$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft File: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft (raw, json) Hash identifier: KA33lpK3Q0DiS8Vlj9yXfKIMhCQWK9UMywIdlTnEqTk= Subject key identifier: 3E:09:8F:E6:0B:62:DF:06:18:40:39:F1:15:AF:98:73:09:E5:07:94 Authority key identifier: ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 Certificate issuer: /CN=A91E04ED/serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Certificate serial: 0641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft Manifest number: 063B Signing time: Sat 26 Apr 2025 22:18:15 +0000 Manifest this update: Sat 26 Apr 2025 22:18:14 +0000 Manifest next update: Sat 03 May 2025 22:18:14 +0000 Files and hashes: 1: 7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl (hash: fT9ZCRBlOGkuznEjNJYfKVtB4AUiGXMGXbzMyNMM3y8=) 2: 0665D2328D1A11EB80593760C4F9AE02.roa (hash: BjkJHXkj5+mPaQvI75MMMBdyFJW01ysY4zBzxe7EtMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1601 (0x641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04ED, serialNumber=EDA2AABB40212EB3C092AAEAF15142A769EF5907 Validity Not Before: Apr 26 22:18:14 2025 GMT Not After : May 3 22:18:14 2025 GMT Subject: CN=680d5ba7-ef23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:21:cc:62:4a:8c:d9:ea:67:33:f6:9c:d4:cf: f7:16:2a:0d:ae:24:6d:ff:7d:fe:db:b8:84:39:35: 1c:5b:b8:f6:87:59:22:fb:0f:23:63:22:30:e9:36: 2a:b1:bd:08:e9:45:6d:14:9e:69:a5:ab:98:4f:b6: 0a:f3:f7:a2:76:78:31:f3:5f:05:56:80:a7:aa:b5: 46:cb:ab:8e:3d:36:83:54:35:7c:4e:e4:c0:5c:37: 57:49:2a:f5:86:0b:33:82:ea:53:7a:9d:91:42:7c: 1d:9b:c7:6d:ba:28:a2:18:a0:21:5e:4c:95:74:99: f4:f0:62:e0:b5:e5:3f:44:9b:ea:38:2c:dd:39:52: 4a:1d:01:a6:0e:7f:93:ae:a2:28:a1:7a:3f:a3:92: 17:5e:21:a5:a8:ca:01:20:8a:69:87:34:07:e7:a3: 24:4e:5b:da:2d:f4:54:61:cb:8c:1c:75:b4:24:07: 3d:3d:6f:43:6d:a6:c1:12:14:14:ab:74:cf:3f:8a: df:9a:9c:41:64:5c:64:54:f2:13:44:17:b9:ab:fd: 1b:ea:e2:17:2e:ca:ce:ec:03:cb:fc:d6:42:b1:f8: 16:58:88:fc:a5:4a:c6:2f:35:98:71:16:bc:d8:67: a1:99:58:ca:67:0e:0c:c8:f8:0d:77:08:eb:3b:5c: a0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:09:8F:E6:0B:62:DF:06:18:40:39:F1:15:AF:98:73:09:E5:07:94 X509v3 Authority Key Identifier: keyid:ED:A2:AA:BB:40:21:2E:B3:C0:92:AA:EA:F1:51:42:A7:69:EF:59:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aKqu0AhLrPAkqrq8VFCp2nvWQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04ED/DBE90BAC8D1711EB9368855CC4F9AE02/7aKqu0AhLrPAkqrq8VFCp2nvWQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:55:a0:f0:c4:f3:10:bc:01:2e:16:50:0e:0d:36:a2:17:dd: 