$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft (raw, json) Hash identifier: NeBj+dNQIQtQNU5cUYwI+ordhr8/Y2qmRPSbV+/L8Wc= Subject key identifier: 1E:9C:17:43:EB:B2:F6:44:5C:71:63:E6:7E:B3:63:B1:8E:9F:F7:65 Authority key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 Certificate issuer: /CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Certificate serial: 1F0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft Manifest number: 1F01 Signing time: Mon 28 Apr 2025 16:08:11 +0000 Manifest this update: Mon 28 Apr 2025 16:08:11 +0000 Manifest next update: Mon 05 May 2025 16:08:11 +0000 Files and hashes: 1: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl (hash: gKqYGsc4zs5e8DGex5zhbLnxK+nuoOnry9lGqRoeMF0=) 2: E723101E553D11E7B552CE31C4F9AE02.roa (hash: GAb6VP25Sih6kuMJl/07aQz0S9qS9uziUSigVGvFQjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7949 (0x1f0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF937, serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Validity Not Before: Apr 28 16:08:11 2025 GMT Not After : May 5 16:08:11 2025 GMT Subject: CN=680fa7eb-09d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2a:a9:60:db:1a:81:03:55:66:26:6f:79:86: c5:9d:ae:0c:a4:39:5c:06:34:1e:eb:44:12:47:62: 24:1d:d3:1f:7e:bf:00:b7:d1:d5:3e:52:ff:2f:8e: d8:34:a0:16:06:7e:80:90:de:44:fc:8b:57:92:a8: 61:6f:b1:ed:48:46:00:74:cb:a8:5a:bc:c0:2f:ab: 0e:3a:c6:23:67:e7:0e:a0:19:aa:35:22:1e:7c:e7: 27:70:46:8f:de:99:5d:5d:bf:1c:a8:24:5d:df:e4: c6:b9:03:cf:d6:f1:78:1c:22:d4:ff:78:d7:ee:5a: c7:56:b0:c0:f0:0e:14:2c:f1:9d:c3:6f:a7:2f:55: 69:bd:52:0b:4e:5d:d6:40:32:0c:0c:f2:be:e7:e9: c2:d6:3a:a1:4b:f1:f5:b4:8c:22:ad:2a:80:25:7a: 65:85:9c:76:92:8c:8b:cd:fa:12:f9:fa:7e:98:5a: 67:4b:8c:fe:b1:4e:06:d9:25:91:a7:e6:04:fd:74: f9:37:6e:c8:52:ab:75:be:1a:89:00:5d:e6:65:bd: a2:4f:08:57:44:3e:de:5f:10:99:f4:9c:e2:8a:22: a6:45:c6:29:1e:c8:da:ab:fb:b8:75:94:32:76:6c: 18:f8:36:6f:df:39:fa:e9:97:c4:3e:62:7c:4f:40: b8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9C:17:43:EB:B2:F6:44:5C:71:63:E6:7E:B3:63:B1:8E:9F:F7:65 X509v3 Authority Key Identifier: keyid:C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b4:42:2b:90:9e:10:ca:80:0e:4c:6a:9f:09:db:5b:54:fe: a3:c9:a2:c6:34:e7:ae:be:15:c7:e1:81:63:35:84:1e:77:77: ce:e0:c4:1d:56:a6:58:05:67:e3:85:84:2b:84:31:c7:29:09: 82:7c:cb:f9:f6:90:9a:b2:63:13:e9:70:fe:11:c2:c8:ff:76: e0:e0:b0:25:8e:fd:e6:42:aa:e6:36:22:f7:f8:00:8b:bc:65: f3:96:00:4e:c8:d1:e5:b0:b9:aa:d8:a2:e5:06:24:ad:57:a2: e4:f5:37:3c:4c:19:83:91:0f:e8:cb:f3:a0:6e:57:bb:ad:45: d3:e3:b7:02:e7:62:5a:88:de:06:76:c5:7f:f0:83:23:4e:d1: 61:43:15:49:a2:37:29:bb:f2:46:b0:47:05:fa:9a:84:93:d2: 92:6a:bb:20:0d:12:53:1a:82:0c:ae:da:0a:10:73:a1:c0:2f: ce:5a:ad:d6:ec:8f:5d:ab:cf:0d:72:9b:d5:89:0e:e0:42:66: 2c:29:da:7a:8e:7e:c4:8e:32:81:59:e5:f7:da:52:3a:57:be: 47:53:07:66:94:c2:1d:0b:d2:c7:fc:d7:27:cf:ae:33:d3:69: 08:10:ba:a0:0a:83:01:28:a3:08:16:98:4f:17:ed:0b:54:05: 36:0c:ac:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5MzcxMTAvBgNVBAUTKEM0OUU1MTgzRUEyRkM0OUI4QTgzQzkyMDUyQkNFMkE4 QjY1NzZDNzAwHhcNMjUwNDI4MTYwODExWhcNMjUwNTA1MTYwODExWjAYMRYwFAYD VQQDEw02ODBmYTdlYi0wOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyqpYNsagQNVZiZveYbFna4MpDlcBjQe60QSR2IkHdMffr8At9HVPlL/L47Y NKAWBn6AkN5E/ItXkqhhb7HtSEYAdMuoWrzAL6sOOsYjZ+cOoBmqNSIefOcncEaP 3pldXb8cqCRd3+TGuQPP1vF4HCLU/3jX7lrHVrDA8A4ULPGdw2+nL1VpvVILTl3W QDIMDPK+5+nC1jqhS/H1tIwirSqAJXplhZx2koyLzfoS+fp+mFpnS4z+sU4G2SWR p+YE/XT5N27IUqt1vhqJAF3mZb2iTwhXRD7eXxCZ9JziiiKmRcYpHsjaq/u4dZQy dmwY+DZv3zn66ZfEPmJ8T0C4dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6cF0Pr svZEXHFj5n6zY7GOn/dlMB8GA1UdIwQYMBaAFMSeUYPqL8SbioPJIFK84qi2V2xw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzNy9BNDQ3QkZEQzU1 MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhKdUtnOGtnVXJ6aXFMWlhi SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hKNVJnLW92eEp1S2c4a2dVcnppcUxaWGJIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjkzNy9BNDQ3QkZEQzU1MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhK dUtnOGtnVXJ6aXFMWlhiSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNtEIrkJ4QyoAOTGqfCdtbVP6jyaLGNOeuvhXH4YFjNYQed3fO4MQd VqZYBWfjhYQrhDHHKQmCfMv59pCasmMT6XD+EcLI/3bg4LAljv3mQqrmNiL3+ACL vGXzlgBOyNHlsLmq2KLlBiStV6Lk9Tc8TBmDkQ/oy/Ogble7rUXT47cC52JaiN4G dsV/8IMjTtFhQxVJojcpu/JGsEcF+pqEk9KSarsgDRJTGoIMrtoKEHOhwC/OWq3W 7I9dq88NcpvViQ7gQmYsKdp6jn7EjjKBWeX32lI6V75HUwdmlMIdC9LH/Ncnz64z 02kIELqgCoMBKKMIFphPF+0LVAU2DKxG -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:03 2025 by rpki-client on console.sobornost.net