$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft File: ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft (raw, json) Hash identifier: uzAebclgDKZxAlUUdFUqznfD7l1GnJr0bvqCpncEX6A= Subject key identifier: C7:86:CE:85:D4:E3:69:03:76:AD:39:CF:7E:55:40:B3:62:B4:F8:0F Authority key identifier: 64:31:95:65:2B:22:0D:CB:22:DA:91:D0:7F:D6:3D:A6:9E:B8:14:D5 Certificate issuer: /CN=A91B1E55/serialNumber=643195652B220DCB22DA91D07FD63DA69EB814D5 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft Manifest number: 70 Signing time: Sun 27 Apr 2025 05:39:50 +0000 Manifest this update: Sun 27 Apr 2025 05:39:50 +0000 Manifest next update: Sun 04 May 2025 05:39:49 +0000 Files and hashes: 1: ZDGVZSsiDcsi2pHQf9Y9pp64FNU.crl (hash: LPdK9BKXz665ljeU4khllTS96mVguV4LK7z2Ttj0KmE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.crl rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E55, serialNumber=643195652B220DCB22DA91D07FD63DA69EB814D5 Validity Not Before: Apr 27 05:39:50 2025 GMT Not After : May 4 05:39:49 2025 GMT Subject: CN=680dc326-27f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:40:53:d0:f7:11:27:eb:ef:7e:52:84:2d: 76:c7:c6:83:99:0d:8b:23:aa:f3:8e:82:15:eb:78: 84:dc:69:51:f3:ff:d5:bc:be:95:63:ae:a0:bf:76: f3:6d:91:b8:c2:4b:2e:36:08:c4:3b:44:99:45:d9: ec:66:21:6e:5b:ea:c4:48:36:78:bd:ae:4a:2b:cf: e3:a2:57:a6:b0:03:74:57:ee:93:c3:0b:91:01:4c: 27:b5:e0:c4:b7:78:b3:1f:81:0f:94:d7:3c:84:21: 48:78:9d:dc:a5:57:82:e9:2d:33:e6:1f:79:62:f8: c8:27:f1:ef:e4:83:d3:17:a8:ed:1b:0e:43:8f:38: 7c:01:14:c9:cf:f8:e9:26:09:55:13:6a:01:3a:e3: b4:f7:be:3c:5b:34:82:a6:4b:a2:3f:77:29:eb:48: 8e:35:5d:b2:94:fc:5f:58:fe:38:5f:60:22:39:2c: 3a:cc:5c:46:fe:c3:32:15:10:cf:b3:af:56:53:0d: 14:ca:11:29:f7:52:ff:da:43:b7:9d:14:0d:f8:03: f7:d3:90:a9:fd:68:38:83:b5:4e:95:60:b1:9d:c5: fe:60:05:33:7d:63:07:36:0e:fd:0a:1f:db:e4:ee: a6:59:7a:8b:ee:5d:90:59:e8:24:99:ea:f9:b4:69: dd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:86:CE:85:D4:E3:69:03:76:AD:39:CF:7E:55:40:B3:62:B4:F8:0F X509v3 Authority Key Identifier: keyid:64:31:95:65:2B:22:0D:CB:22:DA:91:D0:7F:D6:3D:A6:9E:B8:14:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E55/555B040A78FA11EFA44FE586C4F9AE02/ZDGVZSsiDcsi2pHQf9Y9pp64FNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:ba:e2:3a:73:70:95:20:ce:1f:0e:fa:7f:eb:bd:31:e8:9a: