$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: +8sPhXT0Rpz837KCoh9H8XLW2a0rgdXyOqPIkErlwpU= Subject key identifier: 68:05:A5:9B:39:ED:5D:E3:71:0A:A2:9F:9C:44:6A:90:AE:23:BE:81 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1BCB Signing time: Mon 28 Apr 2025 16:19:47 +0000 Manifest this update: Mon 28 Apr 2025 16:19:47 +0000 Manifest next update: Mon 05 May 2025 16:19:47 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: 0rzTQG4ZhSS2w8ARQudAfeKTSRnZ/5dNtyTXF2w5ULI=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:19:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7132 (0x1bdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Apr 28 16:19:47 2025 GMT Not After : May 5 16:19:47 2025 GMT Subject: CN=680faaa3-6038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1c:db:ba:c9:79:9c:d3:98:3f:c0:79:67:98: d3:07:cd:25:7b:24:d7:16:c9:2f:51:34:57:f8:1f: 0d:95:5d:b7:b7:0f:03:03:90:7a:cd:80:0b:dc:97: 87:ef:09:50:12:10:e0:06:2d:05:30:9a:8b:7f:0b: fb:f7:af:25:c2:77:ea:55:d3:9d:b3:2e:2a:6e:9e: 4e:f8:4a:8a:77:6b:a8:92:70:bc:f5:25:68:59:d9: 35:02:ba:0b:75:8e:e6:4f:b5:4a:74:02:63:73:5b: 20:0d:b8:a3:76:5c:06:22:f5:1b:1f:b1:6d:6d:e0: 33:2e:0d:99:e2:22:85:4f:5d:57:53:bc:ba:30:90: 00:58:a0:f2:4b:55:f8:65:c4:a9:6b:42:e1:37:47: fd:3f:ba:36:2d:15:18:36:22:97:e3:c3:98:4b:5f: 5b:82:a8:54:c9:9e:54:12:30:6c:f7:f6:35:2c:96: 78:71:0f:3d:bd:7b:b8:77:54:99:ff:3e:d5:7e:f3: 80:a7:fc:9c:8f:09:14:e4:5f:75:46:87:ac:b9:db: 72:12:ef:4d:f3:7b:b2:69:38:28:fd:26:fd:0b:31: f7:87:42:5d:74:71:b1:ab:5a:25:22:a5:d1:b3:59: 18:e3:a8:a3:ce:aa:41:3d:23:4e:c8:b3:71:8d:16: 16:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:05:A5:9B:39:ED:5D:E3:71:0A:A2:9F:9C:44:6A:90:AE:23:BE:81 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:cc:99:ce:d0:5d:32:07:1c:fb:b5:a0:93:1d:f1:93:ac:25: b1:f3:78:b7:1b:c3:26:4c:43:0d:de:17:f3:a6:90:ee:a3:ba: 4f:a6:bf:59:af:e4:d6:a1:66:38:7b:7d:af:5d:a9:6c:26:34: 26:92:b6:d7:85:82:4b:d8:11:d1:6c:02:dc:f8:4a:18:da:ee: b7:b8:a9:b2:08:86:6f:73:59:9f:09:00:9d:3b:fe:c5:b5:3d: 91:89:bb:cd:d1:03:7f:4b:12:de:7f:50:28:43:58:e4:f5:c0: f3:5d:12:ed:0f:4f:c6:87:d8:d6:4e:3a:30:b1:88:d5:78:da: 19:bb:ef:13:f5:5f:9b:6c:60:72:db:94:9c:3b:59:fb:29:6a: 5a:10:c5:53:f6:b8:02:45:57:72:d6:15:be:05:c1:08:7e:76: a7:73:43:da:e6:15:65:e6:87:30:d1:5a:54:74:3a:02:44:79: f7:36:37:12:17:2a:b8:8b:cc:24:48:b8:05:48:46:68:03:7d: 20:59:38:98:5c:19:42:1b:49:d7:83:0c:e5:ac:36:f9:6a:a1: a3:96:39:c6:6f:bd:40:bb:c3:7a:d6:99:99:23:5a:af:ff:09: c0:7d:f9:71:60:44:51:fa:2a:cd:d5:28:9a:77:d8:d8:8a:b4: bc:80:e2:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwNDI4MTYxOTQ3WhcNMjUwNTA1MTYxOTQ3WjAYMRYwFAYD VQQDEw02ODBmYWFhMy02MDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBzbusl5nNOYP8B5Z5jTB80leyTXFskvUTRX+B8NlV23tw8DA5B6zYAL3JeH 7wlQEhDgBi0FMJqLfwv7968lwnfqVdOdsy4qbp5O+EqKd2uoknC89SVoWdk1AroL dY7mT7VKdAJjc1sgDbijdlwGIvUbH7FtbeAzLg2Z4iKFT11XU7y6MJAAWKDyS1X4 ZcSpa0LhN0f9P7o2LRUYNiKX48OYS19bgqhUyZ5UEjBs9/Y1LJZ4cQ89vXu4d1SZ /z7VfvOAp/ycjwkU5F91RoesudtyEu9N83uyaTgo/Sb9CzH3h0JddHGxq1olIqXR s1kY46ijzqpBPSNOyLNxjRYWwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgFpZs5 7V3jcQqin5xEapCuI76BMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgzJnO0F0yBxz7taCTHfGTrCWx83i3G8MmTEMN3hfzppDuo7pPpr9Z r+TWoWY4e32vXalsJjQmkrbXhYJL2BHRbALc+EoY2u63uKmyCIZvc1mfCQCdO/7F tT2RibvN0QN/SxLef1AoQ1jk9cDzXRLtD0/Gh9jWTjowsYjVeNoZu+8T9V+bbGBy 25ScO1n7KWpaEMVT9rgCRVdy1hW+BcEIfnanc0Pa5hVl5ocw0VpUdDoCRHn3NjcS Fyq4i8wkSLgFSEZoA30gWTiYXBlCG0nXgwzlrDb5aqGjljnGb71Au8N61pmZI1qv /wnAfflxYERR+irN1Siad9jYirS8gOKM -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:17 2025 by rpki-client on console.sobornost.net