83:18:d4:50:29:75:5a:b2:6c:5a:f0:56:7e:9b:0b:ab:ac:8f: a5:ed:d9:f9:13:72:29:db:9c:e7:8e:40:c4:f2:98:da:0d:2d: 93:32:27:88:45:a5:5e:3c:f2:91:d1:e7:0b:4d:26:bc:58:87: 79:27:8b:30:bb:e1:4a:15:d8:2f:ab:b9:a4:c2:d9:93:f8:d9: 15:71:91:75:41:4e:7b:94:da:76:74:a0:94:6d:39:c5:0b:51: ea:61:fa:5e:86:48:7b:74:bd:8a:fe:a5:d0:b1:67:3e:72:70: 3d:01:7d:15:0e:44:ec:27:60:d1:cd:86:cb:6b:2c:91:a5:9d: 97:48:07:17:47:25:78:3e:3d:14:d7:a4:79:64:34:b6:90:28: 94:c8:50:9a:e9:b2:a2:5d:3b:bf:77:e7:9c:af:57:f3:d3:81: 2e:69:32:9c:62:c7:2f:d0:92:62:f7:7f:ec:5f:e4:71:de:60: 7f:21:3b:d3:fb:a4:43:7a:1f:28:8e:36:a7:64:6e:f3:27:47: d4:a5:a0:47:37:ef:48:59:c7:1a:b9:2a:b3:ce:f6:9d:e4:1b: b9:2f:bf:65:44:95:f6:fe:f0:be:43:a6:6b:95:40:db:9f:e7: 58:d2:02:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RUQxMTAvBgNVBAUTKEVEQTJBQUJCNDAyMTJFQjNDMDkyQUFFQUYxNTE0MkE3 NjlFRjU5MDcwHhcNMjUwNDI2MjIxODE0WhcNMjUwNTAzMjIxODE0WjAYMRYwFAYD VQQDEw02ODBkNWJhNy1lZjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSHMYkqM2epnM/ac1M/3FioNriRt/33+27iEOTUcW7j2h1ki+w8jYyIw6TYq sb0I6UVtFJ5ppauYT7YK8/eidngx818FVoCnqrVGy6uOPTaDVDV8TuTAXDdXSSr1 hgszgupTep2RQnwdm8dtuiiiGKAhXkyVdJn08GLgteU/RJvqOCzdOVJKHQGmDn+T rqIooXo/o5IXXiGlqMoBIIpphzQH56MkTlvaLfRUYcuMHHW0JAc9PW9DbabBEhQU q3TPP4rfmpxBZFxkVPITRBe5q/0b6uIXLsrO7APL/NZCsfgWWIj8pUrGLzWYcRa8 2GehmVjKZw4MyPgNdwjrO1yg+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD4Jj+YL Yt8GGEA58RWvmHMJ5QeUMB8GA1UdIwQYMBaAFO2iqrtAIS6zwJKq6vFRQqdp71kH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRFRC9EQkU5MEJBQzhE MTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExyUEFrcXJxOFZGQ3AybnZX UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhS3F1MEFoTHJQQWtxcnE4VkZDcDJudldRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRFRC9EQkU5MEJBQzhEMTcxMUVCOTM2ODg1NUNDNEY5QUUwMi83YUtxdTBBaExy UEFrcXJxOFZGQ3AybnZXUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2VaDwxPMQvAEuFlAODTaiF92DGNRQKXVasmxa8FZ+mwurrI+l7dn5 E3Ip25znjkDE8pjaDS2TMieIRaVePPKR0ecLTSa8WId5J4swu+FKFdgvq7mkwtmT +NkVcZF1QU57lNp2dKCUbTnFC1HqYfpehkh7dL2K/qXQsWc+cnA9AX0VDkTsJ2DR zYbLayyRpZ2XSAcXRyV4Pj0U16R5ZDS2kCiUyFCa6bKiXTu/d+ecr1fz04EuaTKc Yscv0JJi93/sX+Rx3mB/ITvT+6RDeh8ojjanZG7zJ0fUpaBHN+9IWccauSqzzvad 5Bu5L79lRJX2/vC+Q6ZrlUDbn+dY0gJN -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net