$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: me6M32RocZlDDx1HuVEq5JZHXWFTa5OoH4fRIsr43Bg= Subject key identifier: A7:0D:A2:91:DC:ED:D9:1E:36:F5:FE:5C:38:DD:6B:78:A6:B4:9C:0A Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 065D Signing time: Sat 26 Apr 2025 22:10:43 +0000 Manifest this update: Sat 26 Apr 2025 22:10:42 +0000 Manifest next update: Sat 03 May 2025 22:10:42 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: Xgrb6W7AvrOQcnQTo93h2gQKnQ84jJKpK4BugLx+47U=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: RcqGn4DlzkrU8iX9c04+ABUEIkZSxXOe2ZYW/HJVZ60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Apr 26 22:10:42 2025 GMT Not After : May 3 22:10:42 2025 GMT Subject: CN=680d59e2-0b93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:28:d3:aa:f8:8c:af:72:f9:2c:ae:c1:f6: 93:35:f2:cf:71:e3:6f:9d:fb:d9:28:29:35:de:10: f3:f2:12:45:69:5f:7d:04:8b:21:11:6b:ef:67:9d: 28:cb:cb:9b:aa:9a:45:20:d6:86:72:27:9d:8d:e4: 11:c9:23:61:05:d1:6c:69:33:2e:55:dc:19:23:7d: c8:10:c9:25:21:ad:e0:04:f5:bf:ec:3b:8e:8e:f9: 85:dc:77:f4:e9:bd:04:e7:71:74:6f:5e:af:d1:01: 31:ca:c2:78:ca:3c:46:7a:d6:f6:6c:f1:ae:93:7d: f2:64:5a:3a:1d:64:3b:bd:81:62:f6:b0:eb:58:61: b5:30:4f:74:b8:ae:6d:c4:7d:ba:af:25:74:08:a6: 46:f7:d3:6e:5a:21:dc:a9:74:02:19:a0:39:73:34: ca:a8:c4:7d:38:81:e2:1a:d9:98:d4:f8:8c:99:e3: 83:6d:ae:36:59:1d:91:5f:a9:a0:13:2e:35:50:bb: 9f:d3:a4:32:53:54:4a:3e:4c:f7:86:fa:35:d4:99: 6a:d1:3e:ca:23:b2:de:74:48:95:0c:42:d4:24:ad: 90:0a:93:5c:9e:4a:28:f3:63:fe:53:33:9e:0f:ce: a5:42:30:12:51:89:ee:b5:43:50:65:3d:34:07:c6: 49:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0D:A2:91:DC:ED:D9:1E:36:F5:FE:5C:38:DD:6B:78:A6:B4:9C:0A X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:43:e4:3f:b8:1d:f5:f3:27:0f:ff:b0:cc:bc:e2:51:c6:17: d3:c1:45:a3:9b:fa:b3:67:ca:e6:db:c8:7a:f3:f1:ec:89:ae: 43:4c:f4:da:ea:f7:ec:ce:ec:4d:22:53:ef:fe:04:54:78:46: 15:3b:a6:40:a8:d9:74:be:55:6e:11:b6:fa:f1:78:e3:88:02: 23:2b:90:26:1a:f1:43:5b:60:b3:49:10:05:c0:31:e0:e5:85: 98:9d:2e:72:15:b8:ce:1e:91:00:1d:b1:11:b9:1b:22:8c:bd: c5:45:78:79:aa:75:f0:0c:32:7b:fd:a9:90:49:36:4b:8c:61: 77:72:d9:3e:c8:18:ba:1d:0f:fe:2f:b2:48:5b:e0:22:02:66: f7:64:6a:4c:33:cd:f9:44:88:a2:d1:e0:49:81:fe:96:36:56: a1:c0:21:92:03:20:5f:12:8f:1b:49:1d:af:6d:e4:f3:38:d4: 66:41:3b:d1:b4:22:ea:6e:77:ac:59:22:a2:aa:39:cf:79:56: 54:7b:5d:dd:53:0e:93:30:c6:2d:78:f8:07:de:ee:34:28:b2: 6e:56:76:f3:d5:21:3c:9b:17:af:43:0f:80:27:59:75:63:4b: 08:6c:e6:43:0c:13:9e:22:f5:3a:bf:4a:f4:35:6c:0a:aa:75: fd:3f:a3:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjUwNDI2MjIxMDQyWhcNMjUwNTAzMjIxMDQyWjAYMRYwFAYD VQQDEw02ODBkNTllMi0wYjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVYo06r4jK9y+SyuwfaTNfLPceNvnfvZKCk13hDz8hJFaV99BIshEWvvZ50o y8ubqppFINaGciedjeQRySNhBdFsaTMuVdwZI33IEMklIa3gBPW/7DuOjvmF3Hf0 6b0E53F0b16v0QExysJ4yjxGetb2bPGuk33yZFo6HWQ7vYFi9rDrWGG1ME90uK5t xH26ryV0CKZG99NuWiHcqXQCGaA5czTKqMR9OIHiGtmY1PiMmeODba42WR2RX6mg Ey41ULuf06QyU1RKPkz3hvo11Jlq0T7KI7LedEiVDELUJK2QCpNcnkoo82P+UzOe D86lQjASUYnutUNQZT00B8ZJiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcNopHc 7dkeNvX+XDjda3imtJwKMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApQ+Q/uB318ycP/7DMvOJRxhfTwUWjm/qzZ8rm28h68/Hsia5DTPTa 6vfszuxNIlPv/gRUeEYVO6ZAqNl0vlVuEbb68XjjiAIjK5AmGvFDW2CzSRAFwDHg 5YWYnS5yFbjOHpEAHbERuRsijL3FRXh5qnXwDDJ7/amQSTZLjGF3ctk+yBi6HQ/+ L7JIW+AiAmb3ZGpMM835RIii0eBJgf6WNlahwCGSAyBfEo8bSR2vbeTzONRmQTvR tCLqbnesWSKiqjnPeVZUe13dUw6TMMYtePgH3u40KLJuVnbz1SE8mxevQw+AJ1l1 Y0sIbOZDDBOeIvU6v0r0NWwKqnX9P6PJ -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:09 2025 by rpki-client on console.sobornost.net