$ rpki-client -vvf rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft File: vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft (raw, json) Hash identifier: IAE+XFw6pLWS8dJAQ3XtFqiy+HoqDUVNkBKFMd5Ao5Y= Subject key identifier: A2:72:7E:AD:61:55:5A:D7:B0:E5:C6:1B:05:45:BC:EC:40:FB:A9:5A Authority key identifier: BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 Certificate issuer: /CN=A919F026/serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft Manifest number: 20 Signing time: Sun 27 Apr 2025 06:43:43 +0000 Manifest this update: Sun 27 Apr 2025 06:43:42 +0000 Manifest next update: Sun 04 May 2025 06:43:42 +0000 Files and hashes: 1: vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl (hash: 8TMgKT6EamE8vNvNyGJa4BTgY8UcmBheK29hjrsarng=) 2: 3FCB43D2FB2911EF8A116D76C4F9AE02.roa (hash: CFjfwtbnARFkiBTSkHxcw566lVz+R0FjE0lSqqgVvOk=) 3: 563F3D581F3C11F09F3C7F40C4F9AE02.roa (hash: YKwfhn84elYu/Y8KsthWeHLfxYMDii6IqoqFACcb2JY=) 4: 362EF79CFB2911EF8C103876C4F9AE02.roa (hash: Ar+onOWOPH7xuawAkKNR4USGgISAZHmjzcJHYy39Fms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F026, serialNumber=BD79AC7640C955C435C8CF55C291F122B70E2F99 Validity Not Before: Apr 27 06:43:42 2025 GMT Not After : May 4 06:43:42 2025 GMT Subject: CN=680dd21e-4f54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:71:a9:21:0c:59:b7:b4:c5:36:ee:f4:ad:be: c9:fc:0c:5f:aa:c9:fd:8a:87:8b:aa:33:1c:68:33: bf:e3:7a:7c:41:17:5f:05:5d:d1:9a:30:22:b5:e0: 11:45:09:06:cb:82:1b:72:83:b6:0d:8d:a2:92:80: 46:36:20:c5:f4:94:0a:d5:03:0a:96:11:83:7a:77: 58:54:37:22:2a:99:06:0e:53:a1:bf:9a:54:8a:d4: 03:06:c3:5f:9c:34:1a:02:54:5e:fd:8d:e2:92:ea: 9f:86:1b:a7:65:69:18:b0:87:52:2b:76:74:38:33: bb:94:28:f7:4d:cf:6c:ca:18:3c:30:fd:cf:a5:95: 56:41:b4:3e:2b:60:6a:c5:a4:cd:98:66:0e:0a:ea: b7:d0:1b:3e:a9:9f:56:81:11:9a:21:6f:65:1a:66: a4:52:d9:b8:0f:0c:ed:0d:cb:1f:78:0d:96:6f:6c: 4f:3c:f3:5c:7a:41:5f:ba:c8:5b:8f:19:33:34:9a: 1d:72:2f:00:3f:61:79:fd:a5:d6:9b:6d:a9:13:40: 2b:41:07:76:94:18:a9:e7:b1:3e:a0:0a:d0:d6:3d: 62:d9:09:23:72:35:76:78:c4:d1:15:16:8a:82:a1: 7a:c5:6b:ec:2a:7a:09:37:f0:83:95:57:c1:62:1e: ca:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:72:7E:AD:61:55:5A:D7:B0:E5:C6:1B:05:45:BC:EC:40:FB:A9:5A X509v3 Authority Key Identifier: keyid:BD:79:AC:76:40:C9:55:C4:35:C8:CF:55:C2:91:F1:22:B7:0E:2F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F026/3BAAAC44FB2811EF959FC774C4F9AE02/vXmsdkDJVcQ1yM9VwpHxIrcOL5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:c2:40:e8:07:ff:36:02:54:18:b9:4b:9c:05:42:fd:34:d6: