$ rpki-client -vvf rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.mft File: wzct4f6eU8GLMFFtlkxDZyLrPss.mft (raw, json) Hash identifier: tgF7+QBj/55Dqzz8AILol7quLoJnapo52b0NTif1jcw= Subject key identifier: E1:A9:A5:4C:48:AF:7C:30:8E:8D:CC:C5:21:B1:C9:01:62:DD:6A:E4 Authority key identifier: C3:37:2D:E1:FE:9E:53:C1:8B:30:51:6D:96:4C:43:67:22:EB:3E:CB Certificate issuer: /CN=A911C7CD/serialNumber=C3372DE1FE9E53C18B30516D964C436722EB3ECB Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wzct4f6eU8GLMFFtlkxDZyLrPss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.mft Manifest number: 86 Signing time: Fri 25 Apr 2025 05:37:34 +0000 Manifest this update: Fri 25 Apr 2025 05:37:33 +0000 Manifest next update: Fri 02 May 2025 05:37:33 +0000 Files and hashes: 1: wzct4f6eU8GLMFFtlkxDZyLrPss.crl (hash: qQkgrCBX1sV4+m5mnPJ4be7Qjvmjk6P0fBncA9B/B1I=) 2: 5C8F0D505ECB11EFA4D8E07CC4F9AE02.roa (hash: DGhCmBwIVuA1yV2BSzBBRg3ZffQWFG7MuOhn3OP/r+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.crl rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wzct4f6eU8GLMFFtlkxDZyLrPss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C7CD, serialNumber=C3372DE1FE9E53C18B30516D964C436722EB3ECB Validity Not Before: Apr 25 05:37:33 2025 GMT Not After : May 2 05:37:33 2025 GMT Subject: CN=680b1f9d-d591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0e:f2:5f:01:94:1c:3a:26:d0:e5:66:24:3c: e2:80:24:d6:2d:9d:34:9c:b7:a7:b6:a3:be:be:5f: 23:ac:b7:9b:31:a4:15:fe:d8:27:ae:ed:3b:ac:f9: 89:3e:4e:ae:a7:f2:18:9f:68:2b:71:04:f1:ad:a1: 75:f7:a4:29:67:76:23:80:61:06:0b:85:4c:6c:24: d3:ee:39:79:4e:71:fc:a3:89:e9:a3:7a:0d:68:54: 7c:21:5e:0c:50:ac:71:a6:93:88:25:1c:74:94:49: f9:33:4e:12:f9:dc:ce:35:b2:7e:b4:21:dd:dd:89: 33:b2:00:a7:af:d4:2b:4e:b6:cb:73:07:31:55:37: a6:67:ce:73:b8:d8:29:f7:48:79:05:1f:e7:f4:3e: 3f:a4:92:db:33:14:14:b4:d6:b4:c3:60:69:ec:39: e4:1e:00:bf:7e:17:22:b8:ba:85:52:21:fd:fa:94: 11:d6:cd:41:ea:fe:d5:bd:54:ac:95:c0:66:51:dd: 2c:d4:52:3d:5c:21:04:09:2f:6a:6a:c9:91:38:28: 6b:9d:7c:91:b3:b8:91:35:a1:65:24:ed:d4:e7:18: 58:98:12:36:6a:c0:51:ac:78:17:de:86:ac:de:9c: aa:af:c0:05:9d:00:e4:23:1a:db:ef:c6:e1:6e:27: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A9:A5:4C:48:AF:7C:30:8E:8D:CC:C5:21:B1:C9:01:62:DD:6A:E4 X509v3 Authority Key Identifier: keyid:C3:37:2D:E1:FE:9E:53:C1:8B:30:51:6D:96:4C:43:67:22:EB:3E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wzct4f6eU8GLMFFtlkxDZyLrPss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C7CD/D64A1FB45EA211EFB1677243C4F9AE02/wzct4f6eU8GLMFFtlkxDZyLrPss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:46:67:a9:85:34:2a:b6:ef:b6:75:41:92:78:43:4e:c4:ab: 