$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft File: VlIPoddulfCBm23dSWe0VQRphp0.mft (raw, json) Hash identifier: 3ZzJmxp3+nfVeMNfbF5sBoC21F2xiEUEhmf0qX84TmQ= Subject key identifier: 0C:12:31:68:B5:DC:C7:F9:6D:36:AE:34:BA:39:B3:DA:7E:9C:03:E6 Authority key identifier: 56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D Certificate issuer: /CN=A91A91CB/serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft Manifest number: 26 Signing time: Fri 25 Apr 2025 06:46:09 +0000 Manifest this update: Fri 25 Apr 2025 06:46:09 +0000 Manifest next update: Fri 02 May 2025 06:46:09 +0000 Files and hashes: 1: VlIPoddulfCBm23dSWe0VQRphp0.crl (hash: vuA+eT2OKlyVn5rHPNuJYaUfWlOe/KQh8QeROJ+9B+I=) 2: EE8CD88EEA5A11EF922B276DC4F9AE02.roa (hash: NgoL1gjr88ZdEn/6hgZXntqKOlCBVmw0eMD59yFjWlQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Validity Not Before: Apr 25 06:46:09 2025 GMT Not After : May 2 06:46:09 2025 GMT Subject: CN=680b2fb1-4b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:16:e0:6b:54:9e:59:d0:59:14:b2:84:da:4b: 7a:2f:00:8e:10:b1:49:d8:56:1a:b4:0e:83:a5:3e: 1d:9b:1c:99:6a:8e:b2:7e:ad:54:c2:c3:74:4e:2b: 61:41:e5:4a:7c:0d:dc:2a:32:d2:3b:7a:45:9a:84: 78:f0:cf:8d:f4:11:8b:0c:e7:89:19:66:4c:fa:c2: 22:ab:c2:15:7a:04:25:c7:7d:25:e5:c9:74:90:5e: 5a:86:c3:c1:28:18:94:d5:63:b5:f6:8c:d1:6d:ff: d1:4b:ce:f9:2a:4e:76:68:11:fa:46:6b:64:9f:91: e8:8d:7f:7f:21:34:6a:6e:38:df:82:83:19:37:27: 04:cb:a5:e3:72:7b:3f:40:ef:1d:ab:ee:b1:21:59: 67:ae:47:98:bf:51:3a:4e:50:9f:56:ac:9e:11:32: 4b:38:8b:a1:38:f8:ab:1d:c7:4f:18:6f:51:6f:cc: 86:7e:8b:09:6e:1e:0e:b6:b2:2e:c5:04:b0:0b:98: fd:4a:ec:4a:4a:3c:f3:d5:9f:6f:d3:37:f6:7e:21: b0:83:a9:c6:70:1d:f2:c5:41:b8:52:27:32:2d:9b: 9b:e8:92:8c:c1:99:4c:04:c7:34:a0:83:a5:2b:85: 55:ab:25:bd:c2:90:8d:e8:ad:a8:a7:20:cb:93:d2: e8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:12:31:68:B5:DC:C7:F9:6D:36:AE:34:BA:39:B3:DA:7E:9C:03:E6 X509v3 Authority Key Identifier: keyid:56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ec:4a:6b:03:3d:fa:c9:69:14:1a:23:bc:88:ad:64:ed:ec: 41:c9:0d:cf:3b:81:b7:a9:02:7c:39:9c:db:6a:07:e8:6e:14: 9d:7b:3a:50:7a:df:88:43:29:d9:21:9e:ff:13:4e:69:cc:07: 93:3d:fc:3a:e8:c3:3b:8f:2b:f0:5b:4d:1f:fc:68:d4:5a:00: c4:b7:44:b2:10:df:8b:69:2c:2c:5f:2b:24:ac:07:69:88:11: 44:d2:55:70:56:b0:ae:16:a7:dd:3f:05:08:5d:b1:e7:5c:cd: 4b:f7:b9:28:55:16:5f:22:93:be:f5:15:99:10:70:43:bf:1d: 6c:ff:4c:74:96:e5:01:2b:8e:02:20:84:6a:6d:10:a6:ec:08: 69:57:47:61:84:a7:f5:44:52:30:7a:07:24:16:ca:ba:2c:fb: 35:fd:30:eb:40:92:89:60:23:09:08:6a:2e:c5:fe:c2:00:a8: 09:f9:c5:c7:f2:83:79:8b:c2:49:84:54:49:9d:63:4f:c2:d3: 51:b8:0c:9e:7a:98:e0:5e:ea:bd:32:e8:5d:1a:4f:f6:c9:5b: 71:9d:e1:3d:b2:2e:82:b2:47:11:72:9c:93:2a:e5:8a:20:03: da:48:5e:55:0b:7a:54:b3:00:29:36:1b:67:e6:33:1f:42:59: 9d:41:4a:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoNTY1MjBGQTFENzZFOTVGMDgxOUI2RERENDk2N0I0NTUw NDY5ODY5RDAeFw0yNTA0MjUwNjQ2MDlaFw0yNTA1MDIwNjQ2MDlaMBgxFjAUBgNV BAMTDTY4MGIyZmIxLTRiMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdFuBrVJ5Z0FkUsoTaS3ovAI4QsUnYVhq0DoOlPh2bHJlqjrJ+rVTCw3ROK2FB 5Up8DdwqMtI7ekWahHjwz430EYsM54kZZkz6wiKrwhV6BCXHfSXlyXSQXlqGw8Eo GJTVY7X2jNFt/9FLzvkqTnZoEfpGa2SfkeiNf38hNGpuON+Cgxk3JwTLpeNyez9A 7x2r7rEhWWeuR5i/UTpOUJ9WrJ4RMks4i6E4+Ksdx08Yb1FvzIZ+iwluHg62si7F BLALmP1K7EpKPPPVn2/TN/Z+IbCDqcZwHfLFQbhSJzItm5vokozBmUwExzSgg6Ur hVWrJb3CkI3orainIMuT0ujTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDBIxaLXc x/ltNq40ujmz2n6cA+YwHwYDVR0jBBgwFoAUVlIPoddulfCBm23dSWe0VQRphp0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzVCNkZBMzYwRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZDQm0yM2RTV2UwVlFScGhw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmxJUG9kZHVsZkNCbTIzZFNXZTBWUVJwaHAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 MUNCLzVCNkZBMzYwRUE1QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZD Qm0yM2RTV2UwVlFScGhwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC7sSmsDPfrJaRQaI7yIrWTt7EHJDc87gbepAnw5nNtqB+huFJ17OlB6 34hDKdkhnv8TTmnMB5M9/DrowzuPK/BbTR/8aNRaAMS3RLIQ34tpLCxfKySsB2mI EUTSVXBWsK4Wp90/BQhdsedczUv3uShVFl8ik771FZkQcEO/HWz/THSW5QErjgIg hGptEKbsCGlXR2GEp/VEUjB6ByQWyros+zX9MOtAkolgIwkIai7F/sIAqAn5xcfy g3mLwkmEVEmdY0/C01G4DJ56mOBe6r0y6F0aT/bJW3Gd4T2yLoKyRxFynJMq5Yog A9pIXlULelSzACk2G2fmMx9CWZ1BSts= -----END CERTIFICATE-----Generated at Fri Apr 25 10:44:26 2025 by rpki-client on console.sobornost.net