$ rpki-client -vvf rpki.apnic.net/member_repository/A914400E/CEDA52C4D94811EEBA34B47BC4F9AE02/wZ1rbes6H5w5hH4UyqVZl7yc8nY.mft File: wZ1rbes6H5w5hH4UyqVZl7yc8nY.mft (raw, json) Hash identifier: 1cPN+GgUHrOcKaT7vNfHwOgF3m2qmzPNhCFszMAXQf4= Subject key identifier: E5:5E:08:A1:90:70:00:17:9B:69:45:AF:DC:3B:D9:9B:5B:2C:93:FE Authority key identifier: C1:9D:6B:6D:EB:3A:1F:9C:39:84:7E:14:CA:A5:59:97:BC:9C:F2:76 Certificate issuer: /CN=A914400E/serialNumber=C19D6B6DEB3A1F9C39847E14CAA55997BC9CF276 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wZ1rbes6H5w5hH4UyqVZl7yc8nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914400E/CEDA52C4D94811EEBA34B47BC4F9AE02/wZ1rbes6H5w5hH4UyqVZl7yc8nY.mft Manifest number: D6 Signing time: Sun 27 Apr 2025 04:27:47 +0000 Manifest this update: Sun 27 Apr 2025 04:27:47 +0000 Manifest next update: Sun 04 May 2025 04:27:47 +0000 Files and hashes: 1: wZ1rbes6H5w5hH4UyqVZl7yc8nY.crl (hash: hh5QjFM8I8rmub2ftL7ChVwq4QnEX9vxbNj9RgcVhQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914400E/CEDA52C4D94811EEBA34B47BC4F9AE02/wZ1rbes6H5w5hH4UyqVZl7yc8nY.crl rsync://rpki.apnic.net/member_repository/A914400E/CEDA52C4D94811EEBA34B47BC4F9AE02/wZ1rbes6H5w5hH4UyqVZl7yc8nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wZ1rbes6H5w5hH4UyqVZl7yc8nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914400E, serialNumber=C19D6B6DEB3A1F9C39847E14CAA55997BC9CF276 Validity Not Before: Apr 27 04:27:47 2025 GMT Not After : May 4 04:27:47 2025 GMT Subject: CN=680db243-491b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:42:e1:ae:33:b8:3c:e4:ac:e5:d4:02:51:69: 8c:47:ce:78:fc:99:76:6f:59:cd:1b:4e:44:6a:61: 21:e8:08:19:a3:95:ed:3e:7e:35:3d:28:c1:a6:a5: ea:7c:ef:52:8e:06:e3:5b:5c:ab:7a:cb:43:be:fb: 9e:cb:0f:00:3e:ca:1f:77:6e:99:c0:c6:74:d2:40: 2e:47:6f:48:70:ec:36:73:50:d3:c6:ed:64:cf:17: 7e:3e:26:96:3e:d1:a6:ac:87:19:5a:05:e3:9e:20: 39:38:28:58:40:55:f3:4a:96:88:b5:d8:14:56:7d: 0a:17:11:ed:d2:8f:d8:e7:d4:87:e6:7d:aa:d5:77: 60:17:25:eb:68:29:0b:6d:9f:7a:fc:cb:ea:31:16: a5:03:18:65:25:b5:c1:3d:d1:ef:22:f2:21:e9:2c: 8c:b6:e2:11:b8:08:6d:63:57:a4:f8:29:08:ed:77: c5:c3:5d:4c:0d:f8:4e:12:cb:d2:bb:9d:34:1b:72: b8:26:e8:78:2b:01:54:ab:57:bc:a4:c4:b3:d0:83: 95:8d:87:ec:3a:25:db:ca:a3:6f:95:d6:b7:7f:a6: c5:bf:1f:0e:6e:9a:7b:e8:c3:c8:5c:df:d9:aa:9b: 6e:5c:02:3f:57:c2:83:cf:65:c5:29:7d:a1:06:84: 80:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5E:08:A1:90:70:00:17:9B:69:45:AF:DC:3B:D9:9B:5B:2C:93:FE X509v3 Authority Key Identifier: