$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft File: HretI1L3xupKYveEzl-7EW3ybsI.mft (raw, json) Hash identifier: 2nDDAzDqPtsokCiI9ffcCJKTysz44DZfVWsCAx5KNNc= Subject key identifier: 97:A1:F1:AE:02:E4:21:92:E6:0F:3A:94:AD:9A:84:C7:6B:05:F9:79 Authority key identifier: 1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 Certificate issuer: /CN=A91EF24F/serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Certificate serial: 07D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft Manifest number: 07BE Signing time: Sat 26 Apr 2025 20:59:07 +0000 Manifest this update: Sat 26 Apr 2025 20:59:06 +0000 Manifest next update: Sat 03 May 2025 20:59:06 +0000 Files and hashes: 1: HretI1L3xupKYveEzl-7EW3ybsI.crl (hash: ZXb5htZDAvNqLzAuqV2D4sxEG6EtB2lhytWq1ywYPO4=) 2: 84B96CA6904111EF8D11A381C4F9AE02.roa (hash: apZe4MVRPNoFnu0VdCcMOgQQIHarERu0kJz1jLlb1yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2007 (0x7d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF24F, serialNumber=1EB7AD2352F7C6EA4A62F784CE5FBB116DF26EC2 Validity Not Before: Apr 26 20:59:06 2025 GMT Not After : May 3 20:59:06 2025 GMT Subject: CN=680d491a-f350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c2:aa:9c:ee:58:cc:4f:7b:48:83:27:6f:5f: c3:4f:c2:24:30:ba:ee:20:fd:69:05:0c:6b:b0:ae: 6f:11:88:31:2b:e0:f9:8c:39:85:25:57:c6:59:a3: a8:1b:78:e0:63:eb:dc:4f:9f:a0:3a:6f:3a:7e:ba: e0:9d:e9:a0:9e:d0:78:dd:53:fa:2c:d3:09:75:13: 90:26:f1:14:46:3d:a6:a2:05:63:1f:4b:cc:13:85: 62:d8:e6:65:e9:7c:0a:d5:de:df:6e:40:98:f5:3e: 77:68:42:77:fa:27:9c:27:c3:8f:f0:81:bb:0e:73: bd:19:93:5f:e9:10:17:d8:ac:ac:01:66:c5:b7:e3: 44:89:06:11:84:ba:e7:8b:72:f2:5e:ee:0f:ab:a9: ca:75:69:bb:2b:c9:0f:89:66:64:1c:ed:0c:73:5b: ec:d7:2f:5b:ae:4a:9d:41:0d:55:17:14:f6:44:43: e2:cf:ab:51:f8:e3:e3:96:69:7f:cc:59:7b:e9:5b: d2:93:f8:ee:5a:81:cd:61:cc:23:f6:90:3a:71:0d: d6:1c:f3:16:d5:6a:0f:30:f8:10:ce:3e:c2:70:72: 07:0f:a1:bd:35:ed:7f:f0:1c:de:72:85:40:3f:3e: 01:80:c4:fc:04:ed:1f:1d:c6:cb:d8:66:fc:78:48: 85:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A1:F1:AE:02:E4:21:92:E6:0F:3A:94:AD:9A:84:C7:6B:05:F9:79 X509v3 Authority Key Identifier: keyid:1E:B7:AD:23:52:F7:C6:EA:4A:62:F7:84:CE:5F:BB:11:6D:F2:6E:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HretI1L3xupKYveEzl-7EW3ybsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF24F/65DDFAB402FA11EBA3A0A231C4F9AE02/HretI1L3xupKYveEzl-7EW3ybsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e8:19:d8:3c:97:cc:8a:61:2c:f3:92:1b:91:6b:0f:4c:6c: 