ef:c9:fd:f2:d4:bc:bc:99:5f:19:fe:b6:4e:9d:11:ca:7a:05: 00:85:af:db:08:90:ad:cf:06:62:a5:a8:85:61:40:12:29:53: ff:6d:fb:ea:70:16:ae:22:3d:14:c8:59:48:80:2b:19:7d:91: 60:76:c4:11:bd:fc:24:4e:91:56:c8:cb:65:c3:5a:36:20:92: e3:86:b9:6d:4d:cd:a5:b2:83:fe:bd:6e:c8:0d:c6:da:32:ab: 7a:09:1b:b5:b0:c9:cd:bf:fd:26:7a:36:6c:c5:e6:61:08:b4: 18:4a:12:51:87:9c:51:53:da:14:57:ac:75:f2:d9:9b:a5:c5: 91:4e:6f:d4:48:52:8d:87:59:9b:cb:1c:07:80:46:f0:97:39: 27:2d:20:59:c4:11:34:42:1f:82:32:2d:13:29:94:79:ef:68: 1b:1e:e8:a3:78:8a:70:31:a8:fd:5d:ed:77:8e:fa:6c:ad:01: b1:7c:42:99:74:23:32:ee:d9:1d:08:47:33:c3:03:95:c2:3d: 58:6c:32:ac:ea:fe:ba:7d:ac:e8:a1:e1:3d:f1:e8:a5:6d:d9: f8:14:03:fa:c3:19:81:94:67:40:1c:c0:a4:39:09:48:16:ee: 7e:8b:f0:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjAyNjExMC8GA1UEBRMoQkQ3OUFDNzY0MEM5NTVDNDM1QzhDRjU1QzI5MUYxMjJC NzBFMkY5OTAeFw0yNTA0MjcwNjQzNDJaFw0yNTA1MDQwNjQzNDJaMBgxFjAUBgNV BAMTDTY4MGRkMjFlLTRmNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFcakhDFm3tMU27vStvsn8DF+qyf2Kh4uqMxxoM7/jenxBF18FXdGaMCK14BFF CQbLghtyg7YNjaKSgEY2IMX0lArVAwqWEYN6d1hUNyIqmQYOU6G/mlSK1AMGw1+c NBoCVF79jeKS6p+GG6dlaRiwh1IrdnQ4M7uUKPdNz2zKGDww/c+llVZBtD4rYGrF pM2YZg4K6rfQGz6pn1aBEZohb2UaZqRS2bgPDO0Nyx94DZZvbE8881x6QV+6yFuP GTM0mh1yLwA/YXn9pdabbakTQCtBB3aUGKnnsT6gCtDWPWLZCSNyNXZ4xNEVFoqC oXrFa+wqegk38IOVV8FiHsp/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUonJ+rWFV Wtew5cYbBUW87ED7qVowHwYDVR0jBBgwFoAUvXmsdkDJVcQ1yM9VwpHxIrcOL5kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGMDI2LzNCQUFBQzQ0RkIy ODExRUY5NTlGQzc3NEM0RjlBRTAyL3ZYbXNka0RKVmNRMXlNOVZ3cEh4SXJjT0w1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdlhtc2RrREpWY1ExeU05VndwSHhJcmNPTDVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG MDI2LzNCQUFBQzQ0RkIyODExRUY5NTlGQzc3NEM0RjlBRTAyL3ZYbXNka0RKVmNR MXlNOVZ3cEh4SXJjT0w1ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEbCQOgH/zYCVBi5S5wFQv001u/J/fLUvLyZXxn+tk6dEcp6BQCFr9sI kK3PBmKlqIVhQBIpU/9t++pwFq4iPRTIWUiAKxl9kWB2xBG9/CROkVbIy2XDWjYg kuOGuW1NzaWyg/69bsgNxtoyq3oJG7Wwyc2//SZ6NmzF5mEItBhKElGHnFFT2hRX rHXy2ZulxZFOb9RIUo2HWZvLHAeARvCXOSctIFnEETRCH4IyLRMplHnvaBse6KN4 inAxqP1d7XeO+mytAbF8Qpl0IzLu2R0IRzPDA5XCPVhsMqzq/rp9rOih4T3x6KVt 2fgUA/rDGYGUZ0AcwKQ5CUgW7n6L8A8= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net