keyid:C1:9D:6B:6D:EB:3A:1F:9C:39:84:7E:14:CA:A5:59:97:BC:9C:F2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914400E/CEDA52C4D94811EEBA34B47BC4F9AE02/wZ1rbes6H5w5hH4UyqVZl7yc8nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wZ1rbes6H5w5hH4UyqVZl7yc8nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914400E/CEDA52C4D94811EEBA34B47BC4F9AE02/wZ1rbes6H5w5hH4UyqVZl7yc8nY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:aa:8c:f7:ec:e6:6b:2e:78:44:0a:fc:75:86:c4:be:c6:57: 7f:46:78:dc:46:23:97:93:5b:b8:af:b8:40:0a:8b:1f:57:1f: 25:dd:9e:62:cb:6a:71:7a:1b:37:69:a4:4c:cd:72:05:e3:6d: d4:15:c7:f0:ce:13:52:1b:e7:48:23:a0:94:55:07:6d:d9:7b: 38:06:5b:b4:f9:f6:d9:00:6b:08:6b:82:91:f5:36:8d:69:7d: 06:4b:c7:65:8a:c5:27:fc:9b:4f:e8:a4:86:2c:01:46:9a:fe: 4e:01:ca:ef:5b:56:83:99:64:03:01:f1:c0:2a:58:bc:f5:38: ae:4c:6a:58:0b:80:30:cd:d7:58:53:90:16:53:19:2c:86:54: 22:88:74:33:dc:a9:27:bf:71:05:e9:64:9b:78:c5:9e:4f:81: 99:1e:e0:82:f8:b9:67:26:a5:c8:82:0c:d6:f1:b8:d4:ff:19: 81:c7:d4:79:9c:86:72:28:28:46:46:6f:9c:d8:af:c2:80:e5: 4c:b1:28:85:8b:bf:2f:43:b6:c9:ae:d9:da:b6:fa:70:9d:aa: f8:17:2e:25:f4:ca:e2:f9:24:64:ac:45:db:7b:2d:dc:6d:d9: fc:32:30:48:0e:72:5b:94:fb:29:c5:ed:ec:58:94:1e:eb:a2: 91:1c:43:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQwMEUxMTAvBgNVBAUTKEMxOUQ2QjZERUIzQTFGOUMzOTg0N0UxNENBQTU1OTk3 QkM5Q0YyNzYwHhcNMjUwNDI3MDQyNzQ3WhcNMjUwNTA0MDQyNzQ3WjAYMRYwFAYD VQQDEw02ODBkYjI0My00OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokLhrjO4POSs5dQCUWmMR854/Jl2b1nNG05EamEh6AgZo5XtPn41PSjBpqXq fO9SjgbjW1yrestDvvueyw8APsofd26ZwMZ00kAuR29IcOw2c1DTxu1kzxd+PiaW PtGmrIcZWgXjniA5OChYQFXzSpaItdgUVn0KFxHt0o/Y59SH5n2q1XdgFyXraCkL bZ96/MvqMRalAxhlJbXBPdHvIvIh6SyMtuIRuAhtY1ek+CkI7XfFw11MDfhOEsvS u500G3K4Juh4KwFUq1e8pMSz0IOVjYfsOiXbyqNvlda3f6bFvx8Obpp76MPIXN/Z qptuXAI/V8KDz2XFKX2hBoSAuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVeCKGQ cAAXm2lFr9w72ZtbLJP+MB8GA1UdIwQYMBaAFMGda23rOh+cOYR+FMqlWZe8nPJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDAwRS9DRURBNTJDNEQ5 NDgxMUVFQkEzNEI0N0JDNEY5QUUwMi93WjFyYmVzNkg1dzVoSDRVeXFWWmw3eWM4 blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3daMXJiZXM2SDV3NWhINFV5cVZabDd5YzhuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDAwRS9DRURBNTJDNEQ5NDgxMUVFQkEzNEI0N0JDNEY5QUUwMi93WjFyYmVzNkg1 dzVoSDRVeXFWWmw3eWM4blkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5qoz37OZrLnhECvx1hsS+xld/RnjcRiOXk1u4r7hACosfVx8l3Z5i y2pxehs3aaRMzXIF423UFcfwzhNSG+dII6CUVQdt2Xs4Blu0+fbZAGsIa4KR9TaN aX0GS8dlisUn/JtP6KSGLAFGmv5OAcrvW1aDmWQDAfHAKli89TiuTGpYC4AwzddY U5AWUxkshlQiiHQz3Kknv3EF6WSbeMWeT4GZHuCC+LlnJqXIggzW8bjU/xmBx9R5 nIZyKChGRm+c2K/CgOVMsSiFi78vQ7bJrtnatvpwnar4Fy4l9Mri+SRkrEXbey3c bdn8MjBIDnJblPspxe3sWJQe66KRHEN4 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net