$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: 6Fpnvywrn/7a3FTm2pzUsyQun2a+Q2NFRCbY+99/9/8= Subject key identifier: 2B:C1:2D:C0:BD:4E:7F:B8:71:CC:F3:C4:30:40:3D:81:7B:00:31:A4 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 015D Signing time: Sun 27 Apr 2025 03:00:55 +0000 Manifest this update: Sun 27 Apr 2025 03:00:55 +0000 Manifest next update: Sun 04 May 2025 03:00:55 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: GcGOKr3uriiGkG48tfVlFNSJGC5uwbZEQ+lxZ0KuroI=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: mX0oS42d4Afnuz1c6BL0lN1MWESAc87z/AqUedcAt4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271, serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Apr 27 03:00:55 2025 GMT Not After : May 4 03:00:55 2025 GMT Subject: CN=680d9de7-ca5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1a:ba:46:a4:a0:20:39:09:6c:f7:8f:3e:31: 18:75:46:76:b8:6d:2e:b2:58:a9:83:ad:14:32:d4: 6f:fa:ab:4c:6b:e3:20:27:7d:bc:81:c9:03:3b:14: e4:c7:a4:7a:c5:6f:93:97:2f:3a:05:79:df:53:a7: bb:6d:3f:b5:38:7f:e4:2b:7b:c3:c5:c3:19:0f:ad: 1e:5b:e8:f9:9c:2b:e6:bb:2c:2e:d1:3c:e2:7c:dd: 16:1b:2f:c4:ea:35:a9:77:f7:2b:de:97:30:2a:37: b8:f3:ad:d1:8b:b2:b5:f8:a0:40:9e:af:89:df:80: 1b:a6:3d:ce:5b:7a:3b:8c:ed:2c:49:0e:87:50:67: fe:e0:e5:d8:fb:04:06:f6:c7:4d:cf:51:ff:a2:3c: bc:bb:26:79:84:a3:14:42:47:5a:28:b4:59:8c:bd: 69:dd:87:9e:4c:63:1d:5c:90:cc:13:c4:fe:b8:20: c5:77:46:aa:98:75:93:41:ab:f3:83:69:6d:ff:20: dd:4d:c8:6b:50:95:73:69:35:c8:43:f1:14:b3:5e: 61:4a:be:74:0e:ff:22:99:ab:35:f0:6e:6c:35:df: 1f:59:5b:2a:be:ff:34:b5:2d:4c:22:e4:0f:86:da: df:cc:11:19:e1:49:e0:e3:b8:23:97:7d:31:de:e2: 8a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C1:2D:C0:BD:4E:7F:B8:71:CC:F3:C4:30:40:3D:81:7B:00:31:A4 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e1:34:0a:5e:ad:ee:5a:1e:0f:09:93:ce:29:33:ff:35:fb: 3d:31:32:9f:5c:57:ed:69:15:25:2c:2d:97:1e:0a:e2:bf:f0: 8f:a6:70:43:d2:ce:57:77:c2:20:c3:ae:c6:1d:ac:7f:d7:5a: a5:e6:75:89:a3:77:bc:c8:8b:70:54:f5:63:d9:bf:a3:2b:f9: 1e:b4:5c:a1:8d:d8:2a:7f:9c:85:d0:ea:cb:38:c7:95:f3:e2: 68:b2:88:12:7d:22:09:1a:e2:f9:b8:14:0d:47:e8:de:a3:31: aa:38:3b:99:cb:e3:c1:89:f3:de:1b:49:c4:2d:fa:4f:b7:d9: 0a:70:e5:3b:c7:2c:c7:e0:32:38:f7:d6:92:70:2b:ab:bc:59: c4:3f:fa:aa:bc:01:28:76:ec:9f:a1:59:dd:e4:e6:bd:17:17: f8:45:5d:a8:f4:3a:f4:97:4c:54:1e:f9:1e:39:35:70:4c:7f: 9f:2e:56:cc:af:28:e0:eb:92:e6:7c:21:55:79:9c:0e:fa:b1: 51:b8:9c:d0:f5:32:57:51:b3:0a:f7:8c:ce:53:ca:6a:32:47: 54:1d:e2:f5:da:68:01:c4:06:4e:5d:77:95:b0:dc:6c:26:89: f8:3a:8b:cf:cc:dc:11:05:8a:cd:2c:34:c4:58:c9:37:8a:e5: 64:20:18:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjUwNDI3MDMwMDU1WhcNMjUwNTA0MDMwMDU1WjAYMRYwFAYD VQQDEw02ODBkOWRlNy1jYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRq6RqSgIDkJbPePPjEYdUZ2uG0uslipg60UMtRv+qtMa+MgJ328gckDOxTk x6R6xW+Tly86BXnfU6e7bT+1OH/kK3vDxcMZD60eW+j5nCvmuywu0TzifN0WGy/E 6jWpd/cr3pcwKje4863Ri7K1+KBAnq+J34Abpj3OW3o7jO0sSQ6HUGf+4OXY+wQG 9sdNz1H/ojy8uyZ5hKMUQkdaKLRZjL1p3YeeTGMdXJDME8T+uCDFd0aqmHWTQavz g2lt/yDdTchrUJVzaTXIQ/EUs15hSr50Dv8imas18G5sNd8fWVsqvv80tS1MIuQP htrfzBEZ4Ung47gjl30x3uKKCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvBLcC9 Tn+4cczzxDBAPYF7ADGkMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK4TQKXq3uWh4PCZPOKTP/Nfs9MTKfXFftaRUlLC2XHgriv/CPpnBD 0s5Xd8Igw67GHax/11ql5nWJo3e8yItwVPVj2b+jK/ketFyhjdgqf5yF0OrLOMeV 8+JosogSfSIJGuL5uBQNR+jeozGqODuZy+PBifPeG0nELfpPt9kKcOU7xyzH4DI4 99aScCurvFnEP/qqvAEoduyfoVnd5Oa9Fxf4RV2o9Dr0l0xUHvkeOTVwTH+fLlbM ryjg65LmfCFVeZwO+rFRuJzQ9TJXUbMK94zOU8pqMkdUHeL12mgBxAZOXXeVsNxs Jon4OovPzNwRBYrNLDTEWMk3iuVkIBid -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:43 2025 by rpki-client on console.sobornost.net