$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: wx7rOGwATjODPMJw1ypiEz7vIAmmGLGt5zAqF64hkXY= Subject key identifier: 27:5F:0F:89:4E:DC:FA:37:40:DA:5A:9B:E9:CA:7C:C4:3A:56:31:CD Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 360B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3532 Signing time: Sat 26 Apr 2025 14:28:37 +0000 Manifest this update: Sat 26 Apr 2025 14:28:37 +0000 Manifest next update: Sat 03 May 2025 14:28:37 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: +dHJKB84MYYdzapDXMnaeudDycN/YMYQoi/zgwzqhA0=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: RL1lTbOt6Av5nEYA4DHBlIKK0hqxvZRiBkpLy29xghs=) 3: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: 2rH+VWOcuPOah5bNHP9sMT7gm/W2BD5Lz0whslurntk=) 4: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: CuyEAz/Z+ba3st2KGZYRh65vVcO9Be9AbPEfcjuGd9k=) 5: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: Yqwo5M588Yfv+JXGuvZtKg0Gtdf+iGVakUUN+3KDHdo=) 6: CE997E2EEA9B11EFA6A3D730C4F9AE02.roa (hash: uN0e+cUzXR0q+zRv9FKfvDWSlrjYXQb/CNzmut03rlU=) 7: DCD7F756048411F095177229C4F9AE02.roa (hash: PJnt80PstBsPu+Je/uk2L+eWT12a7ahlhHYmODLLA84=) 8: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: oGdV623K9DaOonzZkenCae7aE6BqwAo6RdH7Y25n0b4=) 9: 4DC27210558111EF880A8679C4F9AE02.roa (hash: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4=) 10: C6A44358F43111EFB70DAE63C4F9AE02.roa (hash: ktcmSqDTgXbj3lIVA2eR8cEJTJL4lajyKd+nAAjV9WI=) 11: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 92OU291hR0YIYqWJJIcvZXszn84NKrAjVspQkxjVbEI=) 12: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (hash: ol23eWYMbqFxa7AzTOzpz7Em2i4wKmL7cxMptLBFr00=) 13: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: FvhGoDcJkl/uVyMeuA2e84lQ0fEQXKW9fiAoOj29wy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 13:09:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13835 (0x360b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Apr 26 14:28:37 2025 GMT Not After : May 3 14:28:37 2025 GMT Subject: CN=680ced95-9bd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:4c:06:42:ab:3c:59:b5:63:72:f6:30:79:84: ab:a5:85:8a:54:80:c2:e2:0d:69:ba:6d:4f:1a:34: cc:ac:a0:b5:27:e2:d0:40:58:24:3d:bb:0e:1e:b2: 22:4e:20:a6:b6:6d:fc:70:66:54:8c:5c:e4:28:30: ed:0f:f3:d9:e7:77:2a:e2:b8:79:11:bc:93:c9:e6: 62:0b:cc:8d:39:d6:d2:92:73:46:fa:2c:6e:83:6b: 01:22:20:59:fa:f8:a0:8e:c2:92:00:d8:19:ca:c5: 63:9e:19:92:cd:0e:14:3b:bd:80:cc:52:40:24:44: