$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft File: whEvRNRFjxhc25rZqRr4KQZInMY.mft (raw, json) Hash identifier: bgcmyaQR8X7+4MgUOxj2LRGJOqPBJQHJvEvErBv28YI= Subject key identifier: 2C:4D:83:8F:A4:DC:A6:30:4A:7B:98:BD:AD:A5:A1:E9:2D:E3:1C:4C Authority key identifier: C2:11:2F:44:D4:45:8F:18:5C:DB:9A:D9:A9:1A:F8:29:06:48:9C:C6 Certificate issuer: /CN=A91C167F/serialNumber=C2112F44D4458F185CDB9AD9A91AF82906489CC6 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/whEvRNRFjxhc25rZqRr4KQZInMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft Manifest number: E9 Signing time: Sun 27 Apr 2025 04:18:25 +0000 Manifest this update: Sun 27 Apr 2025 04:18:25 +0000 Manifest next update: Sun 04 May 2025 04:18:25 +0000 Files and hashes: 1: whEvRNRFjxhc25rZqRr4KQZInMY.crl (hash: mzZYNfSvJwW6cgJUxdZ5ngkMpNgNNyyUU37RtcW6Rjg=) 2: 7FC75E34C4B211EEB684BF7FC4F9AE02.roa (hash: ENR1qEuttVnNRROdOyzWRsQ7bm7evUlkAyBRhI4KcO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.crl rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/whEvRNRFjxhc25rZqRr4KQZInMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C2112F44D4458F185CDB9AD9A91AF82906489CC6 Validity Not Before: Apr 27 04:18:25 2025 GMT Not After : May 4 04:18:25 2025 GMT Subject: CN=680db011-bfa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bd:d4:82:03:94:7e:bc:76:2a:8e:38:ec:6f: af:82:f4:0b:98:00:44:10:5d:7b:63:66:9b:5e:7e: 58:33:db:7c:4d:1d:b8:0a:7d:9c:48:0a:14:6d:99: b5:65:e1:3a:a5:30:ff:f1:06:9c:b1:03:25:bb:40: d0:ae:d3:b1:ef:75:4e:9d:b2:10:ee:a4:82:67:6d: e4:0d:61:bd:83:6d:ea:2d:5f:f1:9b:55:46:e8:f3: fd:a7:79:d8:d8:06:0f:e3:88:92:0d:1c:cb:ae:28: b2:a8:2e:ea:d4:4b:c2:c6:2d:7d:1e:4d:3f:95:76: e3:59:1c:fa:e7:7a:64:30:ee:a3:a6:0b:ab:b3:e2: 7f:0c:02:ae:e3:70:3e:79:b7:b7:ee:6f:cf:3b:c2: df:e4:93:3f:06:67:7c:ae:ba:dc:b6:00:30:11:b8: 55:3f:e2:32:90:75:4c:95:81:2f:c4:91:5c:84:30: 2d:56:c7:9c:94:14:47:59:49:6d:c5:f0:88:74:a9: e7:ba:40:45:78:f4:8b:22:31:6e:6b:e0:00:5a:f6: 0e:df:ca:4f:65:77:a2:74:2c:dd:d6:b5:f8:ac:35: a1:9b:f3:ff:4c:53:4b:cb:34:52:42:b0:84:bd:68: 02:74:63:b1:d5:b3:69:74:f0:74:47:c9:8d:f0:bf: ba:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4D:83:8F:A4:DC:A6:30:4A:7B:98:BD:AD:A5:A1:E9:2D:E3:1C:4C X509v3 Authority Key Identifier: keyid:C2:11:2F:44:D4:45:8F:18:5C:DB:9A:D9:A9:1A:F8:29:06:48:9C:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/whEvRNRFjxhc25rZqRr4KQZInMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/87C3454CC45F11EE8281CC7DC4F9AE02/whEvRNRFjxhc25rZqRr4KQZInMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:6b:f9:7b:6c:a2:ba:2b:17:ad:7e:8f:ce:0d:da:a9:ed:c1: 