$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft File: WCfkvYcCd-3w6xBWOptBweS-fIE.mft (raw, json) Hash identifier: Lo5cLIj9naL3PmYNP06Cc4K15MxULLcs5WbpbWcLF5A= Subject key identifier: 25:11:C9:FE:D3:0C:A7:41:C4:12:1B:EC:60:A6:88:39:33:86:3D:6C Authority key identifier: 58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81 Certificate issuer: /CN=A91A7D85/serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81 Certificate serial: 0B5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft Manifest number: 0B48 Signing time: Mon 28 Apr 2025 19:29:55 +0000 Manifest this update: Mon 28 Apr 2025 19:29:55 +0000 Manifest next update: Mon 05 May 2025 19:29:55 +0000 Files and hashes: 1: WCfkvYcCd-3w6xBWOptBweS-fIE.crl (hash: LsNNQleVJQMvIH0XjE7mIeyN1B+u9yIGi6DJGuCTZlM=) 2: D8FCAB6C750611EFAE4AA240C4F9AE02.roa (hash: BNtUgizLuW7VE24IioUopOhcnv7kySphvSn8ooQaevk=) 3: 4CDACDE4623711EA981B4B0DC4F9AE02.roa (hash: E4bzrx7poQwdk1jQHWl7doZB/UzexRVv4xP96OZmdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.crl rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2909 (0xb5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7D85, serialNumber=5827E4BD870277EDF0EB10563A9B41C1E4BE7C81 Validity Not Before: Apr 28 19:29:55 2025 GMT Not After : May 5 19:29:55 2025 GMT Subject: CN=680fd733-4c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:88:85:d6:b0:77:6f:c2:ec:34:16:a2:b7:80: 78:f6:d1:ea:5b:00:9d:4d:e8:53:c1:b3:7e:04:66: d8:07:9a:7c:79:57:51:c2:b5:d0:87:92:44:6a:14: f3:43:38:27:84:a0:fa:9a:53:52:e0:b7:0b:9b:09: db:72:f7:15:83:66:ca:c1:dc:4c:1b:66:f3:60:6a: f5:e2:d1:e5:6e:df:ef:3f:02:65:cd:05:8a:43:c2: 27:ba:db:e7:61:44:e1:8f:32:45:43:5d:5f:ee:a4: 6f:9f:da:10:15:fe:70:bd:58:18:46:4c:7d:7c:e2: 12:ad:76:85:87:77:68:f3:5a:3b:35:21:61:41:3c: d4:64:52:12:b1:ad:f6:5b:b4:ab:90:38:6f:31:7b: 79:38:21:d3:85:74:89:df:12:33:85:e6:48:d4:37: ec:45:84:b0:41:4e:0d:09:58:42:26:8d:18:fd:2a: c9:71:ed:42:89:9e:86:83:2f:3b:df:a6:49:cc:32: 9c:47:bb:46:c3:73:b2:29:f5:7c:52:83:fa:80:a3: 5a:7d:86:56:b3:af:25:10:b4:b0:8e:64:3a:7f:fd: 41:da:c4:64:24:10:e3:6d:48:67:3a:46:a9:be:af: 1a:57:d7:c9:e5:eb:32:47:5c:0f:2d:dd:3d:50:57: 7f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:11:C9:FE:D3:0C:A7:41:C4:12:1B:EC:60:A6:88:39:33:86:3D:6C X509v3 Authority Key Identifier: keyid:58:27:E4:BD:87:02:77:ED:F0:EB:10:56:3A:9B:41:C1:E4:BE:7C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WCfkvYcCd-3w6xBWOptBweS-fIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7D85/62CED48E33E211EAA4932884C4F9AE02/WCfkvYcCd-3w6xBWOptBweS-fIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:bd:be:94:fa:ba:28:05:f1:b1:ae:f6:63:72:15:54:56:af: 