$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: 1avNg3eomeROsqeGxs3VVtAd4f6ljObKyw0kTYO+Ee0= Subject key identifier: E9:57:26:D7:CD:2F:ED:05:3D:77:06:24:B3:37:5B:C4:9F:31:8A:63 Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 0861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 1396 Signing time: Mon 28 Apr 2025 19:29:26 +0000 Manifest this update: Mon 28 Apr 2025 19:29:26 +0000 Manifest next update: Mon 05 May 2025 19:29:26 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: 9KfscrsnGxuccWI/UKnsT6kCVSnMeGE1ww4/dcoZLXE=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Apr 28 19:29:26 2025 GMT Not After : May 5 19:29:26 2025 GMT Subject: CN=680fd716-d02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a4:3b:96:9b:ea:27:3b:9b:8f:73:46:ab:8c: f1:46:27:33:5f:61:f4:56:29:e6:b6:55:25:65:88: 4a:f9:ba:55:ab:a0:00:cd:66:80:fd:86:95:ed:3c: ab:da:55:44:dd:cb:1e:a8:aa:2d:a8:01:f9:4e:07: 33:8a:d4:e2:34:29:e1:1e:39:96:a7:3b:c1:c0:16: a8:ff:d9:bf:84:74:92:c1:01:78:0a:b2:e8:fd:31: 94:d3:ca:dc:89:9c:3c:5b:73:92:99:bd:96:5e:73: 50:d4:d8:4c:28:c2:3b:91:93:18:5f:da:15:b6:82: 22:bb:a3:cc:a7:52:99:49:d9:6c:2f:5f:e5:90:9c: 6b:30:cd:27:15:f4:95:c6:b5:2d:38:16:a8:42:48: 35:62:11:e3:ff:08:f6:83:a9:ef:62:d1:2f:54:42: c5:f7:29:b8:25:f5:3c:87:a0:d0:e4:d1:e0:d0:28: 5f:3b:77:4c:97:72:a7:4a:73:4c:25:48:7e:d1:69: 45:81:82:62:fc:51:86:a6:8b:77:16:db:00:8a:ac: 8f:52:aa:a9:4d:27:e0:1a:5d:ed:01:7a:f2:80:17: 17:c1:71:f1:e1:30:d6:61:9f:51:ce:25:c1:f1:33: 48:56:34:f5:45:16:80:a1:22:80:1a:b0:bd:3d:8d: d1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:57:26:D7:CD:2F:ED:05:3D:77:06:24:B3:37:5B:C4:9F:31:8A:63 X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:08:94:7a:01:e8:22:38:71:2f:b2:66:9c:6b:a4:77:53:f6: e7:87:12:26:3c:b0:e9:41:3e:aa:4c:93:e0:ae:4e:1f:5e:f1: ea:2a:17:25:32:e3:b2:aa:67:dc:a2:3c:95:a6:e6:73:70:7c: 08:8d:a0:30:8b:d7:1a:0f:e1:22:c7:c7:08:c5:ea:8b:7d:9d: 58:1e:3f:21:31:0d:5d:9e:c5:c9:c1:7a:e3:7c:88:a3:41:b4: f5:8a:fb:7c:52:78:07:e6:41:ef:21:97:79:61:a9:05:e0:f4: bf:dc:2b:5f:7b:64:e1:ea:ba:c7:67:02:f2:f6:a9:e8:ad:f3: 24:bd:d6:db:2f:9d:4c:dc:65:19:03:fe:63:69:8a:da:5e:05: 9c:ec:79:fa:42:3b:81:f0:e4:98:7a:e0:78:4a:7b:1a:bc:7f: 89:0d:0d:2a:58:b3:2d:aa:bc:44:0e:90:07:9c:c9:f6:bf:cf: 79:93:b7:9b:0a:2c:7a:67:32:ab:87:4f:43:98:4b:30:5b:7d: 87:fe:dc:cd:16:f2:ef:a2:86:95:43:4e:26:34:c3:ca:5d:21: c1:7a:cc:64:23:cb:ad:a3:f5:f5:bc:f2:4f:67:e7:35:33:e0: e5:01:fe:57:35:3f:00:67:70:b9:09:5c:15:f6:af:b2:3a:a5: e7:ee:5f:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUwNDI4MTkyOTI2WhcNMjUwNTA1MTkyOTI2WjAYMRYwFAYD VQQDEw02ODBmZDcxNi1kMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aQ7lpvqJzubj3NGq4zxRiczX2H0VinmtlUlZYhK+bpVq6AAzWaA/YaV7Tyr 2lVE3cseqKotqAH5TgczitTiNCnhHjmWpzvBwBao/9m/hHSSwQF4CrLo/TGU08rc iZw8W3OSmb2WXnNQ1NhMKMI7kZMYX9oVtoIiu6PMp1KZSdlsL1/lkJxrMM0nFfSV xrUtOBaoQkg1YhHj/wj2g6nvYtEvVELF9ym4JfU8h6DQ5NHg0ChfO3dMl3KnSnNM JUh+0WlFgYJi/FGGpot3FtsAiqyPUqqpTSfgGl3tAXrygBcXwXHx4TDWYZ9RziXB 8TNIVjT1RRaAoSKAGrC9PY3ReQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlXJtfN L+0FPXcGJLM3W8SfMYpjMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDICJR6AegiOHEvsmaca6R3U/bnhxImPLDpQT6qTJPgrk4fXvHqKhcl MuOyqmfcojyVpuZzcHwIjaAwi9caD+Eix8cIxeqLfZ1YHj8hMQ1dnsXJwXrjfIij QbT1ivt8UngH5kHvIZd5YakF4PS/3Ctfe2Th6rrHZwLy9qnorfMkvdbbL51M3GUZ A/5jaYraXgWc7Hn6QjuB8OSYeuB4SnsavH+JDQ0qWLMtqrxEDpAHnMn2v895k7eb Cix6ZzKrh09DmEswW32H/tzNFvLvooaVQ04mNMPKXSHBesxkI8uto/X1vPJPZ+c1 M+DlAf5XNT8AZ3C5CVwV9q+yOqXn7l8O -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:59 2025 by rpki-client on console.sobornost.net