$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: +PfCnBFMxl25bgPcE+sJ/nAu8fvDGNwJJhBqzo7HHGk= Subject key identifier: 86:C0:2E:27:A8:DF:58:3D:38:A6:11:3F:9E:E3:19:8A:06:F9:7B:04 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 026C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 0269 Signing time: Sun 27 Apr 2025 01:21:07 +0000 Manifest this update: Sun 27 Apr 2025 01:21:07 +0000 Manifest next update: Sun 04 May 2025 01:21:07 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: t1/NRlz+oxDEgLdlRonPxouSJRqqnnX6APWZflfHJBo=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: 9zqxhpOangW9769mdxLoJSN4Rv/Y8CMGWvMe+D0Ah7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Apr 27 01:21:07 2025 GMT Not After : May 4 01:21:07 2025 GMT Subject: CN=680d8683-d1da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b7:11:11:01:9f:fe:1b:69:bd:c6:4a:6d:27: 35:5b:08:10:17:9b:6d:c5:ca:e3:ca:9d:39:b6:88: 91:d4:8d:50:66:22:18:0e:8d:f8:2e:eb:1b:b9:3f: 78:bd:0a:21:7b:26:63:71:73:a6:8a:c9:5e:fa:28: fc:10:41:6f:ed:d8:df:c0:0c:8b:f8:02:07:b8:dc: cd:0b:b8:ac:e5:c1:79:e6:28:b2:69:73:39:c1:c9: 8f:fe:97:2a:4f:e0:05:19:ff:42:18:db:7c:77:b3: 6f:fb:44:9e:7f:34:c8:02:04:57:38:29:8c:46:21: dd:90:b2:10:c5:1b:22:4e:36:a0:96:68:4d:44:ba: 57:d1:55:8a:91:08:99:22:2b:4a:ac:45:e7:1f:83: 1f:7c:c0:94:c4:ff:f6:aa:09:2e:e4:7d:82:63:b0: 98:b5:b4:e1:cc:ef:71:97:ca:e2:20:c5:53:2d:95: 98:ab:fc:10:15:0f:ca:c4:fe:b5:b6:36:62:6a:95: 29:46:3c:62:10:2d:4e:21:11:15:fe:77:c6:92:a2: eb:e3:6c:62:33:aa:89:ad:2c:a4:31:5b:47:cc:ae: 47:35:18:1c:8f:8e:42:b1:cf:b0:3b:eb:a0:c2:13: e0:d5:83:52:c3:f1:a0:94:7f:a5:bc:83:a0:fc:c9: 3d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C0:2E:27:A8:DF:58:3D:38:A6:11:3F:9E:E3:19:8A:06:F9:7B:04 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f5:b9:07:e8:bb:2e:6f:52:e2:b6:1c:5b:29:5c:9a:2e:bf: bd:cd:73:f8:95:6e:d3:fe:8c:09:3c:2f:8f:c4:05:25:2a:cf: 00:fd:37:9a:59:68:65:ec:ad:52:ad:8e:36:22:fd:81:64:89: 23:9a:4c:0d:f5:32:56:58:a7:c6:bd:42:24:be:75:45:52:f4: c8:6f:ac:e6:e3:8c:8d:f6:4f:ba:1d:c3:a6:05:b2:be:5e:c8: 0b:54:75:fb:87:77:08:bd:c0:87:4c:dc:c6:3d:f6:63:1f:65: 22:1e:63:6c:c1:c0:f4:cc:e0:3e:cf:6e:de:ea:ff:d9:3c:e1: 1f:8c:ea:00:94:47:b6:11:1b:c5:87:85:49:5e:b5:e2:4b:94: 52:40:02:23:0a:1a:4f:e0:88:f6:01:72:7d:6b:5c:03:c9:f5: 86:df:d7:96:f3:18:1d:72:c6:9d:f5:3a:1f:5c:9f:fa:75:8f: 22:cd:54:26:f4:65:e9:7d:e8:3a:46:da:ce:72:0d:4c:6e:17: 27:8d:74:f1:5a:52:7d:68:66:41:c1:13:cf:5b:ab:0f:5a:fe: 8a:7a:9c:30:72:4c:60:d2:3c:35:a6:f5:ca:a7:ae:8e:ac:a1: 7c:c6:cb:55:60:57:ee:1c:87:03:d7:83:6b:2a:30:3b:af:49: d5:1d:a1:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwNDI3MDEyMTA3WhcNMjUwNTA0MDEyMTA3WjAYMRYwFAYD VQQDEw02ODBkODY4My1kMWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7cREQGf/htpvcZKbSc1WwgQF5ttxcrjyp05toiR1I1QZiIYDo34LusbuT94 vQoheyZjcXOmisle+ij8EEFv7djfwAyL+AIHuNzNC7is5cF55iiyaXM5wcmP/pcq T+AFGf9CGNt8d7Nv+0SefzTIAgRXOCmMRiHdkLIQxRsiTjaglmhNRLpX0VWKkQiZ IitKrEXnH4MffMCUxP/2qgku5H2CY7CYtbThzO9xl8riIMVTLZWYq/wQFQ/KxP61 tjZiapUpRjxiEC1OIREV/nfGkqLr42xiM6qJrSykMVtHzK5HNRgcj45Csc+wO+ug whPg1YNSw/GglH+lvIOg/Mk9NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbALieo 31g9OKYRP57jGYoG+XsEMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX9bkH6Lsub1LithxbKVyaLr+9zXP4lW7T/owJPC+PxAUlKs8A/Tea WWhl7K1SrY42Iv2BZIkjmkwN9TJWWKfGvUIkvnVFUvTIb6zm44yN9k+6HcOmBbK+ XsgLVHX7h3cIvcCHTNzGPfZjH2UiHmNswcD0zOA+z27e6v/ZPOEfjOoAlEe2ERvF h4VJXrXiS5RSQAIjChpP4Ij2AXJ9a1wDyfWG39eW8xgdcsad9TofXJ/6dY8izVQm 9GXpfeg6RtrOcg1MbhcnjXTxWlJ9aGZBwRPPW6sPWv6Kepwwckxg0jw1pvXKp66O rKF8xstVYFfuHIcD14NrKjA7r0nVHaHc -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:03 2025 by rpki-client on console.sobornost.net