4e:4a:66:0a:0e:4f:e5:36:b2:0c:b9:e9:ec:12:2c:6d:87:c1: 8e:19:01:fe:80:9b:a9:e9:fb:fc:39:d3:be:b8:17:10:36:63: a6:fc:13:32:fa:1a:b5:c1:c0:4a:8b:51:44:47:5d:1a:74:71: 3e:91:44:79:80:a2:a8:91:72:0a:0e:4b:fa:2c:85:4d:a9:28: 17:5b:c9:d2:e2:54:6c:36:40:ce:ca:16:2b:51:78:ee:fd:fe: 9f:57:59:9d:87:e5:8e:a2:08:cc:b0:57:17:07:12:c7:5b:cd: b0:1a:06:4d:c7:89:d5:52:2f:7f:54:88:b1:e5:08:5c:c2:9f: 3a:69:79:09:e2:26:c1:71:3b:d6:19:bc:7b:e1:dd:a0:9a:c2: 92:ce:c6:78:25:12:5c:10:15:18:06:e5:6c:cf:5f:71:67:64: b0:fc:25:f3:54:80:04:b4:0a:4b:ee:15:07:29:da:5e:ce:0f: 84:c0:81:5d:62:da:cd:71:cb:fd:42:60:f1:c4:c9:73:c5:30: 97:2d:6b:79:f5:1c:50:7d:42:45:45:a2:48:74:80:fb:b7:43: bb:64:3b:a6:e0:17:25:12:2f:32:d1:87:21:5f:cd:90:eb:9d: 6c:03:81:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM3Q0QxMTAvBgNVBAUTKEMzMzcyREUxRkU5RTUzQzE4QjMwNTE2RDk2NEM0MzY3 MjJFQjNFQ0IwHhcNMjUwNDI1MDUzNzMzWhcNMjUwNTAyMDUzNzMzWjAYMRYwFAYD VQQDEw02ODBiMWY5ZC1kNTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw7yXwGUHDom0OVmJDzigCTWLZ00nLentqO+vl8jrLebMaQV/tgnru07rPmJ Pk6up/IYn2grcQTxraF196QpZ3YjgGEGC4VMbCTT7jl5TnH8o4npo3oNaFR8IV4M UKxxppOIJRx0lEn5M04S+dzONbJ+tCHd3YkzsgCnr9QrTrbLcwcxVTemZ85zuNgp 90h5BR/n9D4/pJLbMxQUtNa0w2Bp7DnkHgC/fhciuLqFUiH9+pQR1s1B6v7VvVSs lcBmUd0s1FI9XCEECS9qasmROChrnXyRs7iRNaFlJO3U5xhYmBI2asBRrHgX3oas 3pyqr8AFnQDkIxrb78bhbifHBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGppUxI r3wwjo3MxSGxyQFi3WrkMB8GA1UdIwQYMBaAFMM3LeH+nlPBizBRbZZMQ2ci6z7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzdDRC9ENjRBMUZCNDVF QTIxMUVGQjE2NzcyNDNDNEY5QUUwMi93emN0NGY2ZVU4R0xNRkZ0bGt4RFp5THJQ c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3d6Y3Q0ZjZlVThHTE1GRnRsa3hEWnlMclBzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzdDRC9ENjRBMUZCNDVFQTIxMUVGQjE2NzcyNDNDNEY5QUUwMi93emN0NGY2ZVU4 R0xNRkZ0bGt4RFp5THJQc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoRmephTQqtu+2dUGSeENOxKtOSmYKDk/lNrIMuensEixth8GOGQH+ gJup6fv8OdO+uBcQNmOm/BMy+hq1wcBKi1FER10adHE+kUR5gKKokXIKDkv6LIVN qSgXW8nS4lRsNkDOyhYrUXju/f6fV1mdh+WOogjMsFcXBxLHW82wGgZNx4nVUi9/ VIix5Qhcwp86aXkJ4ibBcTvWGbx74d2gmsKSzsZ4JRJcEBUYBuVsz19xZ2Sw/CXz VIAEtApL7hUHKdpezg+EwIFdYtrNccv9QmDxxMlzxTCXLWt59RxQfUJFRaJIdID7 t0O7ZDum4BclEi8y0YchX82Q651sA4Ec -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:35 2025 by rpki-client on console.sobornost.net