$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft File: vsKCSG834xbxe1ILRVKHvDB_ieg.mft (raw, json) Hash identifier: GDurrXqCJ8rDUzSxsRd/yjA+AOlbkbjfsXW2qK+tHuA= Subject key identifier: C7:D8:21:A2:73:2B:E2:72:0A:7E:5D:B3:DF:D9:C7:70:1A:64:B2:C4 Authority key identifier: BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 Certificate issuer: /CN=A918A469/serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft Manifest number: C1 Signing time: Wed 23 Apr 2025 04:57:26 +0000 Manifest this update: Wed 23 Apr 2025 04:57:26 +0000 Manifest next update: Wed 30 Apr 2025 04:57:26 +0000 Files and hashes: 1: vsKCSG834xbxe1ILRVKHvDB_ieg.crl (hash: 6ziecxe5httCq7tmux+6d1hVviv8eeDjuEakMTOZRnc=) 2: 71403B04F7E511EEBC67981CC4F9AE02.roa (hash: gx9z09oQ5hTA8YH4iSWgc7528eikGurKJ+1nJAQYPAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=BEC282486F37E316F17B520B455287BC307F89E8 Validity Not Before: Apr 23 04:57:26 2025 GMT Not After : Apr 30 04:57:26 2025 GMT Subject: CN=68087336-da21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a4:86:6b:e9:fb:c2:6d:70:57:5f:5f:fd:32: e5:05:6e:a6:66:e2:5b:b9:b2:7b:d2:37:a3:85:6e: be:56:fd:c3:33:b7:af:ee:95:5a:de:f3:a7:88:9f: ac:dd:8c:7c:b4:c1:28:80:b0:f8:ea:df:c8:6e:f7: cb:c7:24:34:57:d4:9a:d3:ec:e0:cf:82:02:29:f7: 65:4d:91:ea:82:e2:6f:1d:7f:5d:64:9f:19:7a:c5: 3a:d4:f1:a5:de:2a:62:6a:fe:4d:50:d5:a1:bf:94: 6f:0b:9b:15:44:2d:14:42:58:ed:b9:c8:7c:9e:6b: 1b:6b:da:fe:32:48:4b:78:1f:db:4a:05:d1:d6:21: 9e:ef:c9:32:c1:16:a2:4b:ff:f9:c7:41:f6:34:dd: c8:6c:66:8a:ad:a6:ac:4d:46:24:cc:dd:fd:63:6a: 72:37:13:0f:ad:30:4d:ef:1b:0b:4d:aa:d5:f9:18: e7:26:7e:d9:20:86:4d:a4:01:77:62:a8:e5:ff:e4: 6a:97:b8:c4:ff:21:a1:2e:bd:46:03:c6:7a:fb:20: 79:89:73:75:34:87:91:e2:76:1a:bc:31:62:2f:b4: b1:f0:11:11:3f:6c:e8:19:6e:01:80:48:f0:23:fc: 81:15:52:6c:8d:57:53:f3:4c:d6:bb:b9:62:38:21: 65:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D8:21:A2:73:2B:E2:72:0A:7E:5D:B3:DF:D9:C7:70:1A:64:B2:C4 X509v3 Authority Key Identifier: keyid:BE:C2:82:48:6F:37:E3:16:F1:7B:52:0B:45:52:87:BC:30:7F:89:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vsKCSG834xbxe1ILRVKHvDB_ieg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/F58438FEF7E311EEB9A1291AC4F9AE02/vsKCSG834xbxe1ILRVKHvDB_ieg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:cd:fe:bd:51:31:7c:e3:1d:5a:dc:28:22:a4:58:55:44:2e: 