$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft File: G5HVFg99VrcFqFFsahz0L0ln71Y.mft (raw, json) Hash identifier: hIbGM4XNMIaEeLxunL+jABeQIB4kv1q5qnGIu/wt99Q= Subject key identifier: 33:6E:ED:7A:5C:93:08:39:F6:50:DF:C3:DA:5E:6A:4B:05:6C:74:11 Authority key identifier: 1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56 Certificate issuer: /CN=A91EF554/serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56 Certificate serial: 092C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft Manifest number: 0925 Signing time: Mon 28 Apr 2025 20:43:19 +0000 Manifest this update: Mon 28 Apr 2025 20:43:19 +0000 Manifest next update: Mon 05 May 2025 20:43:19 +0000 Files and hashes: 1: G5HVFg99VrcFqFFsahz0L0ln71Y.crl (hash: YIB+paiJygKaMYOa6IYmIhBU7Qa8nX0HSPrKVGmCM88=) 2: 156CEB62DC6011ECB2698C14C4F9AE02.roa (hash: oKOcbNnwPGTy3q5emliwbRxX0Ls/8MFVWMAhcz5HBKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2348 (0x92c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF554, serialNumber=1B91D5160F7D56B705A8516C6A1CF42F4967EF56 Validity Not Before: Apr 28 20:43:19 2025 GMT Not After : May 5 20:43:19 2025 GMT Subject: CN=680fe867-76d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:01:ab:f0:df:bd:fa:d5:93:d2:d8:84:a2: 0f:e3:92:1c:01:a5:e7:e7:3d:f2:b8:6a:b7:88:e4: 95:b7:70:e5:d2:ae:ab:5e:3b:8f:30:2e:ed:45:8c: 05:5c:f6:8d:11:78:34:24:c1:11:43:6d:69:ef:4e: e5:79:53:c2:e2:48:99:4a:65:cf:29:ff:09:f4:f6: 11:5c:98:44:18:ac:9a:f5:20:27:99:9d:e7:b9:10: 47:53:31:54:29:67:87:e6:ab:66:fb:4c:69:df:53: 79:af:9a:a0:83:a7:9e:5b:81:86:e5:e8:cb:53:3f: 49:6b:2d:69:5a:a2:20:03:be:f3:5d:a7:0e:fb:1c: fc:7a:6c:fe:6f:7f:e5:60:79:37:70:b7:8b:45:c9: b0:b8:ee:89:ae:22:34:74:b7:11:60:28:ab:0e:16: a6:9a:ed:b2:44:80:1e:05:8d:16:c6:20:04:33:74: d7:9d:6d:01:77:77:9b:47:9d:00:c6:67:a7:c6:8c: 3f:7d:43:2d:69:72:bf:2e:5d:e7:c1:f6:5e:5d:1b: 6f:ff:d8:af:7c:07:ca:ea:25:74:83:06:4e:49:56: 45:57:0b:5c:40:c6:7c:45:50:d2:0d:01:75:ee:ee: 3e:9e:34:ce:e6:ae:b6:9d:6c:4c:c4:53:11:b8:17: f9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6E:ED:7A:5C:93:08:39:F6:50:DF:C3:DA:5E:6A:4B:05:6C:74:11 X509v3 Authority Key Identifier: keyid:1B:91:D5:16:0F:7D:56:B7:05:A8:51:6C:6A:1C:F4:2F:49:67:EF:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G5HVFg99VrcFqFFsahz0L0ln71Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF554/EB1CBBE29E5B11EAB248FC51C4F9AE02/G5HVFg99VrcFqFFsahz0L0ln71Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:40:dd:11:46:a5:4c:17:56:91:2a:98:6b:66:0c:dc:65:f7: 