$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: VH/cbKHL4F/nubLWMCVeESSW3lHF9PX96+c5QsHTcOA= Subject key identifier: F0:1A:56:81:F0:19:27:2F:71:FB:8D:E8:B2:F7:0B:DA:98:1D:61:0F Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 66 Signing time: Fri 25 Apr 2025 06:04:09 +0000 Manifest this update: Fri 25 Apr 2025 06:04:09 +0000 Manifest next update: Fri 02 May 2025 06:04:09 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: f+MczcSwpIMQpOCMZBlNq79vBahxRv3CPGYDtP4RrDQ=) 2: 7C304160FECB11EFB755BB45C4F9AE02.roa (hash: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Apr 25 06:04:09 2025 GMT Not After : May 2 06:04:09 2025 GMT Subject: CN=680b25d9-fe88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2b:e4:45:12:de:20:95:6b:c4:ba:20:c6:76: 7d:81:43:77:5f:38:9f:f8:c4:0d:04:00:dc:ef:d5: 88:a6:54:ba:88:de:cf:59:a1:a2:4c:07:31:da:29: b3:2b:4a:90:5b:05:4f:ca:17:2c:ad:91:35:d8:2d: 7e:61:72:51:84:59:dd:2d:91:fe:e4:24:d3:02:79: 8b:3f:60:54:8a:44:e1:4a:da:b6:e7:0b:2f:17:39: 25:7f:3a:08:33:af:92:67:40:48:37:14:a6:e5:9e: 99:cb:16:ee:a2:f2:1b:a4:a1:c7:ea:f3:a1:0d:f5: f5:12:6d:bc:c7:22:23:30:7b:8f:dc:d1:f8:c4:80: 37:13:74:be:86:28:d6:e3:c5:a9:c8:ab:46:49:4d: 81:24:61:f0:7f:6d:db:93:c2:d6:40:74:33:69:ab: 7e:64:07:53:8c:be:fa:37:e2:bf:03:b7:12:2d:8e: 80:ed:ee:f5:b8:12:ad:6b:1a:30:e0:4c:8b:92:73: 3e:7c:d8:e5:74:84:42:08:c7:22:bf:2d:8f:8a:4d: a1:5d:8e:a4:43:df:7d:e0:e6:7a:0d:80:cf:00:4e: 06:60:4b:1b:69:62:0e:85:15:de:dd:f9:af:d5:df: 5a:1e:f5:d3:93:a1:d7:4d:16:2a:33:80:de:49:50: 01:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1A:56:81:F0:19:27:2F:71:FB:8D:E8:B2:F7:0B:DA:98:1D:61:0F X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:58:af:25:17:31:5c:4b:b9:f0:8d:a0:77:18:40:0f:36:d2: 94:02:73:51:c6:18:26:97:9c:cd:d0:7f:fe:c7:ff:bf:ab:c2: ef:73:43:1d:9e:40:74:7b:b6:84:04:41:94:7f:1f:03:d8:73: fe:9f:00:4e:73:12:85:27:6c:be:14:25:79:32:c6:69:dd:15: 91:82:f4:9a:30:9a:f3:c1:2c:89:fb:4e:66:c6:83:3d:31:31: bf:e5:19:58:ef:f3:42:04:a9:78:4b:4b:7f:56:0e:66:82:b4: fa:75:7c:5c:e9:ec:a5:28:5d:2c:04:1f:0b:f9:67:33:c9:69: 4b:07:dc:7e:18:b1:32:ad:df:0d:b9:ae:e4:f6:45:39:5a:23: 9c:f5:75:19:7b:2e:7c:31:ae:40:28:08:a9:61:13:69:81:68: f4:e1:87:72:a0:86:e9:47:e7:89:4c:05:95:81:f5:1d:41:5a: 78:3c:c5:ac:05:93:be:70:7a:b2:20:e3:a5:41:f3:ce:e2:3d: 83:88:94:de:a6:48:1c:70:81:c9:cc:7f:46:d5:34:50:47:5c: 12:2e:b1:25:92:9d:b2:8e:49:11:f6:d9:de:53:83:a4:c9:46: 27:cd:4d:4b:41:e3:f1:a7:1b:57:c1:24:33:4f:40:ac:c5:67: 19:f9:d1:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZFRDIwNzFBMTY0 Nzc1RUQ0RjAeFw0yNTA0MjUwNjA0MDlaFw0yNTA1MDIwNjA0MDlaMBgxFjAUBgNV BAMTDTY4MGIyNWQ5LWZlODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZK+RFEt4glWvEuiDGdn2BQ3dfOJ/4xA0EANzv1YimVLqI3s9ZoaJMBzHaKbMr SpBbBU/KFyytkTXYLX5hclGEWd0tkf7kJNMCeYs/YFSKROFK2rbnCy8XOSV/Oggz r5JnQEg3FKblnpnLFu6i8hukocfq86EN9fUSbbzHIiMwe4/c0fjEgDcTdL6GKNbj xanIq0ZJTYEkYfB/bduTwtZAdDNpq35kB1OMvvo34r8DtxItjoDt7vW4Eq1rGjDg TIuScz582OV0hEIIxyK/LY+KTaFdjqRD333g5noNgM8ATgZgSxtpYg6FFd7d+a/V 31oe9dOToddNFiozgN5JUAFnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8BpWgfAZ Jy9x+43osvcL2pgdYQ8wHwYDVR0jBBgwFoAUEhrxRNkD4/iJffD+0gcaFkd17U8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NTRBLzc5NUU3M0QwOTFG NzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdV OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWhyeFJOa0Q0X2lKZmZELTBnY2FGa2QxN1U4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 NTRBLzc5NUU3M0QwOTFGNzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9p SmZmRC0wZ2NhRmtkMTdVOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHhYryUXMVxLufCNoHcYQA820pQCc1HGGCaXnM3Qf/7H/7+rwu9zQx2e QHR7toQEQZR/HwPYc/6fAE5zEoUnbL4UJXkyxmndFZGC9JowmvPBLIn7TmbGgz0x Mb/lGVjv80IEqXhLS39WDmaCtPp1fFzp7KUoXSwEHwv5ZzPJaUsH3H4YsTKt3w25 ruT2RTlaI5z1dRl7LnwxrkAoCKlhE2mBaPThh3KghulH54lMBZWB9R1BWng8xawF k75werIg46VB887iPYOIlN6mSBxwgcnMf0bVNFBHXBIusSWSnbKOSRH22d5Tg6TJ RifNTUtB4/GnG1fBJDNPQKzFZxn50es= -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:17 2025 by rpki-client on console.sobornost.net