$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: /9trANwijUhRw/s6TVVJWL46q9aj2MgTZuHZk0YZCPM= Subject key identifier: 80:F4:FB:A4:E1:36:75:8A:3A:BB:AF:93:41:71:A3:A3:D2:80:42:C6 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 78 Signing time: Fri 25 Apr 2025 05:45:06 +0000 Manifest this update: Fri 25 Apr 2025 05:45:06 +0000 Manifest next update: Fri 02 May 2025 05:45:05 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: f6rwStUY7mLI/VOJvEiYoOdk5jEVt5DqSSkugY2KLU4=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: Mb/JnRkZoctaPV3WHu0XOAV8U5+c9ZbVehfTb/x4GMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4, serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Apr 25 05:45:06 2025 GMT Not After : May 2 05:45:05 2025 GMT Subject: CN=680b2162-c41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e2:4d:32:24:b6:50:0b:57:38:05:ea:93:c3: 31:84:36:6b:d9:b9:b8:73:9f:12:8f:3a:28:aa:a7: 7f:eb:d1:aa:98:d8:40:bd:c7:7f:9a:91:9e:29:5c: 8e:f7:42:7e:d2:52:b6:e0:20:0a:b7:45:cc:ac:ca: 06:00:2d:ed:d5:52:6b:aa:92:ce:99:39:f9:0f:bc: 97:f5:c5:2d:df:2e:0a:ea:d7:9a:aa:1d:33:59:30: d4:e3:8c:7b:aa:5c:e4:ab:92:45:83:e1:09:c9:65: d0:e6:3b:61:82:ff:10:75:ae:e1:a6:4d:ad:a1:22: da:b3:4d:ad:4c:e3:8e:87:23:79:e0:04:c4:6d:65: 22:a2:e4:e2:1b:76:02:de:90:b4:d7:87:0c:e2:41: 4b:49:c6:bd:b5:eb:a6:5e:76:ad:c2:74:a8:57:51: f7:48:13:8a:85:31:7f:e0:37:9f:72:5c:d1:3a:5a: 9b:0d:67:a2:3e:90:11:87:95:9e:f7:27:ba:e7:f7: 69:2c:d6:80:28:73:1d:6f:6c:c9:49:69:fb:72:96: cc:b5:a5:dc:89:90:ef:54:05:82:6e:62:79:70:da: aa:03:3b:a7:8f:05:99:8a:27:dd:72:47:1e:d0:df: 05:b4:01:c1:af:07:f2:3a:e1:01:f0:18:71:2f:59: 66:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F4:FB:A4:E1:36:75:8A:3A:BB:AF:93:41:71:A3:A3:D2:80:42:C6 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:74:1f:01:10:5b:1c:3c:f1:fd:60:d0:bf:9a:32:11:28:0a: 01:11:2b:9f:10:80:55:28:bf:41:74:31:81:8b:52:24:c2:33: 9e:d3:65:71:8a:11:47:a8:33:10:97:e5:29:d5:23:2b:99:04: e1:20:d3:5a:dc:49:d6:94:1f:0c:62:c2:b6:80:a5:5e:24:d9: a7:e6:90:12:c3:01:eb:be:be:40:4b:8f:c1:33:89:c2:9a:89: 9f:4f:77:63:db:d6:c3:ac:50:42:28:ac:78:ee:99:ce:11:b9: 31:49:48:11:2d:b8:ac:54:2e:02:37:63:97:5b:63:11:6b:4e: 15:de:d3:e5:21:4e:df:38:83:62:ea:28:27:3d:97:a6:85:d0: 66:e0:af:22:d9:9f:93:76:7b:c6:f3:12:af:7b:31:28:19:eb: ab:db:62:1d:a5:47:7a:41:75:20:3a:35:5c:5b:0e:b0:87:30: e4:6b:7a:7f:0c:d2:55:8b:e9:b7:43:40:2f:9d:aa:ad:7e:25: 9e:8d:08:66:6d:54:e0:31:21:27:b7:8c:51:ef:82:d3:39:c1: 8a:9f:76:3a:5b:aa:fb:57:75:79:49:50:dc:d1:bd:8a:6b:1b: fc:73:b5:ce:4f:6b:06:9c:8c:ec:87:97:ca:32:47:12:7f:40: e7:53:75:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoQ0ZDMDgwNERBQzRGRkY3QTIyQTQwNEUxMEU5ODY0QTcx MURFMTlDOTAeFw0yNTA0MjUwNTQ1MDZaFw0yNTA1MDIwNTQ1MDVaMBgxFjAUBgNV BAMTDTY4MGIyMTYyLWM0MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW4k0yJLZQC1c4BeqTwzGENmvZubhznxKPOiiqp3/r0aqY2EC9x3+akZ4pXI73 Qn7SUrbgIAq3RcysygYALe3VUmuqks6ZOfkPvJf1xS3fLgrq15qqHTNZMNTjjHuq XOSrkkWD4QnJZdDmO2GC/xB1ruGmTa2hItqzTa1M446HI3ngBMRtZSKi5OIbdgLe kLTXhwziQUtJxr2166Zedq3CdKhXUfdIE4qFMX/gN59yXNE6WpsNZ6I+kBGHlZ73 J7rn92ks1oAocx1vbMlJaftylsy1pdyJkO9UBYJuYnlw2qoDO6ePBZmKJ91yRx7Q 3wW0AcGvB/I64QHwGHEvWWYlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgPT7pOE2 dYo6u6+TQXGjo9KAQsYwHwYDVR0jBBgwFoAUz8CATaxP/3oipAThDphkpxHeGckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0YzMTlFREMyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvejhDQVRheFBfM29pcEFUaERwaGtweEhlR2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MkM0L0YzMTlFREMyNkMxNzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNv aXBBVGhEcGhrcHhIZUdjay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACh0HwEQWxw88f1g0L+aMhEoCgERK58QgFUov0F0MYGLUiTCM57TZXGK EUeoMxCX5SnVIyuZBOEg01rcSdaUHwxiwraApV4k2afmkBLDAeu+vkBLj8EzicKa iZ9Pd2Pb1sOsUEIorHjumc4RuTFJSBEtuKxULgI3Y5dbYxFrThXe0+UhTt84g2Lq KCc9l6aF0GbgryLZn5N2e8bzEq97MSgZ66vbYh2lR3pBdSA6NVxbDrCHMORren8M 0lWL6bdDQC+dqq1+JZ6NCGZtVOAxISe3jFHvgtM5wYqfdjpbqvtXdXlJUNzRvYpr G/xztc5PawacjOyHl8oyRxJ/QOdTdX4= -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:53 2025 by rpki-client on console.sobornost.net