$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft File: _h1b-QL6kS1-C16YDPkdvf0rtk8.mft (raw, json) Hash identifier: EMSQGjfu7qkgDd7REGWVc2leRoUcWSWdcUmeF3Gyekc= Subject key identifier: E4:70:C5:27:D9:2B:FB:A7:2D:72:88:BC:24:3D:0B:39:7A:EE:7A:5E Authority key identifier: FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F Certificate issuer: /CN=A91F8534/serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Certificate serial: 20D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft Manifest number: 20C6 Signing time: Mon 28 Apr 2025 16:03:47 +0000 Manifest this update: Mon 28 Apr 2025 16:03:47 +0000 Manifest next update: Mon 05 May 2025 16:03:47 +0000 Files and hashes: 1: _h1b-QL6kS1-C16YDPkdvf0rtk8.crl (hash: mGwTyXuzyiuMI3HWek9xk8lQvRNJVNHfPRGt9saJ0GI=) 2: 173CA1AABCA011ED914D176DC4F9AE02.roa (hash: hUdH/uVzYkF0LtRZr5OEyKuVBZZQ6yEh3YtiBoLV0Iw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8408 (0x20d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8534, serialNumber=FE1D5BF902FA912D7E0B5E980CF91DBDFD2BB64F Validity Not Before: Apr 28 16:03:47 2025 GMT Not After : May 5 16:03:47 2025 GMT Subject: CN=680fa6e3-fc6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:22:30:88:dc:e3:62:27:81:86:62:0a:2a: a2:bb:83:a8:aa:a8:66:f6:75:24:ac:15:82:01:3b: 7d:30:a4:10:75:3c:c5:26:36:3c:7e:8b:a5:77:54: 78:8a:5b:2f:ce:60:a7:aa:52:f2:c4:ea:00:f6:a1: 47:3c:40:d3:f5:1a:64:2f:d9:51:8f:9f:b7:a0:6a: 78:b0:b6:a9:46:24:e3:f8:e9:31:c1:55:c8:da:56: b5:e6:8e:68:61:09:f6:fd:79:5b:7b:7e:1a:e1:4f: 3c:88:b7:8d:06:71:c6:89:f4:d7:2e:36:a1:af:a0: 90:5e:95:93:22:5a:20:94:62:c3:3b:6e:5f:d7:5f: 36:8a:9c:96:1b:87:62:1d:2a:71:12:cd:c7:2c:2b: 3a:36:3b:44:a7:1d:55:4b:35:63:1a:53:cf:20:27: c1:2b:fd:5c:25:8b:dc:03:fc:3c:19:ad:8c:9e:75: 27:48:60:d7:a1:e6:d3:f1:36:e4:4e:99:4b:c0:f0: eb:5b:30:f0:23:5c:23:aa:77:fe:9f:7a:92:c8:4b: 66:74:c4:1c:ed:cf:2b:d1:c9:da:6d:66:ca:a3:2b: e5:1f:d2:7e:d1:b0:ea:af:4d:6e:4f:e9:cd:fc:7f: d4:e7:92:f2:5a:50:f9:95:cc:04:0f:54:28:e0:d0: 2c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:70:C5:27:D9:2B:FB:A7:2D:72:88:BC:24:3D:0B:39:7A:EE:7A:5E X509v3 Authority Key Identifier: keyid:FE:1D:5B:F9:02:FA:91:2D:7E:0B:5E:98:0C:F9:1D:BD:FD:2B:B6:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_h1b-QL6kS1-C16YDPkdvf0rtk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8534/6E6A462CFEDD11E5B4905D7CC4F9AE02/_h1b-QL6kS1-C16YDPkdvf0rtk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:0e:86:03:9b:23:ac:16:dd:a8:5c:92:94:58:66:64:f1:4e: 