$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft File: HT2u99J4g3Pt38sa1cTCNWxXre0.mft (raw, json) Hash identifier: fmQ+EKhf7AHTbSMIxJizFIKdukZBmnSQWqHOZSiBfN8= Subject key identifier: 73:05:29:E4:50:53:A6:7F:5B:63:3C:4B:04:97:D7:50:4C:AE:CB:E0 Authority key identifier: 1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED Certificate issuer: /CN=A91F0578/serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft Manifest number: 3D Signing time: Sun 27 Apr 2025 06:22:18 +0000 Manifest this update: Sun 27 Apr 2025 06:22:18 +0000 Manifest next update: Sun 04 May 2025 06:22:18 +0000 Files and hashes: 1: HT2u99J4g3Pt38sa1cTCNWxXre0.crl (hash: on55WWy3vhWZQU+vTOJBNgoBqRm9uCB0IkPqVHi4szU=) 2: 8B349526E61B11EFA5CFAA1CC4F9AE02.roa (hash: ne8tUgudan5gCr0Fj4AbK9IugW5sTtsGHmdJgQPhqp8=) 3: A22E9E42CF3D11EFB2075D13C4F9AE02.roa (hash: vLRSLWwCPlw1XgMXqIwjNZRh5iifhLT67LBNrNkXRO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0578, serialNumber=1D3DAEF7D2788373EDDFCB1AD5C4C2356C57ADED Validity Not Before: Apr 27 06:22:18 2025 GMT Not After : May 4 06:22:18 2025 GMT Subject: CN=680dcd1a-fb91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:65:33:95:4d:11:a4:cb:b6:c9:53:22:52:31: 21:6d:6a:19:c8:03:2b:c6:73:65:16:d9:9b:9d:ad: de:0c:81:bd:fd:23:35:38:21:ce:a4:98:9b:ec:bb: 58:e7:1f:0a:c0:45:f1:c8:da:36:63:89:e6:aa:a2: 8b:91:3d:bc:21:a9:f2:8d:50:a1:62:0a:50:5c:ab: 53:28:a9:d4:b4:d7:bc:51:ac:72:3b:c4:85:5b:35: e3:f9:f7:a2:16:fd:93:b9:88:b3:65:15:d8:c1:f9: 1a:f1:01:3e:1d:bf:fd:5f:6a:c0:96:82:5a:19:66: 49:fb:6a:4d:2e:97:14:6b:3b:e1:31:bd:17:31:e2: d7:61:33:14:ff:7c:10:2e:93:9a:97:4f:8e:3f:7a: 01:d4:17:fa:b6:81:bc:7b:bb:ba:4f:73:ad:ac:f6: bf:41:1f:55:b9:b1:59:d1:20:c9:0f:e0:7b:3e:8a: 1d:4f:97:7f:4d:47:30:50:f8:28:7c:cd:2e:0c:45: 0c:f8:5a:ef:a7:86:b9:4f:05:8f:3a:84:aa:26:f0: c1:29:8a:92:72:5a:86:6f:f3:ef:87:08:d2:73:39: a1:40:dc:d8:63:4b:55:20:6e:78:22:ae:c3:b5:7f: 9b:91:be:a5:55:ce:d8:b4:3f:6d:2c:8b:3b:66:5b: 1b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:05:29:E4:50:53:A6:7F:5B:63:3C:4B:04:97:D7:50:4C:AE:CB:E0 X509v3 Authority Key Identifier: keyid:1D:3D:AE:F7:D2:78:83:73:ED:DF:CB:1A:D5:C4:C2:35:6C:57:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HT2u99J4g3Pt38sa1cTCNWxXre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0578/003A79DACF3D11EF91380E11C4F9AE02/HT2u99J4g3Pt38sa1cTCNWxXre0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:33:15:20:01:a3:2b:62:eb:74:d2:cd:27:34:2c:0f:cd:e6: 