$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: 3N7a8SLnU14ncLSf4FUdDDt7ajfw+besw/mN5T6V5CQ= Subject key identifier: 8E:E7:BA:C9:98:E1:14:B8:A8:91:6A:8F:F2:59:20:B3:C1:E8:FD:48 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 13C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 13AB Signing time: Mon 28 Apr 2025 15:31:45 +0000 Manifest this update: Mon 28 Apr 2025 15:31:45 +0000 Manifest next update: Mon 05 May 2025 15:31:45 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: VF513OZ3SS+M2cnJMlrULOt5gIcZrcSQ8Aikgse87i4=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5064 (0x13c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Apr 28 15:31:45 2025 GMT Not After : May 5 15:31:45 2025 GMT Subject: CN=680f9f61-84f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6d:4b:0c:c7:d1:e1:8b:bb:2c:66:93:80:cd: 3f:35:71:99:ee:c9:cf:3e:ff:92:0c:e7:65:c4:b4: 81:29:df:87:ef:72:ea:1b:db:21:54:da:14:28:22: cf:d8:08:05:e6:f8:da:cb:e9:fc:c8:20:4d:da:1f: 69:f6:23:99:f3:ce:fa:ab:23:1b:5e:19:00:b3:d4: 14:54:a0:e8:3d:70:b9:5b:f7:59:7c:23:7f:8a:1b: 66:76:7d:ca:2b:19:63:65:14:0a:f6:98:c4:1a:81: 88:62:d8:28:45:76:cf:18:b3:9f:6b:49:18:ee:ab: 8b:2d:e8:87:b4:bf:bd:d8:31:b8:33:3c:30:3b:9f: 54:58:2b:0d:27:2a:97:9e:a1:72:76:d6:eb:b4:43: f7:96:ce:ab:b3:40:27:5b:77:84:19:0f:af:0d:f8: 17:00:26:55:3c:09:ad:7b:cd:5b:f2:dc:56:83:c4: e3:fa:d3:7c:08:ec:ac:d6:3d:16:e5:6f:dc:10:49: f7:27:cc:3b:c6:53:8c:87:c0:78:45:07:46:63:ae: 13:a5:56:3d:bf:86:90:e0:4b:9c:55:96:9c:66:a8: d0:36:7c:73:51:3a:40:f9:d6:08:2b:eb:68:a4:e8: 2a:aa:85:d7:53:42:56:89:7b:eb:a0:dc:b0:8a:b0: 5b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:E7:BA:C9:98:E1:14:B8:A8:91:6A:8F:F2:59:20:B3:C1:E8:FD:48 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:9d:09:bb:8b:30:44:b5:53:c1:58:8d:8e:e4:92:1b:7e:1d: b4:2f:1e:ba:e5:05:34:2d:6b:43:d7:f8:fc:74:95:46:a5:0a: 5f:a4:fd:92:9c:41:a5:91:dc:e1:70:91:b4:ae:8d:c9:94:19: 24:fa:94:ae:b4:59:c1:db:18:e5:42:c0:64:2d:53:3f:8d:b8: b7:f2:8b:bd:2f:6f:05:f3:cc:42:13:ec:8d:52:cf:13:2f:83: 20:67:e2:32:70:49:70:5a:c4:26:0b:d0:80:a8:0d:b4:13:c4: b9:8f:74:07:8d:a9:1c:ac:92:5f:2a:6d:42:33:cf:2a:2a:8b: c3:4e:09:ad:e3:13:2e:1f:dd:0c:3f:4a:46:d2:a7:73:7e:51: 35:18:88:7c:83:a7:4f:4f:24:fc:e4:ff:2a:7e:95:6a:53:31: 5c:e2:3b:09:a7:aa:5c:12:1e:31:ac:96:e1:4b:88:cb:87:44: 24:c9:87:2c:8f:32:14:27:c1:ee:79:03:56:80:f4:11:3d:38: fc:91:13:8a:df:73:f4:f1:20:0d:b5:5c:9d:54:fe:ef:90:e4: ae:2f:b0:c7:d2:6f:70:94:12:6e:48:e6:b5:11:a1:51:fa:5c: ca:c8:45:05:4b:be:90:54:f9:cc:f4:db:0c:5a:f9:e8:9c:41: 41:33:f1:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwNDI4MTUzMTQ1WhcNMjUwNTA1MTUzMTQ1WjAYMRYwFAYD VQQDEw02ODBmOWY2MS04NGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoW1LDMfR4Yu7LGaTgM0/NXGZ7snPPv+SDOdlxLSBKd+H73LqG9shVNoUKCLP 2AgF5vjay+n8yCBN2h9p9iOZ8876qyMbXhkAs9QUVKDoPXC5W/dZfCN/ihtmdn3K KxljZRQK9pjEGoGIYtgoRXbPGLOfa0kY7quLLeiHtL+92DG4MzwwO59UWCsNJyqX nqFydtbrtEP3ls6rs0AnW3eEGQ+vDfgXACZVPAmte81b8txWg8Tj+tN8COys1j0W 5W/cEEn3J8w7xlOMh8B4RQdGY64TpVY9v4aQ4EucVZacZqjQNnxzUTpA+dYIK+to pOgqqoXXU0JWiXvroNywirBbJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7nusmY 4RS4qJFqj/JZILPB6P1IMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfnQm7izBEtVPBWI2O5JIbfh20Lx665QU0LWtD1/j8dJVGpQpfpP2S nEGlkdzhcJG0ro3JlBkk+pSutFnB2xjlQsBkLVM/jbi38ou9L28F88xCE+yNUs8T L4MgZ+IycElwWsQmC9CAqA20E8S5j3QHjakcrJJfKm1CM88qKovDTgmt4xMuH90M P0pG0qdzflE1GIh8g6dPTyT85P8qfpVqUzFc4jsJp6pcEh4xrJbhS4jLh0QkyYcs jzIUJ8HueQNWgPQRPTj8kROK33P08SANtVydVP7vkOSuL7DH0m9wlBJuSOa1EaFR +lzKyEUFS76QVPnM9NsMWvnonEFBM/E4 -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:06 2025 by rpki-client on console.sobornost.net