$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: 8UQD42VO2a+gaCsna15aI63qBck/txf/JfgxuDk8wrM= Subject key identifier: 53:61:C9:B2:56:CF:BC:BE:BA:99:78:23:08:98:E3:32:50:05:C2:59 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C0E Signing time: Mon 28 Apr 2025 18:54:24 +0000 Manifest this update: Mon 28 Apr 2025 18:54:24 +0000 Manifest next update: Mon 05 May 2025 18:54:24 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: LKyi8Krxf9CcN50eW/OB7QzpeL5nZL92AOfKmRZ3ttM=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Apr 28 18:54:24 2025 GMT Not After : May 5 18:54:24 2025 GMT Subject: CN=680fcee0-277f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a1:97:8d:8f:29:d8:12:5f:50:1f:54:91:49: 3d:f0:ef:2b:10:6b:21:22:78:88:17:cb:ae:72:24: 2b:89:c2:68:1d:9d:ff:71:23:ea:ef:9c:ed:b8:de: 92:71:69:76:1e:1e:6b:4a:cc:6e:3d:4a:54:73:ab: a1:fb:68:e8:03:e2:74:91:06:59:32:4f:16:c0:8f: ff:19:f1:a8:0c:ce:12:6f:f7:03:bb:7e:4a:d8:e6: 11:00:25:80:49:59:1c:9d:aa:c3:a8:18:51:7a:41: 0f:47:c9:28:60:a0:65:39:43:81:0d:be:fe:c5:13: f4:c1:ca:c3:2e:68:2c:2d:59:4c:fb:bd:96:3d:e5: 72:dc:8b:04:e1:94:7a:e4:bb:a3:7c:bd:36:43:6f: 5e:d6:d9:88:75:78:1a:04:f5:14:ab:26:da:9f:1a: 1d:53:4f:73:81:6b:80:5c:1c:54:ff:18:da:b3:0d: ae:17:50:32:be:7c:81:4a:3c:8c:da:81:19:cf:a6: a8:e9:4d:df:36:d8:43:8b:bd:f9:d4:c9:08:ff:da: 34:d1:18:8e:14:76:86:fe:cb:34:cc:98:0d:d0:38: 72:4e:31:03:20:fa:31:21:29:a6:1d:dc:d5:63:6e: c4:8a:08:4c:63:ea:9c:34:1b:d4:ac:91:fe:e2:31: 6d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:61:C9:B2:56:CF:BC:BE:BA:99:78:23:08:98:E3:32:50:05:C2:59 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e1:27:e8:7f:53:f0:d7:df:4e:d4:b0:50:37:ee:0d:bd:39: df:bc:6f:b0:66:4b:3c:5a:37:26:fe:77:11:96:a9:05:f6:ce: c3:be:69:4a:c4:47:45:dc:71:69:e1:21:2b:2c:94:de:a2:9b: fc:24:b1:d3:cb:5a:f5:f6:07:33:58:62:74:5c:8d:c9:ed:5e: 24:bb:8c:38:8d:fd:92:1b:73:d2:59:36:f7:04:f7:ee:23:2d: aa:c9:06:a3:1f:1a:fa:64:5a:e6:03:8c:12:16:22:d3:50:93: 9f:f3:97:35:05:15:aa:db:17:92:f1:ed:f8:d5:83:7a:bb:68: 99:b6:bd:81:56:df:4b:12:22:0c:c9:05:c7:bd:e3:4c:1a:fb: e4:df:bd:ec:e2:fa:f0:07:94:c9:5b:57:9d:5c:97:fd:5e:4a: 31:d7:0e:d4:21:cd:ff:67:ae:ad:8e:09:a9:0d:31:45:cd:26: 93:a7:7e:86:69:de:36:7d:f2:53:3f:c8:d6:64:8f:53:5e:dc: bb:cc:f7:57:dd:3b:b1:56:4b:8f:d5:03:db:a9:03:0a:38:e1: ef:78:11:10:34:4b:b1:29:6e:f3:9f:a6:c0:79:a4:c4:01:6c: a7:31:f3:dc:be:1a:83:95:25:95:b1:49:a3:e6:b1:23:e0:21: c0:c5:99:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUwNDI4MTg1NDI0WhcNMjUwNTA1MTg1NDI0WjAYMRYwFAYD VQQDEw02ODBmY2VlMC0yNzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKGXjY8p2BJfUB9UkUk98O8rEGshIniIF8uuciQricJoHZ3/cSPq75ztuN6S cWl2Hh5rSsxuPUpUc6uh+2joA+J0kQZZMk8WwI//GfGoDM4Sb/cDu35K2OYRACWA SVkcnarDqBhRekEPR8koYKBlOUOBDb7+xRP0wcrDLmgsLVlM+72WPeVy3IsE4ZR6 5LujfL02Q29e1tmIdXgaBPUUqybanxodU09zgWuAXBxU/xjasw2uF1AyvnyBSjyM 2oEZz6ao6U3fNthDi7351MkI/9o00RiOFHaG/ss0zJgN0DhyTjEDIPoxISmmHdzV Y27EighMY+qcNBvUrJH+4jFtlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNhybJW z7y+upl4IwiY4zJQBcJZMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb4Sfof1Pw199O1LBQN+4NvTnfvG+wZks8Wjcm/ncRlqkF9s7DvmlK xEdF3HFp4SErLJTeopv8JLHTy1r19gczWGJ0XI3J7V4ku4w4jf2SG3PSWTb3BPfu Iy2qyQajHxr6ZFrmA4wSFiLTUJOf85c1BRWq2xeS8e341YN6u2iZtr2BVt9LEiIM yQXHveNMGvvk373s4vrwB5TJW1edXJf9Xkox1w7UIc3/Z66tjgmpDTFFzSaTp36G ad42ffJTP8jWZI9TXty7zPdX3TuxVkuP1QPbqQMKOOHveBEQNEuxKW7zn6bAeaTE AWynMfPcvhqDlSWVsUmj5rEj4CHAxZlI -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:57 2025 by rpki-client on console.sobornost.net