09:cd:03:9c:34:2c:df:3b:99:9f:73:c4:ce:b4:9a:70:64:0c: 64:df:d6:d1:7a:d2:e9:47:8b:f0:33:96:e4:4d:0d:f4:3a:32: 78:57:2f:d1:8c:73:70:a3:3d:3d:ac:9a:b4:0e:e4:3e:59:1e: 73:fa:73:7e:66:e4:8a:91:18:c8:85:c4:e0:50:a0:70:ff:0f: e6:07:48:30:8f:55:ef:cd:e9:91:39:cb:e8:49:2d:f8:6e:65: 7f:85:c8:06:25:82:b9:86:69:ef:24:f2:ed:9c:91:1a:76:13: 3b:39:1c:5c:54:22:0d:85:e1:3e:e9:b9:70:c2:ff:bf:a8:69: d3:b8:f9:c4:ad:f0:1e:4a:bb:39:c2:37:53:73:ac:46:75:14: 3b:8f:22:25:77:5d:49:9c:79:e3:02:6c:7e:56:ac:80:ec:e4: 50:84:f0:74:ec:3f:7f:4e:7f:58:b8:85:6d:f9:2d:ee:ef:f6: ae:36:7e:1c:d2:f1:a2:a2:57:da:73:76:b5:a5:82:31:b4:76: 2a:a0:bf:1d:d5:45:2e:40:93:1a:17:3e:eb:0f:23:85:0a:42: 20:57:90:ad:a1:be:e8:4a:f1:8e:91:53:2f:35:1b:72:16:62: 55:83:68:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdEODUxMTAvBgNVBAUTKDU4MjdFNEJEODcwMjc3RURGMEVCMTA1NjNBOUI0MUMx RTRCRTdDODEwHhcNMjUwNDI4MTkyOTU1WhcNMjUwNTA1MTkyOTU1WjAYMRYwFAYD VQQDEw02ODBmZDczMy00YzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oiF1rB3b8LsNBait4B49tHqWwCdTehTwbN+BGbYB5p8eVdRwrXQh5JEahTz QzgnhKD6mlNS4LcLmwnbcvcVg2bKwdxMG2bzYGr14tHlbt/vPwJlzQWKQ8Inutvn YUThjzJFQ11f7qRvn9oQFf5wvVgYRkx9fOISrXaFh3do81o7NSFhQTzUZFISsa32 W7SrkDhvMXt5OCHThXSJ3xIzheZI1DfsRYSwQU4NCVhCJo0Y/SrJce1CiZ6Ggy87 36ZJzDKcR7tGw3OyKfV8UoP6gKNafYZWs68lELSwjmQ6f/1B2sRkJBDjbUhnOkap vq8aV9fJ5esyR1wPLd09UFd/UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCURyf7T DKdBxBIb7GCmiDkzhj1sMB8GA1UdIwQYMBaAFFgn5L2HAnft8OsQVjqbQcHkvnyB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Q4NS82MkNFRDQ4RTMz RTIxMUVBQTQ5MzI4ODRDNEY5QUUwMi9XQ2ZrdlljQ2QtM3c2eEJXT3B0QndlUy1m SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dDZmt2WWNDZC0zdzZ4QldPcHRCd2VTLWZJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Q4NS82MkNFRDQ4RTMzRTIxMUVBQTQ5MzI4ODRDNEY5QUUwMi9XQ2ZrdlljQ2Qt M3c2eEJXT3B0QndlUy1mSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHvb6U+rooBfGxrvZjchVUVq8JzQOcNCzfO5mfc8TOtJpwZAxk39bR etLpR4vwM5bkTQ30OjJ4Vy/RjHNwoz09rJq0DuQ+WR5z+nN+ZuSKkRjIhcTgUKBw /w/mB0gwj1XvzemROcvoSS34bmV/hcgGJYK5hmnvJPLtnJEadhM7ORxcVCINheE+ 6blwwv+/qGnTuPnErfAeSrs5wjdTc6xGdRQ7jyIld11JnHnjAmx+VqyA7ORQhPB0 7D9/Tn9YuIVt+S3u7/auNn4c0vGiolfac3a1pYIxtHYqoL8d1UUuQJMaFz7rDyOF CkIgV5Ctob7oSvGOkVMvNRtyFmJVg2jD -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:44 2025 by rpki-client on console.sobornost.net