$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: DKIutZYjJ6Sp66pF3oTySYbUPBh4RGQK+6Yv39nbXvQ= Subject key identifier: 80:B6:7F:72:CC:61:BF:DE:4C:F1:7C:DB:4A:82:82:EF:E7:F0:F0:80 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: 9D Signing time: Sun 27 Apr 2025 05:11:22 +0000 Manifest this update: Sun 27 Apr 2025 05:11:21 +0000 Manifest next update: Sun 04 May 2025 05:11:21 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: iIa3H2nh+6bc2SMYmSVGj2ASy7XGmRdQgnbl8EWeFSs=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Apr 27 05:11:21 2025 GMT Not After : May 4 05:11:21 2025 GMT Subject: CN=680dbc7a-8e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:eb:dd:f5:13:9d:7f:1b:32:e2:fd:9b:74:e9: b6:65:33:a3:50:31:06:a8:51:8e:1d:f9:98:f0:e2: 07:cf:44:20:68:26:99:d7:0b:4b:19:0b:7e:2f:d1: cd:18:27:e9:0c:cc:60:6c:64:aa:1f:96:c2:34:e9: 32:08:1a:1c:40:ea:df:f7:fb:db:b7:4b:b0:3f:a5: 60:99:3e:32:69:58:cb:0e:dc:b5:67:26:24:a6:67: 0e:df:15:76:93:da:e2:91:64:86:7b:8c:15:1b:f0: 5d:14:49:ee:46:70:4d:87:ed:28:ae:09:00:b9:66: ed:1e:e8:19:c1:af:db:77:c8:18:96:55:c6:42:56: ae:56:64:30:bd:8e:9d:aa:84:76:b1:f8:48:98:6a: 12:fe:00:e3:27:25:4f:48:ba:29:59:af:a0:04:c0: 57:0c:23:eb:2b:b5:93:e6:cf:9e:ff:95:fe:e5:0c: b4:bb:39:dd:ef:a7:f8:7e:fc:8e:c6:99:2a:a7:d6: dc:c2:d5:40:fa:da:f5:f7:82:16:06:cf:83:ea:77: dc:b6:46:91:59:97:54:34:c4:c1:92:7c:32:56:1b: c0:e7:d6:8c:23:16:1e:5f:df:65:b8:ca:ab:ca:21: ed:43:65:4c:91:b0:16:d4:d6:02:f1:30:fb:db:6e: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B6:7F:72:CC:61:BF:DE:4C:F1:7C:DB:4A:82:82:EF:E7:F0:F0:80 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:3b:66:08:e3:2d:1a:4c:13:e3:40:3f:c4:77:61:5d:c7:8c: a3:66:d7:ae:a6:bd:d7:11:46:6f:6a:f8:c9:0e:e4:e9:ae:e8: 4e:06:2a:14:7b:9e:69:52:83:a1:be:98:7b:09:7d:24:30:2a: 2f:02:b2:50:5c:d5:13:c7:b8:95:d1:b1:c4:17:0b:6f:ce:d4: ac:2e:17:ab:7d:41:b4:c8:7d:d8:a3:8f:08:7d:cb:b1:91:52: 48:af:ad:4a:d0:72:fd:2b:de:d1:0a:7e:45:0b:3c:0a:d0:df: f0:3d:40:0a:58:f9:b1:d3:10:25:85:84:d2:77:e6:5a:97:51: ef:c5:14:56:ff:a7:70:72:8c:76:0b:80:95:15:56:02:e6:20: 9c:82:e4:b4:fb:28:82:c0:4f:2e:a0:e6:0b:b8:2e:b7:de:55: f5:ae:da:09:b9:6b:ab:eb:72:2d:04:63:69:fb:7d:cf:20:e6: 20:3c:b5:9a:f1:2d:4f:ef:c3:b3:9f:96:74:a0:f1:20:db:d6: 0d:2a:4f:f6:34:3d:d5:54:f6:2f:21:58:56:fc:12:1c:2f:43: e3:41:87:d1:b1:c8:35:13:93:41:44:ab:81:7f:2f:04:c9:82: 2f:ef:f3:8f:f9:4a:25:c3:53:c9:1a:f4:65:88:e8:e6:06:02: ab:68:2b:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwNDI3MDUxMTIxWhcNMjUwNTA0MDUxMTIxWjAYMRYwFAYD VQQDEw02ODBkYmM3YS04ZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uvd9ROdfxsy4v2bdOm2ZTOjUDEGqFGOHfmY8OIHz0QgaCaZ1wtLGQt+L9HN GCfpDMxgbGSqH5bCNOkyCBocQOrf9/vbt0uwP6VgmT4yaVjLDty1ZyYkpmcO3xV2 k9rikWSGe4wVG/BdFEnuRnBNh+0orgkAuWbtHugZwa/bd8gYllXGQlauVmQwvY6d qoR2sfhImGoS/gDjJyVPSLopWa+gBMBXDCPrK7WT5s+e/5X+5Qy0uznd76f4fvyO xpkqp9bcwtVA+tr194IWBs+D6nfctkaRWZdUNMTBknwyVhvA59aMIxYeX99luMqr yiHtQ2VMkbAW1NYC8TD7225nHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIC2f3LM Yb/eTPF820qCgu/n8PCAMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/O2YI4y0aTBPjQD/Ed2Fdx4yjZteupr3XEUZvavjJDuTpruhOBioU e55pUoOhvph7CX0kMCovArJQXNUTx7iV0bHEFwtvztSsLherfUG0yH3Yo48Ifcux kVJIr61K0HL9K97RCn5FCzwK0N/wPUAKWPmx0xAlhYTSd+Zal1HvxRRW/6dwcox2 C4CVFVYC5iCcguS0+yiCwE8uoOYLuC633lX1rtoJuWur63ItBGNp+33PIOYgPLWa 8S1P78Ozn5Z0oPEg29YNKk/2ND3VVPYvIVhW/BIcL0PjQYfRscg1E5NBRKuBfy8E yYIv7/OP+Uolw1PJGvRliOjmBgKraCuo -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:58 2025 by rpki-client on console.sobornost.net