$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft File: vLfPRDC7mOoEhRw0BybliBUOE50.mft (raw, json) Hash identifier: 8mHxJBsXPGtJKqQMotB68nq+0ycX1DuX4Oq3C2erLbk= Subject key identifier: 76:F4:37:30:64:22:58:C0:DE:15:09:DF:75:D9:AB:6C:30:AA:CC:00 Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft Manifest number: C7 Signing time: Fri 25 Apr 2025 04:59:08 +0000 Manifest this update: Fri 25 Apr 2025 04:59:08 +0000 Manifest next update: Fri 02 May 2025 04:59:08 +0000 Files and hashes: 1: vLfPRDC7mOoEhRw0BybliBUOE50.crl (hash: WMRQ1lVsPw14we7KJnFsNSIbKUYOasiKO3CFCCHs9aA=) 2: BD5B75800C4E11EF85EEFC1FC4F9AE02.roa (hash: nV0vvomgUuYAvIzu+zUsDjepnjclen17WArrRDCOOcE=) 3: F9393E440C4811EF97CBBC31C4F9AE02.roa (hash: 8Rz14qqnLJzTDtmQhY87UU9ZmhRFExlX0EXdINFDVKA=) 4: D6871FC40C5711EFBD14BD5AC4F9AE02.roa (hash: pMueZdZNVsSO9dkMJ6HNJEYyNaRswTRPg4jNaq1x/N8=) 5: BE3E0EE00C4E11EF85EEFC1FC4F9AE02.roa (hash: kU3sDSAugxDvj2jONja3ZA3jP5BMAHMZw6R2ums+q7s=) 6: 8F64B3240C4B11EFACEF2C6FC4F9AE02.roa (hash: Oc+7IC+W0+Xbte63+cuJ+plpWgmKJWGeEg9BO4bYTrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0, serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Apr 25 04:59:08 2025 GMT Not After : May 2 04:59:08 2025 GMT Subject: CN=680b169c-f247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2e:dc:39:b7:00:3d:1c:89:ce:cd:c9:8c:99: d7:d7:33:fd:f1:c3:f3:7a:dd:4a:98:4b:a3:d5:4e: 9b:22:09:0f:c7:3e:6b:1c:ab:d5:07:9e:e3:c9:9d: d1:51:b0:23:42:19:43:00:04:a8:f6:c8:6c:bd:ca: 5e:5a:8d:04:bd:3e:8a:77:58:54:ca:48:77:d9:f1: ea:f7:84:7d:f8:1d:2a:ec:de:ab:ed:44:f1:91:96: 9b:02:b2:e8:05:6c:64:9e:3a:ab:54:4e:97:cc:68: 2d:f5:79:4d:2f:19:f3:12:76:1d:5d:bf:00:4a:7f: 59:4c:4d:c1:0e:6d:ec:50:3e:16:31:71:06:49:fc: 6c:58:f6:37:85:99:bc:1e:dd:39:36:05:44:c8:3b: 34:c7:83:7f:44:9f:f5:e8:56:e7:04:b8:6a:49:4b: df:51:1e:2a:7d:14:1d:25:f1:1d:81:12:90:96:be: 63:c8:65:e7:21:89:24:ac:ba:43:4f:52:b8:32:63: 7d:e2:11:49:e3:3a:8a:cc:92:05:9b:60:a8:c6:55: 3a:24:b0:28:e6:0b:79:7d:ad:7f:1e:22:d3:4e:3d: 83:a3:9e:a0:8e:17:22:84:a3:14:44:63:50:a6:d6: 7b:c7:8a:85:3e:c7:dd:97:9f:eb:2b:98:44:40:fb: 33:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F4:37:30:64:22:58:C0:DE:15:09:DF:75:D9:AB:6C:30:AA:CC:00 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:96:e5:d0:c8:a4:cc:3e:26:28:3a:3b:c0:16:f0:be:9e:6a: d8:39:ae:1f:c4:e2:6a:12:5e:64:6c:2e:6e:fa:e0:b5:1a:e2: 8b:7f:33:62:a8:15:bd:8f:77:23:cc:a7:2d:62:f7:1e:d3:7f: 8c:73:41:48:28:9a:25:a7:8b:46:cb:86:17:13:e0:d7:8b:81: 0a:91:2b:21:b9:d4:f3:97:f8:97:48:67:52:ef:a9:d6:ac:3f: e6:ee:c5:35:cd:3b:63:ea:56:bd:5b:f4:da:c1:bb:8a:ac:e6: f8:c8:d9:03:2b:78:c3:f4:f5:5a:0e:1c:6b:7b:fb:49:e8:d9: 04:fe:ab:7d:db:d9:88:42:c1:aa:67:56:99:65:69:3c:fe:4e: 4e:e1:1c:ad:28:78:f6:86:91:5f:d3:00:e3:39:9b:4e:79:de: 0c:08:48:70:f1:d9:4d:48:0f:5d:67:92:f1:c0:aa:a4:cb:29: b5:10:3f:98:47:a1:1b:d3:50:da:60:3c:11:9a:d9:dc:8d:0a: b2:51:33:79:0d:bd:bd:94:bf:31:cc:b1:2d:9d:97:c4:c3:e1: 91:a6:dc:e0:e5:7f:09:4f:6d:e8:65:2b:15:52:1b:42:d8:7f: a1:ae:14:ce:cb:e0:4d:d4:53:bc:9c:d5:8c:42:13:b9:56:46: 02:53:ac:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkzQTAxMTAvBgNVBAUTKEJDQjdDRjQ0MzBCQjk4RUEwNDg1MUMzNDA3MjZFNTg4 MTUwRTEzOUQwHhcNMjUwNDI1MDQ1OTA4WhcNMjUwNTAyMDQ1OTA4WjAYMRYwFAYD VQQDEw02ODBiMTY5Yy1mMjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy7cObcAPRyJzs3JjJnX1zP98cPzet1KmEuj1U6bIgkPxz5rHKvVB57jyZ3R UbAjQhlDAASo9shsvcpeWo0EvT6Kd1hUykh32fHq94R9+B0q7N6r7UTxkZabArLo BWxknjqrVE6XzGgt9XlNLxnzEnYdXb8ASn9ZTE3BDm3sUD4WMXEGSfxsWPY3hZm8 Ht05NgVEyDs0x4N/RJ/16FbnBLhqSUvfUR4qfRQdJfEdgRKQlr5jyGXnIYkkrLpD T1K4MmN94hFJ4zqKzJIFm2CoxlU6JLAo5gt5fa1/HiLTTj2Do56gjhcihKMURGNQ ptZ7x4qFPsfdl5/rK5hEQPszGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHb0NzBk IljA3hUJ33XZq2wwqswAMB8GA1UdIwQYMBaAFLy3z0Qwu5jqBIUcNAcm5YgVDhOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTNBMC9BNTk1NUU1NjBD NDUxMUVGOUU3RTA1MURDNEY5QUUwMi92TGZQUkRDN21Pb0VoUncwQnlibGlCVU9F NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTNBMC9BNTk1NUU1NjBDNDUxMUVGOUU3RTA1MURDNEY5QUUwMi92TGZQUkRDN21P b0VoUncwQnlibGlCVU9FNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGluXQyKTMPiYoOjvAFvC+nmrYOa4fxOJqEl5kbC5u+uC1GuKLfzNi qBW9j3cjzKctYvce03+Mc0FIKJolp4tGy4YXE+DXi4EKkSshudTzl/iXSGdS76nW rD/m7sU1zTtj6la9W/TawbuKrOb4yNkDK3jD9PVaDhxre/tJ6NkE/qt929mIQsGq Z1aZZWk8/k5O4RytKHj2hpFf0wDjOZtOed4MCEhw8dlNSA9dZ5LxwKqkyym1ED+Y R6Eb01DaYDwRmtncjQqyUTN5Db29lL8xzLEtnZfEw+GRptzg5X8JT23oZSsVUhtC 2H+hrhTOy+BN1FO8nNWMQhO5VkYCU6xg -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:51 2025 by rpki-client on console.sobornost.net