$ rpki-client -vvf rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.mft File: wkxRvbArcTbA8lrxlbNwN5l7F-g.mft (raw, json) Hash identifier: o5KTlf0Ut03dNsd6DVdVCQB5rGIq3d6YIOY6dueGA9o= Subject key identifier: D0:72:77:F5:0E:34:4C:F5:50:C3:18:77:15:CD:AB:86:05:31:92:45 Authority key identifier: C2:4C:51:BD:B0:2B:71:36:C0:F2:5A:F1:95:B3:70:37:99:7B:17:E8 Certificate issuer: /CN=A91816BD/serialNumber=C24C51BDB02B7136C0F25AF195B37037997B17E8 Certificate serial: 0F85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.mft Manifest number: 0F73 Signing time: Mon 28 Apr 2025 17:48:53 +0000 Manifest this update: Mon 28 Apr 2025 17:48:53 +0000 Manifest next update: Mon 05 May 2025 17:48:53 +0000 Files and hashes: 1: wkxRvbArcTbA8lrxlbNwN5l7F-g.crl (hash: aXH3YlQPbEM49+gA/T7Xn55S3uH7yB9Ra+DwJ6vx5gk=) 2: D3378C20171D11EAAA15E818C4F9AE02.roa (hash: brx75mAIZcLmrMrMmInTA2Jwy5WbjMuVgkiLF5aIeqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.crl rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3973 (0xf85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91816BD, serialNumber=C24C51BDB02B7136C0F25AF195B37037997B17E8 Validity Not Before: Apr 28 17:48:53 2025 GMT Not After : May 5 17:48:53 2025 GMT Subject: CN=680fbf85-3d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fd:88:8a:68:a8:e6:de:88:03:b3:87:6a:1e: 5d:4d:49:c6:a9:49:67:e3:2a:90:42:06:58:5e:66: 12:7c:17:7d:f2:99:f0:08:12:b7:57:d4:01:c7:dd: f9:18:fe:d0:42:90:3e:74:e2:98:64:e4:ba:8c:87: cb:60:b3:c8:d7:8d:41:54:54:ce:b1:d8:a4:89:bf: ee:13:ac:f0:b3:50:9b:bb:31:bf:2d:a7:2b:00:d2: 20:69:b0:a4:49:7b:3c:4d:be:4b:86:ad:63:6a:32: c1:40:8f:7f:d3:31:56:92:86:47:4c:af:d7:52:89: 45:bc:fe:a1:d6:7d:32:5a:c8:18:94:1e:9a:22:a0: b9:5b:4c:ca:e8:55:9b:94:3a:b7:e2:0e:e1:0a:63: b1:dd:2b:76:07:49:28:3a:a5:0c:35:03:c6:1d:9b: 27:43:03:ba:d4:32:fe:67:09:c9:6f:bc:f8:8e:ca: 1d:c6:78:61:2a:17:d5:fd:43:5f:bb:06:8a:ed:d5: 09:1f:d6:8f:06:13:43:eb:0a:21:65:33:99:12:c9: d0:6a:f0:53:b0:c5:d0:fd:d4:78:54:10:44:55:ef: 26:66:67:19:51:3b:b6:ed:bc:c8:8e:2f:49:d9:4f: 02:ff:49:2d:c8:60:74:f9:fc:82:ff:10:dd:48:52: af:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:72:77:F5:0E:34:4C:F5:50:C3:18:77:15:CD:AB:86:05:31:92:45 X509v3 Authority Key Identifier: keyid:C2:4C:51:BD:B0:2B:71:36:C0:F2:5A:F1:95:B3:70:37:99:7B:17:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:cc:dd:83:3f:e0:9e:aa:aa:51:3f:88:60:f9:68:a6:51:a1: 