aa:35:5f:a6:af:4e:ba:e0:ea:e9:b3:c4:27:fe:07:d6:61:bd: af:12:bf:21:23:05:20:f3:00:fb:6e:d0:49:df:23:45:90:76: ba:f2:97:85:48:0b:a3:a0:f3:bb:83:9a:d3:bf:8c:05:1f:66: 93:1c:ec:4e:c5:c9:67:f3:76:31:8c:21:68:66:18:ea:cb:e1: 4b:52:91:81:90:6a:f6:b0:c4:a2:a8:ba:15:b8:9d:b9:bf:ed: 71:5b:e3:0b:3a:5b:23:b3:5b:b8:98:b6:b4:a2:d0:52:cd:b4: e6:51:77:dd:35:a4:cf:b4:7b:26:02:23:21:d2:ba:25:b9:d1: ad:fb:6a:59:bd:e6:de:48:88:74:8b:c4:9b:f3:18:12:95:8f: 4e:dd:a2:36:09:69:18:32:03:cd:df:20:e4:17:75:ab:d8:20: e3:f1:e1:5a:ea:40:e3:8f:fd:73:e5:6e:fb:34:91:e4:74:bb: c1:b3:ad:73:f1:b0:ee:61:0d:e3:42:fd:3e:66:42:e7:2c:1c: a4:75:b1:87:54:77:27:0d:8a:15:e2:29:59:c7:28:e4:a2:c8: ea:15:48:f2:3c:4c:ba:61:83:1b:0d:2f:2b:b9:fd:58:71:39: 87:fe:62:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUU1NTExMC8GA1UEBRMoNjQzMTk1NjUyQjIyMERDQjIyREE5MUQwN0ZENjNEQTY5 RUI4MTRENTAeFw0yNTA0MjcwNTM5NTBaFw0yNTA1MDQwNTM5NDlaMBgxFjAUBgNV BAMTDTY4MGRjMzI2LTI3ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS3EBT0PcRJ+vvflKELXbHxoOZDYsjqvOOghXreITcaVHz/9W8vpVjrqC/dvNt kbjCSy42CMQ7RJlF2exmIW5b6sRINni9rkorz+OiV6awA3RX7pPDC5EBTCe14MS3 eLMfgQ+U1zyEIUh4ndylV4LpLTPmH3li+Mgn8e/kg9MXqO0bDkOPOHwBFMnP+Okm CVUTagE647T3vjxbNIKmS6I/dynrSI41XbKU/F9Y/jhfYCI5LDrMXEb+wzIVEM+z r1ZTDRTKESn3Uv/aQ7edFA34A/fTkKn9aDiDtU6VYLGdxf5gBTN9Ywc2Dv0KH9vk 7qZZeovuXZBZ6CSZ6vm0ad0PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx4bOhdTj aQN2rTnPflVAs2K0+A8wHwYDVR0jBBgwFoAUZDGVZSsiDcsi2pHQf9Y9pp64FNUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxRTU1LzU1NUIwNDBBNzhG QTExRUZBNDRGRTU4NkM0RjlBRTAyL1pER1ZaU3NpRGNzaTJwSFFmOVk5cHA2NEZO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkRHVlpTc2lEY3NpMnBIUWY5WTlwcDY0Rk5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx RTU1LzU1NUIwNDBBNzhGQTExRUZBNDRGRTU4NkM0RjlBRTAyL1pER1ZaU3NpRGNz aTJwSFFmOVk5cHA2NEZOVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKG64jpzcJUgzh8O+n/rvTHomqo1X6avTrrg6umzxCf+B9Zhva8SvyEj BSDzAPtu0EnfI0WQdrryl4VIC6Og87uDmtO/jAUfZpMc7E7FyWfzdjGMIWhmGOrL 4UtSkYGQavawxKKouhW4nbm/7XFb4ws6WyOzW7iYtrSi0FLNtOZRd901pM+0eyYC IyHSuiW50a37alm95t5IiHSLxJvzGBKVj07dojYJaRgyA83fIOQXdavYIOPx4Vrq QOOP/XPlbvs0keR0u8GzrXPxsO5hDeNC/T5mQucsHKR1sYdUdycNihXiKVnHKOSi yOoVSPI8TLphgxsNLyu5/VhxOYf+YpU= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:54 2025 by rpki-client on console.sobornost.net