$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: Xc5RaVUt8Gf3gkAGSdg7w3sNEIOA6WlHiX94NMa57hk= Subject key identifier: 8D:46:3D:2A:9C:4C:2C:A9:40:0E:ED:8B:E6:49:37:A3:CB:A9:57:B9 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0C56 Signing time: Mon 28 Apr 2025 18:39:41 +0000 Manifest this update: Mon 28 Apr 2025 18:39:40 +0000 Manifest next update: Mon 05 May 2025 18:39:40 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: XP7R3aAHrnU7nEh8ULSPSbl3cE8rfb5b8sQEnFjjmhw=) 2: E8F85ED4EC5811EFA9B9C618C4F9AE02.roa (hash: ykoz29uCG/11xDnxQBhHvrkmfn5Ejy8eSvfC/XRGcV0=) 3: 47DADED8EC5211EFBF551F6DC4F9AE02.roa (hash: Dq4Ro4BCHubyTM+Puy9Ox1X2qGGmM5W4/l0WmjnI3vE=) 4: 2B633118DF2F11EFAD7BEE6BC4F9AE02.roa (hash: LCBsasgUklncuTCZqxiSNtZe0VPDq700osnXP0sG1fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2, serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Apr 28 18:39:40 2025 GMT Not After : May 5 18:39:40 2025 GMT Subject: CN=680fcb6c-bb85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:5e:e1:00:41:9d:17:2f:f3:7d:36:a9:31: 27:fc:29:fc:de:6c:5a:5a:c3:0b:17:21:cf:fa:6d: 92:1f:f9:41:f8:92:f2:6d:1d:fd:08:b8:8e:24:20: bd:2c:96:85:1f:11:87:b0:a5:23:b4:59:9e:95:a3: bd:d0:2e:e9:c2:d6:85:83:d5:40:3f:ad:b7:05:da: 0a:8f:50:1a:47:cb:80:e9:3a:c2:7c:1e:e0:8f:66: a3:94:42:61:ac:6d:27:3b:a2:43:2e:a4:5e:e4:9d: e0:04:97:61:9d:58:09:23:9d:87:74:08:3b:12:0d: ea:2d:0a:74:32:f1:76:e4:1c:36:22:f7:8e:4d:52: 0c:25:08:61:8a:fe:a7:3f:95:18:c4:73:66:5d:1a: 31:09:69:98:e1:87:67:2f:37:e7:1e:86:bf:09:b5: 71:f7:c5:ed:38:b6:38:c0:1e:f5:e6:1d:d4:95:4e: 65:f9:0f:ec:68:48:25:02:9c:ae:01:c7:99:ad:3b: 8c:2e:bf:a4:5a:67:84:c1:53:81:11:96:9e:16:94: f4:5d:ab:70:47:72:5a:3f:91:f6:be:f3:c5:10:cd: 21:e8:87:bc:a7:13:6d:4d:34:09:34:0d:0e:a5:a3: 2f:4f:b8:43:a9:d4:88:52:73:3b:5b:07:6a:7c:52: 05:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:46:3D:2A:9C:4C:2C:A9:40:0E:ED:8B:E6:49:37:A3:CB:A9:57:B9 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:a1:e4:d4:da:8f:2a:b2:e4:b8:92:da:7f:35:2d:62:f5:d3: b4:9c:a9:5a:76:45:41:dd:97:0b:da:9a:ea:85:67:1a:be:6f: ab:88:0c:0b:02:d8:15:72:37:40:47:26:91:da:84:d3:65:74: a6:c6:38:72:66:7a:da:b0:79:8f:e5:46:ce:38:e9:8a:ee:8a: d1:57:4a:38:3e:b8:c3:1a:98:cc:b6:b5:fa:0c:30:0b:e1:17: e3:23:f7:1c:ab:86:80:98:25:1b:cb:ae:a7:70:da:66:c0:97: 99:f9:8b:7f:05:66:de:72:c3:24:df:34:04:94:75:5d:68:89: 33:54:52:6f:41:54:47:5c:cb:0e:97:96:01:55:d7:ff:7a:c6: f6:53:36:a4:1f:7f:22:d7:b8:ef:fd:c0:95:16:7b:bf:2c:b9: 10:73:72:1a:1d:78:3b:4a:77:bb:fb:43:d8:20:10:ee:62:a6: bd:0f:79:79:03:d0:95:bf:bd:34:1d:85:71:ce:aa:07:7a:03: 2a:86:53:f9:81:74:1a:04:c6:85:27:36:c9:7b:28:38:98:a9: bf:72:26:93:f0:44:f3:62:79:48:c8:92:93:01:69:5c:cc:46: 6f:02:07:40:a9:4a:8e:fa:2d:64:98:86:00:a0:a7:f3:73:4d: 6d:37:4d:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjUwNDI4MTgzOTQwWhcNMjUwNTA1MTgzOTQwWjAYMRYwFAYD VQQDEw02ODBmY2I2Yy1iYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArste4QBBnRcv8302qTEn/Cn83mxaWsMLFyHP+m2SH/lB+JLybR39CLiOJCC9 LJaFHxGHsKUjtFmelaO90C7pwtaFg9VAP623BdoKj1AaR8uA6TrCfB7gj2ajlEJh rG0nO6JDLqRe5J3gBJdhnVgJI52HdAg7Eg3qLQp0MvF25Bw2IveOTVIMJQhhiv6n P5UYxHNmXRoxCWmY4YdnLzfnHoa/CbVx98XtOLY4wB715h3UlU5l+Q/saEglApyu AceZrTuMLr+kWmeEwVOBEZaeFpT0XatwR3JaP5H2vvPFEM0h6Ie8pxNtTTQJNA0O paMvT7hDqdSIUnM7WwdqfFIF+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1GPSqc TCypQA7ti+ZJN6PLqVe5MB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBioeTU2o8qsuS4ktp/NS1i9dO0nKladkVB3ZcL2prqhWcavm+riAwL AtgVcjdARyaR2oTTZXSmxjhyZnrasHmP5UbOOOmK7orRV0o4PrjDGpjMtrX6DDAL 4RfjI/ccq4aAmCUby66ncNpmwJeZ+Yt/BWbecsMk3zQElHVdaIkzVFJvQVRHXMsO l5YBVdf/esb2UzakH38i17jv/cCVFnu/LLkQc3IaHXg7Sne7+0PYIBDuYqa9D3l5 A9CVv700HYVxzqoHegMqhlP5gXQaBMaFJzbJeyg4mKm/ciaT8ETzYnlIyJKTAWlc zEZvAgdAqUqO+i1kmIYAoKfzc01tN03b -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:54 2025 by rpki-client on console.sobornost.net