$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: GReis2U8oqM9Y3CktazyopgMXYnY9Lyw9gAGgA2q950= Subject key identifier: 25:CC:C2:64:5D:6B:13:F8:8A:C5:DD:B3:F5:4F:44:C7:1F:6B:64:48 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: 73 Signing time: Sun 27 Apr 2025 05:38:56 +0000 Manifest this update: Sun 27 Apr 2025 05:38:55 +0000 Manifest next update: Sun 04 May 2025 05:38:55 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: uleXWlU31whUJgBz/Fai3u5IK8QhKxfd1G5WfigsztQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Apr 27 05:38:55 2025 GMT Not After : May 4 05:38:55 2025 GMT Subject: CN=680dc2ef-7726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c7:a6:23:f3:33:ac:ac:09:62:5e:e4:d0:c3: 10:bf:7f:41:a4:fe:53:50:2c:56:70:d3:dd:31:3a: 24:3d:a3:3c:da:51:3f:4b:b0:40:6c:4d:cd:86:31: 4b:24:a8:05:e5:2f:ba:83:47:1c:99:b4:d3:d8:3e: bb:f9:b5:73:22:9c:87:d0:e6:1b:cd:22:2e:de:51: 5d:a0:ca:0e:b8:09:04:57:31:84:38:44:35:10:61: a9:c8:60:3f:30:5f:60:76:f6:4a:f9:dd:21:5c:64: 5b:a3:2a:01:35:1a:13:e7:c6:6e:fb:c5:c8:2c:bb: 1a:9b:41:e7:2a:04:7e:e1:fa:70:56:3d:19:d7:94: 2e:de:de:f2:bf:82:38:b5:63:62:6d:0c:f6:fe:21: e1:26:cf:a3:b8:98:97:26:91:b5:2a:aa:14:76:fd: f1:7c:3a:42:e2:0c:c8:74:2b:df:48:f6:49:e8:78: 0a:0e:75:96:d6:66:15:34:2d:43:f6:f1:c8:27:1b: 32:e0:e7:5b:af:64:d7:7f:28:ae:41:a0:4c:9f:a0: ad:c2:d1:b7:69:a1:5f:f9:f2:f1:61:6c:df:3c:75: de:8a:92:91:82:63:8a:68:8f:8f:57:4d:35:49:b7: 13:40:b2:7a:33:ab:39:02:05:b3:7f:d6:2c:7b:67: 0a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:CC:C2:64:5D:6B:13:F8:8A:C5:DD:B3:F5:4F:44:C7:1F:6B:64:48 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:a0:c3:6b:a6:e2:18:e6:7d:48:f4:9f:e3:21:c4:8f:34:8b: 96:a7:93:52:70:9d:44:8f:01:23:85:82:bc:f4:6f:6b:cf:59: 76:d9:36:41:2e:82:38:80:20:72:62:2e:a1:aa:ac:c4:8b:75: 9c:eb:bf:77:af:bf:0f:3b:95:4e:48:ab:19:0e:a8:cf:e4:f6: ac:45:57:4d:ec:18:51:ef:69:ea:4f:75:a8:65:0d:63:e4:8d: b7:fc:ec:5b:0e:aa:47:96:14:21:64:e7:d1:ce:a0:16:f9:9c: c0:7a:6d:6b:e2:67:2b:9c:c5:97:57:19:a3:f1:09:6f:0e:c0: 04:06:73:68:d4:e0:f9:de:19:7b:1f:8b:62:d6:74:e1:d7:b9: ed:71:53:0f:b8:94:c8:95:bd:2e:3c:83:95:3b:09:47:8d:f8: 75:0d:d5:5e:09:98:0c:ee:3a:00:04:bc:6c:7d:d5:c4:bc:ea: 8f:56:46:f8:be:b7:ca:e4:8d:1e:02:c5:91:d5:73:35:c2:cb: 21:cf:36:dd:88:f6:39:1c:7c:d5:b0:68:bb:ce:a4:0d:41:71: 44:9c:b6:d7:0c:95:39:48:8d:9a:a3:65:18:84:3b:80:b9:ac: bc:46:8c:79:7f:08:7e:43:df:da:b1:42:5e:a4:a5:f4:fe:a3: 78:af:c7:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoMEEwODhBMTlCQkRCNjFERUQxOTE2Qzg2MEFCMkI4QkVF MTg2RURDRDAeFw0yNTA0MjcwNTM4NTVaFw0yNTA1MDQwNTM4NTVaMBgxFjAUBgNV BAMTDTY4MGRjMmVmLTc3MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTx6Yj8zOsrAliXuTQwxC/f0Gk/lNQLFZw090xOiQ9ozzaUT9LsEBsTc2GMUsk qAXlL7qDRxyZtNPYPrv5tXMinIfQ5hvNIi7eUV2gyg64CQRXMYQ4RDUQYanIYD8w X2B29kr53SFcZFujKgE1GhPnxm77xcgsuxqbQecqBH7h+nBWPRnXlC7e3vK/gji1 Y2JtDPb+IeEmz6O4mJcmkbUqqhR2/fF8OkLiDMh0K99I9knoeAoOdZbWZhU0LUP2 8cgnGzLg51uvZNd/KK5BoEyfoK3C0bdpoV/58vFhbN88dd6KkpGCY4poj49XTTVJ txNAsnozqzkCBbN/1ix7Zwo3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJczCZF1r E/iKxd2z9U9Exx9rZEgwHwYDVR0jBBgwFoAUCgiKGbvbYd7RkWyGCrK4vuGG7c0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0RCNTE3QjA4NzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdj MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2dpS0didmJZZDdSa1d5R0NySzR2dUdHN2MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 N0I5L0RCNTE3QjA4NzVCNjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3 UmtXeUdDcks0dnVHRzdjMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKugw2um4hjmfUj0n+MhxI80i5ank1JwnUSPASOFgrz0b2vPWXbZNkEu gjiAIHJiLqGqrMSLdZzrv3evvw87lU5IqxkOqM/k9qxFV03sGFHvaepPdahlDWPk jbf87FsOqkeWFCFk59HOoBb5nMB6bWviZyucxZdXGaPxCW8OwAQGc2jU4PneGXsf i2LWdOHXue1xUw+4lMiVvS48g5U7CUeN+HUN1V4JmAzuOgAEvGx91cS86o9WRvi+ t8rkjR4CxZHVczXCyyHPNt2I9jkcfNWwaLvOpA1BcUScttcMlTlIjZqjZRiEO4C5 rLxGjHl/CH5D39qxQl6kpfT+o3ivxzI= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net