$ rpki-client -vvf rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft File: 7f0U22_TsCp5NdqtR_wCnzpwTEA.mft (raw, json) Hash identifier: pSUooOx7e77jWs0XInE4UEs8WHTGIisHwIxmuClkru8= Subject key identifier: FE:A4:44:14:13:58:24:FB:DB:74:28:07:E4:6B:DB:15:66:93:EF:A5 Authority key identifier: ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 Certificate issuer: /CN=A91A93B6/serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft Manifest number: 01C1 Signing time: Sun 27 Apr 2025 02:06:29 +0000 Manifest this update: Sun 27 Apr 2025 02:06:29 +0000 Manifest next update: Sun 04 May 2025 02:06:29 +0000 Files and hashes: 1: 7f0U22_TsCp5NdqtR_wCnzpwTEA.crl (hash: dUeZy0jEPCWFvlWJs/N6NT6bVnSd/d3tLaQ3/KGtUjg=) 2: 780A3032CB3211EE953DEF37C4F9AE02.roa (hash: bI9ehsJkdKReP7tO6LRGZVdy5KgC9pIKmuFrjzQkdWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:06:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A93B6, serialNumber=EDFD14DB6FD3B02A7935DAAD47FC029F3A704C40 Validity Not Before: Apr 27 02:06:29 2025 GMT Not After : May 4 02:06:29 2025 GMT Subject: CN=680d9125-1cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b2:ee:75:ab:21:62:b6:43:ed:68:5f:6c:4e: 9a:ed:6c:3c:5e:6b:ca:ee:58:e7:67:0b:d1:7c:b2: 28:03:89:e6:1c:35:e2:79:db:fe:32:b6:b2:9a:c5: 29:75:9d:42:46:2f:32:b9:2e:2a:1f:d0:42:c4:fb: 55:7a:c7:ff:cd:9d:05:47:57:b1:ac:88:f4:43:c1: 1c:1e:f9:fd:b1:85:3a:3f:af:95:f0:51:32:ee:ce: be:43:cf:da:52:38:9b:aa:ce:a3:b1:63:99:65:93: 61:0c:d4:c6:28:48:cd:63:c6:8d:ea:90:a3:42:43: ad:ca:d7:53:56:a5:1e:bd:86:69:7a:89:13:b3:a6: e9:a7:41:c5:b4:7e:32:20:ee:96:90:3e:8c:3b:14: f0:fe:e0:f9:0f:30:b4:71:14:3c:d7:ae:cd:6b:90: 60:7e:7e:14:ff:30:e8:d2:2d:97:f1:7e:24:03:06: 6e:02:95:1c:1a:a1:93:a3:67:54:c8:ca:0d:c2:1b: a7:eb:e1:31:56:35:51:cf:d7:a5:6d:d8:04:99:21: e0:88:ed:1e:c5:25:26:9b:a9:00:84:4a:ee:db:ff: 99:bf:bf:5d:c6:45:61:5c:96:f7:83:8b:81:ae:ac: cc:30:11:43:95:e3:8e:fb:5e:17:eb:b9:2f:dd:92: ad:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:A4:44:14:13:58:24:FB:DB:74:28:07:E4:6B:DB:15:66:93:EF:A5 X509v3 Authority Key Identifier: keyid:ED:FD:14:DB:6F:D3:B0:2A:79:35:DA:AD:47:FC:02:9F:3A:70:4C:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7f0U22_TsCp5NdqtR_wCnzpwTEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A93B6/70BCFCE07C5711EDA8107866C4F9AE02/7f0U22_TsCp5NdqtR_wCnzpwTEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:1e:fc:15:50:68:4d:a0:38:be:f4:f6:3a:6a:8b:6c:82:d4: 