$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft File: Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft (raw, json) Hash identifier: AyLppypJn6RN0dns/AHKezrp0RM6WmACa8CllTw7fHE= Subject key identifier: 76:A9:E1:2F:0F:CC:94:CC:C4:F3:77:C9:8C:C6:39:60:4E:93:DD:57 Authority key identifier: 06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 Certificate issuer: /CN=A91F6E7D/serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Certificate serial: 09AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft Manifest number: 09A7 Signing time: Mon 28 Apr 2025 20:26:44 +0000 Manifest this update: Mon 28 Apr 2025 20:26:43 +0000 Manifest next update: Mon 05 May 2025 20:26:43 +0000 Files and hashes: 1: Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl (hash: jKN3jP1v3qn0ng62Kk8YsNfJMdqf2Kbgmxf0SdU/85I=) 2: 401EA996B5B511EABB640052C4F9AE02.roa (hash: rjAdNfdV9AdfawHfPlvLtufzt08XjVklPQmY9MfBrEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D, serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Validity Not Before: Apr 28 20:26:43 2025 GMT Not After : May 5 20:26:43 2025 GMT Subject: CN=680fe484-db5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d1:e2:d9:e1:c4:b0:ff:cf:74:82:52:c3:e9: 8f:a0:a6:88:60:6f:0c:2e:5f:fc:09:6a:53:47:50: 5a:bc:3a:3b:93:31:6d:07:ab:fd:db:21:bb:86:09: e7:2b:64:70:83:b7:f5:a3:07:53:b9:7c:72:3c:14: 7c:ce:66:9c:a8:32:01:c3:e9:d8:af:f0:1d:f9:6f: af:53:97:06:3b:d4:2f:63:de:93:53:c2:49:8f:be: 20:7c:88:24:c8:8d:74:a8:85:49:04:5d:cf:93:2a: cd:57:a7:5a:35:c4:c2:92:3a:32:a9:26:61:ad:03: 70:ac:b1:6f:15:ee:6e:ad:9b:81:f6:76:d6:61:46: 17:c5:f9:61:9d:ea:9e:18:54:cc:45:e5:9d:7b:a6: 4f:2d:a4:0d:c1:d0:06:c2:4d:cb:36:ec:9a:69:55: 6e:88:6b:6d:22:01:b7:44:c0:1e:2a:8f:33:a0:1f: 7d:d5:85:c8:43:d1:19:48:61:da:fc:5c:9e:28:6b: 76:0e:f2:f5:bb:f4:53:9e:8e:07:7c:91:e8:82:30: f8:ae:ce:79:8d:45:c3:18:d1:32:ae:87:ec:72:31: 7c:d5:6a:c7:38:5a:59:33:0d:4e:79:5b:3b:10:b3: 52:dc:4d:a8:f4:36:68:38:13:4f:77:8c:f8:1b:f6: b3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A9:E1:2F:0F:CC:94:CC:C4:F3:77:C9:8C:C6:39:60:4E:93:DD:57 X509v3 Authority Key Identifier: keyid:06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:1c:84:be:d8:67:3c:16:f2:26:f5:ea:e9:77:6f:ba:54:8e: a7:27:21:ee:08:4f:d3:3a:99:b7:00:39:53:e4:4c:72:7e:33: 21:28:25:2d:e0:f1:ca:e7:30:55:7d:1a:e4:92:5d:59:94:22: d7:23:9e:e1:99:de:0a:f3:31:28:b9:a2:9b:fe:0b:be:2c:6a: c2:59:bf:94:eb:5e:b7:87:8c:f1:e1:84:21:a2:c5:9d:d4:e1: f4:a7:23:ec:d9:7a:4c:bd:ba:b2:50:b6:e0:8e:89:f2:35:64: 56:c0:aa:04:b7:f8:90:d2:d2:32:32:e5:b0:a7:24:ca:52:e4: e3:6b:f5:71:9c:ba:02:8d:74:32:27:54:3f:76:fe:ee:be:09: a9:ff:1f:19:ea:ef:ec:ed:bd:a4:65:3c:b0:6a:ce:52:57:a7: 50:d5:4b:43:25:7c:dd:a3:b0:76:a7:06:bd:b1:a3:78:5a:9e: 70:40:e0:54:03:e8:0a:67:0a:57:b4:03:12:fc:c2:43:f3:f0: 9b:4a:6f:a1:4a:16:3f:14:2e:73:77:a4:79:6f:88:bf:0f:03: e3:2f:e3:d3:02:57:a4:34:7c:96:94:00:0a:4f:a2:e5:b6:55: fc:dd:de:e5:c1:bf:b4:35:db:a5:cd:3d:8b:db:09:8a:fa:34: 69:98:30:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDA2REY1MkQyOTE1MDNEMEUyQjExNzJEMzg1QzJCMTg3 Nzk0Qzc5QzcwHhcNMjUwNDI4MjAyNjQzWhcNMjUwNTA1MjAyNjQzWjAYMRYwFAYD VQQDEw02ODBmZTQ4NC1kYjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudHi2eHEsP/PdIJSw+mPoKaIYG8MLl/8CWpTR1BavDo7kzFtB6v92yG7hgnn K2Rwg7f1owdTuXxyPBR8zmacqDIBw+nYr/Ad+W+vU5cGO9QvY96TU8JJj74gfIgk yI10qIVJBF3PkyrNV6daNcTCkjoyqSZhrQNwrLFvFe5urZuB9nbWYUYXxflhneqe GFTMReWde6ZPLaQNwdAGwk3LNuyaaVVuiGttIgG3RMAeKo8zoB991YXIQ9EZSGHa /FyeKGt2DvL1u/RTno4HfJHogjD4rs55jUXDGNEyrofscjF81WrHOFpZMw1OeVs7 ELNS3E2o9DZoOBNPd4z4G/azDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHap4S8P zJTMxPN3yYzGOWBOk91XMB8GA1UdIwQYMBaAFAbfUtKRUD0OKxFy04XCsYd5THnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xNzU5RTRDODgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBRNHJFWExUaGNLeGgzbE1l Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J0OVMwcEZRUFE0ckVYTFRoY0t4aDNsTWVjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkU3RC8xNzU5RTRDODgzODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBR NHJFWExUaGNLeGgzbE1lY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtHIS+2Gc8FvIm9erpd2+6VI6nJyHuCE/TOpm3ADlT5ExyfjMhKCUt 4PHK5zBVfRrkkl1ZlCLXI57hmd4K8zEouaKb/gu+LGrCWb+U6163h4zx4YQhosWd 1OH0pyPs2XpMvbqyULbgjonyNWRWwKoEt/iQ0tIyMuWwpyTKUuTja/VxnLoCjXQy J1Q/dv7uvgmp/x8Z6u/s7b2kZTywas5SV6dQ1UtDJXzdo7B2pwa9saN4Wp5wQOBU A+gKZwpXtAMS/MJD8/CbSm+hShY/FC5zd6R5b4i/DwPjL+PTAlekNHyWlAAKT6Ll tlX83d7lwb+0NdulzT2L2wmK+jRpmDBF -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:59 2025 by rpki-client on console.sobornost.net