$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft File: 31_iG3yVUhWTRHF5TYsHBmPSs04.mft (raw, json) Hash identifier: Bx8MP5jmf4JwKVH/RYEsyIGnbw+myCHz5G36Habn1FI= Subject key identifier: 3C:AA:82:21:01:0F:51:EB:C6:AD:05:E2:94:B4:3D:85:2A:90:07:60 Authority key identifier: DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E Certificate issuer: /CN=A91F7537/serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft Manifest number: 57 Signing time: Fri 25 Apr 2025 06:12:39 +0000 Manifest this update: Fri 25 Apr 2025 06:12:39 +0000 Manifest next update: Fri 02 May 2025 06:12:39 +0000 Files and hashes: 1: 31_iG3yVUhWTRHF5TYsHBmPSs04.crl (hash: xd3xPDxbP3DhgQh0wyEejVuTc4Qcdnxy7xHYltf9sMg=) 2: E77278DCCE6311EFA284E23EC4F9AE02.roa (hash: DpN2zcLRAjgpftEu2Dp5lPwXsj2XxFGFEx1c1E4KncU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Validity Not Before: Apr 25 06:12:39 2025 GMT Not After : May 2 06:12:39 2025 GMT Subject: CN=680b27d7-50dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:00:a7:b0:08:ab:a9:e7:e3:ce:9a:cc:9f: 12:53:01:e5:86:97:27:f9:0b:14:63:d5:92:6d:b5: 3b:b1:e7:15:1e:47:d0:32:23:b6:ed:80:78:50:23: 9b:2f:2a:c6:87:1d:5e:cc:f1:25:60:0a:8a:d1:ac: 6c:99:fe:6d:48:0c:a5:27:26:f2:5b:57:39:d3:16: a6:8b:36:48:5d:95:1d:c2:33:ba:6d:c8:68:ea:f2: 41:38:ab:3d:b8:0b:02:e4:5b:2f:67:98:5f:d1:4e: 97:94:f8:2d:cd:95:6e:7e:bc:33:28:0d:eb:fc:86: 9a:e2:a2:38:d4:5d:4c:54:5e:d4:61:ff:0b:72:00: 08:46:73:1c:73:44:ea:41:af:8a:98:43:6a:1b:41: 35:d4:82:c1:35:76:0f:54:89:4e:17:d2:0e:09:35: 35:f4:b1:7b:60:0d:38:0f:60:d1:71:36:eb:90:ac: 6b:ea:b0:c0:cd:5e:4a:52:14:36:48:ad:76:19:d0: 99:57:bc:fa:61:fa:de:96:ab:41:b5:a9:fa:97:27: f7:12:98:7f:59:0d:ec:8d:89:cf:5e:8a:11:c4:e5: 6e:0a:67:db:c2:45:15:00:ce:4b:0e:6c:c9:83:b8: 80:26:35:35:2c:ca:f6:0f:b6:6f:d6:dd:d3:52:cf: da:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AA:82:21:01:0F:51:EB:C6:AD:05:E2:94:B4:3D:85:2A:90:07:60 X509v3 Authority Key Identifier: keyid:DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:f6:62:2c:94:3b:3d:0b:3e:b8:3d:f8:d7:01:c1:59:1b:ad: 3d:5e:8d:ff:73:6e:d8:72:08:a7:66:9a:2e:fc:38:54:a7:dd: e9:b4:17:93:6e:4c:8c:86:23:71:38:e2:16:21:1d:eb:76:22: 70:e9:08:79:c4:92:74:a8:72:40:9a:da:15:d0:72:67:79:ba: 47:94:19:d9:3a:cb:80:25:57:44:32:3b:f0:65:f2:08:92:d9: 20:7b:cc:ed:33:ec:b5:86:ab:e4:93:d8:fa:3c:2d:b7:a7:47: 9e:34:14:52:a7:a0:73:94:18:14:42:10:d1:a6:e7:c4:62:1b: af:4d:cf:a4:43:98:99:d5:79:df:b1:3f:27:99:2f:0b:cf:03: b1:3b:86:e2:a2:88:8b:30:e0:83:27:46:c9:93:35:c8:8c:9c: cb:94:d5:40:e3:12:9a:83:23:ef:e1:f4:d2:ed:cd:98:22:89: a9:5f:41:49:d5:9b:6a:fd:d2:49:2b:5b:ac:e0:fd:ce:4e:d1: c6:77:2c:30:76:ef:d9:f3:73:b5:d5:76:26:e3:2e:f7:10:7b: b9:00:a9:32:b5:76:25:20:80:c4:f5:7f:80:91:51:38:b6:bf: 05:b4:e9:01:a5:7b:48:39:26:2a:2c:f4:ba:8d:23:53:03:6a: 0a:da:69:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzUzNzExMC8GA1UEBRMoREY1RkUyMUI3Qzk1NTIxNTkzNDQ3MTc5NEQ4QjA3MDY2 M0QyQjM0RTAeFw0yNTA0MjUwNjEyMzlaFw0yNTA1MDIwNjEyMzlaMBgxFjAUBgNV BAMTDTY4MGIyN2Q3LTUwZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLMgCnsAirqefjzprMnxJTAeWGlyf5CxRj1ZJttTux5xUeR9AyI7btgHhQI5sv KsaHHV7M8SVgCorRrGyZ/m1IDKUnJvJbVznTFqaLNkhdlR3CM7ptyGjq8kE4qz24 CwLkWy9nmF/RTpeU+C3NlW5+vDMoDev8hpriojjUXUxUXtRh/wtyAAhGcxxzROpB r4qYQ2obQTXUgsE1dg9UiU4X0g4JNTX0sXtgDTgPYNFxNuuQrGvqsMDNXkpSFDZI rXYZ0JlXvPph+t6Wq0G1qfqXJ/cSmH9ZDeyNic9eihHE5W4KZ9vCRRUAzksObMmD uIAmNTUsyvYPtm/W3dNSz9oFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPKqCIQEP UevGrQXilLQ9hSqQB2AwHwYDVR0jBBgwFoAU31/iG3yVUhWTRHF5TYsHBmPSs04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3NTM3LzgwMkFFNjQ2QTI3 MTExRUZBMzkyRjA3OUM0RjlBRTAyLzMxX2lHM3lWVWhXVFJIRjVUWXNIQm1QU3Mw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMzFfaUczeVZVaFdUUkhGNVRZc0hCbVBTczA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3 NTM3LzgwMkFFNjQ2QTI3MTExRUZBMzkyRjA3OUM0RjlBRTAyLzMxX2lHM3lWVWhX VFJIRjVUWXNIQm1QU3MwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEj2YiyUOz0LPrg9+NcBwVkbrT1ejf9zbthyCKdmmi78OFSn3em0F5Nu TIyGI3E44hYhHet2InDpCHnEknSockCa2hXQcmd5ukeUGdk6y4AlV0QyO/Bl8giS 2SB7zO0z7LWGq+ST2Po8LbenR540FFKnoHOUGBRCENGm58RiG69Nz6RDmJnVed+x PyeZLwvPA7E7huKiiIsw4IMnRsmTNciMnMuU1UDjEpqDI+/h9NLtzZgiialfQUnV m2r90kkrW6zg/c5O0cZ3LDB279nzc7XVdibjLvcQe7kAqTK1diUggMT1f4CRUTi2 vwW06QGle0g5Jios9LqNI1MDagraaU0= -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:21 2025 by rpki-client on console.sobornost.net