09:bf:fc:ac:5f:05:2a:24:32:86:2b:08:c3:06:d5:0e:cc:3a: 69:90:ce:72:a9:e7:29:18:3c:1c:61:a7:65:e8:38:b1:c2:9d: 2e:96:9b:d8:eb:b7:b4:c6:8e:fa:bb:0b:dd:eb:2b:47:98:6b: 27:3d:20:af:de:9d:08:ef:03:1c:3c:c2:bc:b5:cf:46:1b:bd: 06:33:25:a0:d7:3b:9e:c0:42:13:ac:a3:26:5d:83:6c:51:ef: 29:e1:f1:29:c9:e2:59:dc:42:04:9e:54:5f:a8:30:ef:3c:ec: 69:d0:b8:94:e3:11:1e:b4:e4:c7:d3:75:dc:43:9f:47:5c:43: bb:a0:2a:a8:f9:54:16:a6:a7:d4:64:2a:82:08:14:da:d3:55: 54:0d:f3:96:05:67:2b:77:93:bc:2d:b1:b1:cf:1f:4c:05:b2: ba:36:75:d6:d2:85:b1:62:ca:a3:2b:66:ea:66:41:01:17:7d: d2:f4:15:59:3e:50:ee:84:bf:b6:d3:f0:5a:cc:ef:a0:22:7a: 90:37:cc:7e:90:4a:b5:17:5f:2d:b7:a3:44:81:36:ab:e9:5a: 98:30:6f:18:93:99:9d:08:1a:d6:31:73:e0:15:15:2b:8b:7b: a1:5d:e4:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzQjYxMTAvBgNVBAUTKEVERkQxNERCNkZEM0IwMkE3OTM1REFBRDQ3RkMwMjlG M0E3MDRDNDAwHhcNMjUwNDI3MDIwNjI5WhcNMjUwNTA0MDIwNjI5WjAYMRYwFAYD VQQDEw02ODBkOTEyNS0xY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7LudashYrZD7WhfbE6a7Ww8XmvK7ljnZwvRfLIoA4nmHDXiedv+MraymsUp dZ1CRi8yuS4qH9BCxPtVesf/zZ0FR1exrIj0Q8EcHvn9sYU6P6+V8FEy7s6+Q8/a Ujibqs6jsWOZZZNhDNTGKEjNY8aN6pCjQkOtytdTVqUevYZpeokTs6bpp0HFtH4y IO6WkD6MOxTw/uD5DzC0cRQ8167Na5Bgfn4U/zDo0i2X8X4kAwZuApUcGqGTo2dU yMoNwhun6+ExVjVRz9elbdgEmSHgiO0exSUmm6kAhEru2/+Zv79dxkVhXJb3g4uB rqzMMBFDleOO+14X67kv3ZKtvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6kRBQT WCT723QoB+Rr2xVmk++lMB8GA1UdIwQYMBaAFO39FNtv07AqeTXarUf8Ap86cExA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTNCNi83MEJDRkNFMDdD NTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHNDcDVOZHF0Ul93Q256cHdU RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmMFUyMl9Uc0NwNU5kcXRSX3dDbnpwd1RFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTNCNi83MEJDRkNFMDdDNTcxMUVEQTgxMDc4NjZDNEY5QUUwMi83ZjBVMjJfVHND cDVOZHF0Ul93Q256cHdURUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiHvwVUGhNoDi+9PY6aotsgtQJv/ysXwUqJDKGKwjDBtUOzDppkM5y qecpGDwcYadl6Dixwp0ulpvY67e0xo76uwvd6ytHmGsnPSCv3p0I7wMcPMK8tc9G G70GMyWg1zuewEITrKMmXYNsUe8p4fEpyeJZ3EIEnlRfqDDvPOxp0LiU4xEetOTH 03XcQ59HXEO7oCqo+VQWpqfUZCqCCBTa01VUDfOWBWcrd5O8LbGxzx9MBbK6NnXW 0oWxYsqjK2bqZkEBF33S9BVZPlDuhL+20/BazO+gInqQN8x+kEq1F18tt6NEgTar 6VqYMG8Yk5mdCBrWMXPgFRUri3uhXeTb -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:06 2025 by rpki-client on console.sobornost.net