$ rpki-client -vvf rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft File: vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft (raw, json) Hash identifier: YVMAI7UkKydnaUazcB8jvsiwSSmHDWBKRfkkabLp2sw= Subject key identifier: A5:AE:A3:23:5B:38:5E:8E:3E:0C:E4:41:B4:9B:01:07:88:1C:4A:BD Authority key identifier: BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8 Certificate issuer: /CN=A91B36DC/serialNumber=BC02B005CCAA0453FC9B817BB78CBA915F27C2A8 Certificate serial: 077B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft Manifest number: 0766 Signing time: Sat 26 Apr 2025 21:17:02 +0000 Manifest this update: Sat 26 Apr 2025 21:17:02 +0000 Manifest next update: Sat 03 May 2025 21:17:02 +0000 Files and hashes: 1: vAKwBcyqBFP8m4F7t4y6kV8nwqg.crl (hash: EFBZcKEae9orRNWgDv/EUsestNyHEKpFiiID64g+Dzs=) 2: 1714A7D489BD11EC9550C184C4F9AE02.roa (hash: 17PUaNinV45JUoeDuEzM2gIqTYacZZ8Nc7vPAw8wlsY=) 3: FEA1EB7219FA11EBA0F82851C4F9AE02.roa (hash: Wckb8TWjJLJRdDl4+GoL8AkidPynBfPxz8z2YoV99xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.crl rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B36DC, serialNumber=BC02B005CCAA0453FC9B817BB78CBA915F27C2A8 Validity Not Before: Apr 26 21:17:02 2025 GMT Not After : May 3 21:17:02 2025 GMT Subject: CN=680d4d4e-2a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4a:36:ce:21:4b:4c:ea:7c:bc:67:97:7f:75: dd:a3:ca:d4:6a:53:87:2b:9d:e4:25:2e:b7:42:1e: 6c:e6:66:02:61:85:79:68:c8:1a:37:50:2f:e2:a5: 45:7c:3a:82:21:63:d4:c3:80:5c:8e:5c:bb:11:fa: 90:e2:e4:7b:87:2f:4c:af:96:f7:9a:af:1c:fd:53: c6:85:ce:fc:2b:a4:d9:13:95:5c:cd:d9:a9:19:69: 91:ce:0b:31:c0:e4:b3:ea:2d:f0:9b:cc:37:34:7f: 14:a3:eb:9d:15:5b:24:8f:48:ff:95:b9:fe:9d:dd: c1:cc:25:6a:37:6a:01:9a:b3:98:25:44:94:a7:f3: b3:84:b0:cc:55:c9:53:78:d7:14:44:6b:8b:37:c7: f2:e1:ea:1e:43:10:89:0b:7c:8b:35:0d:08:16:a9: 87:ab:ba:85:22:07:e6:a4:fe:20:e0:f5:aa:3d:d6: 3c:fb:e1:53:75:b6:95:e3:f1:df:91:6c:47:38:8d: a3:85:fc:42:3e:9b:b5:56:9f:1e:9a:ab:3b:6b:93: 1d:ec:c1:e7:0f:53:8f:c0:d3:97:bf:c9:2b:10:d1: 8a:97:f9:cc:d8:7a:ea:e7:d3:9d:d4:12:31:46:7a: a4:b5:4a:b0:5e:c8:ae:35:75:6b:70:9f:4f:0e:65: cf:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:AE:A3:23:5B:38:5E:8E:3E:0C:E4:41:B4:9B:01:07:88:1C:4A:BD X509v3 Authority Key Identifier: keyid:BC:02:B0:05:CC:AA:04:53:FC:9B:81:7B:B7:8C:BA:91:5F:27:C2:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAKwBcyqBFP8m4F7t4y6kV8nwqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B36DC/B043647A19F911EBB8CDED4FC4F9AE02/vAKwBcyqBFP8m4F7t4y6kV8nwqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:fa:7d:6d:25:95:37:93:ea:3f:43:71:24:3a:9d:16:ae:e3: 