$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft File: Nh-touCojPKH9M5sw7RGLJEzC_w.mft (raw, json) Hash identifier: GZt5r4K9lpXe3T8JK2RTDELNwD6T3FiohguS1K/N8Vo= Subject key identifier: 20:72:E3:CB:9F:C5:2A:F7:69:71:E3:90:1D:34:DF:A0:35:57:A5:2C Authority key identifier: 36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC Certificate issuer: /CN=A91F8357/serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft Manifest number: 34 Signing time: Sun 27 Apr 2025 06:29:59 +0000 Manifest this update: Sun 27 Apr 2025 06:29:58 +0000 Manifest next update: Sun 04 May 2025 06:29:58 +0000 Files and hashes: 1: Nh-touCojPKH9M5sw7RGLJEzC_w.crl (hash: XwBWU+/rNRBp8sWX4GGAbEscG0hjtf2HKHJKBixQ+84=) 2: 89E51722DF9011EFB2CE892EC4F9AE02.roa (hash: KpVW4cQhj8alBR7jcPtqJ2dq3s1eufaG57nwvRNG5IA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8357, serialNumber=361FADA2E0A88CF287F4CE6CC3B4462C91330BFC Validity Not Before: Apr 27 06:29:58 2025 GMT Not After : May 4 06:29:58 2025 GMT Subject: CN=680dcee6-1961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:b6:25:b9:cf:0d:1d:b6:68:ee:db:cb:c3:5c: 3c:03:24:f9:3f:0f:5c:29:fb:17:a9:c7:be:b4:b2: 2e:01:25:dc:46:19:77:c2:85:6f:d7:b4:d4:4a:92: 0e:44:28:04:d1:06:be:c3:5a:6d:8f:3c:28:32:47: 0b:0a:7c:77:49:bb:d6:c8:d8:25:bf:bf:4e:c7:9c: 72:8d:77:a6:dd:3f:72:39:bd:2d:97:35:39:fd:f6: 1c:e2:0c:8f:f8:a8:49:83:81:9a:61:b2:49:c6:c1: 86:c2:a0:6d:f7:74:a2:f3:b2:30:6b:9e:1a:19:bf: f8:fd:11:25:d1:3b:9a:94:ec:ab:43:61:06:e6:07: 29:de:a9:73:c5:88:16:53:45:ec:94:f1:1f:ee:3c: 48:ca:e3:c3:b8:bb:46:96:6b:8f:82:19:8d:e6:62: 37:fd:1c:88:4a:ed:81:59:96:f0:2a:ed:52:fd:0a: f9:10:7a:89:db:9e:aa:9a:17:ff:a3:5a:0b:f2:d5: 97:07:05:a3:c3:b4:36:fd:45:f2:06:6a:a6:6f:dd: ea:ec:af:63:7c:cb:ba:a1:21:dd:bb:db:8e:1e:bf: e5:4d:0e:17:b7:1f:1c:55:2c:f1:fe:ae:cc:e7:9b: 84:7b:64:bf:11:73:b3:f0:43:ff:af:da:e1:1b:1c: e6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:72:E3:CB:9F:C5:2A:F7:69:71:E3:90:1D:34:DF:A0:35:57:A5:2C X509v3 Authority Key Identifier: keyid:36:1F:AD:A2:E0:A8:8C:F2:87:F4:CE:6C:C3:B4:46:2C:91:33:0B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Nh-touCojPKH9M5sw7RGLJEzC_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8357/14A78F2CDF8A11EF87472B74C4F9AE02/Nh-touCojPKH9M5sw7RGLJEzC_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:f7:b3:55:2f:3d:58:38:60:6f:2d:27:d8:1a:b2:7b:05:98: