$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft File: WkoaHy2STehVVccdPbZrm7DkNkM.mft (raw, json) Hash identifier: gU/rhEDnY8KhEFT8J4TqZc1kqhZTwBh71kvUIxDhIeI= Subject key identifier: 9D:BD:4B:9D:4A:FD:C8:A8:D3:39:0E:9D:B0:F8:7A:6E:2B:2F:9A:9C Authority key identifier: 5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 Certificate issuer: /CN=A91C2E87/serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Certificate serial: 0C0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft Manifest number: 0BF3 Signing time: Mon 28 Apr 2025 19:07:45 +0000 Manifest this update: Mon 28 Apr 2025 19:07:44 +0000 Manifest next update: Mon 05 May 2025 19:07:44 +0000 Files and hashes: 1: WkoaHy2STehVVccdPbZrm7DkNkM.crl (hash: Jy0OYJPl5/8Yg5BPppVqD7dtqOHQpNMrkthkXTGJzPs=) 2: 4EB9FBD63CDE11EAB553996BC4F9AE02.roa (hash: 5Pl69Ojf2kmCxfLr0FSueU3iqe1LbesPtFydiCfx1IQ=) 3: 4F4A22E23CDE11EAB553996BC4F9AE02.roa (hash: 5dNjtUvyRJQ8rKds7M86B2djQAg4WheDaP9EfyZTla8=) 4: 504C179A3CDE11EAB553996BC4F9AE02.roa (hash: bqf4/Z70iNIgP7UdmtL9Kr8ESUyHQDpHnkrIZZGc+Nc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2E87, serialNumber=5A4A1A1F2D924DE85555C71D3DB66B9BB0E43643 Validity Not Before: Apr 28 19:07:44 2025 GMT Not After : May 5 19:07:44 2025 GMT Subject: CN=680fd200-2d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:13:c8:86:81:77:76:da:ff:aa:1f:5b:7f:7f: 0c:29:22:fc:8b:f8:50:0a:d1:38:c4:02:d6:07:33: 29:94:a8:a0:e8:df:c0:fd:9b:a9:25:69:8d:e6:f5: ca:44:0e:49:37:6b:55:ab:6a:84:bd:2f:b1:51:aa: 35:b0:f4:24:36:a9:5f:eb:0a:79:60:49:53:81:fb: 66:97:f7:ed:d6:dc:10:0f:c5:a3:95:3f:84:7c:01: 46:0c:db:af:3d:46:d2:eb:7b:3c:9c:81:07:19:d6: 64:0b:6f:9d:1d:e3:a5:a1:8d:7f:d6:cf:26:5b:df: 0c:ff:65:49:b7:2d:97:b9:10:7b:82:dc:6c:3a:24: 89:a4:0e:1a:e6:a3:a2:00:86:36:3e:ce:62:fa:9a: 0e:94:12:f9:62:d0:e8:2e:1c:6a:eb:b4:ff:fe:94: 26:5f:68:bc:87:b4:69:1f:44:a7:33:fd:e8:e3:e9: aa:56:8d:7f:e0:f7:61:8e:2e:79:f6:d1:55:9d:1b: 39:40:bf:22:9a:e3:b4:a7:42:58:09:4f:ca:c7:fd: 96:2c:4c:e1:49:9f:54:b3:35:48:fc:26:0d:94:c4: 38:0c:bd:3f:22:4f:69:db:37:a0:41:38:42:d7:32: e4:f0:96:4b:da:8e:1a:62:a3:32:86:a1:c3:dc:a0: 4c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BD:4B:9D:4A:FD:C8:A8:D3:39:0E:9D:B0:F8:7A:6E:2B:2F:9A:9C X509v3 Authority Key Identifier: keyid:5A:4A:1A:1F:2D:92:4D:E8:55:55:C7:1D:3D:B6:6B:9B:B0:E4:36:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WkoaHy2STehVVccdPbZrm7DkNkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2E87/A9F3C6EE129F11EAAB27202FC4F9AE02/WkoaHy2STehVVccdPbZrm7DkNkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:76:a7:c0:f9:c6:2c:dc:4a:27:9e:f5:72:8b:d8:f6:78:ff: 