60:67:a1:09:1d:ea:98:11:30:1e:5a:e2:06:5f:a0:7d:70:5f: ca:6c:50:54:e3:1d:28:6c:39:99:e5:ee:d4:0a:ec:9f:3e:01: 5b:ca:80:4f:ee:e0:59:07:80:a3:30:b4:de:44:5b:94:ed:36: b9:01:06:1e:ed:42:07:bb:9b:23:f3:df:5b:a1:5c:de:b2:db: d1:48:6b:4d:81:d2:7a:77:22:29:45:01:3b:33:9c:1c:29:6e: a4:8b:bf:72:8e:59:98:26:78:4a:b3:b5:d7:93:bb:15:6d:65: bb:98:6c:16:f8:52:1a:33:8c:a7:c5:89:35:82:22:cc:48:19: 36:fa:12:e5:42:8c:31:e1:76:c7:72:d7:1a:bb:7f:1a:03:c2: 55:4f:eb:2f:25:46:7d:ff:51:41:12:3c:93:98:73:29:e4:46: 0c:08:16:0c:6b:59:ae:d6:92:c9:e2:bd:52:d8:cd:eb:2b:f9: e2:53:97:8e:cd:aa:2f:c1:41:65:9d:83:92:e5:5c:5e:f0:23: 63:69:de:73:92:f0:a0:6f:2c:7f:15:61:3c:5d:eb:97:6e:0d: 6f:e6:13:4a:70:a3:53:80:56:e0:70:14:77:89:09:82:2a:e5: 76:e1:24:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyNEYxMTAvBgNVBAUTKDFFQjdBRDIzNTJGN0M2RUE0QTYyRjc4NENFNUZCQjEx NkRGMjZFQzIwHhcNMjUwNDI2MjA1OTA2WhcNMjUwNTAzMjA1OTA2WjAYMRYwFAYD VQQDEw02ODBkNDkxYS1mMzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sKqnO5YzE97SIMnb1/DT8IkMLruIP1pBQxrsK5vEYgxK+D5jDmFJVfGWaOo G3jgY+vcT5+gOm86frrgnemgntB43VP6LNMJdROQJvEURj2mogVjH0vME4Vi2OZl 6XwK1d7fbkCY9T53aEJ3+iecJ8OP8IG7DnO9GZNf6RAX2KysAWbFt+NEiQYRhLrn i3LyXu4Pq6nKdWm7K8kPiWZkHO0Mc1vs1y9brkqdQQ1VFxT2REPiz6tR+OPjlml/ zFl76VvSk/juWoHNYcwj9pA6cQ3WHPMW1WoPMPgQzj7CcHIHD6G9Ne1/8BzecoVA Pz4BgMT8BO0fHcbL2Gb8eEiFvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeh8a4C 5CGS5g86lK2ahMdrBfl5MB8GA1UdIwQYMBaAFB63rSNS98bqSmL3hM5fuxFt8m7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjI0Ri82NURERkFCNDAy RkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1cEtZdmVFemwtN0VXM3li c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hyZXRJMUwzeHVwS1l2ZUV6bC03RVczeWJzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjI0Ri82NURERkFCNDAyRkExMUVCQTNBMEEyMzFDNEY5QUUwMi9IcmV0STFMM3h1 cEtZdmVFemwtN0VXM3lic0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd6BnYPJfMimEs85IbkWsPTGxgZ6EJHeqYETAeWuIGX6B9cF/KbFBU 4x0obDmZ5e7UCuyfPgFbyoBP7uBZB4CjMLTeRFuU7Ta5AQYe7UIHu5sj899boVze stvRSGtNgdJ6dyIpRQE7M5wcKW6ki79yjlmYJnhKs7XXk7sVbWW7mGwW+FIaM4yn xYk1giLMSBk2+hLlQowx4XbHctcau38aA8JVT+svJUZ9/1FBEjyTmHMp5EYMCBYM a1mu1pLJ4r1S2M3rK/niU5eOzaovwUFlnYOS5Vxe8CNjad5zkvCgbyx/FWE8XeuX bg1v5hNKcKNTgFbgcBR3iQmCKuV24SSr -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:14 2025 by rpki-client on console.sobornost.net