$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: 5JzposnfdL475zneWLXSLHpu5K64B8w+1EuTnGR60uM= Subject key identifier: 3D:B9:EA:41:D2:FF:8B:26:86:A7:BC:D5:22:A5:BA:AB:02:0D:19:FB Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 0203 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 01F9 Signing time: Sun 27 Apr 2025 01:41:07 +0000 Manifest this update: Sun 27 Apr 2025 01:41:06 +0000 Manifest next update: Sun 04 May 2025 01:41:06 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: K09n5gs9xUPqaz3a0HhhUe2MdmEjR3PfWeeOqAA9lR0=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: NR8OS1L1YDEOVGgB6cb2fttAqoXgsKVRMpQfg5GvzjQ=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: U57sQE5yclVx7OH+nAtAbjTBaki6Yvzg4fauYYq6XuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:41:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 515 (0x203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A, serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Apr 27 01:41:06 2025 GMT Not After : May 4 01:41:06 2025 GMT Subject: CN=680d8b32-87fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e1:e6:45:8b:d2:64:de:2f:12:55:cd:a6:cc: bd:3c:4e:d4:db:e8:73:f9:44:fe:62:64:56:0c:48: df:f0:ec:09:64:54:a5:db:03:ba:98:37:24:88:d2: cf:dc:03:fa:99:22:76:e3:7b:c7:06:6e:bc:f5:06: b1:90:c9:49:cf:bf:89:4e:65:63:26:d3:ad:db:5f: 1e:9f:9f:00:7e:20:a4:1d:14:09:78:7a:39:c0:92: b7:4d:80:f6:f6:d0:18:f8:54:cb:77:a4:9b:3f:60: c9:7d:e0:a8:28:d2:54:34:cb:a8:67:89:86:52:ff: 56:5a:30:af:8d:fe:3b:70:b9:14:d1:3d:1d:0c:24: d1:33:f3:e0:54:ba:07:fe:86:90:27:70:cd:bd:76: fc:9e:53:d6:30:2d:f2:45:a7:50:3b:59:1d:11:e1: 13:9c:5f:8e:e6:d0:6a:50:cb:af:8d:e4:5b:de:0a: 5e:02:d9:9f:c6:40:75:e3:c6:23:d1:0f:5f:4e:b6: e9:81:d9:bd:e0:03:26:70:cc:f6:d9:56:2e:eb:f0: 67:33:40:65:ef:d7:12:08:3b:8e:f4:62:4f:76:f8: e1:23:3d:b7:dc:1c:e7:6c:2e:30:a9:dc:46:7e:30: f9:28:0b:7d:04:64:96:f9:41:c8:e0:91:14:ba:6a: 6d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B9:EA:41:D2:FF:8B:26:86:A7:BC:D5:22:A5:BA:AB:02:0D:19:FB X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5a:62:01:c2:b2:8f:19:8a:4a:83:b1:bc:5c:fc:63:d9:2e: 8c:58:d1:4c:e4:58:14:38:a2:72:cb:07:9a:cc:60:b9:ea:64: fb:bd:ab:82:9b:40:e0:08:76:b7:bd:5b:3e:a9:46:dc:dc:9f: 28:da:de:37:0c:f9:7d:a8:22:d3:ce:7e:27:16:b0:f5:77:8c: 20:de:c9:d2:86:52:46:96:fa:e8:ef:ac:df:cf:47:4b:50:fd: 8b:4a:30:05:b7:fd:64:34:a4:9a:d5:80:cb:f8:bb:87:42:08: e0:98:0f:29:4c:77:f3:31:20:54:31:a1:b7:0f:39:83:b4:29: ec:27:24:e6:f9:49:8f:70:c4:0a:08:f1:2c:db:60:7a:b4:ad: 2e:97:3b:17:8a:ac:a4:ab:86:cc:7d:1f:dc:7f:8d:e7:0b:2b: f9:45:72:f6:57:44:ad:ec:bd:b1:6b:14:20:3d:a3:ef:c1:d6: c2:f8:d2:21:ba:fe:92:d4:ea:f4:fb:3d:99:d2:da:c2:83:67: 8d:44:d1:ea:85:b4:41:be:d0:ac:1c:28:5a:a0:c4:c5:fb:1b: df:49:c9:6f:fe:1b:6e:d5:6d:2c:c5:e5:14:7a:64:42:a0:61: 4a:ab:05:58:3c:ae:fa:c9:46:06:fe:17:e2:f9:fd:72:47:7d: 6f:bd:d4:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjUwNDI3MDE0MTA2WhcNMjUwNTA0MDE0MTA2WjAYMRYwFAYD VQQDEw02ODBkOGIzMi04N2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOHmRYvSZN4vElXNpsy9PE7U2+hz+UT+YmRWDEjf8OwJZFSl2wO6mDckiNLP 3AP6mSJ243vHBm689QaxkMlJz7+JTmVjJtOt218en58AfiCkHRQJeHo5wJK3TYD2 9tAY+FTLd6SbP2DJfeCoKNJUNMuoZ4mGUv9WWjCvjf47cLkU0T0dDCTRM/PgVLoH /oaQJ3DNvXb8nlPWMC3yRadQO1kdEeETnF+O5tBqUMuvjeRb3gpeAtmfxkB148Yj 0Q9fTrbpgdm94AMmcMz22VYu6/BnM0Bl79cSCDuO9GJPdvjhIz233BznbC4wqdxG fjD5KAt9BGSW+UHI4JEUumptiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD256kHS /4smhqe81SKluqsCDRn7MB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtWmIBwrKPGYpKg7G8XPxj2S6MWNFM5FgUOKJyyweazGC56mT7vauC m0DgCHa3vVs+qUbc3J8o2t43DPl9qCLTzn4nFrD1d4wg3snShlJGlvro76zfz0dL UP2LSjAFt/1kNKSa1YDL+LuHQgjgmA8pTHfzMSBUMaG3DzmDtCnsJyTm+UmPcMQK CPEs22B6tK0ulzsXiqykq4bMfR/cf43nCyv5RXL2V0St7L2xaxQgPaPvwdbC+NIh uv6S1Or0+z2Z0trCg2eNRNHqhbRBvtCsHChaoMTF+xvfSclv/htu1W0sxeUUemRC oGFKqwVYPK76yUYG/hfi+f1yR31vvdS6 -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:19 2025 by rpki-client on console.sobornost.net