5f:03:f1:f6:a1:81:2d:ed:ac:13:36:07:82:20:b2:f7:e8:75: 1d:3d:9d:fa:b3:3e:a2:91:cf:d0:e8:5d:b8:e1:cf:bf:52:d8: 7a:3e:06:d4:d6:fa:90:b1:da:35:a3:10:a2:6a:50:5a:9e:24: 96:71:0b:2b:df:0f:30:37:36:45:58:00:d4:a8:31:f5:a5:fb: 5b:fb:a9:04:a3:7d:c0:11:44:ca:9b:0a:7a:56:c4:c0:62:d6: 6c:23:b8:f5:2e:10:c3:73:60:20:3f:74:56:27:2b:c3:f7:25: 1b:f9:db:65:2c:1e:fa:40:1a:75:89:ca:a6:2e:f7:13:31:71: 80:a0:18:ec:6a:cf:9c:f2:7f:f9:01:d3:24:6c:e2:06:d6:65: 8b:e6:d1:fc:dd:09:f0:4e:9f:cc:b1:01:f9:23:85:9b:73:8e: cd:63:65:4a:7c:f7:2c:ce:f5:b7:b1:f3:a1:fc:aa:54:96:5e: a7:58:05:51:94:57:7b:6f:21:e7:d8:21:96:bb:da:d1:a9:eb: a4:12:5b:b5:e2:40:19:d9:7b:c2:f7:79:31:5f:2b:d5:67:ae: 88:ef:d8:46:ae:a0:79:0a:60:ed:a8:78:75:ac:76:13:03:4a: 04:55:6b:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICINgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg1MzQxMTAvBgNVBAUTKEZFMUQ1QkY5MDJGQTkxMkQ3RTBCNUU5ODBDRjkxREJE RkQyQkI2NEYwHhcNMjUwNDI4MTYwMzQ3WhcNMjUwNTA1MTYwMzQ3WjAYMRYwFAYD VQQDEw02ODBmYTZlMy1mYzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVoiMIjc42IngYZiCiqiu4Ooqqhm9nUkrBWCATt9MKQQdTzFJjY8fould1R4 ilsvzmCnqlLyxOoA9qFHPEDT9RpkL9lRj5+3oGp4sLapRiTj+OkxwVXI2la15o5o YQn2/Xlbe34a4U88iLeNBnHGifTXLjahr6CQXpWTIloglGLDO25f1182ipyWG4di HSpxEs3HLCs6NjtEpx1VSzVjGlPPICfBK/1cJYvcA/w8Ga2MnnUnSGDXoebT8Tbk TplLwPDrWzDwI1wjqnf+n3qSyEtmdMQc7c8r0cnabWbKoyvlH9J+0bDqr01uT+nN /H/U55LyWlD5lcwED1Qo4NAsQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORwxSfZ K/unLXKIvCQ9Czl67npeMB8GA1UdIwQYMBaAFP4dW/kC+pEtfgtemAz5Hb39K7ZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODUzNC82RTZBNDYyQ0ZF REQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtTMS1DMTZZRFBrZHZmMHJ0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19oMWItUUw2a1MxLUMxNllEUGtkdmYwcnRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODUzNC82RTZBNDYyQ0ZFREQxMUU1QjQ5MDVEN0NDNEY5QUUwMi9faDFiLVFMNmtT MS1DMTZZRFBrZHZmMHJ0azgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUDoYDmyOsFt2oXJKUWGZk8U5fA/H2oYEt7awTNgeCILL36HUdPZ36 sz6ikc/Q6F244c+/Uth6PgbU1vqQsdo1oxCialBaniSWcQsr3w8wNzZFWADUqDH1 pftb+6kEo33AEUTKmwp6VsTAYtZsI7j1LhDDc2AgP3RWJyvD9yUb+dtlLB76QBp1 icqmLvcTMXGAoBjsas+c8n/5AdMkbOIG1mWL5tH83QnwTp/MsQH5I4Wbc47NY2VK fPcszvW3sfOh/KpUll6nWAVRlFd7byHn2CGWu9rRqeukElu14kAZ2XvC93kxXyvV Z66I79hGrqB5CmDtqHh1rHYTA0oEVWv8 -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:07 2025 by rpki-client on console.sobornost.net