$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: PD68KKyIGaM5K4+tDGwulgO5yvASVsNyg7ZWaDkDgEw= Subject key identifier: 58:84:50:0D:8D:D2:FE:20:C8:A7:B7:B8:B4:9C:46:06:56:84:84:C5 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 11CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 11B2 Signing time: Mon 28 Apr 2025 17:25:00 +0000 Manifest this update: Mon 28 Apr 2025 17:25:00 +0000 Manifest next update: Mon 05 May 2025 17:25:00 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: N5fA2obkLBfZSoIAuT3GnGM4MyLycWbvZh7G3uxIiIw=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Cinni1CQdvw9QZ/TfXqeTRH7AM3KM0M/pfCrSaEHDYM=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:24:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4554 (0x11ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Apr 28 17:25:00 2025 GMT Not After : May 5 17:25:00 2025 GMT Subject: CN=680fb9ec-c44e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:cf:b6:3b:cc:e1:58:15:52:31:5e:6f:ab: 4e:89:a9:1d:14:98:b0:18:f3:21:4b:91:8d:23:52: 4c:6f:69:46:ae:16:fd:41:fa:fd:19:6d:b3:86:ee: 1a:95:bf:c6:00:8d:df:e2:3f:ce:26:2a:6e:17:42: 99:b3:df:ba:f0:66:3d:7d:e0:93:f4:e1:2d:2d:e3: cb:11:98:0b:3a:a5:0b:fb:9e:6e:7a:ad:39:b2:12: 09:52:aa:72:18:06:c7:a1:19:6d:ae:1f:be:0f:72: 03:62:c1:4f:cd:cf:1a:c2:94:c8:92:95:94:b9:14: 20:78:57:74:84:70:22:70:4d:f4:89:44:c2:94:03: 5b:f6:6e:f0:ce:f9:1c:67:3c:b2:21:5d:8d:30:12: 45:4d:e2:6a:42:e5:17:27:1b:a3:13:f9:c4:b5:79: d4:bb:b8:b0:a7:1a:17:64:a7:04:cc:6b:2d:56:d1: a7:8f:dd:fc:f6:5c:f0:64:7a:16:bd:5f:62:18:93: 94:69:8c:ad:42:e8:5b:57:8a:fd:74:98:0b:4a:e3: 99:8c:8a:2f:ef:35:17:f6:dd:84:a5:21:a2:11:45: 61:7d:8a:3c:85:60:2c:79:f4:ee:fb:a6:f9:cf:49: ce:d7:12:cb:2c:55:11:ba:11:09:45:3b:3c:43:80: 8a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:84:50:0D:8D:D2:FE:20:C8:A7:B7:B8:B4:9C:46:06:56:84:84:C5 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:99:bc:ad:41:f2:fc:91:f3:dd:e5:96:04:db:7d:2e:cb:4d: fe:47:7e:2e:97:44:77:ad:1e:90:de:a8:62:0d:96:65:0f:12: e5:41:a9:09:c1:ad:5e:51:67:4d:e5:d9:5a:6f:a7:d6:25:06: df:bf:bb:48:2e:0b:c6:da:30:81:d8:c4:c5:63:7e:18:7d:49: 12:e8:e5:3f:06:29:97:ac:61:b4:26:99:69:65:52:eb:93:f8: 1c:8b:55:c0:f9:24:1b:90:e8:66:9c:50:b6:ee:ed:04:da:fa: d1:61:5e:af:a7:6f:6c:0a:62:07:1f:c1:4b:32:79:1b:02:df: 0f:d6:02:08:0d:c9:2e:54:34:b2:c9:05:9a:74:ae:88:57:cc: f8:42:4d:8e:cd:35:10:e1:a2:ef:00:ac:7d:c5:5b:0c:03:91: a0:07:8b:f0:b8:00:a9:12:2b:0b:06:02:e4:0f:1a:81:34:c0: ad:f8:c3:0d:63:5e:81:5f:97:18:99:f9:72:a9:fb:51:cb:78: 09:5e:c2:85:6c:b5:20:39:7e:0d:19:8a:9d:27:2f:9e:9f:9d: e6:0e:7a:10:b9:78:1d:d6:f4:6c:9d:53:23:da:b7:fc:95:41: fa:8d:31:e6:1c:82:bd:29:d5:13:91:1c:bd:8f:3e:18:81:52: cb:91:2d:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUwNDI4MTcyNTAwWhcNMjUwNTA1MTcyNTAwWjAYMRYwFAYD VQQDEw02ODBmYjllYy1jNDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulrPtjvM4VgVUjFeb6tOiakdFJiwGPMhS5GNI1JMb2lGrhb9Qfr9GW2zhu4a lb/GAI3f4j/OJipuF0KZs9+68GY9feCT9OEtLePLEZgLOqUL+55ueq05shIJUqpy GAbHoRltrh++D3IDYsFPzc8awpTIkpWUuRQgeFd0hHAicE30iUTClANb9m7wzvkc ZzyyIV2NMBJFTeJqQuUXJxujE/nEtXnUu7iwpxoXZKcEzGstVtGnj9389lzwZHoW vV9iGJOUaYytQuhbV4r9dJgLSuOZjIov7zUX9t2EpSGiEUVhfYo8hWAsefTu+6b5 z0nO1xLLLFURuhEJRTs8Q4CKewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFiEUA2N 0v4gyKe3uLScRgZWhITFMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3mbytQfL8kfPd5ZYE230uy03+R34ul0R3rR6Q3qhiDZZlDxLlQakJ wa1eUWdN5dlab6fWJQbfv7tILgvG2jCB2MTFY34YfUkS6OU/BimXrGG0JplpZVLr k/gci1XA+SQbkOhmnFC27u0E2vrRYV6vp29sCmIHH8FLMnkbAt8P1gIIDckuVDSy yQWadK6IV8z4Qk2OzTUQ4aLvAKx9xVsMA5GgB4vwuACpEisLBgLkDxqBNMCt+MMN Y16BX5cYmflyqftRy3gJXsKFbLUgOX4NGYqdJy+en53mDnoQuXgd1vRsnVMj2rf8 lUH6jTHmHIK9KdUTkRy9jz4YgVLLkS2J -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:14 2025 by rpki-client on console.sobornost.net