$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft File: IrGnF151_9hHOR8sLpZl5O7ht0I.mft (raw, json) Hash identifier: 4m2qHGif/Ar/WCkkyUb/FL/wG65CJwT+ZiV65KFkMFA= Subject key identifier: E6:A4:5B:C0:17:5A:9E:C3:DC:6F:02:44:30:62:45:06:4D:76:C9:C0 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft Manifest number: 10DE Signing time: Mon 28 Apr 2025 17:33:22 +0000 Manifest this update: Mon 28 Apr 2025 17:33:22 +0000 Manifest next update: Mon 05 May 2025 17:33:22 +0000 Files and hashes: 1: IrGnF151_9hHOR8sLpZl5O7ht0I.crl (hash: DSyMno4QNnKI7JtNhXZUZ3NUAb8NWfAgtDDuEBNFRkA=) 2: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (hash: mPVwkbrmgIGFwgmxOu/KgFG11TMB51WhYaitUgpspRc=) 3: A9204F96917F11EDA5B26357C4F9AE02.roa (hash: GKHRKfwk3bqrqOFGPvJ+kjY0NTnB33jXoiW8bXeNOjw=) 4: 16C96BAE18E311EFB8960668C4F9AE02.roa (hash: PDXFymAQeHbTCItIfy8LqqoHr3PVKA+eJZNU6voGL5A=) 5: 1856F8E8CCC411EFBDE7CF74C4F9AE02.roa (hash: 3ZvdvOYIsr/GLwsfHu77Tcpi6csxMwAyCAlksdMfA5A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4358 (0x1106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 28 17:33:22 2025 GMT Not After : May 5 17:33:22 2025 GMT Subject: CN=680fbbe2-3841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e9:8e:06:45:a9:2d:3c:b6:d0:13:45:54:46: 73:00:e1:cd:8e:bc:c0:1d:8f:22:c7:79:95:05:6a: 9b:c6:dc:3b:de:af:a9:44:8e:98:d9:42:25:27:8d: c5:c8:06:19:2e:bb:eb:f9:66:ce:35:da:ec:51:72: 3e:84:36:c6:92:92:37:f3:73:a5:fd:64:e6:be:e1: cc:7b:07:49:22:52:3a:50:b1:40:f6:dc:b8:e7:34: d4:7c:0a:6f:9a:92:37:23:9d:09:f5:2c:cc:ce:ae: 10:bd:0f:4c:ed:af:8a:94:e1:3d:d2:96:aa:e0:32: 8f:01:14:90:8f:7e:19:87:de:a7:a7:11:6c:31:bc: fe:53:f9:dc:c7:5b:f0:43:b2:f0:ab:ba:d0:09:af: cd:bc:87:fe:b7:10:8a:51:db:2e:30:a6:d6:1d:f7: ca:a4:84:51:56:7e:97:2c:bb:38:5c:eb:2a:74:df: 72:f1:4e:ae:28:de:0a:f6:43:e7:bd:0a:29:fb:95: 55:65:44:d2:f8:86:e7:cb:40:1f:16:dd:22:5f:28: 02:e6:9b:d2:39:5a:d8:0f:ad:30:27:45:97:08:81: 18:2b:6a:6d:1d:fe:03:79:75:92:1c:71:03:9a:6d: 15:c6:ef:60:94:cc:61:7b:65:46:54:7f:9a:0e:f5: 86:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A4:5B:C0:17:5A:9E:C3:DC:6F:02:44:30:62:45:06:4D:76:C9:C0 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ef:87:b5:33:39:a0:7f:06:02:0e:76:52:d6:70:21:26:d0: 93:6f:ba:43:43:6c:3a:4a:8d:98:96:6b:00:f3:9b:f6:6d:e4: 5f:22:37:48:20:cf:2d:93:9a:f6:b7:d2:50:3a:8b:7f:76:e7: 35:04:6c:3c:23:b5:b9:e3:6e:d8:a3:fc:95:3b:c1:8e:a3:e2: eb:3e:25:fe:8b:5e:49:81:2b:a1:9b:5f:25:e8:aa:8e:2f:18: 06:d0:26:da:3d:b0:b2:0e:19:14:d5:c1:5d:87:92:21:8f:ce: ed:20:ac:db:b2:e1:c7:c5:70:d5:e5:05:a0:be:e6:82:1f:91: d3:73:40:a6:bd:ea:93:81:f6:42:c8:db:c0:3d:07:d7:93:e3: 00:bd:50:70:be:71:9e:7f:fd:ec:19:c3:d1:55:42:1a:6d:89: af:94:75:0b:5f:80:2f:ce:ed:dd:31:7a:e1:11:87:cc:b9:b6: 00:9d:b7:f4:1e:7b:17:aa:61:b8:2c:4c:4e:0d:b1:5b:b1:07: 8b:9e:25:2d:dc:0c:ac:94:3b:2f:e7:d5:91:a5:ef:46:85:0e: bb:68:21:13:db:89:2d:e6:ee:33:4e:02:b3:db:c8:e4:59:b7: 18:c7:7d:07:b8:74:04:c0:81:96:a0:0f:54:9c:ce:e5:f9:5c: 7f:df:d9:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNDI4MTczMzIyWhcNMjUwNTA1MTczMzIyWjAYMRYwFAYD VQQDEw02ODBmYmJlMi0zODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwumOBkWpLTy20BNFVEZzAOHNjrzAHY8ix3mVBWqbxtw73q+pRI6Y2UIlJ43F yAYZLrvr+WbONdrsUXI+hDbGkpI383Ol/WTmvuHMewdJIlI6ULFA9ty45zTUfApv mpI3I50J9SzMzq4QvQ9M7a+KlOE90paq4DKPARSQj34Zh96npxFsMbz+U/ncx1vw Q7Lwq7rQCa/NvIf+txCKUdsuMKbWHffKpIRRVn6XLLs4XOsqdN9y8U6uKN4K9kPn vQop+5VVZUTS+Ibny0AfFt0iXygC5pvSOVrYD60wJ0WXCIEYK2ptHf4DeXWSHHED mm0Vxu9glMxhe2VGVH+aDvWG9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOakW8AX Wp7D3G8CRDBiRQZNdsnAMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdEQy8zNUY3OTg2NjFGMDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85 aEhPUjhzTHBabDVPN2h0MEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj74e1MzmgfwYCDnZS1nAhJtCTb7pDQ2w6So2YlmsA85v2beRfIjdI IM8tk5r2t9JQOot/duc1BGw8I7W5427Yo/yVO8GOo+LrPiX+i15JgSuhm18l6KqO LxgG0CbaPbCyDhkU1cFdh5Ihj87tIKzbsuHHxXDV5QWgvuaCH5HTc0CmveqTgfZC yNvAPQfXk+MAvVBwvnGef/3sGcPRVUIabYmvlHULX4Avzu3dMXrhEYfMubYAnbf0 HnsXqmG4LExODbFbsQeLniUt3AyslDsv59WRpe9GhQ67aCET24kt5u4zTgKz28jk WbcYx30HuHQEwIGWoA9UnM7l+Vx/39kY -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:12 2025 by rpki-client on console.sobornost.net