$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: a7PO5VE++0Jve0pfsLde4gjn8QMqfyA7G3DHXiuG0nA= Subject key identifier: E6:DC:E1:24:29:28:69:5A:68:A0:30:E7:99:85:8C:E1:8D:96:3E:AF Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: AC Signing time: Fri 25 Apr 2025 05:06:34 +0000 Manifest this update: Fri 25 Apr 2025 05:06:34 +0000 Manifest next update: Fri 02 May 2025 05:06:34 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: nDHCB8rOElKzOFD6cm/IiXUPmAyP2HaoJk3q+8UGdwk=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: ymGuQNubHZmih1/MlsNM4UjPPYjnvk5QIBxrno55/zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Apr 25 05:06:34 2025 GMT Not After : May 2 05:06:34 2025 GMT Subject: CN=680b185a-05f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:8a:b0:f7:43:2a:0d:58:8c:0c:34:6a:65: 91:c8:fa:a3:df:08:e0:b5:26:f8:4a:8f:8e:ff:2e: d7:38:84:7d:12:13:b9:51:5d:c9:8e:37:3f:e5:fa: c3:aa:47:6b:a6:41:c8:cd:7e:c1:b5:31:6b:d6:5c: 6d:8f:78:ec:3c:bf:f5:38:15:85:b6:ba:a2:5b:38: c5:87:68:d5:68:1b:d1:ef:21:95:72:fb:8e:1c:13: d4:53:cb:0b:64:f2:e1:f8:20:5e:ff:3a:6a:c8:18: f1:7b:10:f7:0e:c6:d8:39:d7:04:ca:96:93:7f:42: f2:ce:08:62:51:5a:fc:37:51:81:ef:91:9d:cf:c6: 68:10:9d:74:4c:df:e4:35:c4:97:06:5b:8e:0d:f4: 46:65:27:4b:04:43:41:8f:39:a9:fa:61:75:a9:13: 63:ec:5c:8d:9c:d8:55:c2:46:88:96:55:8a:2c:32: 6b:47:7a:b0:20:bf:f3:f2:cb:4a:30:a4:a5:c0:8b: 9a:98:11:04:ca:a7:00:57:39:fa:d5:44:35:54:39: 38:a7:9b:cf:c2:84:54:27:d1:76:1d:61:32:de:6f: bf:72:a6:59:46:56:95:72:d4:81:b1:9a:74:1b:c5: 12:24:81:db:c9:03:48:34:30:f6:e4:14:24:c2:f1: fd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DC:E1:24:29:28:69:5A:68:A0:30:E7:99:85:8C:E1:8D:96:3E:AF X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4e:84:1f:0f:4e:9a:df:d0:37:7b:79:bc:90:2f:2a:0a:db: 9a:c6:61:8d:f9:72:0d:17:6d:43:6e:e6:2e:de:5c:08:86:49: fd:15:7f:04:7c:36:12:33:41:88:bb:a9:49:52:e5:90:d2:62: b7:be:c1:bd:83:f9:9d:70:a8:a7:ca:f4:e1:0f:2c:fd:4c:4c: 37:42:03:33:16:c3:3d:9d:6a:4f:44:d7:75:e0:40:0d:a4:57: eb:88:9c:c6:61:be:15:a4:d3:c0:9b:74:24:bb:1c:77:ce:1a: 8d:ae:bc:78:68:2d:42:e4:1b:98:26:78:95:b8:e8:f8:2c:41: 29:62:2e:6e:95:21:ef:49:8d:51:79:40:f7:c0:54:5e:68:5b: 1a:e6:fd:88:0a:fb:32:ea:ce:28:75:68:d0:36:df:b2:3d:ff: 44:cd:1f:d7:82:9e:76:15:a8:02:06:fb:83:ee:2b:80:a2:25: 7d:11:74:61:bd:83:fb:60:47:bd:bf:2f:e8:97:52:74:e1:40: d3:fa:3c:5b:ee:1f:74:0b:a4:ca:62:7a:e9:d5:7a:c5:49:3c: 24:b8:fe:7a:7e:39:87:28:11:25:f6:c7:01:07:b3:37:df:da: 81:8d:dc:de:02:cc:59:d1:d7:13:5a:35:b9:06:6d:95:46:c6: 79:c4:56:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjUwNDI1MDUwNjM0WhcNMjUwNTAyMDUwNjM0WjAYMRYwFAYD VQQDEw02ODBiMTg1YS0wNWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QGKsPdDKg1YjAw0amWRyPqj3wjgtSb4So+O/y7XOIR9EhO5UV3Jjjc/5frD qkdrpkHIzX7BtTFr1lxtj3jsPL/1OBWFtrqiWzjFh2jVaBvR7yGVcvuOHBPUU8sL ZPLh+CBe/zpqyBjxexD3DsbYOdcEypaTf0LyzghiUVr8N1GB75Gdz8ZoEJ10TN/k NcSXBluODfRGZSdLBENBjzmp+mF1qRNj7FyNnNhVwkaIllWKLDJrR3qwIL/z8stK MKSlwIuamBEEyqcAVzn61UQ1VDk4p5vPwoRUJ9F2HWEy3m+/cqZZRlaVctSBsZp0 G8USJIHbyQNINDD25BQkwvH9DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObc4SQp KGlaaKAw55mFjOGNlj6vMB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzFCNy9GMkE1NzMyRTFFNkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBm UVozelBmc0dpRndjTklpeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWToQfD06a39A3e3m8kC8qCtuaxmGN+XINF21DbuYu3lwIhkn9FX8E fDYSM0GIu6lJUuWQ0mK3vsG9g/mdcKinyvThDyz9TEw3QgMzFsM9nWpPRNd14EAN pFfriJzGYb4VpNPAm3Qkuxx3zhqNrrx4aC1C5BuYJniVuOj4LEEpYi5ulSHvSY1R eUD3wFReaFsa5v2ICvsy6s4odWjQNt+yPf9EzR/Xgp52FagCBvuD7iuAoiV9EXRh vYP7YEe9vy/ol1J04UDT+jxb7h90C6TKYnrp1XrFSTwkuP56fjmHKBEl9scBB7M3 39qBjdzeAsxZ0dcTWjW5Bm2VRsZ5xFad -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:08 2025 by rpki-client on console.sobornost.net