$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/TTnePlBgaMODagBUgVVBPmgllbM.mft File: TTnePlBgaMODagBUgVVBPmgllbM.mft (raw, json) Hash identifier: L3gZvREMG16kqd0eMGiKbqtSV3sA58JuXKzfBghmJso= Subject key identifier: 90:AC:BA:6B:B7:6F:16:0F:B4:8E:C8:2F:78:C7:C6:29:60:7F:48:66 Authority key identifier: 4D:39:DE:3E:50:60:68:C3:83:6A:00:54:81:55:41:3E:68:25:95:B3 Certificate issuer: /CN=A916C4FA/serialNumber=4D39DE3E506068C3836A00548155413E682595B3 Certificate serial: 0342 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TTnePlBgaMODagBUgVVBPmgllbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/TTnePlBgaMODagBUgVVBPmgllbM.mft Manifest number: 04DC Signing time: Sun 27 Apr 2025 00:42:47 +0000 Manifest this update: Sun 27 Apr 2025 00:42:47 +0000 Manifest next update: Sun 04 May 2025 00:42:47 +0000 Files and hashes: 1: TTnePlBgaMODagBUgVVBPmgllbM.crl (hash: Qht7FFqmuncibnUJLBs8FKV4Mau07h0yFBBcGpWsWvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/TTnePlBgaMODagBUgVVBPmgllbM.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/TTnePlBgaMODagBUgVVBPmgllbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TTnePlBgaMODagBUgVVBPmgllbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 834 (0x342) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA, serialNumber=4D39DE3E506068C3836A00548155413E682595B3 Validity Not Before: Apr 27 00:42:47 2025 GMT Not After : May 4 00:42:47 2025 GMT Subject: CN=680d7d87-7422 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:00:4c:65:57:3c:61:9d:fc:38:91:73:6d:a8: e4:9f:89:43:e1:0e:a6:f6:6f:5c:a1:79:81:dc:98: 45:59:c8:d2:aa:e1:73:89:0d:2c:41:74:45:b6:a9: 62:6e:3b:bb:62:45:1b:00:8b:23:7c:5a:ce:e6:46: 29:dd:f7:ba:db:af:55:27:e7:54:fd:6f:64:6d:6c: 99:a3:8b:15:86:0d:ae:c0:a7:ed:9d:bf:57:43:ea: cc:95:a9:c0:d2:dc:da:59:61:8e:51:17:3e:4c:1b: 66:99:18:50:53:4e:f6:39:ea:d3:ba:36:b5:9a:d2: c0:ee:d9:0c:e0:5a:dc:60:39:7e:bc:c9:f0:9f:c2: 41:ea:1c:9a:15:8b:c8:af:90:7b:05:e4:f3:0b:af: ff:c2:3a:01:fa:11:ca:76:33:c3:e1:65:c7:9e:ae: 63:1c:e7:7f:1f:8d:af:3d:e0:7b:4b:1a:83:1e:a7: b0:01:e3:28:df:c6:5b:81:e0:54:a9:46:fb:33:e7: 65:2b:8f:67:70:c1:51:81:e1:b0:d6:a1:85:ea:d3: 42:cc:08:75:9a:2b:9b:06:58:3d:7a:61:9a:8e:fe: 84:93:6e:9e:8f:6e:59:73:9e:b2:65:4d:02:50:47: e9:fa:ee:6e:f9:ce:f1:55:1c:e3:fb:6d:76:15:31: dd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AC:BA:6B:B7:6F:16:0F:B4:8E:C8:2F:78:C7:C6:29:60:7F:48:66 X509v3 Authority Key Identifier: