$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft File: 0NbEemjLQdEG6wQtcma5y7_Bpzs.mft (raw, json) Hash identifier: nhIU3TJFX8C15ozNvfFrTnVkri7jGSBO+moJS3tSCFE= Subject key identifier: 9F:23:0C:72:F1:C4:CB:E5:A4:EC:71:4F:98:18:1E:B0:1D:BA:8F:84 Authority key identifier: D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B Certificate issuer: /CN=A91EBF76/serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Certificate serial: 064D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft Manifest number: 0648 Signing time: Sat 26 Apr 2025 22:11:49 +0000 Manifest this update: Sat 26 Apr 2025 22:11:49 +0000 Manifest next update: Sat 03 May 2025 22:11:49 +0000 Files and hashes: 1: 0NbEemjLQdEG6wQtcma5y7_Bpzs.crl (hash: xHChpUvbG3HblnAQ/jXuqnkud77iuFIxjXvLTnNR80s=) 2: 5FBDA400853011EBA1AF1D76C4F9AE02.roa (hash: av1fp+B0Rvyyl/M+tQ87N6LBAVDY2pJUK/6gF5bMDYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1613 (0x64d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF76, serialNumber=D0D6C47A68CB41D106EB042D7266B9CBBFC1A73B Validity Not Before: Apr 26 22:11:49 2025 GMT Not After : May 3 22:11:49 2025 GMT Subject: CN=680d5a25-c225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c9:fe:f8:ca:dc:a5:ae:48:f3:95:53:53:33: 9a:6d:ac:27:8b:0f:be:15:e6:cc:ac:51:a0:43:16: 6c:54:c9:86:99:91:72:b0:9a:c9:81:3d:b3:62:46: ce:d6:8a:16:8b:c8:a4:aa:fa:84:fe:80:06:56:6f: e7:eb:f8:b0:85:5f:0d:2c:b4:3b:1f:8f:6d:ba:57: 00:65:ef:d6:14:b4:8e:04:fd:d7:5a:d3:b9:3a:a5: 41:28:34:32:ff:06:c2:0c:f4:89:24:b4:4d:cf:89: 1c:09:e4:8a:86:fe:d9:a1:87:cd:9f:d6:1d:15:59: 26:a9:fa:43:9c:bf:58:23:62:80:a1:6d:34:2e:f3: f6:68:94:83:72:5b:35:46:b2:ec:29:fb:97:eb:91: 03:c3:c6:c3:39:00:98:3f:d5:e5:7d:3a:11:3e:6c: 13:08:2e:0a:19:18:61:01:25:56:d6:db:cd:8f:79: d9:d2:0e:64:54:20:73:d2:67:52:3e:75:59:5f:aa: f8:d5:00:59:a0:d3:bc:77:8b:ec:7f:e1:08:50:53: 49:34:f5:11:0f:3f:33:3a:7b:11:4a:8e:5e:40:e0: fd:bf:b5:28:d8:f0:c9:ed:da:8a:4a:af:d0:7e:98: b2:b0:c3:49:78:ea:e6:49:c6:31:29:59:fa:65:0b: 9f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:23:0C:72:F1:C4:CB:E5:A4:EC:71:4F:98:18:1E:B0:1D:BA:8F:84 X509v3 Authority Key Identifier: keyid:D0:D6:C4:7A:68:CB:41:D1:06:EB:04:2D:72:66:B9:CB:BF:C1:A7:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NbEemjLQdEG6wQtcma5y7_Bpzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF76/A6DE097C852311EBB7E9F383C4F9AE02/0NbEemjLQdEG6wQtcma5y7_Bpzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:82:ca:c4:c9:71:51:13:69:91:58:e2:8f:80:63:91:80:94: 