$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE8D7/4B01C4A6F93F11EFB7EAB425C4F9AE02/vaPoqCMceH9rfxi8FGuV-1wDjtk.mft File: vaPoqCMceH9rfxi8FGuV-1wDjtk.mft (raw, json) Hash identifier: D92AQGCYR+8UgjmTw3xcY4V0iAQ735tMaMqA2DBz2AU= Subject key identifier: B8:5C:A0:17:0F:B7:53:BC:68:9B:CA:53:E3:49:F7:33:F0:F4:DA:2D Authority key identifier: BD:A3:E8:A8:23:1C:78:7F:6B:7F:18:BC:14:6B:95:FB:5C:03:8E:D9 Certificate issuer: /CN=A91AE8D7/serialNumber=BDA3E8A8231C787F6B7F18BC146B95FB5C038ED9 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vaPoqCMceH9rfxi8FGuV-1wDjtk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE8D7/4B01C4A6F93F11EFB7EAB425C4F9AE02/vaPoqCMceH9rfxi8FGuV-1wDjtk.mft Manifest number: 1B Signing time: Wed 23 Apr 2025 06:59:31 +0000 Manifest this update: Wed 23 Apr 2025 06:59:30 +0000 Manifest next update: Wed 30 Apr 2025 06:59:30 +0000 Files and hashes: 1: vaPoqCMceH9rfxi8FGuV-1wDjtk.crl (hash: yEQPOIoiqsw7LtuP+5zw728tuU7ghbLVRbSE5HiAUvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE8D7/4B01C4A6F93F11EFB7EAB425C4F9AE02/vaPoqCMceH9rfxi8FGuV-1wDjtk.crl rsync://rpki.apnic.net/member_repository/A91AE8D7/4B01C4A6F93F11EFB7EAB425C4F9AE02/vaPoqCMceH9rfxi8FGuV-1wDjtk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vaPoqCMceH9rfxi8FGuV-1wDjtk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE8D7, serialNumber=BDA3E8A8231C787F6B7F18BC146B95FB5C038ED9 Validity Not Before: Apr 23 06:59:30 2025 GMT Not After : Apr 30 06:59:30 2025 GMT Subject: CN=68088fd2-8f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:90:2c:80:d3:bf:09:79:b0:bb:0e:25:8c:cf: 49:4e:e6:10:29:6c:1e:87:f2:2c:18:ec:bb:30:0d: ae:f6:65:c7:76:06:c4:fd:53:b9:fa:95:b4:6d:39: 5c:64:b8:1a:65:0b:75:f8:c2:61:2c:ec:31:74:b1: 19:75:ce:ea:c0:56:32:4d:ec:84:fa:80:5e:f4:fc: bd:43:8a:64:3e:29:bc:20:84:1c:f8:3d:8d:5b:44: e9:09:8a:54:43:e1:a7:2f:98:b8:66:ea:e3:1d:ca: 72:86:a5:7c:46:f2:7a:e8:58:84:13:6f:ff:7f:7a: de:ed:e9:06:8d:16:1e:44:47:a4:01:69:7a:d6:1c: 22:5e:5b:6a:4e:e8:8f:48:fb:45:e4:d3:29:ed:16: 0f:4d:6e:20:e0:9e:be:1a:57:09:62:ed:88:40:67: 2f:a3:91:7d:a9:e8:c5:6f:e8:75:1b:43:c3:48:a1: b5:2a:2b:dd:b7:f3:e9:9e:40:df:35:c3:57:5f:9e: 78:86:72:d4:b7:ff:00:d0:2c:00:64:e5:46:ff:96: 58:1b:38:ab:e1:04:76:ec:d8:91:e4:5a:e4:44:df: af:71:00:3c:aa:b4:05:76:e6:83:75:34:9e:4a:ef: 25:07:c3:b4:13:69:d9:c0:a5:0b:5c:3e:dc:dd:cd: 66:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:5C:A0:17:0F:B7:53:BC:68:9B:CA:53:E3:49:F7:33:F0:F4:DA:2D X509v3 Authority Key Identifier: keyid:BD:A3:E8:A8:23:1C:78:7F:6B:7F:18:BC:14:6B:95:FB:5C:03:8E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE8D7/4B01C4A6F93F11EFB7EAB425C4F9AE02/vaPoqCMceH9rfxi8FGuV-1wDjtk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vaPoqCMceH9rfxi8FGuV-1wDjtk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE8D7/4B01C4A6F93F11EFB7EAB425C4F9AE02/vaPoqCMceH9rfxi8FGuV-1wDjtk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ef:e0:68:fd:ef:92:44:5c:11:5e:b7:77:1d:8f:15:f8:7f: d0:60:23:f5:46:70:1c:dd:0e:b9:08:e7:ab:bf:58:7c:ef:d5: 4a:b2:37:84:f0:f9:5f:38:38:5a:d2:49:2e:7e:74:c4:e1:06: cf:5b:56:8c:7c:42:21:30:01:59:5a:1a:1d:92:7b:e2:3f:4f: 50:96:8a:d1:ca:0f:f8:2b:28:78:c0:27:d7:97:68:5e:a0:8d: 9a:99:5a:98:40:ff:a1:f9:9b:a3:f8:8f:c0:9f:81:41:0d:6e: f8:a2:0f:d8:4a:ec:e9:18:b9:7d:63:50:4a:20:32:41:6b:c0: 21:da:09:04:74:a2:33:30:69:45:d2:91:27:aa:ba:eb:27:31: dd:35:fa:82:67:49:0c:72:b5:14:69:14:16:2d:48:5f:5a:16: 4d:06:d0:7b:b2:ba:3d:d3:f8:6e:e5:4f:c5:41:95:4d:c8:cd: e4:1e:e1:42:78:02:ed:ec:fa:99:36:d0:2d:8d:a4:ee:40:86: 42:e0:f4:f0:29:ae:cf:5f:e3:58:a4:de:98:a2:11:a1:35:cd: 0f:29:e9:2c:15:9f:2a:ec:14:65:32:94:62:d5:4f:36:c1:1e: a9:b6:8c:b5:90:18:d5:dd:97:b9:77:77:81:67:08:bd:e0:d1: 14:00:b2:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RThENzExMC8GA1UEBRMoQkRBM0U4QTgyMzFDNzg3RjZCN0YxOEJDMTQ2Qjk1RkI1 QzAzOEVEOTAeFw0yNTA0MjMwNjU5MzBaFw0yNTA0MzAwNjU5MzBaMBgxFjAUBgNV BAMTDTY4MDg4ZmQyLThmMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4kCyA078JebC7DiWMz0lO5hApbB6H8iwY7LswDa72Zcd2BsT9U7n6lbRtOVxk uBplC3X4wmEs7DF0sRl1zurAVjJN7IT6gF70/L1DimQ+KbwghBz4PY1bROkJilRD 4acvmLhm6uMdynKGpXxG8nroWIQTb/9/et7t6QaNFh5ER6QBaXrWHCJeW2pO6I9I +0Xk0yntFg9NbiDgnr4aVwli7YhAZy+jkX2p6MVv6HUbQ8NIobUqK9238+meQN81 w1dfnniGctS3/wDQLABk5Ub/llgbOKvhBHbs2JHkWuRE369xADyqtAV25oN1NJ5K 7yUHw7QTadnApQtcPtzdzWadAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuFygFw+3 U7xom8pT40n3M/D02i0wHwYDVR0jBBgwFoAUvaPoqCMceH9rfxi8FGuV+1wDjtkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFFOEQ3LzRCMDFDNEE2Rjkz RjExRUZCN0VBQjQyNUM0RjlBRTAyL3ZhUG9xQ01jZUg5cmZ4aThGR3VWLTF3RGp0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdmFQb3FDTWNlSDlyZnhpOEZHdVYtMXdEanRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFF OEQ3LzRCMDFDNEE2RjkzRjExRUZCN0VBQjQyNUM0RjlBRTAyL3ZhUG9xQ01jZUg5 cmZ4aThGR3VWLTF3RGp0ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHrv4Gj975JEXBFet3cdjxX4f9BgI/VGcBzdDrkI56u/WHzv1UqyN4Tw +V84OFrSSS5+dMThBs9bVox8QiEwAVlaGh2Se+I/T1CWitHKD/grKHjAJ9eXaF6g jZqZWphA/6H5m6P4j8CfgUENbviiD9hK7OkYuX1jUEogMkFrwCHaCQR0ojMwaUXS kSequusnMd01+oJnSQxytRRpFBYtSF9aFk0G0Huyuj3T+G7lT8VBlU3IzeQe4UJ4 Au3s+pk20C2NpO5AhkLg9PAprs9f41ik3piiEaE1zQ8p6SwVnyrsFGUylGLVTzbB Hqm2jLWQGNXdl7l3d4FnCL3g0RQAslg= -----END CERTIFICATE-----Generated at Wed Apr 23 09:03:16 2025 by rpki-client on console.sobornost.net