82:9d:00:d9:9c:32:0c:72:92:0d:e4:85:54:a2:db:b4:81:b1: 35:86:5c:0b:7d:3e:36:88:17:bd:5f:06:cd:42:61:8a:3c:b1: 5d:f0:d9:1d:f6:94:b9:66:e7:6d:41:ee:39:4b:5f:86:77:4e: 6d:b1:78:e4:39:59:e2:a1:87:21:f6:2d:9e:53:7b:84:ca:e9: fd:cd:db:db:a4:7a:b3:8c:4a:60:e9:b2:67:92:a0:59:10:f1: c8:f7:96:46:eb:d8:3b:32:cd:f1:9d:72:01:bc:c6:de:c4:ea: 80:32:fe:9e:1d:96:e6:5c:db:7f:30:bd:49:fb:3c:8c:98:9d: af:1b:11:0e:c6:5c:1c:d0:b2:60:da:3f:92:fa:4d:59:67:56: 76:61:c2:6b:c1:ef:42:6d:a5:7e:f4:b6:12:bc:1c:db:a4:99: 52:2f:63:d0:3a:8e:1d:a4:10:05:63:5c:49:f2:e0:c7:45:c3: ea:22:2e:c6:ce:16:a5:8d:a5:95:92:ad:dd:be:e4:29:21:75: 4e:8e:d1:4a:2c:c7:80:26:88:92:7d:6b:c9:95:cc:59:c0:73: 57:c5:b8:3f:cb:b2:ec:60:b0:41:44:ee:b2:59:69:d6:50:8f: c0:db:d3:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJFODcxMTAvBgNVBAUTKDVBNEExQTFGMkQ5MjRERTg1NTU1QzcxRDNEQjY2QjlC QjBFNDM2NDMwHhcNMjUwNDI4MTkwNzQ0WhcNMjUwNTA1MTkwNzQ0WjAYMRYwFAYD VQQDEw02ODBmZDIwMC0yZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRPIhoF3dtr/qh9bf38MKSL8i/hQCtE4xALWBzMplKig6N/A/ZupJWmN5vXK RA5JN2tVq2qEvS+xUao1sPQkNqlf6wp5YElTgftml/ft1twQD8WjlT+EfAFGDNuv PUbS63s8nIEHGdZkC2+dHeOloY1/1s8mW98M/2VJty2XuRB7gtxsOiSJpA4a5qOi AIY2Ps5i+poOlBL5YtDoLhxq67T//pQmX2i8h7RpH0SnM/3o4+mqVo1/4Pdhji55 9tFVnRs5QL8imuO0p0JYCU/Kx/2WLEzhSZ9UszVI/CYNlMQ4DL0/Ik9p2zegQThC 1zLk8JZL2o4aYqMyhqHD3KBM2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ29S51K /cio0zkOnbD4em4rL5qcMB8GA1UdIwQYMBaAFFpKGh8tkk3oVVXHHT22a5uw5DZD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkU4Ny9BOUYzQzZFRTEy OUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1RlaFZWY2NkUGJacm03RGtO a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1drb2FIeTJTVGVoVlZjY2RQYlpybTdEa05rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkU4Ny9BOUYzQzZFRTEyOUYxMUVBQUIyNzIwMkZDNEY5QUUwMi9Xa29hSHkyU1Rl aFZWY2NkUGJacm03RGtOa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrdqfA+cYs3EonnvVyi9j2eP+CnQDZnDIMcpIN5IVUotu0gbE1hlwL fT42iBe9XwbNQmGKPLFd8Nkd9pS5ZudtQe45S1+Gd05tsXjkOVnioYch9i2eU3uE yun9zdvbpHqzjEpg6bJnkqBZEPHI95ZG69g7Ms3xnXIBvMbexOqAMv6eHZbmXNt/ ML1J+zyMmJ2vGxEOxlwc0LJg2j+S+k1ZZ1Z2YcJrwe9CbaV+9LYSvBzbpJlSL2PQ Oo4dpBAFY1xJ8uDHRcPqIi7GzhaljaWVkq3dvuQpIXVOjtFKLMeAJoiSfWvJlcxZ wHNXxbg/y7LsYLBBRO6yWWnWUI/A29PQ -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:54 2025 by rpki-client on console.sobornost.net