59:a6:9d:51:5f:9b:48:b4:ae:44:38:1e:cd:8f:26:3a:33:b3: dd:78:63:fe:21:06:15:b8:a0:93:c1:51:c2:77:ba:b2:97:84: 6c:c5:06:5c:64:b1:22:b2:1f:c0:05:2b:30:82:73:6d:15:be: 42:6d:d9:e6:4a:ad:7e:01:87:af:68:9d:a0:32:ff:61:34:77: 18:1d:23:c9:35:b4:be:5c:95:65:d1:01:71:b9:4a:1a:12:b3: f6:0c:46:ee:69:f8:58:1c:78:13:0c:e0:d6:b2:6c:38:5f:e7: 7e:1f:bd:64:d6:5f:a5:fd:06:a6:de:9f:2e:b5:8f:74:0d:20: 67:12:58:c9:35:59:90:a7:9e:45:1f:39:65:ac:f8:25:e5:20: b0:5d:5d:59:67:92:b7:57:4a:e9:96:28:3d:55:50:da:e4:eb: 8e:5b:64:4e:7a:85:87:9f:15:df:0d:3e:c6:74:43:5d:23:c9: f3:21:03:81:af:1b:68:8c:e3:11:b9:79:97:7a:3a:c5:d6:28: e7:3a:17:ff:c3:75:98:06:bb:eb:99:8b:1e:f3:91:ba:d4:80: 6d:ba:35:c3:65:c6:7b:9d:cf:54:1f:3d:d7:fa:c6:2d:6c:1d: dd:dd:9b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE2QkQxMTAvBgNVBAUTKEMyNEM1MUJEQjAyQjcxMzZDMEYyNUFGMTk1QjM3MDM3 OTk3QjE3RTgwHhcNMjUwNDI4MTc0ODUzWhcNMjUwNTA1MTc0ODUzWjAYMRYwFAYD VQQDEw02ODBmYmY4NS0zZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5P2Iimio5t6IA7OHah5dTUnGqUln4yqQQgZYXmYSfBd98pnwCBK3V9QBx935 GP7QQpA+dOKYZOS6jIfLYLPI141BVFTOsdikib/uE6zws1CbuzG/LacrANIgabCk SXs8Tb5Lhq1jajLBQI9/0zFWkoZHTK/XUolFvP6h1n0yWsgYlB6aIqC5W0zK6FWb lDq34g7hCmOx3St2B0koOqUMNQPGHZsnQwO61DL+ZwnJb7z4jsodxnhhKhfV/UNf uwaK7dUJH9aPBhND6wohZTOZEsnQavBTsMXQ/dR4VBBEVe8mZmcZUTu27bzIji9J 2U8C/0ktyGB0+fyC/xDdSFKvvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNByd/UO NEz1UMMYdxXNq4YFMZJFMB8GA1UdIwQYMBaAFMJMUb2wK3E2wPJa8ZWzcDeZexfo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTZCRC85OEE1REY5QzY1 ODExMUU5QUE4MzMzNURDNEY5QUUwMi93a3hSdmJBcmNUYkE4bHJ4bGJOd041bDdG LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dreFJ2YkFyY1RiQThscnhsYk53TjVsN0YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTZCRC85OEE1REY5QzY1ODExMUU5QUE4MzMzNURDNEY5QUUwMi93a3hSdmJBcmNU YkE4bHJ4bGJOd041bDdGLWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5zN2DP+CeqqpRP4hg+WimUaFZpp1RX5tItK5EOB7NjyY6M7PdeGP+ IQYVuKCTwVHCd7qyl4RsxQZcZLEish/ABSswgnNtFb5CbdnmSq1+AYevaJ2gMv9h NHcYHSPJNbS+XJVl0QFxuUoaErP2DEbuafhYHHgTDODWsmw4X+d+H71k1l+l/Qam 3p8utY90DSBnEljJNVmQp55FHzllrPgl5SCwXV1ZZ5K3V0rplig9VVDa5OuOW2RO eoWHnxXfDT7GdENdI8nzIQOBrxtojOMRuXmXejrF1ijnOhf/w3WYBrvrmYse85G6 1IBtujXDZcZ7nc9UHz3X+sYtbB3d3ZvZ -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:44 2025 by rpki-client on console.sobornost.net