$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: CAdEp/ao4QMrQ3QIP9B9GSVC2WjyhtbCeSLtwvKsiOI= Subject key identifier: 1F:48:9B:47:86:98:56:80:44:30:43:81:FC:F0:B6:DD:D4:A1:68:49 Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 09AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 09A5 Signing time: Mon 28 Apr 2025 20:28:18 +0000 Manifest this update: Mon 28 Apr 2025 20:28:17 +0000 Manifest next update: Mon 05 May 2025 20:28:17 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: Lo6e7mdjW7TIp0PYmbnahObvkd5tOzKh5aHKyZCGzo4=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2477 (0x9ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Apr 28 20:28:17 2025 GMT Not After : May 5 20:28:17 2025 GMT Subject: CN=680fe4e2-a41a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:03:4c:c4:15:db:b9:ab:bc:85:c5:fd:ca:31: 94:5d:29:46:fe:02:b0:6a:8a:32:24:c4:87:24:f1: 9f:8f:91:3a:bc:e4:8c:7a:1f:db:ac:33:fe:5e:6b: 35:9d:5e:0c:70:85:bd:39:88:a4:d4:88:09:ae:4d: 73:36:55:3b:b8:13:4d:5a:31:6e:47:f5:02:2c:9a: 8a:8e:19:03:df:b7:d4:08:0c:ed:9d:a8:b3:3e:b6: b3:8e:22:49:9f:26:c0:a1:c5:0b:b4:ac:26:a6:ed: 41:ab:84:68:37:9e:93:d7:3b:54:50:33:9a:8b:59: 9d:53:b6:b1:da:05:2a:61:ab:4d:51:93:d2:50:6b: 22:3d:00:00:4a:5b:89:29:4f:92:f9:bc:69:9d:23: af:ee:df:fe:75:d5:a9:6e:e2:4d:1b:7c:c4:24:aa: 93:bf:0c:32:7d:80:d9:02:f6:02:e9:45:19:1c:56: cc:a0:6a:41:d8:58:60:67:5a:fd:0a:31:ff:c6:e5: 83:23:7f:53:0e:aa:30:e9:b4:2f:96:a6:e3:84:bd: f4:72:11:89:c9:f1:a1:d6:c2:f3:f2:77:ee:72:4a: f9:06:83:b2:a6:8f:d9:af:87:5b:de:93:4f:8b:e6: 88:f1:3a:df:b9:e2:a9:dc:fa:47:d7:9d:fd:e7:8d: fb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:48:9B:47:86:98:56:80:44:30:43:81:FC:F0:B6:DD:D4:A1:68:49 X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:ee:d8:ff:09:65:2b:44:c4:d8:ba:da:55:ce:12:a0:76:c7: fb:98:6d:14:d3:0d:c8:a1:3a:2a:e6:ef:9c:49:77:87:56:6f: a0:62:6b:f2:83:87:2a:ec:0d:cf:39:f0:cc:da:86:7f:20:5b: 33:01:ec:b6:5d:93:74:6a:26:8d:56:89:52:3e:0d:92:b6:dd: 1c:59:06:8f:65:ac:8b:cb:85:78:e7:24:c6:d4:28:9d:af:46: 4e:69:39:1f:e8:ba:37:58:98:f4:49:fb:95:97:6e:31:0d:9d: 63:6b:ed:16:7e:bc:b4:20:bc:6c:fc:2a:df:60:fe:c1:6a:f8: f1:52:bd:3c:e9:81:0b:b6:35:7d:83:b5:e8:e0:4c:59:e2:ac: 48:e0:db:ef:b4:d8:fa:fe:a4:56:4d:34:73:a0:5b:c2:c2:7d: 5d:98:1c:0b:e2:a5:c4:66:4a:1b:e7:e2:9b:ce:2f:db:7d:40: 2b:01:a8:13:6c:f2:e3:7a:b4:67:22:d8:40:12:dc:46:09:34: 18:67:5f:13:e2:1a:52:d6:d5:ad:05:bf:82:9e:5e:59:f3:d0: 82:6b:e3:96:fd:11:32:fc:bf:3d:2c:21:0a:fb:27:1d:8c:66: 5c:11:de:72:cc:0a:ec:cf:5c:af:de:13:f1:93:50:b9:fd:ae: 02:f1:50:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUwNDI4MjAyODE3WhcNMjUwNTA1MjAyODE3WjAYMRYwFAYD VQQDEw02ODBmZTRlMi1hNDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gNMxBXbuau8hcX9yjGUXSlG/gKwaooyJMSHJPGfj5E6vOSMeh/brDP+Xms1 nV4McIW9OYik1IgJrk1zNlU7uBNNWjFuR/UCLJqKjhkD37fUCAztnaizPrazjiJJ nybAocULtKwmpu1Bq4RoN56T1ztUUDOai1mdU7ax2gUqYatNUZPSUGsiPQAASluJ KU+S+bxpnSOv7t/+ddWpbuJNG3zEJKqTvwwyfYDZAvYC6UUZHFbMoGpB2FhgZ1r9 CjH/xuWDI39TDqow6bQvlqbjhL30chGJyfGh1sLz8nfuckr5BoOypo/Zr4db3pNP i+aI8TrfueKp3PpH15395437+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9Im0eG mFaARDBDgfzwtt3UoWhJMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU7tj/CWUrRMTYutpVzhKgdsf7mG0U0w3IoToq5u+cSXeHVm+gYmvy g4cq7A3POfDM2oZ/IFszAey2XZN0aiaNVolSPg2Stt0cWQaPZayLy4V45yTG1Cid r0ZOaTkf6Lo3WJj0SfuVl24xDZ1ja+0Wfry0ILxs/CrfYP7BavjxUr086YELtjV9 g7Xo4ExZ4qxI4NvvtNj6/qRWTTRzoFvCwn1dmBwL4qXEZkob5+Kbzi/bfUArAagT bPLjerRnIthAEtxGCTQYZ18T4hpS1tWtBb+Cnl5Z89CCa+OW/REy/L89LCEK+ycd jGZcEd5yzArsz1yv3hPxk1C5/a4C8VCR -----END CERTIFICATE-----Generated at Mon Apr 28 23:06:01 2025 by rpki-client on console.sobornost.net