$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft File: bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft (raw, json) Hash identifier: d+s7fidw45GRRsFnfiU2/aR5yFFA4iScmvuXv8uQM4Q= Subject key identifier: 1F:75:9A:99:01:90:17:93:9B:C5:11:53:FA:16:57:F8:2F:E2:7A:3F Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft Manifest number: 3555 Signing time: Mon 28 Apr 2025 14:17:47 +0000 Manifest this update: Mon 28 Apr 2025 14:17:46 +0000 Manifest next update: Mon 05 May 2025 14:17:46 +0000 Files and hashes: 1: bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl (hash: IIb7OykTj6xprnRQrApXYePX/43btJ1o6npDKoY2bsc=) 2: 119B023E80A111EFAC559545C4F9AE02.roa (hash: UcLab4fcVSxFTCKz9jwV2FcIwBHm9AwWLQOJArqJHjI=) 3: D06D852C0E8411EFB653657DC4F9AE02.roa (hash: SywI770ENl7TLzZPS+7Qd4FzLZZohYfrrDDPXPl1a7g=) 4: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (hash: GhMpIsuZe6UWSXVhxx0gZ7LGDFuMOBfOpEr3szGlSIw=) 5: 5E05FB54A8FE11E990A7E27FC4F9AE02.roa (hash: mkS8yistQSPi7NMH1JehepWmWxUa6l17roNRXFEiwqI=) 6: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (hash: MXTujm5bxVtwRR2qRhwfBiQo+U60HZqoc/46+Q9rCqg=) 7: 88978730772311EBB972032EC4F9AE02.roa (hash: nz3/6k7N3mPNzs0DFxh1VvDXVpDIjk6/7OQf5UZ/EgA=) 8: 331F345A383611E6B2282B5DC4F9AE02.roa (hash: WuXzJGatSIhxLLVFJYnAc7zb2/GN+pIVoHOaMyICWzI=) 9: 318FB51A383611E6B2282B5DC4F9AE02.roa (hash: 4Q3os1Mfu8xIUdVQK6hTBnRWzUONxabmo1fE2pyLLXE=) 10: 328EDB76383611E6B2282B5DC4F9AE02.roa (hash: ch1wPAb/c25q+6cdmEAHM5pjXCNPqiccski5eE5WXDs=) 11: 3204348A383611E6B2282B5DC4F9AE02.roa (hash: mPli45HHzDhlWzD7+vX8/tUBtrWHY58J4/XZrbS0zeo=) 12: 89A73D46772311EBB972032EC4F9AE02.roa (hash: 9hXnGMU3WUCKM3WK6+9iFLRQ6N17p8pM/kmtF91qcvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13824 (0x3600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Apr 28 14:17:46 2025 GMT Not After : May 5 14:17:46 2025 GMT Subject: CN=680f8e0b-1a00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:13:48:d8:fa:10:f1:2b:e7:7c:70:bf:4a:aa: 44:16:6c:17:7b:fb:d9:bd:41:36:78:ec:c2:c0:07: 31:ed:f9:3a:2f:e6:59:11:9c:6c:be:7b:4b:37:a5: c6:56:fe:b5:57:89:d1:db:22:0a:7e:33:a0:ea:54: 6f:21:34:ad:94:f6:7c:b6:1d:6a:b3:a3:f4:3c:02: 6a:99:cd:49:86:46:67:2f:e4:94:97:69:95:78:d8: e2:7f:00:74:81:99:42:27:51:16:a6:1e:21:2a:43: b5:4a:60:3b:81:9a:8d:f3:1e:13:b9:4f:cc:c8:6c: 09:27:1e:51:af:39:3c:a5:d4:73:1c:44:f9:ba:82: f8:a1:56:4e:18:a1:fb:84:67:23:a8:47:89:4e:b5: 21:dd:ab:c6:36:3a:a6:95:c3:83:d1:8b:95:58:b6: 