6f:4d:c6:d9:1e:b0:e2:38:60:23:20:f3:af:c7:64:8e:5b:9a: 70:43:8c:17:b5:48:20:6d:04:0f:a7:4a:84:52:3f:5e:fd:d4: 6c:fb:7c:38:ad:88:f9:5e:a3:11:31:0a:84:c7:67:3d:ba:30: 04:87:a6:cb:25:b9:15:57:78:0f:a5:6c:dc:ce:b9:e0:de:11: b6:0b:63:fa:6a:68:f4:9e:2d:28:b2:54:76:a4:cf:5e:fe:14: 41:50:e3:d7:89:86:78:18:69:6b:88:99:12:88:3e:c5:c9:74: 22:2c:5b:5f:b1:1e:d7:f0:14:8d:e4:ed:2f:9a:ea:aa:3d:b2: cd:91:f9:b9:cd:7b:ad:03:39:ee:01:2f:26:e4:a3:67:cb:ab: ac:f2:04:e2:41:2f:70:43:4e:b1:ab:61:81:ed:c6:33:dd:e7: 47:fb:c3:1e:4b:8f:fe:e3:01:dc:9c:41:a8:3f:ed:d6:b6:bb: 61:e5:c6:54:8d:12:d2:0f:3a:f3:c0:e2:0b:16:4d:24:ce:22: 26:7b:c9:a7:a3:4a:d3:b0:84:b6:2a:61:83:5a:c7:55:f8:3b: f5:76:db:3f:20:d6:f7:af:9f:b2:67:76:49:9c:79:97:20:1c: 06:93:16:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1NTQxMTAvBgNVBAUTKDFCOTFENTE2MEY3RDU2QjcwNUE4NTE2QzZBMUNGNDJG NDk2N0VGNTYwHhcNMjUwNDI4MjA0MzE5WhcNMjUwNTA1MjA0MzE5WjAYMRYwFAYD VQQDEw02ODBmZTg2Ny03NmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6IBq/DfvfrVk9LYhKIP45IcAaXn5z3yuGq3iOSVt3Dl0q6rXjuPMC7tRYwF XPaNEXg0JMERQ21p707leVPC4kiZSmXPKf8J9PYRXJhEGKya9SAnmZ3nuRBHUzFU KWeH5qtm+0xp31N5r5qgg6eeW4GG5ejLUz9Jay1pWqIgA77zXacO+xz8emz+b3/l YHk3cLeLRcmwuO6JriI0dLcRYCirDhammu2yRIAeBY0WxiAEM3TXnW0Bd3ebR50A xmenxow/fUMtaXK/Ll3nwfZeXRtv/9ivfAfK6iV0gwZOSVZFVwtcQMZ8RVDSDQF1 7u4+njTO5q62nWxMxFMRuBf5zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNu7Xpc kwg59lDfw9peaksFbHQRMB8GA1UdIwQYMBaAFBuR1RYPfVa3BahRbGoc9C9JZ+9W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjU1NC9FQjFDQkJFMjlF NUIxMUVBQjI0OEZDNTFDNEY5QUUwMi9HNUhWRmc5OVZyY0ZxRkZzYWh6MEwwbG43 MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c1SFZGZzk5VnJjRnFGRnNhaHowTDBsbjcxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjU1NC9FQjFDQkJFMjlFNUIxMUVBQjI0OEZDNTFDNEY5QUUwMi9HNUhWRmc5OVZy Y0ZxRkZzYWh6MEwwbG43MVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0QN0RRqVMF1aRKphrZgzcZfdvTcbZHrDiOGAjIPOvx2SOW5pwQ4wX tUggbQQPp0qEUj9e/dRs+3w4rYj5XqMRMQqEx2c9ujAEh6bLJbkVV3gPpWzczrng 3hG2C2P6amj0ni0oslR2pM9e/hRBUOPXiYZ4GGlriJkSiD7FyXQiLFtfsR7X8BSN 5O0vmuqqPbLNkfm5zXutAznuAS8m5KNny6us8gTiQS9wQ06xq2GB7cYz3edH+8Me S4/+4wHcnEGoP+3Wtrth5cZUjRLSDzrzwOILFk0kziIme8mno0rTsIS2KmGDWsdV +Dv1dts/INb3r5+yZ3ZJnHmXIBwGkxYn -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:59 2025 by rpki-client on console.sobornost.net