$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: F9rNKpW1UN9afQDbIPJgza7q/Kcsn+9SbM2c6ahq3mQ= Subject key identifier: 66:6A:83:5F:B4:6C:5B:6E:6F:AE:BC:9B:5C:FF:5A:34:93:5E:65:4E Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 168729D7A9460BC4B7D348769C097DC483910176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: B1 Signing time: Thu 24 Apr 2025 01:54:53 +0000 Manifest this update: Thu 24 Apr 2025 01:49:53 +0000 Manifest next update: Fri 25 Apr 2025 05:27:53 +0000 Files and hashes: 1: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 2: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: yWY0N0XNrPKNEOg6vXg4QFyrPa+wpj4/5lg/frF0M5k=) 3: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 4: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 05:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:87:29:d7:a9:46:0b:c4:b7:d3:48:76:9c:09:7d:c4:83:91:01:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Apr 24 01:49:53 2025 GMT Not After : Apr 25 05:27:53 2025 GMT Subject: CN=666A835FB46C5B6E6FAEBC9B5CFF5A34935E654E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:20:e2:1e:b4:77:41:ca:e6:f5:04:c5:db: 84:c3:c4:56:1e:e5:9e:e4:70:94:5f:76:15:96:23: 3a:38:f0:d4:ed:e3:dd:3d:24:4f:5a:db:e4:4e:21: d1:f9:75:7f:fa:38:29:cd:6d:91:0e:3a:20:95:42: 19:6a:7f:b6:bf:cf:83:75:71:e0:ca:6a:23:64:5a: 97:2b:0f:5d:99:7b:fc:1e:f4:e0:0d:03:86:00:3d: 31:33:4f:d0:f9:16:0d:66:33:ad:2c:11:46:cc:c1: ad:0b:5c:42:ba:14:de:56:b8:b8:c0:dc:70:ee:63: e1:f3:cb:ac:62:4d:2f:9c:96:06:31:a7:48:50:dd: 8f:56:d1:b6:95:c2:8d:ad:6d:b1:d5:dd:f9:40:41: ed:5d:61:73:9b:0b:07:a3:ed:c0:ce:d0:55:57:8f: 01:da:45:32:04:7f:80:64:53:30:38:04:28:ba:9d: 9b:fb:70:07:1c:87:56:ef:a6:d9:4c:ad:5b:e6:b9: d6:14:c7:86:f9:7d:5d:e7:83:db:8a:5b:08:4d:cf: cb:1d:a5:28:9a:dc:09:e1:7d:53:e0:8e:ac:dc:a9: 01:62:86:82:c8:0e:d4:a7:cf:b4:3e:fc:4e:c1:6c: 90:78:ea:21:46:84:a8:6f:20:25:d9:d7:8a:cf:0a: 0f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6A:83:5F:B4:6C:5B:6E:6F:AE:BC:9B:5C:FF:5A:34:93:5E:65:4E X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:01:d3:06:09:5b:be:5d:61:ca:91:36:65:c9:6c:16:47:1c: ba:fa:8d:94:34:bc:d1:39:ce:e1:8f:29:8a:d1:5c:33:40:5e: 16:e9:20:ac:2f:ff:17:4b:62:8e:e8:bd:ef:06:79:a7:b0:cb: b9:10:bb:cc:37:87:4b:56:b7:01:a9:e0:0a:5f:0f:02:b9:e8: 14:61:da:3b:71:ed:07:c7:0e:76:60:ae:35:d9:dc:81:30:62: 20:c3:cc:b4:65:0d:53:51:b5:1d:36:26:5b:30:8e:7e:77:c0: b8:21:9b:38:4f:09:12:80:b1:1e:10:3f:01:2c:30:e3:dc:f8: d8:db:be:2d:54:5a:dc:11:26:71:47:fc:30:a7:15:d3:0d:9d: ae:38:74:a3:e0:d3:b5:fc:a9:f9:5c:e4:52:2e:b6:c3:f5:3e: f8:f5:f7:d1:66:1f:5b:00:7d:83:63:36:20:52:4a:58:23:4a: f6:e4:70:14:74:17:d4:76:d5:72:15:6e:c7:33:4b:13:b5:b4: d0:ad:3e:34:81:dc:ce:4b:21:f2:59:c0:12:70:7d:b1:d4:4f: b8:18:02:98:1d:aa:d8:00:20:28:a1:1f:54:7b:93:88:ec:ca: 91:dd:c1:65:b3:69:9f:35:2a:2f:8a:df:48:47:ca:c8:d5:19: 2d:d8:3d:82 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUFocp16lGC8S300h2nAl9xIORAXYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MDQyNDAxNDk1M1oX DTI1MDQyNTA1Mjc1M1owMzExMC8GA1UEAxMoNjY2QTgzNUZCNDZDNUI2RTZGQUVC QzlCNUNGRjVBMzQ5MzVFNjU0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMijIOIetHdByub1BMXbhMPEVh7lnuRwlF92FZYjOjjw1O3j3T0kT1rb5E4h 0fl1f/o4Kc1tkQ46IJVCGWp/tr/Pg3Vx4MpqI2RalysPXZl7/B704A0DhgA9MTNP 0PkWDWYzrSwRRszBrQtcQroU3la4uMDccO5j4fPLrGJNL5yWBjGnSFDdj1bRtpXC ja1tsdXd+UBB7V1hc5sLB6PtwM7QVVePAdpFMgR/gGRTMDgEKLqdm/twBxyHVu+m 2UytW+a51hTHhvl9XeeD24pbCE3Pyx2lKJrcCeF9U+COrNypAWKGgsgO1KfPtD78 TsFskHjqIUaEqG8gJdnXis8KD40CAwEAAaOCAhswggIXMB0GA1UdDgQWBBRmaoNf tGxbbm+uvJtc/1o0k15lTjAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAfwHTBglbvl1hypE2ZclsFkccuvqNlDS80TnO4Y8pitFcM0Be FukgrC//F0tijui97wZ5p7DLuRC7zDeHS1a3AangCl8PArnoFGHaO3HtB8cOdmCu NdncgTBiIMPMtGUNU1G1HTYmWzCOfnfAuCGbOE8JEoCxHhA/ASww49z42Nu+LVRa 3BEmcUf8MKcV0w2drjh0o+DTtfyp+VzkUi62w/U++PX30WYfWwB9g2M2IFJKWCNK 9uRwFHQX1HbVchVuxzNLE7W00K0+NIHczksh8lnAEnB9sdRPuBgCmB2q2AAgKKEf VHuTiOzKkd3BZbNpnzUqL4rfSEfKyNUZLdg9gg== -----END CERTIFICATE-----Generated at Thu Apr 24 04:40:25 2025 by rpki-client on console.sobornost.net