30:b7:8b:e4:0a:28:0a:58:cf:36:67:ed:47:26:00:a9:cf:bc: c2:46:c1:c5:3b:58:2c:e4:ac:85:83:12:04:53:3b:46:0d:be: 24:8a:be:26:a8:7b:35:b4:f0:27:fe:68:b8:c6:3d:27:63:b2: 1e:57:03:a6:d3:89:03:30:9f:77:1e:fa:42:cf:8a:73:7d:e5: 82:01:28:b8:75:3c:c6:fc:9f:5f:c9:23:c3:23:68:6f:37:09: 67:52:49:ce:2a:98:40:3a:02:86:85:49:d2:94:14:04:04:24: 5d:92:e6:53:2f:68:1a:08:1e:49:c2:66:af:9e:2e:5f:1c:b7: 15:12:26:62:3f:03:fd:14:d2:50:d7:10:08:e0:5c:22:2d:a9: 55:47:c5:1b:e0:95:3b:c8:15:a6:5a:84:39:02:5c:41:cf:60: c1:18:37:8c:1d:b4:39:ea:ce:e1:74:3d:2b:df:15:92:2e:b6: 9f:1e:60:b7:f1:92:b6:1b:57:05:40:59:c9:0d:3f:9f:07:ac: 84:b0:1a:d5:78:07:dc:34:4f:84:fe:40:a7:68:d6:c9:98:f2: 92:dd:7e:12:0b:2e:65:b1:f9:c6:6d:8f:53:80:88:b8:4c:54: fb:64:ba:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKEJFQzI4MjQ4NkYzN0UzMTZGMTdCNTIwQjQ1NTI4N0JD MzA3Rjg5RTgwHhcNMjUwNDIzMDQ1NzI2WhcNMjUwNDMwMDQ1NzI2WjAYMRYwFAYD VQQDEw02ODA4NzMzNi1kYTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6SGa+n7wm1wV19f/TLlBW6mZuJbubJ70jejhW6+Vv3DM7ev7pVa3vOniJ+s 3Yx8tMEogLD46t/IbvfLxyQ0V9Sa0+zgz4ICKfdlTZHqguJvHX9dZJ8ZesU61PGl 3ipiav5NUNWhv5RvC5sVRC0UQljtuch8nmsba9r+MkhLeB/bSgXR1iGe78kywRai S//5x0H2NN3IbGaKraasTUYkzN39Y2pyNxMPrTBN7xsLTarV+RjnJn7ZIIZNpAF3 Yqjl/+Rql7jE/yGhLr1GA8Z6+yB5iXN1NIeR4nYavDFiL7Sx8BERP2zoGW4BgEjw I/yBFVJsjVdT80zWu7liOCFljQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfYIaJz K+JyCn5ds9/Zx3AaZLLEMB8GA1UdIwQYMBaAFL7CgkhvN+MW8XtSC0VSh7wwf4no MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GNTg0MzhGRUY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4YnhlMUlMUlZLSHZEQl9p ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZzS0NTRzgzNHhieGUxSUxSVktIdkRCX2llZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTQ2OS9GNTg0MzhGRUY3RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi92c0tDU0c4MzR4 YnhlMUlMUlZLSHZEQl9pZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbzf69UTF84x1a3CgipFhVRC4wt4vkCigKWM82Z+1HJgCpz7zCRsHF O1gs5KyFgxIEUztGDb4kir4mqHs1tPAn/mi4xj0nY7IeVwOm04kDMJ93HvpCz4pz feWCASi4dTzG/J9fySPDI2hvNwlnUknOKphAOgKGhUnSlBQEBCRdkuZTL2gaCB5J wmavni5fHLcVEiZiPwP9FNJQ1xAI4FwiLalVR8Ub4JU7yBWmWoQ5AlxBz2DBGDeM HbQ56s7hdD0r3xWSLrafHmC38ZK2G1cFQFnJDT+fB6yEsBrVeAfcNE+E/kCnaNbJ mPKS3X4SCy5lsfnGbY9TgIi4TFT7ZLol -----END CERTIFICATE-----Generated at Wed Apr 23 06:35:50 2025 by rpki-client on console.sobornost.net