$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: iZOauDvwicKAc8NCZhOTlMSKBL26cg377iWRBIXYj8o= Subject key identifier: E6:F2:FF:CB:0B:FD:4F:95:66:8B:C7:9F:7C:2F:59:18:38:73:B6:C7 Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 02AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 0298 Signing time: Sun 27 Apr 2025 01:14:10 +0000 Manifest this update: Sun 27 Apr 2025 01:14:10 +0000 Manifest next update: Sun 04 May 2025 01:14:10 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: frC5PbT0T4lx/zB1y3kPZAjqUOxTNnHg+5ihWl+1JCs=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: rCllvSopoGz8aDfU9lvXSKhRHbkj+3Ed22RiWwBDqfc=) 3: 488068CE21A611F088065429C4F9AE02.roa (hash: EKNS8/CnQlQ7MYf3O+n++oPnKdB/AFdgyRHjJoVp+tw=) 4: F3C5DF2CF03511EF83ECDC30C4F9AE02.roa (hash: bX2GvM4twLrpOhpUXaE3dMjzmYpyVWJx7L0sV9znlKE=) 5: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: 455DCGiIcAmYhveApDA31/VkiMOYSAFDxNYnnGbSEJY=) 6: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: lOUpDRjlxbgUApviuBIHPbtPtdQ0a+j/Lmf0E0RCirU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C, serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Apr 27 01:14:10 2025 GMT Not After : May 4 01:14:10 2025 GMT Subject: CN=680d84e2-dbb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:39:39:8c:43:77:b9:85:f0:ad:c2:bb:be:6c: 54:16:0b:e3:0e:2c:86:23:8f:bd:8b:50:48:da:6b: d8:b5:36:9c:4d:6b:0f:e6:19:76:f4:4c:01:3d:8e: 69:0c:8c:43:81:57:f4:82:74:fb:09:76:2f:3b:2b: d6:a6:03:3b:9e:63:b8:f6:ee:15:5b:18:1f:6d:a5: d1:a8:83:be:7c:e3:7d:08:d7:6d:7c:46:1b:f2:5e: c1:5b:2c:60:91:5c:36:e1:59:16:c0:e2:5e:aa:a6: df:82:8d:58:d5:5f:81:04:3b:24:8d:c3:f6:60:7a: ce:50:81:35:d2:47:53:bb:ac:e0:2f:ab:6d:57:fb: 25:12:8a:85:72:5b:6d:a6:f2:e4:63:8d:26:36:11: 98:ef:35:b3:a2:84:d7:c6:c6:91:8c:3f:2a:f4:89: 1a:04:d7:dc:30:48:99:5e:eb:18:0d:ec:50:c0:d1: 96:2a:dc:46:3d:6b:50:93:44:8e:45:4c:82:9a:95: ca:c9:03:bf:6d:63:57:9a:71:57:26:fe:39:f7:3d: 0e:61:25:c8:f4:bf:96:f0:0d:9c:d0:e0:c7:48:f0: 31:ce:b4:96:42:33:d5:35:85:b5:79:74:f4:38:14: c6:cd:3c:8b:81:b4:f6:fd:cb:d8:fd:26:d1:f7:3a: fd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F2:FF:CB:0B:FD:4F:95:66:8B:C7:9F:7C:2F:59:18:38:73:B6:C7 X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:fd:45:7a:77:10:52:d4:35:02:3f:31:38:42:1e:fa:ad:8e: c6:e9:cd:ae:00:f7:fd:45:ff:77:66:4c:e2:e7:07:f1:6f:75: c6:3b:b5:01:fc:63:f1:25:c3:a7:3c:dd:9c:e0:7a:ec:f9:41: 70:f8:30:4a:fb:d7:78:79:7c:d3:f9:b6:2b:10:9a:10:28:0e: 4a:0a:40:69:f9:e8:77:c2:0c:52:63:9b:b7:9f:da:87:13:4b: e2:07:e2:0e:ca:79:bf:10:5d:a1:fb:c7:bd:e0:58:73:e5:3f: 5b:7b:a0:df:84:48:0d:d7:32:f4:02:11:96:1b:33:34:8d:dc: 9d:20:5b:a9:1f:6d:20:4c:da:4f:d4:bb:b4:a3:f6:2b:d7:7b: 8a:86:fe:91:b6:e3:b5:7b:21:9e:a7:dd:10:6e:9c:fc:7b:e0: ee:47:0b:83:cb:42:d2:c3:56:02:04:d4:a9:b0:2b:8f:c1:a1: 8d:0c:d0:cf:ad:75:56:ac:99:7d:69:a9:bc:f5:23:82:dd:7d: a7:9d:d0:10:23:d2:ee:63:f7:25:df:5a:40:f5:ab:bf:0b:28: a5:c4:1f:37:11:41:d1:80:3c:88:ea:a5:3a:1c:9b:5a:d8:ff: 86:6c:31:98:eb:e7:8f:f3:5e:2c:05:df:ee:8c:5a:e4:57:cb: 0e:d9:83:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjUwNDI3MDExNDEwWhcNMjUwNTA0MDExNDEwWjAYMRYwFAYD VQQDEw02ODBkODRlMi1kYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDk5jEN3uYXwrcK7vmxUFgvjDiyGI4+9i1BI2mvYtTacTWsP5hl29EwBPY5p DIxDgVf0gnT7CXYvOyvWpgM7nmO49u4VWxgfbaXRqIO+fON9CNdtfEYb8l7BWyxg kVw24VkWwOJeqqbfgo1Y1V+BBDskjcP2YHrOUIE10kdTu6zgL6ttV/slEoqFcltt pvLkY40mNhGY7zWzooTXxsaRjD8q9IkaBNfcMEiZXusYDexQwNGWKtxGPWtQk0SO RUyCmpXKyQO/bWNXmnFXJv459z0OYSXI9L+W8A2c0ODHSPAxzrSWQjPVNYW1eXT0 OBTGzTyLgbT2/cvY/SbR9zr9nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOby/8sL /U+VZovHn3wvWRg4c7bHMB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi/UV6dxBS1DUCPzE4Qh76rY7G6c2uAPf9Rf93Zkzi5wfxb3XGO7UB /GPxJcOnPN2c4Hrs+UFw+DBK+9d4eXzT+bYrEJoQKA5KCkBp+eh3wgxSY5u3n9qH E0viB+IOynm/EF2h+8e94Fhz5T9be6DfhEgN1zL0AhGWGzM0jdydIFupH20gTNpP 1Lu0o/Yr13uKhv6RtuO1eyGep90Qbpz8e+DuRwuDy0LSw1YCBNSpsCuPwaGNDNDP rXVWrJl9aam89SOC3X2nndAQI9LuY/cl31pA9au/CyilxB83EUHRgDyI6qU6HJta 2P+GbDGY6+eP814sBd/ujFrkV8sO2YO2 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:17 2025 by rpki-client on console.sobornost.net