83:aa:10:65:ac:fe:4e:c5:ea:21:6d:2f:2b:a7:a1:7f:4c:d5: 98:96:9a:f7:e4:e7:ee:02:bc:29:bc:fb:2b:40:a8:89:38:66: 03:3b:be:46:b3:7b:fc:06:84:72:06:36:4c:f1:d4:d9:ad:01: e6:47:b6:24:a3:4d:f9:7d:4b:ec:e3:a5:37:97:2d:41:15:f8: 3f:11:72:82:7b:4e:c5:46:9c:84:20:ea:0a:f2:f0:65:79:da: d9:73:46:42:44:6d:27:eb:ff:e5:71:45:61:c6:7c:16:24:7b: ae:f9:78:e5:59:bd:1f:e6:5c:4b:6c:0c:a0:36:2d:ea:7e:88: b4:01:67:e5:ec:d6:76:67:02:e0:7d:05:66:de:9e:7f:cc:2b: c9:d8:5c:ef:8b:3f:f5:fb:f5:5f:91:3a:a0:ca:4f:e6:e2:3b: 16:67:33:b9:89:df:14:19:69:45:c5:6d:b6:07:ce:22:cd:8f: 86:93:d7:a7:c5:ca:ae:f3:b4:bb:e3:05:05:12:f8:57:46:c1: 37:41:4a:5f:21:1a:3d:8b:6f:ea:7d:9a:4e:a5:a4:3c:49:4d: 71:d8:56:fa:a4:f6:a1:85:3a:fa:f7:29:b9:d3:59:67:a8:5c: 61:33:40:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM2REMxMTAvBgNVBAUTKEJDMDJCMDA1Q0NBQTA0NTNGQzlCODE3QkI3OENCQTkx NUYyN0MyQTgwHhcNMjUwNDI2MjExNzAyWhcNMjUwNTAzMjExNzAyWjAYMRYwFAYD VQQDEw02ODBkNGQ0ZS0yYTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEo2ziFLTOp8vGeXf3Xdo8rUalOHK53kJS63Qh5s5mYCYYV5aMgaN1Av4qVF fDqCIWPUw4Bcjly7EfqQ4uR7hy9Mr5b3mq8c/VPGhc78K6TZE5VczdmpGWmRzgsx wOSz6i3wm8w3NH8Uo+udFVskj0j/lbn+nd3BzCVqN2oBmrOYJUSUp/OzhLDMVclT eNcURGuLN8fy4eoeQxCJC3yLNQ0IFqmHq7qFIgfmpP4g4PWqPdY8++FTdbaV4/Hf kWxHOI2jhfxCPpu1Vp8emqs7a5Md7MHnD1OPwNOXv8krENGKl/nM2Hrq59Od1BIx RnqktUqwXsiuNXVrcJ9PDmXPOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWuoyNb OF6OPgzkQbSbAQeIHEq9MB8GA1UdIwQYMBaAFLwCsAXMqgRT/JuBe7eMupFfJ8Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzZEQy9CMDQzNjQ3QTE5 RjkxMUVCQjhDREVENEZDNEY5QUUwMi92QUt3QmN5cUJGUDhtNEY3dDR5NmtWOG53 cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZBS3dCY3lxQkZQOG00Rjd0NHk2a1Y4bndxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzZEQy9CMDQzNjQ3QTE5RjkxMUVCQjhDREVENEZDNEY5QUUwMi92QUt3QmN5cUJG UDhtNEY3dDR5NmtWOG53cWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ+n1tJZU3k+o/Q3EkOp0WruODqhBlrP5OxeohbS8rp6F/TNWYlpr3 5OfuArwpvPsrQKiJOGYDO75Gs3v8BoRyBjZM8dTZrQHmR7Yko035fUvs46U3ly1B Ffg/EXKCe07FRpyEIOoK8vBledrZc0ZCRG0n6//lcUVhxnwWJHuu+XjlWb0f5lxL bAygNi3qfoi0AWfl7NZ2ZwLgfQVm3p5/zCvJ2Fzviz/1+/VfkTqgyk/m4jsWZzO5 id8UGWlFxW22B84izY+Gk9enxcqu87S74wUFEvhXRsE3QUpfIRo9i2/qfZpOpaQ8 SU1x2Fb6pPahhTr69ym501lnqFxhM0CK -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:09 2025 by rpki-client on console.sobornost.net