$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft File: TSeJUeK9itKFuUCo6p5X43lxHms.mft (raw, json) Hash identifier: ixn431w3HCm5fnzZrG/PhitkJgCYOG3c1WWTEJhlv80= Subject key identifier: E1:1E:8C:E9:B9:19:11:30:13:D1:08:E2:6E:CA:71:EC:5B:B3:CB:B1 Authority key identifier: 4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B Certificate issuer: /CN=A91342C5/serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Certificate serial: 037D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft Manifest number: 0378 Signing time: Sun 27 Apr 2025 00:34:30 +0000 Manifest this update: Sun 27 Apr 2025 00:34:30 +0000 Manifest next update: Sun 04 May 2025 00:34:30 +0000 Files and hashes: 1: TSeJUeK9itKFuUCo6p5X43lxHms.crl (hash: euCjttT9nm6puWqp9/oijs7BTznfyDwih58X7wkJtDc=) 2: E8E194B8A5CC11EC85A86A1FC4F9AE02.roa (hash: ypQGr8fcGrxnVWfQ2RrFsZZ4R7tmsDgEITmj6bx0ScA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=4D278951E2BD8AD285B940A8EA9E57E379711E6B Validity Not Before: Apr 27 00:34:30 2025 GMT Not After : May 4 00:34:30 2025 GMT Subject: CN=680d7b96-380c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d5:aa:d3:29:67:9e:a7:64:ac:c6:69:54:af: ae:03:f6:eb:81:a5:1c:85:65:0d:fd:06:dc:53:7f: 98:15:d6:e4:38:a1:92:06:91:46:38:84:cf:2e:11: b0:38:b0:a4:e8:cd:f4:65:17:c1:66:84:28:4e:f4: 67:0a:98:c8:6c:5f:79:1f:fd:cd:d7:0d:bd:94:99: 7c:07:90:9f:5f:0a:e9:c9:83:6f:b1:a7:51:5b:49: 98:45:dd:3e:11:13:88:ae:97:f4:97:ab:f0:ba:74: d3:8d:a9:39:1d:7e:36:2a:3a:c8:7f:3d:38:a5:d7: b6:79:6c:4b:9a:81:c4:7e:5e:70:03:45:b6:d9:b1: e5:5b:50:e5:d5:29:45:03:81:e0:d0:6b:f6:9e:82: cf:d4:b5:a9:db:7d:3b:7a:34:a2:77:fb:0f:e5:52: 53:3d:54:be:83:10:a1:22:0a:78:59:27:05:a1:a8: f2:09:7a:d4:2b:dd:99:ed:a1:64:90:42:6f:4f:73: 0f:d5:20:17:ae:ad:9c:d5:f7:a5:7a:9d:4c:bb:47: b8:47:37:bb:5e:5e:b1:35:04:2c:bb:de:b2:cd:56: b2:86:17:d5:00:8f:49:28:d4:71:a6:f8:4c:de:23: d2:ea:c7:7c:b5:c6:23:10:e5:a0:e1:c1:b1:f8:0d: 79:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1E:8C:E9:B9:19:11:30:13:D1:08:E2:6E:CA:71:EC:5B:B3:CB:B1 X509v3 Authority Key Identifier: keyid:4D:27:89:51:E2:BD:8A:D2:85:B9:40:A8:EA:9E:57:E3:79:71:1E:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/TSeJUeK9itKFuUCo6p5X43lxHms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/16637C2EA4E911ECAF3FB152C4F9AE02/TSeJUeK9itKFuUCo6p5X43lxHms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:5a:21:eb:f0:f3:e5:ec:34:1d:6c:42:fd:e0:a0:77:03:4c: 