$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft File: t0ZCTjTomeFM0znQc7tfSRj9B4c.mft (raw, json) Hash identifier: 5Zd1zCEDbPXhLkwm6ilm0x/7CDRpWlI0TvsN+no9r6Q= Subject key identifier: 06:20:69:82:B1:79:59:B6:CD:12:2F:53:78:33:47:AD:D8:0E:25:8F Authority key identifier: B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 Certificate issuer: /CN=A91820CC/serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft Manifest number: 12 Signing time: Sun 27 Apr 2025 06:53:03 +0000 Manifest this update: Sun 27 Apr 2025 06:53:02 +0000 Manifest next update: Sun 04 May 2025 06:53:02 +0000 Files and hashes: 1: t0ZCTjTomeFM0znQc7tfSRj9B4c.crl (hash: YSD2ikgxI1MTtZBxyilPGuPSLS8myKCPHMT3g9WXazg=) 2: 675707260BDA11F0A768300AC4F9AE02.roa (hash: wilBGqna+OfcXED1b/uTuE5R5bjXwDBDwAo+DwpXl+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=B746424E34E899E14CD339D073BB5F4918FD0787 Validity Not Before: Apr 27 06:53:02 2025 GMT Not After : May 4 06:53:02 2025 GMT Subject: CN=680dd44f-804e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:df:8f:88:cc:75:7b:b8:8b:bf:2f:7b:a7:65: fe:47:47:f6:36:b6:4a:6f:00:ff:e2:34:30:03:06: 35:11:3d:4a:62:7a:19:43:00:98:0b:58:33:94:fe: c2:b1:c0:e4:6d:bd:fc:cd:31:77:7b:48:68:37:36: c8:f7:c1:52:7c:bc:0f:0b:39:2e:29:24:61:4e:f1: 98:14:74:86:98:76:86:f6:43:34:63:db:91:c0:e8: fc:50:0a:ad:79:52:46:50:a3:6f:5c:b7:3e:ab:ec: bf:e9:b0:ad:a1:b1:89:83:25:6b:ed:2f:81:2f:ca: 5e:43:0a:dc:b7:c9:3b:69:1b:ac:69:a3:3a:f2:1d: 90:95:71:1f:5e:9a:b4:3a:a1:58:9a:ab:8c:5c:96: 6b:e0:25:20:ab:d3:00:bd:d8:fb:b8:f5:1d:8d:5b: 36:9b:31:19:8e:ce:5f:42:9c:0e:ed:17:23:86:1e: 42:1a:60:1f:a5:f6:0e:c9:fa:d7:b5:1b:37:c3:52: 40:2a:19:99:ca:a6:55:a9:df:78:a5:1d:c9:3f:c8: 0a:90:a9:03:c0:06:53:75:97:5b:bf:0f:0b:e9:25: b6:24:5e:f4:db:cd:13:fa:09:a8:73:f5:9a:cd:6f: e5:8b:ff:1b:07:f0:70:d7:d2:44:a5:f3:2e:60:df: 4b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:20:69:82:B1:79:59:B6:CD:12:2F:53:78:33:47:AD:D8:0E:25:8F X509v3 Authority Key Identifier: keyid:B7:46:42:4E:34:E8:99:E1:4C:D3:39:D0:73:BB:5F:49:18:FD:07:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t0ZCTjTomeFM0znQc7tfSRj9B4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/936B43320BD911F08C607F87C4F9AE02/t0ZCTjTomeFM0znQc7tfSRj9B4c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:db:76:18:15:a3:13:2e:e2:ba:d7:01:fb:4e:7d:0a:41:39: 7e:a3:ba:94:1f:78:e3:41:0f:59:3c:13:4d:c7:c3:a1:9b:43: 13:ab:ef:05:97:41:a8:74:6b:72:41:f6:38:bf:7f:1d:e5:b4: ae:b0:46:7e:7d:fb:ab:5d:86:9c:3a:f3:ff:09:3d:61:0c:fb: 30:96:21:d0:38:dd:11:84:fb:32:51:aa:26:1a:14:68:9a:ca: 49:c7:13:c0:a5:33:ca:87:33:5b:f4:07:66:ce:03:33:f4:5e: 35:15:17:43:e1:8a:4f:37:05:53:df:0f:d3:5a:ab:27:8d:b7: 24:6d:56:17:43:72:ba:e1:35:c5:48:b5:9f:7b:1b:2e:52:5a: 47:09:18:9d:04:f6:17:d3:83:e6:70:c8:f2:23:d3:c3:2d:6e: 66:50:9f:49:89:6a:4e:71:e6:ac:a8:86:6f:70:33:1c:18:eb: fb:fd:bb:8b:e1:c6:4a:2e:b0:36:72:de:b7:04:9d:63:e3:9b: 11:a0:e8:ee:86:22:c7:0d:17:f5:40:ec:9c:a0:5f:9e:e4:8f: a3:bb:4c:b2:64:90:f9:03:b4:e9:0a:cf:6b:02:7b:cf:f9:b9: d3:2b:7d:e1:25:4b:b9:1f:77:0d:15:38:45:88:4f:97:d7:6a: db:90:59:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoQjc0NjQyNEUzNEU4OTlFMTRDRDMzOUQwNzNCQjVGNDkx OEZEMDc4NzAeFw0yNTA0MjcwNjUzMDJaFw0yNTA1MDQwNjUzMDJaMBgxFjAUBgNV BAMTDTY4MGRkNDRmLTgwNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC234+IzHV7uIu/L3unZf5HR/Y2tkpvAP/iNDADBjURPUpiehlDAJgLWDOU/sKx wORtvfzNMXd7SGg3Nsj3wVJ8vA8LOS4pJGFO8ZgUdIaYdob2QzRj25HA6PxQCq15 UkZQo29ctz6r7L/psK2hsYmDJWvtL4Evyl5DCty3yTtpG6xpozryHZCVcR9emrQ6 oViaq4xclmvgJSCr0wC92Pu49R2NWzabMRmOzl9CnA7tFyOGHkIaYB+l9g7J+te1 GzfDUkAqGZnKplWp33ilHck/yAqQqQPABlN1l1u/DwvpJbYkXvTbzRP6Cahz9ZrN b+WL/xsH8HDX0kSl8y5g30slAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBiBpgrF5 WbbNEi9TeDNHrdgOJY8wHwYDVR0jBBgwFoAUt0ZCTjTomeFM0znQc7tfSRj9B4cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDLzkzNkI0MzMyMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVGTTB6blFjN3RmU1JqOUI0 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdDBaQ1RqVG9tZUZNMHpuUWM3dGZTUmo5QjRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgy MENDLzkzNkI0MzMyMEJEOTExRjA4QzYwN0Y4N0M0RjlBRTAyL3QwWkNUalRvbWVG TTB6blFjN3RmU1JqOUI0Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE7bdhgVoxMu4rrXAftOfQpBOX6jupQfeONBD1k8E03Hw6GbQxOr7wWX Qah0a3JB9ji/fx3ltK6wRn59+6tdhpw68/8JPWEM+zCWIdA43RGE+zJRqiYaFGia yknHE8ClM8qHM1v0B2bOAzP0XjUVF0Phik83BVPfD9NaqyeNtyRtVhdDcrrhNcVI tZ97Gy5SWkcJGJ0E9hfTg+ZwyPIj08MtbmZQn0mJak5x5qyohm9wMxwY6/v9u4vh xkousDZy3rcEnWPjmxGg6O6GIscNF/VA7JygX57kj6O7TLJkkPkDtOkKz2sCe8/5 udMrfeElS7kfdw0VOEWIT5fXatuQWXo= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net