$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft File: 3af4p0oKdM_262MEKLbJ1w1XvXY.mft (raw, json) Hash identifier: u3aj4q5w0bza+NzS5xE9DptSwF9i9oPJCS0DsEPKbsU= Subject key identifier: 90:58:5A:AE:E8:B6:E6:5A:B0:0D:7F:7E:E3:23:E4:2C:B1:D0:8C:2D Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0D98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft Manifest number: 0D5E Signing time: Sat 26 Apr 2025 17:54:42 +0000 Manifest this update: Sat 26 Apr 2025 17:54:42 +0000 Manifest next update: Sat 03 May 2025 17:54:42 +0000 Files and hashes: 1: 3af4p0oKdM_262MEKLbJ1w1XvXY.crl (hash: tpPj1rJHoJOkm0Wlrn2HurXVKXO5cAqw2jYHf0AsGpU=) 2: CE83F0E6F0E411EAA47C3968C4F9AE02.roa (hash: ZQBdoWyO873LcT1vKoBchR3Mc6PGkjTHNlXwZK5KBUA=) 3: E69AF38AB11C11EAACC28D2EC4F9AE02.roa (hash: vmjmVmXjdkD0vxVvLQigcrFyWXDcETievw8r2QIVv8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:54:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3480 (0xd98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Apr 26 17:54:42 2025 GMT Not After : May 3 17:54:42 2025 GMT Subject: CN=680d1de2-b0ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c4:c1:8c:35:aa:e5:10:1c:ca:90:a5:e7:a5: e3:43:1e:c3:1e:2d:fd:c2:ae:24:0f:b7:f0:fa:59: d6:db:5d:2d:60:87:4b:e2:72:5c:68:a8:d0:12:6f: 04:5b:be:57:0b:b0:36:8d:a8:d0:27:a5:70:fa:29: 48:d0:11:c0:e6:33:f8:b3:bc:7c:75:0b:4e:4b:cb: 95:ed:fe:7e:25:d0:4f:d6:f2:c0:85:29:0d:9e:15: 1d:f6:54:63:8f:e5:1b:1e:d6:65:21:50:88:e8:04: 05:5f:05:2f:85:b6:79:ed:64:55:ff:47:ce:c1:8b: 28:e9:11:be:2d:7a:4b:7d:54:9f:3e:b2:58:67:70: 93:d4:4d:07:ec:c0:59:d0:6e:7b:da:e1:6a:29:b1: 00:d4:1e:ec:0c:b9:44:8c:cc:45:fe:a0:d7:c4:bd: dc:e8:cc:69:a1:64:b6:05:ce:f8:aa:e6:b3:04:5b: f8:e0:3a:6a:81:17:54:dd:32:38:4a:66:f4:4d:55: 80:8f:e2:4b:fe:db:ed:7a:9b:f6:ab:40:16:02:80: dc:09:ae:0f:4f:80:2c:2c:13:ca:95:83:b2:37:4f: 95:6f:11:ff:09:53:59:5a:d5:53:5b:69:39:f1:f7: dc:7d:92:0b:e8:ef:d8:74:7f:1c:42:05:91:1c:57: fd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:58:5A:AE:E8:B6:E6:5A:B0:0D:7F:7E:E3:23:E4:2C:B1:D0:8C:2D X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ae:3c:ec:d8:d9:1c:9e:16:9e:38:4e:20:7e:09:37:af:26: 6b:8a:03:e4:02:3c:5e:af:b0:75:92:a0:a2:6f:ea:fc:e0:0b: 67:7f:46:d3:4d:97:24:1c:d4:09:ae:76:5c:76:1a:c3:88:08: 10:18:eb:b6:d0:4b:23:e6:a7:df:a6:b1:bc:83:e8:fd:3b:ce: 5d:71:67:83:68:aa:90:a1:0b:37:03:79:13:46:a3:76:47:d2: 34:fd:3f:f0:d4:d2:72:f7:b6:e8:00:14:19:81:ae:d5:67:5b: 26:b7:54:79:ad:16:df:db:b3:45:c4:c1:cc:a0:8f:b5:31:c5: 82:5b:59:2b:ae:15:f9:14:08:c5:d2:f7:41:4f:c3:6b:df:29: 48:d3:0f:d1:2c:32:84:87:3d:7a:d5:58:83:74:43:ea:67:7c: e7:02:b7:00:17:ec:f6:6f:36:e3:9c:c6:4e:31:27:81:a3:f5: d2:da:38:92:e3:e0:ad:9f:8a:86:36:bc:0a:c7:9a:e9:87:6b: de:1a:b9:83:46:b3:3f:91:85:ea:d9:2d:bd:41:13:f3:a3:41: 53:36:41:44:9f:f6:39:77:7c:86:e3:a4:0f:53:40:23:54:06: 60:47:56:af:a4:06:af:3f:70:29:a1:13:ef:a2:6d:c1:4e:be: a0:39:9d:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjUwNDI2MTc1NDQyWhcNMjUwNTAzMTc1NDQyWjAYMRYwFAYD VQQDEw02ODBkMWRlMi1iMGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8TBjDWq5RAcypCl56XjQx7DHi39wq4kD7fw+lnW210tYIdL4nJcaKjQEm8E W75XC7A2jajQJ6Vw+ilI0BHA5jP4s7x8dQtOS8uV7f5+JdBP1vLAhSkNnhUd9lRj j+UbHtZlIVCI6AQFXwUvhbZ57WRV/0fOwYso6RG+LXpLfVSfPrJYZ3CT1E0H7MBZ 0G572uFqKbEA1B7sDLlEjMxF/qDXxL3c6MxpoWS2Bc74quazBFv44DpqgRdU3TI4 Smb0TVWAj+JL/tvtepv2q0AWAoDcCa4PT4AsLBPKlYOyN0+VbxH/CVNZWtVTW2k5 8ffcfZIL6O/YdH8cQgWRHFf9DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBYWq7o tuZasA1/fuMj5Cyx0IwtMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yRDFBNTk1QUQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RN XzI2Mk1FS0xiSjF3MVh2WFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChrjzs2NkcnhaeOE4gfgk3ryZrigPkAjxer7B1kqCib+r84Atnf0bT TZckHNQJrnZcdhrDiAgQGOu20Esj5qffprG8g+j9O85dcWeDaKqQoQs3A3kTRqN2 R9I0/T/w1NJy97boABQZga7VZ1smt1R5rRbf27NFxMHMoI+1McWCW1krrhX5FAjF 0vdBT8Nr3ylI0w/RLDKEhz161ViDdEPqZ3znArcAF+z2bzbjnMZOMSeBo/XS2jiS 4+Ctn4qGNrwKx5rph2veGrmDRrM/kYXq2S29QRPzo0FTNkFEn/Y5d3yG46QPU0Aj VAZgR1avpAavP3ApoRPvom3BTr6gOZ2u -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:03 2025 by rpki-client on console.sobornost.net