$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.mft File: ztCtuZ-AP0QfUNzLg87nIHbcMog.mft (raw, json) Hash identifier: 1v4FtefOk8JVQ99WDvUThkLJ/vkpcXQO68CdYJ988Pk= Subject key identifier: 04:18:2E:64:04:74:4B:81:05:F1:4C:78:13:D0:8C:78:E5:76:D7:72 Authority key identifier: CE:D0:AD:B9:9F:80:3F:44:1F:50:DC:CB:83:CE:E7:20:76:DC:32:88 Certificate issuer: /CN=A9158D5B/serialNumber=CED0ADB99F803F441F50DCCB83CEE72076DC3288 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.mft Manifest number: 94 Signing time: Fri 25 Apr 2025 05:26:46 +0000 Manifest this update: Fri 25 Apr 2025 05:26:46 +0000 Manifest next update: Fri 02 May 2025 05:26:46 +0000 Files and hashes: 1: ztCtuZ-AP0QfUNzLg87nIHbcMog.crl (hash: U26QdS4b5Hczg1zB/TlRDjNZljVtRtUFoq28/LDLdjo=) 2: 1B2031C645B911EFB15BD970C4F9AE02.roa (hash: fy81kcQtJyhVO+fvODwc2WOxwPZRecsJs8C7sFTUZrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.crl rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D5B, serialNumber=CED0ADB99F803F441F50DCCB83CEE72076DC3288 Validity Not Before: Apr 25 05:26:46 2025 GMT Not After : May 2 05:26:46 2025 GMT Subject: CN=680b1d16-e031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:cb:3a:8a:6b:9b:a8:df:55:b5:1a:c7:4d: 3b:69:af:b1:ff:49:30:e5:77:f8:8f:9b:29:ba:cb: 09:ae:c3:0d:e0:71:a4:e0:d8:d8:ab:91:ca:dc:e0: 49:22:48:43:c1:e8:3c:76:73:f5:17:c8:07:85:f7: 51:3b:c3:b7:0d:7a:de:a1:c4:a3:f2:21:51:69:e8: 1a:f8:09:51:54:81:55:29:5f:fe:d1:df:b6:5b:55: 14:72:aa:0d:e4:42:74:9f:a1:83:de:3f:96:24:a4: d2:b1:98:17:50:8e:24:43:0a:56:30:86:fb:0d:d6: 63:29:5d:26:05:cc:3f:3a:78:45:83:a2:3b:34:6d: 57:06:4c:d0:9b:05:ce:e7:54:b4:c9:0f:3a:99:0c: 9d:0d:c2:d7:f6:84:6f:c7:eb:d2:e6:cb:c3:05:80: 0c:13:e8:02:cb:37:47:89:e5:75:35:83:87:10:90: b4:55:97:e0:38:d4:0c:15:d6:5e:a6:ac:53:89:8f: aa:5a:14:aa:6b:76:e5:81:2e:90:60:33:d0:c3:51: 4b:62:59:fb:2c:b1:0d:e4:22:0e:c8:e5:0f:ec:d0: 6e:fd:d4:d0:0b:92:6a:3e:bf:cd:3a:c4:3d:b7:4d: af:d8:cb:51:75:11:27:04:9f:3c:7c:6f:83:80:62: 86:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:18:2E:64:04:74:4B:81:05:F1:4C:78:13:D0:8C:78:E5:76:D7:72 X509v3 Authority Key Identifier: keyid:CE:D0:AD:B9:9F:80:3F:44:1F:50:DC:CB:83:CE:E7:20:76:DC:32:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:65:a2:50:e3:29:d2:ba:c0:8d:cb:12:e5:ec:a2:79:ca:88: 