cc:07:0d:aa:c6:f0:40:b6:ca:88:29:18:6c:d3:1c: 4f:a1:fe:c9:ac:5b:c2:d4:07:45:93:7f:31:fc:c4: 20:52:f4:34:a9:c0:46:13:6d:fe:44:43:c7:28:b2: 1c:7b:b3:4e:fe:5e:5e:61:bd:8d:56:b6:88:f5:71: a5:5d:22:ca:83:12:11:eb:79:92:1f:06:f6:62:d3: ae:e3:ad:12:93:01:36:24:fc:7f:5f:a7:3b:48:d1: 93:7d:9c:23:0d:26:32:fd:46:a4:12:27:4e:93:9d: 0b:2d:07:b7:4e:3c:0c:2f:48:07:3f:6d:6e:26:31: 72:cd:85:ac:6c:17:89:a6:79:ab:9c:ea:c7:02:8e: 90:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5F:0F:89:4E:DC:FA:37:40:DA:5A:9B:E9:CA:7C:C4:3A:56:31:CD X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:af:3f:c7:c2:d3:d2:5b:cf:08:11:bb:c8:59:56:af:63:82: 32:0c:d3:97:a7:b5:19:13:a7:93:b8:41:ae:70:07:b9:e3:27: 0a:38:3b:0c:55:5c:7f:47:61:16:10:50:5d:dd:95:f0:a3:4b: 7d:ba:e3:80:1d:a7:20:bf:0e:0a:e8:0f:55:05:6b:a7:38:dd: 07:a9:43:ea:0e:81:f9:7e:7a:9c:3c:1d:84:f7:42:6e:7c:70: 8a:61:16:5a:29:c8:6f:fe:4c:01:7c:13:43:6c:82:2c:f9:ec: 0c:c8:24:e9:70:42:2e:5b:00:14:11:03:bb:1f:eb:9c:d8:86: 52:c9:88:87:73:59:f7:4a:a7:4c:e8:4a:5f:e1:47:f4:d6:f7: 9f:4d:81:ee:92:d9:cc:70:e3:ba:18:06:9b:3d:27:8b:a0:15: 1d:c3:ef:d8:29:c9:14:b4:20:46:98:f5:26:d7:ad:d6:5e:5c: 46:83:f0:a7:da:aa:93:f6:d2:a7:09:d6:df:25:86:1f:f3:22: f5:d7:02:58:b0:c0:44:c5:1b:55:4d:22:de:87:bb:09:bc:1b: 93:4e:e6:c9:b7:4d:f0:76:8f:ee:db:6e:43:c1:c1:2f:e8:5c: 46:2b:f6:a5:f4:5f:7c:a0:a4:86:a0:08:7f:1f:60:62:73:bb: 74:07:11:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwNDI2MTQyODM3WhcNMjUwNTAzMTQyODM3WjAYMRYwFAYD VQQDEw02ODBjZWQ5NS05YmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+EwGQqs8WbVjcvYweYSrpYWKVIDC4g1pum1PGjTMrKC1J+LQQFgkPbsOHrIi TiCmtm38cGZUjFzkKDDtD/PZ53cq4rh5EbyTyeZiC8yNOdbSknNG+ixug2sBIiBZ +vigjsKSANgZysVjnhmSzQ4UO72AzFJAJETMBw2qxvBAtsqIKRhs0xxPof7JrFvC 1AdFk38x/MQgUvQ0qcBGE23+REPHKLIce7NO/l5eYb2NVraI9XGlXSLKgxIR63mS Hwb2YtOu460SkwE2JPx/X6c7SNGTfZwjDSYy/UakEidOk50LLQe3TjwML0gHP21u JjFyzYWsbBeJpnmrnOrHAo6Q6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdfD4lO 3Po3QNpam+nKfMQ6VjHNMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADrz/HwtPSW88IEbvIWVavY4IyDNOXp7UZE6eTuEGucAe54ycKODsM VVx/R2EWEFBd3ZXwo0t9uuOAHacgvw4K6A9VBWunON0HqUPqDoH5fnqcPB2E90Ju fHCKYRZaKchv/kwBfBNDbIIs+ewMyCTpcEIuWwAUEQO7H+uc2IZSyYiHc1n3SqdM 6Epf4Uf01vefTYHuktnMcOO6GAabPSeLoBUdw+/YKckUtCBGmPUm163WXlxGg/Cn 2qqT9tKnCdbfJYYf8yL11wJYsMBExRtVTSLeh7sJvBuTTubJt03wdo/u225DwcEv 6FxGK/al9F98oKSGoAh/H2Bic7t0BxFw -----END CERTIFICATE-----Generated at Sat Apr 26 15:55:41 2025 by rpki-client on console.sobornost.net