$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft File: 2jyR-PFV2QuZh8kTskxPnlRF6cw.mft (raw, json) Hash identifier: +6W2qeMDodpS/GBhKrziXRItaLRETVsjjDIqDjCqpB0= Subject key identifier: C3:9F:83:9F:91:A7:DC:F8:D6:16:6C:92:6A:C4:5C:C9:D3:D9:22:F1 Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0CDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft Manifest number: 0CC7 Signing time: Sat 26 Apr 2025 18:00:29 +0000 Manifest this update: Sat 26 Apr 2025 18:00:28 +0000 Manifest next update: Sat 03 May 2025 18:00:28 +0000 Files and hashes: 1: 2jyR-PFV2QuZh8kTskxPnlRF6cw.crl (hash: Au0DMzYUUERq9/ZCySC1tYZ8pClyOJ0Sk/MbnyAftVE=) 2: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (hash: mgW7VeujR3wQCY2FOQTLD+1AfxSaJAkPmJmO0oMCuHQ=) 3: FEB624F6B94911EE897F7947C4F9AE02.roa (hash: rybbZdEyPr2dvKbIGHG7PjXC8DWgHoGfpQtIcH3SNoo=) 4: 8E4647E6EB2911EB9891D01DC4F9AE02.roa (hash: adFrZ9wVUFL/q70xYlPOLV2jTwKmfI9/GoGFtthCxcw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 18:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED, serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Apr 26 18:00:28 2025 GMT Not After : May 3 18:00:28 2025 GMT Subject: CN=680d1f3c-5d55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7a:c0:bd:39:52:da:69:58:21:19:48:11:77: 58:fe:a0:59:b7:26:22:bc:f1:d4:13:dc:df:94:e1: 23:5e:8c:b0:62:40:3e:a9:5e:72:62:00:97:2f:92: 4d:5d:9a:63:a6:6d:67:3d:53:ab:51:70:45:3c:54: f7:e5:24:d9:73:03:97:5d:69:c3:8f:ec:9e:33:48: bf:c7:c8:52:47:92:a2:49:94:eb:0b:36:f3:de:47: aa:0e:d9:55:36:12:a8:1b:b2:de:09:a6:16:c8:93: 29:e4:09:4d:a2:6f:82:ba:8e:71:e9:55:36:94:d0: 8b:c7:dd:83:5f:91:3c:20:61:33:5e:03:a2:7b:bf: 71:4e:78:66:9c:ab:fa:45:94:eb:cc:d4:a6:5f:d6: 04:21:9e:35:27:64:81:24:e4:56:23:f5:e6:eb:ad: 5a:1f:23:02:12:a3:e8:f1:2a:90:c9:ea:5d:09:3f: cd:7f:8e:b9:a0:4b:a2:a3:36:29:38:6b:5b:3f:c1: b6:cd:02:dd:fb:5d:b4:04:5b:aa:c7:66:8c:f3:78: a3:3c:57:d0:cb:f4:25:5a:e0:4c:ab:f8:25:90:5e: 5e:8c:3b:29:16:c8:da:53:52:be:ff:76:fd:59:60: 1d:8c:78:f2:90:a0:ea:fb:70:a7:49:e4:34:47:23: 8b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:9F:83:9F:91:A7:DC:F8:D6:16:6C:92:6A:C4:5C:C9:D3:D9:22:F1 X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:76:a0:81:9c:96:45:b8:b5:53:8c:d2:b6:84:0a:d5:b3:22: ac:ea:8e:2e:56:70:53:d1:0a:5a:fd:f0:51:05:88:50:48:9c: 24:b4:c2:e0:c7:31:c3:9b:84:8e:14:b2:cc:9d:64:86:3e:cd: 93:80:e0:84:ec:d1:b3:e0:1e:dd:e3:0f:35:b3:6d:8a:15:db: 9b:d3:5b:d9:b4:61:50:6b:72:e2:84:e7:24:c0:fd:b1:65:a9: 0e:4d:00:17:ba:1a:65:28:0b:5b:a1:05:f9:fc:bb:b4:e9:72: 7a:ac:6a:85:29:b4:8c:94:7a:b9:a3:82:be:f4:67:0a:cc:b5: 44:c4:eb:1c:12:ab:3b:29:27:f7:ce:0d:13:1a:e3:9a:df:16: 77:dc:c9:88:9f:13:6e:39:b1:2e:2f:45:9f:b5:99:1d:c4:b0: c5:e7:ac:7e:40:6c:5e:d8:62:0f:6a:4d:c1:bd:7e:8a:7d:8a: a3:27:5a:a1:84:d9:4c:bf:6b:a0:3d:aa:f2:3c:e9:fd:b8:18: db:90:e3:40:f1:22:6c:a6:cb:16:da:8a:42:b3:79:81:62:cf: 4a:fb:31:3a:b1:91:9e:68:e6:ca:8f:55:fa:34:65:3e:9a:af: 46:d8:af:07:3f:fd:a7:bf:78:b5:31:63:95:15:2f:cb:9f:4f: 25:4e:67:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjUwNDI2MTgwMDI4WhcNMjUwNTAzMTgwMDI4WjAYMRYwFAYD VQQDEw02ODBkMWYzYy01ZDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3rAvTlS2mlYIRlIEXdY/qBZtyYivPHUE9zflOEjXoywYkA+qV5yYgCXL5JN XZpjpm1nPVOrUXBFPFT35STZcwOXXWnDj+yeM0i/x8hSR5KiSZTrCzbz3keqDtlV NhKoG7LeCaYWyJMp5AlNom+Cuo5x6VU2lNCLx92DX5E8IGEzXgOie79xTnhmnKv6 RZTrzNSmX9YEIZ41J2SBJORWI/Xm661aHyMCEqPo8SqQyepdCT/Nf465oEuiozYp OGtbP8G2zQLd+120BFuqx2aM83ijPFfQy/QlWuBMq/glkF5ejDspFsjaU1K+/3b9 WWAdjHjykKDq+3CnSeQ0RyOLKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOfg5+R p9z41hZskmrEXMnT2SLxMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzBFRC9FNjI3N0EzRUU5RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJR dVpoOGtUc2t4UG5sUkY2Y3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACdqCBnJZFuLVTjNK2hArVsyKs6o4uVnBT0Qpa/fBRBYhQSJwktMLg xzHDm4SOFLLMnWSGPs2TgOCE7NGz4B7d4w81s22KFdub01vZtGFQa3LihOckwP2x ZakOTQAXuhplKAtboQX5/Lu06XJ6rGqFKbSMlHq5o4K+9GcKzLVExOscEqs7KSf3 zg0TGuOa3xZ33MmInxNuObEuL0WftZkdxLDF56x+QGxe2GIPak3BvX6KfYqjJ1qh hNlMv2ugParyPOn9uBjbkONA8SJspssW2opCs3mBYs9K+zE6sZGeaObKj1X6NGU+ mq9G2K8HP/2nv3i1MWOVFS/Ln08lTmcC -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:03 2025 by rpki-client on console.sobornost.net