7c:9d:4f:10:d1:11:59:ac:00:a6:20:7a:17:68:24:7c:05:e1: d5:4e:fe:a4:31:ad:b2:42:10:e8:0f:76:f8:bc:0e:d9:be:e7: 9a:bc:7f:5d:63:e9:60:4a:51:ee:5f:3a:c4:ed:b1:0b:dc:87: be:21:35:80:a8:3f:ca:b8:43:be:46:2b:79:ce:9f:49:6f:53: dc:5c:8c:f6:92:94:40:e0:79:dc:e8:62:c9:b7:69:60:b9:4f: 0e:4d:ac:fa:5e:03:88:7d:57:f6:e9:ee:0e:ca:e1:ac:91:ca: 8b:35:f5:8b:d5:18:b6:7c:84:b5:bc:2d:79:d0:a7:db:9f:71: 62:c8:9e:c4:f9:2b:5d:62:87:35:3b:ea:7f:e2:e2:4c:d0:8a: 01:29:28:b8:b3:ce:52:81:b8:96:d3:e1:88:20:e1:c3:f8:a6: 3f:bd:ce:ba:13:25:67:64:21:7e:25:48:ec:63:75:0d:ed:2a: dd:d2:3f:82:7d:96:63:f4:3c:97:72:26:be:ca:04:19:e8:3d: d3:e7:db:b2:54:bf:eb:e7:ac:b7:5c:a2:08:e3:0b:20:cd:25: 58:cf:b9:81:ad:0d:a7:26:12:ec:48:39:c5:c4:68:69:ba:1f: 60:3f:4e:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThENUIxMTAvBgNVBAUTKENFRDBBREI5OUY4MDNGNDQxRjUwRENDQjgzQ0VFNzIw NzZEQzMyODgwHhcNMjUwNDI1MDUyNjQ2WhcNMjUwNTAyMDUyNjQ2WjAYMRYwFAYD VQQDEw02ODBiMWQxNi1lMDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsI3LOoprm6jfVbUax007aa+x/0kw5Xf4j5spussJrsMN4HGk4NjYq5HK3OBJ IkhDweg8dnP1F8gHhfdRO8O3DXreocSj8iFRaega+AlRVIFVKV/+0d+2W1UUcqoN 5EJ0n6GD3j+WJKTSsZgXUI4kQwpWMIb7DdZjKV0mBcw/OnhFg6I7NG1XBkzQmwXO 51S0yQ86mQydDcLX9oRvx+vS5svDBYAME+gCyzdHieV1NYOHEJC0VZfgONQMFdZe pqxTiY+qWhSqa3blgS6QYDPQw1FLYln7LLEN5CIOyOUP7NBu/dTQC5JqPr/NOsQ9 t02v2MtRdREnBJ88fG+DgGKGHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQYLmQE dEuBBfFMeBPQjHjldtdyMB8GA1UdIwQYMBaAFM7QrbmfgD9EH1Dcy4PO5yB23DKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEQ1Qi83Q0M4RjE5RTQ1 QjcxMUVGQTZERkQwMzJDNEY5QUUwMi96dEN0dVotQVAwUWZVTnpMZzg3bklIYmNN b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3p0Q3R1Wi1BUDBRZlVOekxnODduSUhiY01vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEQ1Qi83Q0M4RjE5RTQ1QjcxMUVGQTZERkQwMzJDNEY5QUUwMi96dEN0dVotQVAw UWZVTnpMZzg3bklIYmNNb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6ZaJQ4ynSusCNyxLl7KJ5yoh8nU8Q0RFZrACmIHoXaCR8BeHVTv6k Ma2yQhDoD3b4vA7ZvueavH9dY+lgSlHuXzrE7bEL3Ie+ITWAqD/KuEO+Rit5zp9J b1PcXIz2kpRA4Hnc6GLJt2lguU8OTaz6XgOIfVf26e4OyuGskcqLNfWL1Ri2fIS1 vC150Kfbn3FiyJ7E+StdYoc1O+p/4uJM0IoBKSi4s85SgbiW0+GIIOHD+KY/vc66 EyVnZCF+JUjsY3UN7Srd0j+CfZZj9DyXcia+ygQZ6D3T59uyVL/r56y3XKII4wsg zSVYz7mBrQ2nJhLsSDnFxGhpuh9gP07Y -----END CERTIFICATE-----Generated at Fri Apr 25 08:23:50 2025 by rpki-client on console.sobornost.net