$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: ofcf7GFBuHV6rt686HAW0LHJANel5p73kslikRDOA1E= Subject key identifier: 40:D2:59:D0:85:0A:1B:58:92:0D:FA:CC:AD:E6:8D:ED:16:94:F9:52 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: C5 Signing time: Sun 27 Apr 2025 04:39:45 +0000 Manifest this update: Sun 27 Apr 2025 04:39:45 +0000 Manifest next update: Sun 04 May 2025 04:39:45 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: 1PrYTjgVv0K3OsPp76G4oRQGBeKrL9o7sn7TnYIGLQQ=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: BonjniXMbmI4yDYc3ynOZLv8pgVSOdRZa/c5jpsq0Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Apr 27 04:39:45 2025 GMT Not After : May 4 04:39:45 2025 GMT Subject: CN=680db511-c194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:4c:61:af:3c:bb:25:75:d8:37:b6:a1:db:16: 18:5a:3a:a2:da:fe:2c:f5:29:3b:95:24:cf:67:92: 8e:87:c6:09:5e:bb:da:6e:c8:5d:68:af:c3:8a:6a: cb:81:6d:b9:14:5a:9f:4f:ae:26:b4:6f:0b:9d:cf: 1f:e1:c2:87:1b:e4:8c:07:6a:ba:43:95:d3:71:22: a4:da:18:00:d4:77:17:d0:10:d7:4b:7a:b8:4f:0d: 6f:4f:a0:7b:92:1b:4b:5c:42:14:9b:18:b1:a9:b7: 0b:b0:5b:60:74:2c:49:75:be:97:45:ab:f1:5e:1e: d3:58:df:ad:c9:b3:da:71:99:86:c0:d4:fa:3d:44: 66:36:ea:ed:c8:c4:5c:ca:00:13:91:af:e1:e6:ea: 35:46:f0:a4:63:09:fa:73:b1:bb:ef:d3:1d:78:3b: 16:4a:70:4b:b3:59:c8:86:9e:53:f5:d9:78:5b:58: 02:31:fb:df:8e:28:61:1d:a4:8f:33:0c:8a:f6:3d: aa:c7:60:bf:1b:36:06:7f:84:b8:ec:40:8a:45:d8: fb:75:da:d7:cb:18:9e:86:2d:13:bc:55:9a:4d:33: 68:5c:de:f0:c3:9c:a9:e7:79:e0:0f:84:ca:67:84: 95:f4:37:51:2a:c4:dd:42:4e:da:96:9c:27:0a:f1: b4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D2:59:D0:85:0A:1B:58:92:0D:FA:CC:AD:E6:8D:ED:16:94:F9:52 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:75:f4:c0:e2:f7:85:8b:1e:b4:0a:cc:70:a2:40:e3:c7:8e: c9:d7:a1:88:dd:71:d9:8f:8e:40:99:8d:61:f4:fa:e0:41:33: cc:5f:6a:f2:82:0e:ea:88:8d:73:56:53:40:eb:20:97:b8:5b: f4:b3:77:21:c5:ef:d2:cb:e3:fd:f4:e1:cb:84:72:fd:d8:af: 10:5f:26:03:b5:9d:d3:5e:99:c6:10:da:58:03:08:89:c0:17: 9b:a5:a5:b4:53:cc:0b:80:8b:17:8b:bc:42:51:b7:e6:92:a3: cf:24:f2:bd:1c:31:16:1f:e4:21:98:af:ec:3a:3c:29:44:68: 90:7f:fe:69:b7:cf:97:f2:0b:b3:ef:49:95:8a:0c:07:9b:0a: 44:5e:b0:b1:2b:6d:af:b5:a4:31:2c:3f:24:10:c2:9f:a5:f8: 98:0d:cf:78:37:87:b8:10:ac:a0:d0:47:ce:7b:d2:53:19:cd: 2d:ec:16:4c:9a:d5:da:6c:cc:68:c6:68:ea:ac:2b:d6:6f:bf: d0:9c:b1:04:dc:7d:1c:f6:cf:0f:00:d5:6c:ff:a0:a5:8e:76: 51:de:a9:2c:d2:bf:e0:64:b5:e9:0a:ce:36:71:76:cb:9e:aa: 9a:93:2b:f0:e6:f8:2f:72:30:14:32:f8:d5:3f:96:96:ef:21: 32:29:22:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUwNDI3MDQzOTQ1WhcNMjUwNTA0MDQzOTQ1WjAYMRYwFAYD VQQDEw02ODBkYjUxMS1jMTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Exhrzy7JXXYN7ah2xYYWjqi2v4s9Sk7lSTPZ5KOh8YJXrvabshdaK/DimrL gW25FFqfT64mtG8Lnc8f4cKHG+SMB2q6Q5XTcSKk2hgA1HcX0BDXS3q4Tw1vT6B7 khtLXEIUmxixqbcLsFtgdCxJdb6XRavxXh7TWN+tybPacZmGwNT6PURmNurtyMRc ygATka/h5uo1RvCkYwn6c7G779MdeDsWSnBLs1nIhp5T9dl4W1gCMfvfjihhHaSP MwyK9j2qx2C/GzYGf4S47ECKRdj7ddrXyxiehi0TvFWaTTNoXN7ww5yp53ngD4TK Z4SV9DdRKsTdQk7alpwnCvG0GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDSWdCF ChtYkg36zK3mje0WlPlSMB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA1NS80QUJCQzAxQ0Y1NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1Bx NjBhZVoxT2ZzdHlUUFpnRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOdfTA4veFix60CsxwokDjx47J16GI3XHZj45AmY1h9PrgQTPMX2ry gg7qiI1zVlNA6yCXuFv0s3chxe/Sy+P99OHLhHL92K8QXyYDtZ3TXpnGENpYAwiJ wBebpaW0U8wLgIsXi7xCUbfmkqPPJPK9HDEWH+QhmK/sOjwpRGiQf/5pt8+X8guz 70mVigwHmwpEXrCxK22vtaQxLD8kEMKfpfiYDc94N4e4EKyg0EfOe9JTGc0t7BZM mtXabMxoxmjqrCvWb7/QnLEE3H0c9s8PANVs/6CljnZR3qks0r/gZLXpCs42cXbL nqqakyvw5vgvcjAUMvjVP5aW7yEyKSJX -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net