$ rpki-client -vvf rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft File: OM4nbIW20tDq_p0_ilpQjN26uWg.mft (raw, json) Hash identifier: jZ02aQAE4hhOPa4TxZcSVowrCu2i0BnQ4oQvAhbKMr8= Subject key identifier: 03:C2:D3:18:5A:23:54:68:12:3A:F3:01:D5:CA:8B:4E:FB:DA:47:5C Authority key identifier: 38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68 Certificate issuer: /CN=A91F053E/serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968 Certificate serial: 0697 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft Manifest number: 0690 Signing time: Sat 26 Apr 2025 21:55:13 +0000 Manifest this update: Sat 26 Apr 2025 21:55:12 +0000 Manifest next update: Sat 03 May 2025 21:55:12 +0000 Files and hashes: 1: OM4nbIW20tDq_p0_ilpQjN26uWg.crl (hash: UdlWnowa0e1kbiOSbW2xX9qli+0b21R7+43IJJFBsas=) 2: 6473BE24979811EB97001639C4F9AE02.roa (hash: 2h+gg3bjxIldHS97Lzce3I89lkJGy2giiZHmYtJCKjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.crl rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 21:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1687 (0x697) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F053E, serialNumber=38CE276C85B6D2D0EAFE9D3F8A5A508CDDBAB968 Validity Not Before: Apr 26 21:55:12 2025 GMT Not After : May 3 21:55:12 2025 GMT Subject: CN=680d5640-8bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:14:bf:fd:37:d2:82:1c:f5:ca:b0:9f:18: 6a:37:c9:8f:4c:b3:1b:cf:cb:7f:2d:55:b5:c5:58: 1f:fc:95:c9:45:d5:b9:45:3e:3b:6f:4f:25:68:13: 7e:6a:3f:f6:c1:0c:81:90:cc:d1:48:8e:60:59:93: 84:72:ee:a0:82:b4:ef:85:92:c1:11:be:be:e7:c3: d4:65:fe:37:ea:58:2e:77:fd:66:76:df:1e:6f:ea: 9e:03:f9:90:00:ac:84:80:a6:3e:59:cf:73:00:b6: 3d:d8:33:1f:12:6c:7d:dd:e0:64:f3:10:ce:92:e4: 1a:02:72:a6:c6:9a:fb:fa:56:26:68:06:fa:20:c5: c5:85:ab:cf:26:30:bc:bd:1e:cb:2f:c8:5e:66:13: af:ab:c0:5e:39:8c:3d:a0:4a:41:d6:04:14:39:8e: 3c:95:10:0f:0a:5f:fa:e7:0d:32:d2:7c:e2:10:50: cd:9c:f3:03:91:72:8e:06:30:c3:5f:01:6a:b5:cf: 48:66:50:d4:45:af:2a:53:3e:77:75:59:a9:de:04: 9b:d6:56:3c:be:e8:06:34:92:5a:48:61:fd:23:fe: 6c:ff:bd:ef:d4:e2:0a:3c:76:bf:96:83:5e:bf:01: 8c:21:a4:f7:7d:92:7b:2f:e0:0e:ae:4c:f7:68:87: 15:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:C2:D3:18:5A:23:54:68:12:3A:F3:01:D5:CA:8B:4E:FB:DA:47:5C X509v3 Authority Key Identifier: keyid:38:CE:27:6C:85:B6:D2:D0:EA:FE:9D:3F:8A:5A:50:8C:DD:BA:B9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OM4nbIW20tDq_p0_ilpQjN26uWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F053E/4EEBC2086B6B11EB85124B2AC4F9AE02/OM4nbIW20tDq_p0_ilpQjN26uWg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:eb:f0:11:2d:98:5b:f3:3b:0b:58:8c:f4:32:e3:e6:2c:ae: b1:f7:a7:e2:2f:26:48:f5:3f:81:b2:14:e1:72:77:e7:09:be: ae:e4:0f:ae:db:c5:69:07:68:b8:2f:f6:6b:c4:4c:20:60:ce: b4:21:d8:22:52:e3:c8:db:cd:be:7b:02:bb:98:55:c7:95:fb: 01:6a:75:30:1d:98:b0:ff:d8:46:70:fa:aa:a5:0a:d6:d2:25: cc:9e:93:f4:04:09:f4:aa:83:e6:81:11:e0:21:db:ff:5f:d8: 31:04:20:fb:86:95:b9:eb:28:3d:dd:5e:d6:39:89:15:05:5b: 49:d7:d3:57:27:df:fe:fc:d3:79:1b:85:ab:35:b9:a0:5d:11: 61:fa:eb:b0:6a:09:e6:6e:d5:b5:ee:c1:ed:40:56:10:d5:90: e8:76:72:53:95:3b:c8:c6:72:32:de:82:ac:0f:5d:4c:e8:8e: a1:34:08:e3:d9:56:e8:e4:45:d5:42:32:64:0f:42:6e:aa:f6: d5:7f:bf:1e:f1:a6:11:56:aa:8f:3e:f2:a5:26:89:55:07:f7: 60:43:dc:49:55:c2:ed:a6:6d:93:a2:15:f4:9a:03:f4:7c:0b: 15:e8:c4:ca:2b:06:df:cb:6d:f7:78:2e:3e:83:af:e5:74:10: f5:df:d7:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA1M0UxMTAvBgNVBAUTKDM4Q0UyNzZDODVCNkQyRDBFQUZFOUQzRjhBNUE1MDhD RERCQUI5NjgwHhcNMjUwNDI2MjE1NTEyWhcNMjUwNTAzMjE1NTEyWjAYMRYwFAYD VQQDEw02ODBkNTY0MC04YmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL8Uv/030oIc9cqwnxhqN8mPTLMbz8t/LVW1xVgf/JXJRdW5RT47b08laBN+ aj/2wQyBkMzRSI5gWZOEcu6ggrTvhZLBEb6+58PUZf436lgud/1mdt8eb+qeA/mQ AKyEgKY+Wc9zALY92DMfEmx93eBk8xDOkuQaAnKmxpr7+lYmaAb6IMXFhavPJjC8 vR7LL8heZhOvq8BeOYw9oEpB1gQUOY48lRAPCl/65w0y0nziEFDNnPMDkXKOBjDD XwFqtc9IZlDURa8qUz53dVmp3gSb1lY8vugGNJJaSGH9I/5s/73v1OIKPHa/loNe vwGMIaT3fZJ7L+AOrkz3aIcV+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPC0xha I1RoEjrzAdXKi0772kdcMB8GA1UdIwQYMBaAFDjOJ2yFttLQ6v6dP4paUIzdurlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDUzRS80RUVCQzIwODZC NkIxMUVCODUxMjRCMkFDNEY5QUUwMi9PTTRuYklXMjB0RHFfcDBfaWxwUWpOMjZ1 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09NNG5iSVcyMHREcV9wMF9pbHBRak4yNnVXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDUzRS80RUVCQzIwODZCNkIxMUVCODUxMjRCMkFDNEY5QUUwMi9PTTRuYklXMjB0 RHFfcDBfaWxwUWpOMjZ1V2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw6/ARLZhb8zsLWIz0MuPmLK6x96fiLyZI9T+BshThcnfnCb6u5A+u 28VpB2i4L/ZrxEwgYM60IdgiUuPI282+ewK7mFXHlfsBanUwHZiw/9hGcPqqpQrW 0iXMnpP0BAn0qoPmgRHgIdv/X9gxBCD7hpW56yg93V7WOYkVBVtJ19NXJ9/+/NN5 G4WrNbmgXRFh+uuwagnmbtW17sHtQFYQ1ZDodnJTlTvIxnIy3oKsD11M6I6hNAjj 2Vbo5EXVQjJkD0JuqvbVf78e8aYRVqqPPvKlJolVB/dgQ9xJVcLtpm2TohX0mgP0 fAsV6MTKKwbfy233eC4+g6/ldBD139dR -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:17 2025 by rpki-client on console.sobornost.net