$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: 6JvtlwWf/JhCMdm+K+wJ0Zx+pmlcvB8nWeRVtRgfGsc= Subject key identifier: 88:6A:C4:DD:CF:AD:34:E3:72:72:76:02:31:E1:B1:59:E3:24:5C:65 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 03AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 03A2 Signing time: Sun 27 Apr 2025 00:25:24 +0000 Manifest this update: Sun 27 Apr 2025 00:25:23 +0000 Manifest next update: Sun 04 May 2025 00:25:23 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: hkRziSrxL5ABfk6/RMhJfZi3sLAcrJ+faxb2PwhcZcE=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 0ekBq+u3qTtCrN1H3WBpcyEBXqtT/nmRB1wnzUy864Q=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: AajhgEbZBOC20FRVNZHV44NbIbhPj9V3ePlv/pPgwT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 942 (0x3ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Apr 27 00:25:23 2025 GMT Not After : May 4 00:25:23 2025 GMT Subject: CN=680d7974-e004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cb:79:d9:cc:cb:6a:4d:80:0a:5c:34:87:87: 11:23:07:bf:2c:e4:15:32:b6:23:4f:a2:05:7c:d7: 29:d2:63:8c:3f:d4:80:90:b5:c7:5d:d7:d7:17:ff: 2e:62:03:f1:77:08:36:ef:82:98:5a:1f:83:fa:b8: a8:20:5c:cf:17:89:d5:11:65:81:a0:85:8b:44:84: ad:74:41:f3:67:c5:e6:32:fd:2a:62:c9:ba:0e:47: e8:5b:d7:bf:3c:ef:a8:a8:29:cc:01:38:40:e7:4c: fa:e9:bb:2b:5d:a2:af:c6:67:f5:70:c3:8b:2b:e8: e0:f5:4f:37:c7:d1:84:5b:c8:8f:a8:31:34:a1:4a: 13:33:4f:e2:72:03:ac:f7:f4:40:2e:59:47:1a:58: d0:81:df:e7:e3:5c:98:3f:81:46:5c:1c:c2:d3:9f: 7f:32:11:c3:53:5a:51:70:9b:a7:1c:49:82:2c:0c: ef:bc:57:78:2d:10:9f:dd:a2:87:6f:9e:2d:45:f6: bf:a5:63:8c:ea:14:72:c0:c3:cb:fc:47:42:5d:9d: c3:b6:a2:08:62:59:ac:59:ae:0a:79:25:ed:38:b2: d8:31:bb:25:b4:68:e2:5d:7f:c6:a0:f3:87:cb:30: b0:46:95:1a:11:98:d0:7f:42:08:00:8c:b8:4f:2c: 95:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6A:C4:DD:CF:AD:34:E3:72:72:76:02:31:E1:B1:59:E3:24:5C:65 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:56:20:01:d3:e9:d8:ce:0c:4c:2b:5e:6e:23:f3:87:a5:91: 22:af:21:48:04:9a:cd:7f:8e:9c:7e:72:65:5f:b2:73:f5:d2: 25:ba:58:ea:39:93:4e:d7:6c:90:5c:c3:8b:12:64:f6:65:4a: d4:9e:08:b6:a0:3d:87:38:0f:4e:93:50:0c:69:9f:51:e0:49: b3:c0:a3:43:ba:d9:26:1f:22:f3:26:6f:d4:f5:45:d0:66:9d: 1a:5e:f1:f0:22:57:79:f4:82:50:e8:6c:a9:7e:7e:54:21:39: b1:08:ce:30:72:c6:c7:ce:6e:1d:a5:c2:a5:87:10:63:a2:d4: e6:98:0a:ce:1f:f7:aa:18:94:12:8e:86:9c:55:69:ce:04:06: e8:f9:f9:be:ea:ae:8a:44:c8:e5:9e:db:7f:0c:5a:be:1e:4c: f7:14:df:6d:22:67:f6:c1:58:df:9e:46:c0:98:af:d6:e4:7f: ac:09:2f:9c:7c:ba:c7:d0:33:ee:3a:93:1c:84:3b:a9:df:77: ed:f7:13:48:95:d5:87:48:95:cc:83:ff:60:10:21:e3:7f:ba: 22:c2:31:8f:f4:a1:65:20:da:70:06:d2:5a:ce:5a:c1:84:a4: 04:41:28:b6:13:87:8a:f3:a9:c4:49:a3:ba:b0:d6:aa:2e:5f: 5a:8b:5f:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwNDI3MDAyNTIzWhcNMjUwNTA0MDAyNTIzWjAYMRYwFAYD VQQDEw02ODBkNzk3NC1lMDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyct52czLak2AClw0h4cRIwe/LOQVMrYjT6IFfNcp0mOMP9SAkLXHXdfXF/8u YgPxdwg274KYWh+D+rioIFzPF4nVEWWBoIWLRIStdEHzZ8XmMv0qYsm6DkfoW9e/ PO+oqCnMAThA50z66bsrXaKvxmf1cMOLK+jg9U83x9GEW8iPqDE0oUoTM0/icgOs 9/RALllHGljQgd/n41yYP4FGXBzC059/MhHDU1pRcJunHEmCLAzvvFd4LRCf3aKH b54tRfa/pWOM6hRywMPL/EdCXZ3DtqIIYlmsWa4KeSXtOLLYMbsltGjiXX/GoPOH yzCwRpUaEZjQf0IIAIy4TyyVWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhqxN3P rTTjcnJ2AjHhsVnjJFxlMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgViAB0+nYzgxMK15uI/OHpZEiryFIBJrNf46cfnJlX7Jz9dIluljq OZNO12yQXMOLEmT2ZUrUngi2oD2HOA9Ok1AMaZ9R4EmzwKNDutkmHyLzJm/U9UXQ Zp0aXvHwIld59IJQ6Gypfn5UITmxCM4wcsbHzm4dpcKlhxBjotTmmArOH/eqGJQS joacVWnOBAbo+fm+6q6KRMjlntt/DFq+Hkz3FN9tImf2wVjfnkbAmK/W5H+sCS+c fLrH0DPuOpMchDup33ft9xNIldWHSJXMg/9gECHjf7oiwjGP9KFlINpwBtJazlrB hKQEQSi2E4eK86nESaO6sNaqLl9ai19I -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:15 2025 by rpki-client on console.sobornost.net