4f:6e:32:a7:4c:2f:7c:8b:21:1c:e4:58:12:94:0d:9e:1e:6a: 8d:5e:35:1e:87:25:c5:f0:1e:b5:74:78:35:22:54:5a:94:e2: 4c:03:e1:a1:b4:1d:cc:14:43:09:7c:73:32:47:f0:a8:49:99: c7:44:dc:47:fb:7d:ce:c5:6e:8d:40:7b:64:bb:0f:20:2f:9a: 19:60:16:60:9d:a3:ff:b0:7c:5d:f8:c2:a5:2e:aa:7e:a8:f7: 80:c6:a5:80:5a:fc:03:50:32:1a:5a:c8:d4:56:80:b3:71:39: 67:c2:86:fa:1e:af:32:db:13:99:00:32:25:ed:b7:3f:ce:ec: b2:7e:76:80:dd:cd:f4:89:b8:ac:e6:c8:3d:ff:60:53:fd:ee: 2d:95:f8:14:84:f4:01:d9:ea:db:dc:16:12:df:61:67:fe:43: 36:ef:8f:88:37:e5:2d:e8:b2:56:75:09:5a:9b:a7:ef:47:4a: 92:67:b4:3d:fc:74:e6:f4:19:a9:f0:53:15:6f:37:20:e5:7f: 08:4d:cf:d2:b7:5f:31:74:75:0c:ab:0e:fb:b0:f0:1e:ae:c1: 83:84:5b:79:42:6f:60:b8:55:48:cc:b2:b9:19:33:2c:02:38: 6a:55:8d:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEMyMTEyRjQ0RDQ0NThGMTg1Q0RCOUFEOUE5MUFGODI5 MDY0ODlDQzYwHhcNMjUwNDI3MDQxODI1WhcNMjUwNTA0MDQxODI1WjAYMRYwFAYD VQQDEw02ODBkYjAxMS1iZmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur3UggOUfrx2Ko447G+vgvQLmABEEF17Y2abXn5YM9t8TR24Cn2cSAoUbZm1 ZeE6pTD/8QacsQMlu0DQrtOx73VOnbIQ7qSCZ23kDWG9g23qLV/xm1VG6PP9p3nY 2AYP44iSDRzLriiyqC7q1EvCxi19Hk0/lXbjWRz653pkMO6jpgurs+J/DAKu43A+ ebe37m/PO8Lf5JM/Bmd8rrrctgAwEbhVP+IykHVMlYEvxJFchDAtVseclBRHWUlt xfCIdKnnukBFePSLIjFua+AAWvYO38pPZXeidCzd1rX4rDWhm/P/TFNLyzRSQrCE vWgCdGOx1bNpdPB0R8mN8L+6+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxNg4+k 3KYwSnuYva2loekt4xxMMB8GA1UdIwQYMBaAFMIRL0TURY8YXNua2aka+CkGSJzG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri84N0MzNDU0Q0M0 NUYxMUVFODI4MUNDN0RDNEY5QUUwMi93aEV2Uk5SRmp4aGMyNXJacVJyNEtRWklu TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3doRXZSTlJGanhoYzI1clpxUnI0S1FaSW5NWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri84N0MzNDU0Q0M0NUYxMUVFODI4MUNDN0RDNEY5QUUwMi93aEV2Uk5SRmp4 aGMyNXJacVJyNEtRWkluTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACa/l7bKK6Kxetfo/ODdqp7cFPbjKnTC98iyEc5FgSlA2eHmqNXjUe hyXF8B61dHg1IlRalOJMA+GhtB3MFEMJfHMyR/CoSZnHRNxH+33OxW6NQHtkuw8g L5oZYBZgnaP/sHxd+MKlLqp+qPeAxqWAWvwDUDIaWsjUVoCzcTlnwob6Hq8y2xOZ ADIl7bc/zuyyfnaA3c30ibis5sg9/2BT/e4tlfgUhPQB2erb3BYS32Fn/kM274+I N+Ut6LJWdQlam6fvR0qSZ7Q9/HTm9Bmp8FMVbzcg5X8ITc/St18xdHUMqw77sPAe rsGDhFt5Qm9guFVIzLK5GTMsAjhqVY3q -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net