keyid:4D:39:DE:3E:50:60:68:C3:83:6A:00:54:81:55:41:3E:68:25:95:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/TTnePlBgaMODagBUgVVBPmgllbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TTnePlBgaMODagBUgVVBPmgllbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/TTnePlBgaMODagBUgVVBPmgllbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:4e:1e:bf:a6:22:bc:7f:42:08:5c:90:d7:fc:25:4d:2a:4e: 73:af:c3:fc:5e:1f:2a:d7:62:6e:c8:e5:86:81:20:8c:3c:08: 37:53:24:2e:4c:15:d7:45:88:46:6b:8c:1b:1a:79:3f:55:a6: 89:51:9a:38:32:04:51:35:1f:84:d7:00:d6:99:cd:06:8a:33: d8:cd:38:29:88:0a:58:0a:79:46:9e:af:b7:df:02:a6:bd:78: 46:1c:1c:20:6f:03:24:17:56:ff:b8:c3:a8:00:06:3d:db:36: 66:be:ac:5d:51:8c:58:40:97:d5:4a:a9:c3:ff:55:ff:1b:40: af:66:10:6c:41:20:e0:d5:08:c3:00:e0:e4:7a:d2:8b:d1:c1: f7:33:88:83:59:fa:32:49:35:87:8a:aa:01:5f:be:ae:e5:e5: aa:52:e8:48:91:8e:ba:f6:4e:4c:c2:a4:dc:4d:86:a1:e7:3c: 15:af:ef:5f:f8:65:4b:b9:09:47:80:2e:ae:98:22:f5:54:2a: eb:c1:b0:02:28:e8:0c:cb:c8:9b:f4:0d:02:7b:0d:99:82:60: 94:76:93:a6:6e:3f:04:93:cc:a3:82:0a:6f:99:10:7f:16:df: b2:20:3a:60:c6:12:2a:b9:5d:db:f5:f5:93:78:13:01:8f:41: 2d:e7:44:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDREMzlERTNFNTA2MDY4QzM4MzZBMDA1NDgxNTU0MTNF NjgyNTk1QjMwHhcNMjUwNDI3MDA0MjQ3WhcNMjUwNTA0MDA0MjQ3WjAYMRYwFAYD VQQDEw02ODBkN2Q4Ny03NDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wBMZVc8YZ38OJFzbajkn4lD4Q6m9m9coXmB3JhFWcjSquFziQ0sQXRFtqli bju7YkUbAIsjfFrO5kYp3fe6269VJ+dU/W9kbWyZo4sVhg2uwKftnb9XQ+rMlanA 0tzaWWGOURc+TBtmmRhQU072OerTuja1mtLA7tkM4FrcYDl+vMnwn8JB6hyaFYvI r5B7BeTzC6//wjoB+hHKdjPD4WXHnq5jHOd/H42vPeB7SxqDHqewAeMo38ZbgeBU qUb7M+dlK49ncMFRgeGw1qGF6tNCzAh1miubBlg9emGajv6Ek26ej25Zc56yZU0C UEfp+u5u+c7xVRzj+212FTHd7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCsumu3 bxYPtI7IL3jHxilgf0hmMB8GA1UdIwQYMBaAFE053j5QYGjDg2oAVIFVQT5oJZWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9UVG5lUGxCZ2FNT0RhZ0JVZ1ZWQlBtZ2xs Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RUbmVQbEJnYU1PRGFnQlVnVlZCUG1nbGxiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9UVG5lUGxCZ2FN T0RhZ0JVZ1ZWQlBtZ2xsYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2Th6/piK8f0IIXJDX/CVNKk5zr8P8Xh8q12JuyOWGgSCMPAg3UyQu TBXXRYhGa4wbGnk/VaaJUZo4MgRRNR+E1wDWmc0GijPYzTgpiApYCnlGnq+33wKm vXhGHBwgbwMkF1b/uMOoAAY92zZmvqxdUYxYQJfVSqnD/1X/G0CvZhBsQSDg1QjD AODketKL0cH3M4iDWfoySTWHiqoBX76u5eWqUuhIkY669k5MwqTcTYah5zwVr+9f +GVLuQlHgC6umCL1VCrrwbACKOgMy8ib9A0Cew2ZgmCUdpOmbj8Ek8yjggpvmRB/ Ft+yIDpgxhIquV3b9fWTeBMBj0Et50QQ -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:02 2025 by rpki-client on console.sobornost.net