATm1QqUNo90z haiYjI/NjXqkqj/GskDIUwwJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+lDaHPFs 5vkKI3RZLKJvSC5XgJEwHwYDVR0jBBgwFoAUi0hqzK8SpnqVaI6NEb1ljAQcElow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQTVCLzREN0NFNjZBNzBF NzExRUZCNDQ0QUY3MEM0RjlBRTAyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vs by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaTBocXpLOFNwbnFWYUk2TkViMWxqQVFjRWxvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QTVCLzREN0NFNjZBNzBFNzExRUZCNDQ0QUY3MEM0RjlBRTAyL2kwaHF6SzhTcG5x VmFJNk5FYjFsakFRY0Vsby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABAU/fYTL+uXY9kFCBvU1CNADRZgtDoY1Le/SMxAEnTTGzX+mSh8ztiG ZDs7YwsWL2hPNBrs8wsEp1ulJJQ4JHCsQig+etMn4NSMu/cLcSwnN0ZNePVvBGmC OUvU5ksXf861fRrD4lN1SQ5TNIf9FZcNl7xrmFNnSq1JBGtjDwRc8N8Np9A2QqS0 IRH3nd9Zlr2K5tKvgYdj4AgnBT4Y8PFDLhGhz7fNtRTZMc5VNdK15TMJ9p9vP59E i01LOoD4qSeCTyR5LuTQ/VdMh8hcOAdmxbbxpn66MnJSgc4/umcked5Rx/a9Bkvg BxG/4FEakTYhJutb5xXy3vJaPXvMKWE= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:57 2025 by rpki-client on console.sobornost.net