$ rpki-client -vvf rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft File: G7spe8goFmqkl9N8cmW_tgGuA2A.mft (raw, json) Hash identifier: 2pyBzv790vYkAnF4UmBXpjobY2YkwTPSV9gyMGfd+Jw= Subject key identifier: 27:A1:6D:EA:F1:62:09:BF:4A:DB:BB:8A:D2:95:30:B3:10:EE:2E:CF Authority key identifier: 1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 Certificate issuer: /CN=A91B49F2/serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Certificate serial: 0E20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft Manifest number: 0E16 Signing time: Sat 26 Apr 2025 17:42:29 +0000 Manifest this update: Sat 26 Apr 2025 17:42:28 +0000 Manifest next update: Sat 03 May 2025 17:42:28 +0000 Files and hashes: 1: G7spe8goFmqkl9N8cmW_tgGuA2A.crl (hash: kyVbaOSaNcWK3FBttc7nEfxY3c+06XXaSJEmaMRWN4I=) 2: BA0CC7060A3D11EB82ECEA4BC4F9AE02.roa (hash: XB0QLbbknxQIRTO38MXkPwNFVVbVpdhvXqbqZxANpFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3616 (0xe20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B49F2, serialNumber=1BBB297BC828166AA497D37C7265BFB601AE0360 Validity Not Before: Apr 26 17:42:28 2025 GMT Not After : May 3 17:42:28 2025 GMT Subject: CN=680d1b05-7f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:63:63:12:da:9e:90:ad:2f:2d:bd:62:9f:4d: 26:02:5a:31:5b:8b:37:d7:3a:8b:69:7f:23:70:29: 90:48:8c:35:eb:9c:4c:4c:f1:c2:e3:3c:93:79:64: 39:6b:19:f1:63:73:59:bf:f7:ad:e1:0a:60:20:43: 37:ec:5d:d5:b4:6e:b6:7d:70:11:4a:d4:5c:7a:82: a9:f3:88:0c:a9:39:73:1f:98:2d:c5:45:99:a2:42: 53:1a:84:99:8c:e3:42:02:7b:ee:f7:07:9f:fd:0e: 67:67:be:16:3f:d7:2a:dc:ce:d5:67:06:dc:97:18: ff:7c:75:df:1f:f6:6f:a2:66:1a:8d:7f:a4:18:48: f9:e1:ac:dc:5e:5a:eb:e6:72:b5:e0:73:88:55:2a: 26:da:df:ed:4b:d2:66:17:e8:da:5b:36:a8:2c:3e: e3:3a:13:3f:36:74:b9:96:00:29:0f:4f:b9:7a:0d: 57:79:12:a1:6c:cb:a9:26:45:93:9f:fe:21:02:2a: 82:30:c1:81:41:f0:02:ec:a6:79:b0:17:15:64:81: e0:26:7b:54:56:5d:31:da:47:66:d7:a4:f4:7d:e1: 1a:aa:c8:70:04:96:ed:3d:64:92:f1:dd:f7:d8:26: 88:06:ff:33:17:06:43:6d:61:d4:46:2c:68:d6:63: dc:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A1:6D:EA:F1:62:09:BF:4A:DB:BB:8A:D2:95:30:B3:10:EE:2E:CF X509v3 Authority Key Identifier: keyid:1B:BB:29:7B:C8:28:16:6A:A4:97:D3:7C:72:65:BF:B6:01:AE:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G7spe8goFmqkl9N8cmW_tgGuA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B49F2/7C06E79CA6EE11E985F3B011C4F9AE02/G7spe8goFmqkl9N8cmW_tgGuA2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:be:1d:1d:4e:cd:ea:d3:75:e1:3b:96:1f:67:50:5d:dd:c0: 