$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft File: Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft (raw, json) Hash identifier: vLxzGjo5tEvioLtPXhuYQv3nCw/aSCFr6JwyYWrynuU= Subject key identifier: AF:10:A4:C9:79:2F:78:2D:18:31:74:68:B6:EA:EC:0C:01:A0:B9:20 Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Certificate serial: 2170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft Manifest number: 2165 Signing time: Thu 24 Apr 2025 15:55:45 +0000 Manifest this update: Thu 24 Apr 2025 15:55:45 +0000 Manifest next update: Thu 01 May 2025 15:55:45 +0000 Files and hashes: 1: Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl (hash: hWg/TpFDbPDya08SLiY++IVOkQViqyQTt9s38lhYZ7U=) 2: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (hash: lzXH47zwQqzR7U0IwcpEbq0QXTqtq0eXFrMFUkvM89M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8560 (0x2170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DC, serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Validity Not Before: Apr 24 15:55:45 2025 GMT Not After : May 1 15:55:45 2025 GMT Subject: CN=680a5f01-e188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:aa:12:52:7f:c0:ea:ee:43:10:b1:00:5a:7a: fc:30:2f:3f:7a:ca:ba:1a:64:48:3a:6d:10:d7:24: 99:53:54:cb:b4:77:01:09:05:c7:5c:92:9e:4f:97: 99:3a:5e:90:2d:62:3e:0f:3d:d1:d7:3d:18:1d:ae: 50:ca:ea:ae:33:59:a6:7d:29:5c:13:34:b2:f1:13: 11:70:ec:c8:09:51:3b:ec:ca:6c:94:f6:c9:0d:5c: b0:b4:2d:16:f2:07:46:c5:af:72:b0:f2:7c:7e:19: 2e:d0:17:af:c8:f9:1c:22:8a:fd:44:5a:89:10:13: 57:a0:34:05:41:88:43:49:71:d4:e2:b2:3b:8d:9a: 34:76:3a:e7:7a:f2:62:b0:79:55:2b:6d:af:c7:cc: e7:33:9d:d9:3a:f1:a3:98:b0:4c:c9:80:b7:df:63: d9:ef:ef:bc:b2:87:8a:2b:48:78:00:79:5d:85:20: 50:b2:92:05:db:4b:35:57:16:bc:86:7e:34:80:e3: 9f:1e:90:28:44:28:f1:3a:29:05:8d:ff:51:e1:41: 24:c0:39:9a:47:12:4d:63:49:03:22:7a:ad:a2:f1: 9c:dd:25:52:24:be:97:6f:2a:d8:92:20:0f:b0:44: cd:12:02:97:15:71:aa:ca:78:0f:51:9a:d7:6e:cc: b4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:10:A4:C9:79:2F:78:2D:18:31:74:68:B6:EA:EC:0C:01:A0:B9:20 X509v3 Authority Key Identifier: keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:47:5e:9f:e0:c3:96:8f:60:10:d7:ae:dd:61:13:94:d5:6b: ee:46:9a:c7:58:d9:94:5f:58:d8:06:ec:9f:3a:d6:12:99:8f: e7:a5:5b:b6:08:80:58:bd:fe:38:a7:9b:46:8f:7e:7e:9b:60: d4:24:d9:dc:34:9d:1e:8b:33:a9:a8:1a:b5:5c:2a:6b:e9:bb: e6:f5:e8:5d:71:4d:a8:3e:b2:b0:c9:48:5b:d3:d3:f3:f1:c4: 35:e8:81:a9:5d:65:55:70:f2:ab:4f:00:bf:bc:6c:26:8b:29: a1:fd:b1:46:dc:82:65:70:9f:fb:e2:45:67:fe:32:f3:04:54: 55:6d:39:ba:df:0c:ef:a4:35:a9:93:02:7d:7c:73:e9:3e:96: ae:41:70:1b:0f:ac:a1:b2:ab:d6:6e:95:1b:3c:22:31:a9:de: a8:0b:53:9a:bf:c1:7a:67:71:3b:58:0b:d6:b7:19:fc:e4:00: e0:9a:91:c7:c1:ad:1f:79:1b:0c:0d:8d:24:7e:35:36:8d:18: 7f:8c:4a:33:2b:8a:12:c9:35:a5:f1:e2:e5:7d:65:c0:c3:08: 61:9b:39:73:54:4d:cf:9f:cc:f5:66:f0:78:ca:95:e2:52:a6: 6a:80:34:98:2c:1b:96:aa:55:7c:49:42:82:c1:03:94:27:de: cb:24:7f:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREMxMTAvBgNVBAUTKDU2NDZFMDdBMEY2MDI1RjFFMjYwRjFDNDk5NkY5QTY4 MUIyOTIwNzEwHhcNMjUwNDI0MTU1NTQ1WhcNMjUwNTAxMTU1NTQ1WjAYMRYwFAYD VQQDEw02ODBhNWYwMS1lMTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4aoSUn/A6u5DELEAWnr8MC8/esq6GmRIOm0Q1ySZU1TLtHcBCQXHXJKeT5eZ Ol6QLWI+Dz3R1z0YHa5QyuquM1mmfSlcEzSy8RMRcOzICVE77MpslPbJDVywtC0W 8gdGxa9ysPJ8fhku0BevyPkcIor9RFqJEBNXoDQFQYhDSXHU4rI7jZo0djrnevJi sHlVK22vx8znM53ZOvGjmLBMyYC332PZ7++8soeKK0h4AHldhSBQspIF20s1Vxa8 hn40gOOfHpAoRCjxOikFjf9R4UEkwDmaRxJNY0kDInqtovGc3SVSJL6XbyrYkiAP sETNEgKXFXGqyngPUZrXbsy04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK8QpMl5 L3gtGDF0aLbq7AwBoLkgMB8GA1UdIwQYMBaAFFZG4HoPYCXx4mDxxJlvmmgbKSBx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNEQy9GQUQzRDZGQ0RD NDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pmSGlZUEhFbVctYWFCc3BJ SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZrYmdlZzlnSmZIaVlQSEVtVy1hYUJzcElIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNEQy9GQUQzRDZGQ0RDNDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pm SGlZUEhFbVctYWFCc3BJSEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8R16f4MOWj2AQ167dYROU1WvuRprHWNmUX1jYBuyfOtYSmY/npVu2 CIBYvf44p5tGj35+m2DUJNncNJ0eizOpqBq1XCpr6bvm9ehdcU2oPrKwyUhb09Pz 8cQ16IGpXWVVcPKrTwC/vGwmiymh/bFG3IJlcJ/74kVn/jLzBFRVbTm63wzvpDWp kwJ9fHPpPpauQXAbD6yhsqvWbpUbPCIxqd6oC1Oav8F6Z3E7WAvWtxn85ADgmpHH wa0feRsMDY0kfjU2jRh/jEozK4oSyTWl8eLlfWXAwwhhmzlzVE3Pn8z1ZvB4ypXi UqZqgDSYLBuWqlV8SUKCwQOUJ97LJH/9 -----END CERTIFICATE-----Generated at Thu Apr 24 18:07:59 2025 by rpki-client on console.sobornost.net