97:5a:b9:1c:de:4e:c9:2a:c1:85:33:c4:05:00:b3:76:4a:63: f2:4f:27:b2:1a:9b:22:f3:1d:ae:0b:14:bc:4b:8b:28:c0:60: 95:2a:9c:37:40:03:b0:3f:a4:aa:30:43:6a:3d:2c:09:83:c4: 81:77:47:95:a2:bd:af:15:91:65:c6:2f:f3:26:20:1a:08:a6: 72:12:d5:5d:87:95:a6:ed:b2:73:78:04:20:47:32:da:79:33: 7d:ec:ec:c7:94:fc:a4:b1:c4:9d:af:9b:7e:59:16:d4:59:37: d1:9a:ee:25:51:5a:80:2a:0d:9b:08:06:d0:dc:be:44:89:a4: ea:ba:ec:2c:11:bb:4c:c6:64:77:9c:89:96:4d:7d:b5:c6:2c: 61:3e:63:85:37:9d:3a:cc:53:da:77:b4:54:e5:c5:50:23:40: e2:6a:75:a9:42:ab:ad:5d:36:aa:3e:85:bf:ce:21:4e:3d:c6: 5e:c4:58:ac:ae:e8:cd:f7:44:6b:6f:bc:a7:3e:f8:23:b0:9e: df:b3:17:e1:49:d8:ca:70:e0:98:04:83:28:57:07:d6:3e:b4: 84:fd:7b:e8:05:4e:76:f4:ab:8b:ba:60:03:27:c3:cb:40:9a: cb:b5:07:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDU3ODExMC8GA1UEBRMoMUQzREFFRjdEMjc4ODM3M0VEREZDQjFBRDVDNEMyMzU2 QzU3QURFRDAeFw0yNTA0MjcwNjIyMThaFw0yNTA1MDQwNjIyMThaMBgxFjAUBgNV BAMTDTY4MGRjZDFhLWZiOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOZTOVTRGky7bJUyJSMSFtahnIAyvGc2UW2Zudrd4Mgb39IzU4Ic6kmJvsu1jn HwrARfHI2jZjieaqoouRPbwhqfKNUKFiClBcq1MoqdS017xRrHI7xIVbNeP596IW /ZO5iLNlFdjB+RrxAT4dv/1fasCWgloZZkn7ak0ulxRrO+ExvRcx4tdhMxT/fBAu k5qXT44/egHUF/q2gbx7u7pPc62s9r9BH1W5sVnRIMkP4Hs+ih1Pl39NRzBQ+Ch8 zS4MRQz4Wu+nhrlPBY86hKom8MEpipJyWoZv8++HCNJzOaFA3NhjS1UgbngirsO1 f5uRvqVVzti0P20siztmWxuZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcwUp5FBT pn9bYzxLBJfXUEyuy+AwHwYDVR0jBBgwFoAUHT2u99J4g3Pt38sa1cTCNWxXre0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwNTc4LzAwM0E3OURBQ0Yz RDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQdDM4c2ExY1RDTld4WHJl MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSFQydTk5SjRnM1B0MzhzYTFjVENOV3hYcmUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw NTc4LzAwM0E3OURBQ0YzRDExRUY5MTM4MEUxMUM0RjlBRTAyL0hUMnU5OUo0ZzNQ dDM4c2ExY1RDTld4WHJlMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAN8zFSABoyti63TSzSc0LA/N5pdauRzeTskqwYUzxAUAs3ZKY/JPJ7Ia myLzHa4LFLxLiyjAYJUqnDdAA7A/pKowQ2o9LAmDxIF3R5Wiva8VkWXGL/MmIBoI pnIS1V2HlabtsnN4BCBHMtp5M33s7MeU/KSxxJ2vm35ZFtRZN9Ga7iVRWoAqDZsI BtDcvkSJpOq67CwRu0zGZHeciZZNfbXGLGE+Y4U3nTrMU9p3tFTlxVAjQOJqdalC q61dNqo+hb/OIU49xl7EWKyu6M33RGtvvKc++COwnt+zF+FJ2Mpw4JgEgyhXB9Y+ tIT9e+gFTnb0q4u6YAMnw8tAmsu1B/w= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:58 2025 by rpki-client on console.sobornost.net