$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: fwea3Q/0q8G9ZfTJMuZCCUq6MqJxer96skIqZ0kv0OY= Subject key identifier: B9:87:73:2A:8D:08:41:58:BA:3F:19:1F:50:E4:DF:16:55:39:3E:C1 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 1502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 14F3 Signing time: Mon 28 Apr 2025 17:03:34 +0000 Manifest this update: Mon 28 Apr 2025 17:03:34 +0000 Manifest next update: Mon 05 May 2025 17:03:34 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: zrztXPwd4+c4im04y6MpBM/woH2a4tsEFtHQ1y5Sy+w=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: tzptSWrCu7leujBpAxl0r7s1OXoHlY5rMMlXgr5Raxw=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: CYK+uI2bxtOr291BnZawHgoP/6miR+B6epnu6Vsoz0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5378 (0x1502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4, serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Apr 28 17:03:34 2025 GMT Not After : May 5 17:03:34 2025 GMT Subject: CN=680fb4e6-4c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:89:24:37:6e:30:93:a7:fe:b8:df:95:16:3c: 56:24:c4:60:d0:5b:39:ff:cc:e0:25:2a:3f:80:07: 30:fd:26:13:8f:c2:4c:78:07:cd:f5:48:72:a2:fe: 6a:95:07:94:f9:dd:47:e6:61:41:e9:b3:3a:dc:39: 54:7c:f9:9f:3f:e9:2c:fe:f1:64:29:f4:1e:2c:59: 22:ab:cd:2e:64:40:93:1e:6d:6c:8b:64:bb:44:4b: 83:10:62:7f:75:3c:93:ca:e5:20:ec:b8:74:89:ca: e3:71:55:b4:7f:2d:9e:2f:d7:d1:0c:56:40:49:3f: 80:56:b5:32:5c:2f:fd:00:d6:fb:09:7c:e4:67:37: b9:94:e8:c9:2e:ca:f2:8f:2f:1c:f1:72:b4:f5:e0: 70:63:60:0a:62:c5:3a:b2:79:be:0b:41:19:5c:b6: 8c:4f:ed:31:b8:5a:b0:fb:92:50:cc:4c:55:7f:7a: 8a:6a:df:41:64:d4:60:7c:a6:a5:c6:c8:31:4a:56: b8:15:a1:92:36:d5:c7:19:2e:27:2f:da:56:ec:82: a2:3f:f9:fd:b9:72:60:86:76:2a:75:7d:5f:bf:fc: b6:7b:09:e2:26:29:a6:58:ea:c6:e5:b9:f3:67:90: f1:cd:86:d9:a4:0a:3b:99:a7:24:c8:40:d8:8c:ed: 41:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:87:73:2A:8D:08:41:58:BA:3F:19:1F:50:E4:DF:16:55:39:3E:C1 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:0e:f8:11:c6:00:a2:56:d6:f2:cb:db:df:59:3a:df:9b:0d: 41:f1:30:4a:2a:a7:0a:02:2e:99:8e:ab:96:a4:90:7b:40:9a: df:24:fa:ef:2a:d1:29:3f:2c:34:4a:56:ab:a3:a2:e8:89:d1: 82:53:5f:29:f7:58:61:b7:2b:64:65:28:c0:bf:83:db:1d:c3: 3a:a4:2d:2c:cc:61:07:7d:85:1f:32:8c:07:94:73:d8:8c:7a: 71:a4:69:c2:ae:95:44:8f:63:08:6d:67:3c:72:10:30:30:ba: 87:76:06:87:bc:29:4e:35:f2:31:7a:e1:be:4f:68:31:f9:7e: 4a:1d:7a:da:49:13:82:b8:24:20:32:dd:54:a1:18:64:3c:2f: ce:4f:f8:db:21:cd:5c:58:0b:c6:b7:0c:c4:43:cb:f5:c1:e3: 1c:8e:bd:1d:2c:05:f1:d3:9a:93:fd:50:66:60:fd:fb:ae:5d: ba:b2:60:a4:84:98:53:78:7e:b8:ba:7e:1b:65:39:d0:a8:a4: 9c:f2:0c:f6:70:82:8e:9c:2e:fb:c9:f9:43:0a:10:37:c6:82: 70:ad:05:3a:69:20:ad:82:d0:5c:cb:1c:a5:70:29:7a:59:64: b9:21:fd:77:e5:14:db:48:de:91:f7:5e:26:19:9f:27:e8:1d: 10:75:a3:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjUwNDI4MTcwMzM0WhcNMjUwNTA1MTcwMzM0WjAYMRYwFAYD VQQDEw02ODBmYjRlNi00YzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4kkN24wk6f+uN+VFjxWJMRg0Fs5/8zgJSo/gAcw/SYTj8JMeAfN9Uhyov5q lQeU+d1H5mFB6bM63DlUfPmfP+ks/vFkKfQeLFkiq80uZECTHm1si2S7REuDEGJ/ dTyTyuUg7Lh0icrjcVW0fy2eL9fRDFZAST+AVrUyXC/9ANb7CXzkZze5lOjJLsry jy8c8XK09eBwY2AKYsU6snm+C0EZXLaMT+0xuFqw+5JQzExVf3qKat9BZNRgfKal xsgxSla4FaGSNtXHGS4nL9pW7IKiP/n9uXJghnYqdX1fv/y2ewniJimmWOrG5bnz Z5DxzYbZpAo7mackyEDYjO1ByQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmHcyqN CEFYuj8ZH1Dk3xZVOT7BMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZDvgRxgCiVtbyy9vfWTrfmw1B8TBKKqcKAi6ZjquWpJB7QJrfJPrv KtEpPyw0Slaro6LoidGCU18p91hhtytkZSjAv4PbHcM6pC0szGEHfYUfMowHlHPY jHpxpGnCrpVEj2MIbWc8chAwMLqHdgaHvClONfIxeuG+T2gx+X5KHXraSROCuCQg Mt1UoRhkPC/OT/jbIc1cWAvGtwzEQ8v1weMcjr0dLAXx05qT/VBmYP37rl26smCk hJhTeH64un4bZTnQqKSc8gz2cIKOnC77yflDChA3xoJwrQU6aSCtgtBcyxylcCl6 WWS5If135RTbSN6R914mGZ8n6B0QdaPa -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:16 2025 by rpki-client on console.sobornost.net