94:bb:c6:d9:b9:92:ac:13:48:55:45:8f:dc:0f:16: 6d:bd:1a:eb:ad:72:78:b2:f2:0d:6b:06:99:d7:93: ad:21:91:a2:6a:d5:d1:c0:39:72:1f:95:a7:82:3e: 13:16:01:72:f4:a3:8f:ad:44:69:05:29:95:ff:b2: 65:75:7d:4b:51:3f:d8:a8:87:32:96:4f:b0:9b:e2: f9:e3:d2:47:83:7d:f6:6b:26:ec:76:95:d1:f4:9a: dd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:75:9A:99:01:90:17:93:9B:C5:11:53:FA:16:57:F8:2F:E2:7A:3F X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4c:a8:ae:47:11:53:e7:86:46:f4:55:b0:68:32:4c:5a:4b: 38:01:d5:c7:92:99:0a:ce:bb:e7:d0:dd:06:90:e1:4c:24:52: ad:fb:5a:92:d9:a2:55:55:f8:39:7a:f5:ef:32:f2:a5:66:f7: ce:f4:a5:35:08:c5:14:25:48:28:af:af:16:f6:6c:a9:f2:d0: ab:14:74:07:a2:a0:3a:20:07:2d:10:88:58:7a:27:9e:8e:66: cd:a0:ae:96:c0:98:43:d6:6d:fa:bb:fa:50:84:6e:eb:93:9d: 96:f4:2c:e6:41:a7:78:6b:00:bd:60:28:d7:11:27:42:11:31: fc:98:7e:28:09:8b:cc:06:4f:5a:65:bc:84:3a:43:03:b1:af: 56:e6:37:62:e8:c9:6d:7b:21:76:38:e3:28:5f:f0:ee:99:86: 45:8e:36:1d:ca:66:0b:d6:18:d4:40:8d:ec:01:bc:8d:49:7d: 39:1c:86:58:e4:18:8a:89:87:8a:a9:f4:7a:ad:41:25:97:d3: ed:fb:77:f3:8e:7e:46:10:ce:2a:06:b5:9f:3c:3a:bb:a6:b4: 6c:1e:b0:b5:43:af:ae:c0:e7:17:fd:f3:4b:ef:89:01:8b:b8: 56:3e:ee:e7:43:bf:84:63:f1:9d:50:eb:94:ee:57:24:83:46: b7:54:db:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNDI4MTQxNzQ2WhcNMjUwNTA1MTQxNzQ2WjAYMRYwFAYD VQQDEw02ODBmOGUwYi0xYTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxNI2PoQ8SvnfHC/SqpEFmwXe/vZvUE2eOzCwAcx7fk6L+ZZEZxsvntLN6XG Vv61V4nR2yIKfjOg6lRvITStlPZ8th1qs6P0PAJqmc1JhkZnL+SUl2mVeNjifwB0 gZlCJ1EWph4hKkO1SmA7gZqN8x4TuU/MyGwJJx5Rrzk8pdRzHET5uoL4oVZOGKH7 hGcjqEeJTrUh3avGNjqmlcOD0YuVWLaUu8bZuZKsE0hVRY/cDxZtvRrrrXJ4svIN awaZ15OtIZGiatXRwDlyH5Wngj4TFgFy9KOPrURpBSmV/7JldX1LUT/YqIcylk+w m+L549JHg332aybsdpXR9Jrd0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB91mpkB kBeTm8URU/oWV/gv4no/MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTcwQi85N0FGNkRGMDFENkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJU MllTSEduTWhxZEZwWUw0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbTKiuRxFT54ZG9FWwaDJMWks4AdXHkpkKzrvn0N0GkOFMJFKt+1qS 2aJVVfg5evXvMvKlZvfO9KU1CMUUJUgor68W9myp8tCrFHQHoqA6IActEIhYeiee jmbNoK6WwJhD1m36u/pQhG7rk52W9CzmQad4awC9YCjXESdCETH8mH4oCYvMBk9a ZbyEOkMDsa9W5jdi6MlteyF2OOMoX/DumYZFjjYdymYL1hjUQI3sAbyNSX05HIZY 5BiKiYeKqfR6rUEll9Pt+3fzjn5GEM4qBrWfPDq7prRsHrC1Q6+uwOcX/fNL74kB i7hWPu7nQ7+EY/GdUOuU7lckg0a3VNuA -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:03 2025 by rpki-client on console.sobornost.net