$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft File: qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft (raw, json) Hash identifier: ukkzmHRGA+a3rcDpwCsXdxsV9tetf9bA357W5vZzsxA= Subject key identifier: 7B:21:12:D7:91:19:79:F7:EA:91:C8:2F:69:67:39:7F:06:38:97:D7 Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft Manifest number: 01C8 Signing time: Wed 23 Apr 2025 02:14:12 +0000 Manifest this update: Wed 23 Apr 2025 02:14:11 +0000 Manifest next update: Wed 30 Apr 2025 02:14:11 +0000 Files and hashes: 1: qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl (hash: Gnz6mzvynCvnp9X8z7cxg55ln25f/Sd+9TtUBWGUxwA=) 2: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (hash: 5xUQVljU0BWWuc6LYolHHzG3Hqi8KmssX696YCKuce8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 02:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5216, serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Validity Not Before: Apr 23 02:14:11 2025 GMT Not After : Apr 30 02:14:11 2025 GMT Subject: CN=68084cf3-7b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:a3:48:aa:14:7f:dc:a3:b8:af:bc:f2:76:c9: 5f:d0:fd:3a:e6:21:1a:73:81:c3:6d:20:c5:64:8f: 12:ac:3b:25:78:07:24:d2:71:93:2d:91:ee:0c:35: f6:81:b8:fb:5f:cf:03:af:c9:53:4a:5a:56:b6:8d: 57:26:4c:a4:d7:32:e5:38:7b:c0:9d:17:fe:90:04: 6f:6a:79:33:92:ee:c0:0d:a4:1d:66:b2:81:ba:b4: 0c:16:7f:40:2c:4d:3a:26:52:8b:f5:ff:35:66:14: ea:57:9e:f7:de:92:1c:08:e9:c7:f0:15:d2:e4:2e: 11:c4:f0:9f:70:d6:bb:f1:f3:cf:bf:ba:5c:a1:69: be:20:0e:06:ab:02:0b:25:60:a1:f0:43:61:5f:00: bc:3e:24:db:27:33:9f:25:55:da:93:55:11:7e:f8: a5:bb:5a:7b:fd:a4:67:f9:ae:85:d3:f9:74:fd:47: 1d:8f:bc:ff:da:be:92:1f:00:73:73:72:6f:f7:45: 4d:b7:b1:c2:3a:f0:d9:86:af:f1:14:64:db:8b:c1: e0:44:f1:de:2b:94:83:9b:70:98:06:8e:15:b6:ab: b6:00:68:d6:7e:63:db:a2:11:b3:15:43:ed:e1:fe: ac:86:e5:1a:5d:fa:68:90:9a:aa:e6:47:84:ce:0d: f0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:21:12:D7:91:19:79:F7:EA:91:C8:2F:69:67:39:7F:06:38:97:D7 X509v3 Authority Key Identifier: keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:24:6c:04:63:83:07:38:68:5b:74:ea:5a:3f:4c:72:2c:93: f1:94:f0:3a:1e:da:2f:db:d7:35:b2:4c:d4:80:6b:5c:14:64: 45:f2:51:fe:8f:48:65:64:d9:c3:76:82:22:15:08:a1:2c:37: 6b:22:f9:3d:8f:9f:8a:85:66:13:67:56:76:8c:1f:db:03:19: 5b:36:16:ec:35:9d:06:54:c8:4b:12:cc:81:20:5f:f6:51:bd: 40:62:27:33:0d:1c:91:1c:26:a0:3a:70:1b:fd:c3:df:a9:80: db:e6:38:65:57:b8:68:a3:ca:10:3a:dc:a2:a3:ce:14:9d:ff: 45:44:32:1d:c8:27:4f:f8:42:55:cd:11:72:8a:85:87:85:b6: 11:d3:b4:fb:95:fe:f3:98:f7:df:d4:d1:45:93:7e:d8:41:db: b5:d6:bf:67:4e:c3:9f:da:9d:20:03:c7:c5:53:4b:7a:e9:e9: f7:e1:aa:1e:fb:f2:96:b8:ef:a6:94:a6:cc:84:04:a5:76:c2: d9:aa:f3:ab:04:c4:da:58:c2:0d:ff:c2:4c:7e:37:c5:f4:dd: 23:9f:5e:01:eb:7f:52:9b:bf:6e:d2:90:f4:26:6f:3c:5b:22: 6e:d5:71:b1:c8:32:5e:e9:8c:12:47:52:43:71:26:d3:7f:a2: 28:7d:ff:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyMTYxMTAvBgNVBAUTKEE4NDFCREM1QUZBOUU5QTBBOTVCODg1NDYxMTNDQTc0 NUVFOTYzQjUwHhcNMjUwNDIzMDIxNDExWhcNMjUwNDMwMDIxNDExWjAYMRYwFAYD VQQDEw02ODA4NGNmMy03Yjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8qNIqhR/3KO4r7zydslf0P065iEac4HDbSDFZI8SrDsleAck0nGTLZHuDDX2 gbj7X88Dr8lTSlpWto1XJkyk1zLlOHvAnRf+kARvankzku7ADaQdZrKBurQMFn9A LE06JlKL9f81ZhTqV5733pIcCOnH8BXS5C4RxPCfcNa78fPPv7pcoWm+IA4GqwIL JWCh8ENhXwC8PiTbJzOfJVXak1URfvilu1p7/aRn+a6F0/l0/Ucdj7z/2r6SHwBz c3Jv90VNt7HCOvDZhq/xFGTbi8HgRPHeK5SDm3CYBo4Vtqu2AGjWfmPbohGzFUPt 4f6shuUaXfpokJqq5keEzg3wKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHshEteR GXn36pHIL2lnOX8GOJfXMB8GA1UdIwQYMBaAFKhBvcWvqemgqVuIVGETynRe6WO1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIxNi81Q0Q1RTczMDZF MDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZhQ3BXNGhVWVJQS2RGN3BZ N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FFRzl4YS1wNmFDcFc0aFVZUlBLZEY3cFk3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIxNi81Q0Q1RTczMDZFMDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZh Q3BXNGhVWVJQS2RGN3BZN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgJGwEY4MHOGhbdOpaP0xyLJPxlPA6Htov29c1skzUgGtcFGRF8lH+ j0hlZNnDdoIiFQihLDdrIvk9j5+KhWYTZ1Z2jB/bAxlbNhbsNZ0GVMhLEsyBIF/2 Ub1AYiczDRyRHCagOnAb/cPfqYDb5jhlV7hoo8oQOtyio84Unf9FRDIdyCdP+EJV zRFyioWHhbYR07T7lf7zmPff1NFFk37YQdu11r9nTsOf2p0gA8fFU0t66en34aoe +/KWuO+mlKbMhASldsLZqvOrBMTaWMIN/8JMfjfF9N0jn14B639Sm79u0pD0Jm88 WyJu1XGxyDJe6YwSR1JDcSbTf6Ioff/D -----END CERTIFICATE-----Generated at Wed Apr 23 06:36:04 2025 by rpki-client on console.sobornost.net