45:1c:67:20:18:f9:bf:0f:8c:95:f7:b2:78:02:63:0c:b7:74: 3b:1a:3a:50:23:94:74:0e:6a:a1:a5:70:b0:29:d5:b2:0f:93: 77:b4:ac:13:65:ac:3d:d9:ca:d1:8d:7a:5b:34:b3:de:d7:fe: c7:94:27:bb:fd:96:c0:58:ea:1b:d0:2a:cf:c9:b5:83:04:14: 4c:1c:a0:bc:87:36:43:00:f2:7b:72:2b:d6:e5:5f:91:4b:41: ec:eb:62:54:c9:d0:97:be:83:4e:a3:3c:af:fa:8d:98:e3:7e: 1e:8e:79:59:8d:8a:d2:6e:63:04:97:b4:03:fb:24:be:5e:49: fe:2a:4e:3e:6d:09:66:1b:3c:c9:15:8a:56:48:74:f7:ee:aa: 07:f2:cb:25:49:56:fc:8c:4b:68:09:4f:84:6c:9c:c8:21:9d: ae:fa:7c:57:ab:fc:9c:64:e5:fe:e0:d3:24:86:fd:cc:fd:61: 06:ff:44:90:69:fa:75:56:7c:c9:86:5c:01:00:41:53:7b:6a: cf:70:15:4b:dd:be:cc:27:1f:11:0d:59:14:b1:48:b8:17:9a: f4:25:b5:25:04:cf:48:06:6c:ab:d7:f9:b7:01:d2:cd:07:b9: 97:89:df:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDREMjc4OTUxRTJCRDhBRDI4NUI5NDBBOEVBOUU1N0Uz Nzk3MTFFNkIwHhcNMjUwNDI3MDAzNDMwWhcNMjUwNTA0MDAzNDMwWjAYMRYwFAYD VQQDEw02ODBkN2I5Ni0zODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9Wq0ylnnqdkrMZpVK+uA/brgaUchWUN/QbcU3+YFdbkOKGSBpFGOITPLhGw OLCk6M30ZRfBZoQoTvRnCpjIbF95H/3N1w29lJl8B5CfXwrpyYNvsadRW0mYRd0+ EROIrpf0l6vwunTTjak5HX42KjrIfz04pde2eWxLmoHEfl5wA0W22bHlW1Dl1SlF A4Hg0Gv2noLP1LWp2307ejSid/sP5VJTPVS+gxChIgp4WScFoajyCXrUK92Z7aFk kEJvT3MP1SAXrq2c1felep1Mu0e4Rze7Xl6xNQQsu96yzVayhhfVAI9JKNRxpvhM 3iPS6sd8tcYjEOWg4cGx+A15qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEejOm5 GREwE9EI4m7Kcexbs8uxMB8GA1UdIwQYMBaAFE0niVHivYrShblAqOqeV+N5cR5r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xNjYzN0MyRUE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0S0Z1VUNvNnA1WDQzbHhI bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1RTZUpVZUs5aXRLRnVVQ282cDVYNDNseEhtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NDJDNS8xNjYzN0MyRUE0RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9UU2VKVWVLOWl0 S0Z1VUNvNnA1WDQzbHhIbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxWiHr8PPl7DQdbEL94KB3A0xFHGcgGPm/D4yV97J4AmMMt3Q7GjpQ I5R0DmqhpXCwKdWyD5N3tKwTZaw92crRjXpbNLPe1/7HlCe7/ZbAWOob0CrPybWD BBRMHKC8hzZDAPJ7civW5V+RS0Hs62JUydCXvoNOozyv+o2Y434ejnlZjYrSbmME l7QD+yS+Xkn+Kk4+bQlmGzzJFYpWSHT37qoH8sslSVb8jEtoCU+EbJzIIZ2u+nxX q/ycZOX+4NMkhv3M/WEG/0SQafp1VnzJhlwBAEFTe2rPcBVL3b7MJx8RDVkUsUi4 F5r0JbUlBM9IBmyr1/m3AdLNB7mXid9K -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:28 2025 by rpki-client on console.sobornost.net