$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: kzRKHQIKYAasQZmF7JUyH9JdyXfSFyjEZwOHwSgC1cU= Subject key identifier: F0:C3:A2:17:06:AF:DE:74:8C:A3:32:97:91:28:EC:EB:AD:31:D3:C7 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 043C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 0414 Signing time: Sun 27 Apr 2025 00:07:52 +0000 Manifest this update: Sun 27 Apr 2025 00:07:52 +0000 Manifest next update: Sun 04 May 2025 00:07:52 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: 7iXBEuJsSLgX7utH8vHtvwt1LiizsChYJScLn8eYCW0=) 2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=) 3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=) 5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=) 6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1084 (0x43c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Apr 27 00:07:52 2025 GMT Not After : May 4 00:07:52 2025 GMT Subject: CN=680d7558-0b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:48:00:b5:df:7c:03:18:08:e2:35:d2:77:d7: 4a:a2:af:58:e1:b1:50:90:75:7f:ac:b2:b7:69:6a: 1f:1e:05:07:32:66:af:01:6c:87:72:84:c1:1e:c4: 85:1c:9c:65:45:35:fc:4a:bc:89:79:fe:86:4a:e2: 2f:30:99:ff:57:99:af:ef:73:a9:1e:42:9d:94:99: c7:3b:08:da:cc:a6:f8:83:c5:5a:16:6f:be:06:fa: 77:45:58:62:57:01:e5:a1:dc:42:2f:7f:c9:99:0b: 97:f4:74:60:79:81:f0:93:01:8f:ab:d5:4f:f3:b9: 40:3d:06:5e:f3:35:9b:cc:39:e8:ab:e0:77:aa:da: d5:e1:17:74:a6:1b:c5:4d:02:8b:ad:18:88:33:01: 30:59:bb:33:c0:03:fa:c1:08:72:46:d5:2a:0c:80: 62:e7:41:89:64:08:81:10:c9:0f:db:c5:4b:f2:e1: eb:d1:6b:4e:82:98:fc:6b:e2:0e:2d:3a:c2:39:f4: b8:a9:e0:19:dd:64:8b:0a:6d:f5:77:6f:ad:d9:25: 6a:29:e6:b6:fb:ed:8e:9c:15:a3:fb:d3:79:6b:22: fd:35:db:da:87:e6:5c:bb:fa:e0:e4:33:eb:b7:67: 71:6f:2e:16:71:8a:32:31:54:a8:ef:f1:8c:3d:e5: 11:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C3:A2:17:06:AF:DE:74:8C:A3:32:97:91:28:EC:EB:AD:31:D3:C7 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:d6:39:65:05:d7:ce:0e:91:40:5f:5e:cf:94:e0:b4:dc:ef: ab:ec:cd:69:20:53:a4:a1:9d:1f:cd:c0:e2:02:63:4f:60:4a: b9:ba:95:02:c6:7f:5a:38:6b:9b:f5:51:91:3a:cb:a3:a4:19: dd:e5:d1:6f:d3:b7:22:ef:3b:37:3d:4f:6b:60:b5:c0:69:32: 9f:3f:bd:98:db:f9:06:37:6e:4e:f6:2d:31:9b:c3:b8:32:02: 3e:d3:4e:59:13:01:c3:e5:66:5b:d8:5e:eb:cf:f4:96:12:89: d3:ae:d8:03:cb:ee:c8:d3:b8:8c:5a:b8:2c:72:09:7b:89:7e: 2a:f0:bf:99:15:40:68:53:b7:1b:85:a4:e1:2e:b3:50:b4:33: c3:1d:42:62:30:ca:b4:8c:50:14:97:79:0f:b8:48:7f:d8:b8: 04:6a:83:0e:44:63:7c:d1:4b:f1:a6:b7:49:a7:4b:ea:6b:98: 63:41:b1:d3:ac:63:65:fe:c3:39:f8:00:6a:83:a4:d4:dc:ab: 74:01:6e:3b:d4:43:2a:71:11:95:8a:b8:c5:d9:84:66:22:3d: c9:e4:37:c3:f5:1f:a4:a0:b6:87:4a:cd:6c:76:d1:83:1c:49: 71:5d:10:ad:fd:37:80:91:55:d9:68:fd:9e:b8:52:58:7b:4b: d9:9c:df:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUwNDI3MDAwNzUyWhcNMjUwNTA0MDAwNzUyWjAYMRYwFAYD VQQDEw02ODBkNzU1OC0wYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9EgAtd98AxgI4jXSd9dKoq9Y4bFQkHV/rLK3aWofHgUHMmavAWyHcoTBHsSF HJxlRTX8SryJef6GSuIvMJn/V5mv73OpHkKdlJnHOwjazKb4g8VaFm++Bvp3RVhi VwHlodxCL3/JmQuX9HRgeYHwkwGPq9VP87lAPQZe8zWbzDnoq+B3qtrV4Rd0phvF TQKLrRiIMwEwWbszwAP6wQhyRtUqDIBi50GJZAiBEMkP28VL8uHr0WtOgpj8a+IO LTrCOfS4qeAZ3WSLCm31d2+t2SVqKea2++2OnBWj+9N5ayL9Ndvah+Zcu/rg5DPr t2dxby4WcYoyMVSo7/GMPeUROwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDDohcG r950jKMyl5Eo7OutMdPHMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAG1jllBdfODpFAX17PlOC03O+r7M1pIFOkoZ0fzcDiAmNPYEq5upUC xn9aOGub9VGROsujpBnd5dFv07ci7zs3PU9rYLXAaTKfP72Y2/kGN25O9i0xm8O4 MgI+005ZEwHD5WZb2F7rz/SWEonTrtgDy+7I07iMWrgscgl7iX4q8L+ZFUBoU7cb haThLrNQtDPDHUJiMMq0jFAUl3kPuEh/2LgEaoMORGN80UvxprdJp0vqa5hjQbHT rGNl/sM5+ABqg6TU3Kt0AW471EMqcRGVirjF2YRmIj3J5DfD9R+koLaHSs1sdtGD HElxXRCt/TeAkVXZaP2euFJYe0vZnN9Y -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net