7c:7e:a4:ed:9a:a0:01:f3:4f:54:59:2d:52:1a:43:ff:b0:8a: 23:c0:b8:58:46:06:84:40:43:dd:7e:86:de:4c:e4:22:a3:9e: 84:6f:2f:8d:3b:be:04:4b:d8:5a:4c:95:a1:a2:de:c4:cf:96: ee:a3:dd:3a:58:06:55:b6:b9:c4:e9:c9:7a:ff:05:3c:8e:5a: 19:66:bf:80:10:e2:e8:d6:8e:04:2e:70:8c:af:73:62:af:0f: 1b:68:f8:89:c5:ba:3a:d5:be:e3:4f:e6:75:95:1e:6e:bf:b5: 85:11:66:46:54:5d:ae:cf:43:f3:ed:2f:64:fa:0a:fa:38:88: 23:1d:5e:5d:a0:f5:65:fc:ad:a6:3a:e3:0b:89:b4:72:3b:58: 20:78:45:33:c2:5c:23:80:dd:f9:ec:07:6c:47:bc:a7:fd:9c: 73:38:7c:59:06:6d:21:92:ad:e4:55:cf:49:8a:6f:39:fe:41: 32:ac:d8:53:9e:57:04:d7:57:03:b8:9a:97:8f:a7:e4:79:88: 6a:62:09:e8:f5:ba:1d:b2:18:a5:45:b2:d3:1c:e6:10:66:bc: ba:b9:93:33:2f:df:47:0c:d2:e8:b0:10:0f:6e:2c:bb:f7:9d: d2:5b:01:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGNzYxMTAvBgNVBAUTKEQwRDZDNDdBNjhDQjQxRDEwNkVCMDQyRDcyNjZCOUNC QkZDMUE3M0IwHhcNMjUwNDI2MjIxMTQ5WhcNMjUwNTAzMjIxMTQ5WjAYMRYwFAYD VQQDEw02ODBkNWEyNS1jMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcn++Mrcpa5I85VTUzOabawniw++FebMrFGgQxZsVMmGmZFysJrJgT2zYkbO 1ooWi8ikqvqE/oAGVm/n6/iwhV8NLLQ7H49tulcAZe/WFLSOBP3XWtO5OqVBKDQy /wbCDPSJJLRNz4kcCeSKhv7ZoYfNn9YdFVkmqfpDnL9YI2KAoW00LvP2aJSDcls1 RrLsKfuX65EDw8bDOQCYP9XlfToRPmwTCC4KGRhhASVW1tvNj3nZ0g5kVCBz0mdS PnVZX6r41QBZoNO8d4vsf+EIUFNJNPURDz8zOnsRSo5eQOD9v7Uo2PDJ7dqKSq/Q fpiysMNJeOrmScYxKVn6ZQufOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8jDHLx xMvlpOxxT5gYHrAduo+EMB8GA1UdIwQYMBaAFNDWxHpoy0HRBusELXJmucu/wac7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkY3Ni9BNkRFMDk3Qzg1 MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFkRUc2d1F0Y21hNXk3X0Jw enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOYkVlbWpMUWRFRzZ3UXRjbWE1eTdfQnB6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkY3Ni9BNkRFMDk3Qzg1MjMxMUVCQjdFOUYzODNDNEY5QUUwMi8wTmJFZW1qTFFk RUc2d1F0Y21hNXk3X0JwenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjgsrEyXFRE2mRWOKPgGORgJR8fqTtmqAB809UWS1SGkP/sIojwLhY RgaEQEPdfobeTOQio56Eby+NO74ES9haTJWhot7Ez5buo906WAZVtrnE6cl6/wU8 jloZZr+AEOLo1o4ELnCMr3Nirw8baPiJxbo61b7jT+Z1lR5uv7WFEWZGVF2uz0Pz 7S9k+gr6OIgjHV5doPVl/K2mOuMLibRyO1ggeEUzwlwjgN357AdsR7yn/ZxzOHxZ Bm0hkq3kVc9Jim85/kEyrNhTnlcE11cDuJqXj6fkeYhqYgno9bodshilRbLTHOYQ Zry6uZMzL99HDNLosBAPbiy7953SWwE6 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:16 2025 by rpki-client on console.sobornost.net