$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft File: IO0KqyB1C4snqG35iadUv1cm3X4.mft (raw, json) Hash identifier: GKlBiG9FTntYCBiv87dtGrUtWFc9NyE73FYt9zp7kSg= Subject key identifier: 25:1F:48:1A:8B:66:80:2F:F5:24:81:AA:B6:21:2E:D7:15:98:C6:0C Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 0190 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft Manifest number: 0528 Signing time: Sun 27 Apr 2025 00:22:26 +0000 Manifest this update: Sun 27 Apr 2025 00:22:25 +0000 Manifest next update: Sun 04 May 2025 00:22:25 +0000 Files and hashes: 1: IO0KqyB1C4snqG35iadUv1cm3X4.crl (hash: 6oi0WR7z+ihEvE3fDoq6FYBeVxsKsyUsVKRATO17PiQ=) 2: 13C17EAE203211F09B9D141CC4F9AE02.roa (hash: HS1vi6nnSZ7fbVowIGS+cC1MW1aBR9pLwV7kayJA9l4=) 3: 0064309A203211F091C0061CC4F9AE02.roa (hash: CxjM8nT+6zqXXcEsv5r6YYN/NOjb/oMb5HsHrJLUpqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Apr 27 00:22:25 2025 GMT Not After : May 4 00:22:25 2025 GMT Subject: CN=680d78c1-b012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a5:9e:c4:c5:0a:99:c9:c9:f3:c2:e5:3e:51: e3:06:ad:ea:48:6e:fe:a7:e0:8e:0d:84:d7:25:a0: 8f:e1:e7:af:55:81:ae:39:4a:18:fb:6c:bd:31:85: 3b:e9:12:17:4b:fe:84:d9:2b:98:92:1f:f2:42:f7: 0d:b8:2a:6e:80:40:4b:1a:d2:8f:f8:78:d0:bc:de: d4:9a:c6:34:75:a9:f9:af:11:6d:98:90:1e:99:1c: fe:52:f1:3f:45:d8:77:2d:ff:08:b8:75:42:9e:39: bd:72:dd:95:50:bc:3a:f7:59:fb:9a:df:8f:a8:bb: 5d:5d:b2:d3:ec:4c:af:35:8a:24:a7:aa:bd:29:20: 20:5f:68:d3:41:39:bc:b1:e0:be:20:7c:23:ba:13: ed:5f:d0:99:f1:be:40:a5:8b:6f:29:45:a9:ea:55: d7:7e:a6:95:96:30:b7:9f:ca:25:4b:67:c2:84:67: b3:e5:55:f4:93:c2:2f:e5:85:70:13:7c:f3:45:b2: 03:18:68:73:33:a4:dc:c9:91:be:9e:03:8e:aa:b4: be:42:fa:9f:fd:ec:81:c4:83:14:e5:7a:11:a0:8c: 6f:bf:79:b0:30:4d:93:cc:a4:65:7e:56:0d:8f:2f: 11:dc:20:3e:9c:dc:15:84:d3:9c:e8:9f:7a:f5:38: d9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1F:48:1A:8B:66:80:2F:F5:24:81:AA:B6:21:2E:D7:15:98:C6:0C X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3e:b0:83:8c:7b:2b:ac:90:69:60:96:6e:84:cf:ec:70:c3: c8:5f:f0:4a:8b:e0:df:aa:5e:91:45:c2:1f:9f:6b:97:6d:12: a8:49:80:37:00:cc:30:75:72:d5:04:38:b8:f0:f5:bf:d4:0d: 5f:21:3e:96:0f:18:7e:0f:5d:70:3d:d8:04:66:5c:cd:30:0d: 36:74:c2:26:21:ef:6a:85:13:cd:3f:40:25:7a:40:ac:12:a6: c6:d4:83:5f:2d:12:d6:7c:cd:01:bc:53:9f:42:ef:ad:d6:5a: 4e:af:75:1a:4a:ab:2d:2e:3e:be:c7:a6:17:37:53:29:3a:4f: da:d6:fe:e3:48:d9:eb:26:3b:cf:0e:54:a8:f6:f2:99:69:34: 1e:76:f1:7c:65:5d:3e:1e:7c:0b:99:a2:3c:fa:87:37:b2:00: 2d:5c:93:b5:4d:f9:ef:0b:77:e4:76:0a:34:56:85:f5:10:98: 28:54:74:87:e6:bf:c8:45:df:fd:c8:d5:6d:5d:a6:18:17:45: 3e:50:2b:af:5e:b1:25:ae:1a:76:2e:c8:bd:86:8b:e6:81:38: 06:ab:61:49:de:58:7d:b5:0b:0e:dd:13:85:fa:33:e0:b2:49: 29:ba:75:42:cf:06:fb:72:7d:1d:21:fa:e2:c6:95:e9:93:b8: b1:4a:eb:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwNDI3MDAyMjI1WhcNMjUwNTA0MDAyMjI1WjAYMRYwFAYD VQQDEw02ODBkNzhjMS1iMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKWexMUKmcnJ88LlPlHjBq3qSG7+p+CODYTXJaCP4eevVYGuOUoY+2y9MYU7 6RIXS/6E2SuYkh/yQvcNuCpugEBLGtKP+HjQvN7UmsY0dan5rxFtmJAemRz+UvE/ Rdh3Lf8IuHVCnjm9ct2VULw691n7mt+PqLtdXbLT7EyvNYokp6q9KSAgX2jTQTm8 seC+IHwjuhPtX9CZ8b5ApYtvKUWp6lXXfqaVljC3n8olS2fChGez5VX0k8Iv5YVw E3zzRbIDGGhzM6TcyZG+ngOOqrS+Qvqf/eyBxIMU5XoRoIxvv3mwME2TzKRlflYN jy8R3CA+nNwVhNOc6J969TjZjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUfSBqL ZoAv9SSBqrYhLtcVmMYMMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUI2NC85QjQ0RUI3NDhGMjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0 c25xRzM1aWFkVXYxY20zWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMPrCDjHsrrJBpYJZuhM/scMPIX/BKi+Dfql6RRcIfn2uXbRKoSYA3 AMwwdXLVBDi48PW/1A1fIT6WDxh+D11wPdgEZlzNMA02dMImIe9qhRPNP0AlekCs EqbG1INfLRLWfM0BvFOfQu+t1lpOr3UaSqstLj6+x6YXN1MpOk/a1v7jSNnrJjvP DlSo9vKZaTQedvF8ZV0+HnwLmaI8+oc3sgAtXJO1TfnvC3fkdgo0VoX1EJgoVHSH 5r/IRd/9yNVtXaYYF0U+UCuvXrElrhp2Lsi9hovmgTgGq2FJ3lh9tQsO3ROF+jPg skkpunVCzwb7cn0dIfrixpXpk7ixSuvT -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:16 2025 by rpki-client on console.sobornost.net