f9:c1:11:7a:a8:f2:a9:f9:51:ce:cf:f0:2f:20:36:9a:cd:20: 31:72:95:ba:15:24:5a:a2:b0:c4:0c:f9:a3:ca:8c:dc:d8:f2: 69:a3:7f:8a:2d:f4:5b:46:9d:77:da:6a:eb:f8:ee:0e:30:e0: 7a:60:35:fc:9e:2f:d8:5a:e7:ab:dd:23:d9:c2:76:fd:66:2c: 2b:7a:8a:25:41:a4:17:8f:4d:17:6f:97:b5:f7:ca:e2:1a:05: fc:ac:40:94:5d:0e:c4:58:a4:4c:cd:e0:b6:e9:0e:74:8b:09: 16:8b:e2:17:cf:c7:ad:11:bc:41:88:3f:5a:89:a3:ec:98:5d: ff:5b:00:12:8d:26:8e:f1:0f:ce:3b:c6:3d:2f:dd:37:43:d2: 78:60:3a:2e:a3:65:7b:6d:45:a1:72:87:2a:3e:5e:79:a9:82: cf:27:1e:4c:49:fa:62:3a:42:75:bb:63:19:18:90:c9:b7:6c: 3c:ad:26:37:33:36:33:80:a4:ca:ba:bc:18:2f:00:ad:57:6a: 74:93:d3:5f:9a:d2:3d:dd:46:f4:5a:21:1d:c3:b2:dd:99:45: 3f:c6:d6:fe:55:52:9d:99:b9:ca:40:26:ae:ac:22:e4:b2:24: 55:29:18:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODM1NzExMC8GA1UEBRMoMzYxRkFEQTJFMEE4OENGMjg3RjRDRTZDQzNCNDQ2MkM5 MTMzMEJGQzAeFw0yNTA0MjcwNjI5NThaFw0yNTA1MDQwNjI5NThaMBgxFjAUBgNV BAMTDTY4MGRjZWU2LTE5NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDltiW5zw0dtmju28vDXDwDJPk/D1wp+xepx760si4BJdxGGXfChW/XtNRKkg5E KATRBr7DWm2PPCgyRwsKfHdJu9bI2CW/v07HnHKNd6bdP3I5vS2XNTn99hziDI/4 qEmDgZphsknGwYbCoG33dKLzsjBrnhoZv/j9ESXRO5qU7KtDYQbmByneqXPFiBZT ReyU8R/uPEjK48O4u0aWa4+CGY3mYjf9HIhK7YFZlvAq7VL9CvkQeonbnqqaF/+j Wgvy1ZcHBaPDtDb9RfIGaqZv3ersr2N8y7qhId27244ev+VNDhe3HxxVLPH+rszn m4R7ZL8Rc7PwQ/+v2uEbHObVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIHLjy5/F KvdpceOQHTTfoDVXpSwwHwYDVR0jBBgwFoAUNh+touCojPKH9M5sw7RGLJEzC/ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4MzU3LzE0QTc4RjJDREY4 QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBLSDlNNXN3N1JHTEpFekNf dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmgtdG91Q29qUEtIOU01c3c3UkdMSkV6Q193LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 MzU3LzE0QTc4RjJDREY4QTExRUY4NzQ3MkI3NEM0RjlBRTAyL05oLXRvdUNvalBL SDlNNXN3N1JHTEpFekNfdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAND3s1UvPVg4YG8tJ9gasnsFmPnBEXqo8qn5Uc7P8C8gNprNIDFylboV JFqisMQM+aPKjNzY8mmjf4ot9FtGnXfaauv47g4w4HpgNfyeL9ha56vdI9nCdv1m LCt6iiVBpBePTRdvl7X3yuIaBfysQJRdDsRYpEzN4LbpDnSLCRaL4hfPx60RvEGI P1qJo+yYXf9bABKNJo7xD847xj0v3TdD0nhgOi6jZXttRaFyhyo+Xnmpgs8nHkxJ +mI6QnW7YxkYkMm3bDytJjczNjOApMq6vBgvAK1XanST01+a0j3dRvRaIR3Dst2Z RT/G1v5VUp2ZucpAJq6sIuSyJFUpGLE= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:59 2025 by rpki-client on console.sobornost.net