82:55:c1:ad:b4:4f:8f:23:17:1f:56:9a:d8:4d:ff:a5:bf:40: be:f4:d1:14:a4:84:a9:d7:44:e1:84:c6:dd:24:1b:69:2e:7e: 2d:bd:68:b7:de:56:ba:23:c9:97:d3:6a:75:e6:29:7b:39:07: 2d:e6:eb:38:86:dc:b9:2b:f2:86:fb:6d:f0:ef:2e:5f:28:a3: ad:26:c7:5c:a0:73:20:89:c5:df:a0:4e:7f:91:22:96:22:22: 98:7c:5b:e8:17:65:aa:fe:8b:f8:ce:71:1b:8b:d1:87:2f:e6: 02:7c:e6:7c:b2:6f:4e:32:67:ba:d6:e7:92:ca:ce:db:f8:2b: 71:57:a3:db:1b:e2:da:98:c2:f3:40:01:22:e5:1e:fc:91:5b: 39:1b:bc:73:d2:2b:9d:f2:c7:a9:d8:b6:c9:2c:3c:cf:fd:b9: 43:92:4c:36:72:6e:85:18:e6:6d:68:37:03:8b:b5:9c:cb:a3: 25:9a:ab:cd:84:5b:fc:98:62:66:c8:3d:b5:ee:2f:eb:57:44: b4:1b:9d:47:b7:6d:81:b2:5b:84:73:53:cf:00:28:5e:d9:b0: 14:cb:da:7d:33:10:36:41:74:a5:b0:78:1e:ab:05:d8:8d:4e: db:e8:76:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ5RjIxMTAvBgNVBAUTKDFCQkIyOTdCQzgyODE2NkFBNDk3RDM3QzcyNjVCRkI2 MDFBRTAzNjAwHhcNMjUwNDI2MTc0MjI4WhcNMjUwNTAzMTc0MjI4WjAYMRYwFAYD VQQDEw02ODBkMWIwNS03ZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmNjEtqekK0vLb1in00mAloxW4s31zqLaX8jcCmQSIw165xMTPHC4zyTeWQ5 axnxY3NZv/et4QpgIEM37F3VtG62fXARStRceoKp84gMqTlzH5gtxUWZokJTGoSZ jONCAnvu9wef/Q5nZ74WP9cq3M7VZwbclxj/fHXfH/ZvomYajX+kGEj54azcXlrr 5nK14HOIVSom2t/tS9JmF+jaWzaoLD7jOhM/NnS5lgApD0+5eg1XeRKhbMupJkWT n/4hAiqCMMGBQfAC7KZ5sBcVZIHgJntUVl0x2kdm16T0feEaqshwBJbtPWSS8d33 2CaIBv8zFwZDbWHURixo1mPcTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCehberx Ygm/Stu7itKVMLMQ7i7PMB8GA1UdIwQYMBaAFBu7KXvIKBZqpJfTfHJlv7YBrgNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDlGMi83QzA2RTc5Q0E2 RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0ZtcWtsOU44Y21XX3RnR3VB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0c3c3BlOGdvRm1xa2w5TjhjbVdfdGdHdUEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDlGMi83QzA2RTc5Q0E2RUUxMUU5ODVGM0IwMTFDNEY5QUUwMi9HN3NwZThnb0Zt cWtsOU44Y21XX3RnR3VBMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQvh0dTs3q03XhO5YfZ1Bd3cCCVcGttE+PIxcfVprYTf+lv0C+9NEU pISp10ThhMbdJBtpLn4tvWi33la6I8mX02p15il7OQct5us4hty5K/KG+23w7y5f KKOtJsdcoHMgicXfoE5/kSKWIiKYfFvoF2Wq/ov4znEbi9GHL+YCfOZ8sm9OMme6 1ueSys7b+CtxV6PbG+LamMLzQAEi5R78kVs5G7xz0iud8sep2LbJLDzP/blDkkw2 cm6FGOZtaDcDi7Wcy6MlmqvNhFv8mGJmyD217i/rV0S0G51Ht22BsluEc1PPAChe 2bAUy9p9MxA2QXSlsHgeqwXYjU7b6HbC -----END CERTIFICATE-----Generated at Sat Apr 26 21:02:00 2025 by rpki-client on console.sobornost.net