$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft File: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft (raw, json) Hash identifier: 4h0hIdRMIjPz+PwshD2SVtrMTHq+dNYKYZUd9cTSUIA= Subject key identifier: 51:E6:EE:72:8F:78:4C:16:11:E4:F7:9E:BD:29:AE:71:75:B6:26:64 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft Manifest number: 017F Signing time: Sun 27 Apr 2025 02:47:11 +0000 Manifest this update: Sun 27 Apr 2025 02:47:10 +0000 Manifest next update: Sun 04 May 2025 02:47:10 +0000 Files and hashes: 1: ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl (hash: 8bH4pXmbn0+BF7Hb4IBCs7cI082depXHhni+Cvu1I7U=) 2: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (hash: jWM3qF3q7kpRiSXeFFNjIBgWbV7okecU61rSD6G1V5E=) 3: 1333404E5A0D11EF8810E217C4F9AE02.roa (hash: LSSqPw0m9vdH2z02yt+UwvMOawigT/2JykBCEQ4iiVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Apr 27 02:47:10 2025 GMT Not After : May 4 02:47:10 2025 GMT Subject: CN=680d9aae-bc3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a8:db:30:ab:df:37:f4:f0:73:79:5e:07:2d: 9f:ca:8f:0f:f0:38:c2:c8:fc:be:8b:57:94:6f:38: 85:41:37:e6:6d:75:d3:8f:7c:f0:b1:74:e7:ac:5e: 04:d6:92:69:d9:89:d7:78:14:86:d2:62:fe:80:bb: 6b:9f:aa:b7:be:09:fb:28:8e:49:8f:3f:a8:86:dc: 99:bd:94:22:f2:bd:55:7b:0d:bd:60:6f:44:a0:1d: e2:6c:06:b0:5e:1e:02:18:d5:92:d9:4e:44:92:78: b3:69:db:ce:93:ed:55:00:d1:1c:ba:4b:24:88:64: 60:b0:3d:88:a4:04:40:bd:c5:61:5d:a5:71:c1:1e: d3:62:a9:d3:24:67:e7:13:51:88:19:6f:58:0c:04: 8b:0a:e1:b1:3a:d8:82:02:51:c5:2c:da:64:14:1a: 49:86:68:90:06:17:83:55:27:4e:8e:e1:9a:27:83: 79:45:88:9d:aa:2c:dc:b7:7a:53:31:a0:bb:84:c7: 44:7b:3f:53:dc:bf:61:b6:9e:49:e9:4c:84:b4:b9: 1b:8c:2c:23:bc:67:d7:e3:0d:f3:ad:07:55:4c:d6: f9:82:17:5e:7d:ca:6b:b6:de:eb:b7:7d:50:70:86: 85:e0:26:bc:6d:c2:f0:bf:04:be:50:12:44:38:50: 02:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E6:EE:72:8F:78:4C:16:11:E4:F7:9E:BD:29:AE:71:75:B6:26:64 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:f7:1a:a0:98:97:10:2f:66:fd:c4:51:9f:e8:d6:41:6f:bf: e2:b2:18:10:dd:74:dd:72:2e:48:d4:70:35:76:e8:02:0f:6c: cc:71:43:6a:a2:1d:7a:68:6b:5e:48:c1:90:aa:de:8e:9b:df: ca:f9:45:04:52:9b:65:bb:f6:d7:c3:2b:a7:95:e6:8e:21:ac: 78:ef:59:74:e9:48:4e:23:0f:c1:43:b1:4a:57:b7:3f:d1:b7: 0d:03:13:50:45:f1:44:95:fd:4b:08:a5:7f:a9:86:47:28:2f: cb:ac:4c:06:e3:da:90:a2:ae:86:4a:97:12:d7:79:98:65:b3: b2:c4:03:80:cd:08:2d:d7:7d:3b:ad:e3:58:6d:3e:f0:17:84: 6f:37:b7:c0:53:a8:f6:38:19:77:b9:ac:56:f2:f2:f0:f3:c9: 52:d5:77:1f:50:d1:6d:2d:3f:7b:ed:21:c3:f9:bc:45:69:eb: 13:bf:35:7e:87:26:8d:79:b5:91:40:cc:95:ee:f4:93:96:d6: cd:e4:a4:bf:8c:6a:56:e7:51:07:7c:5d:43:09:56:4a:a9:6e: 75:41:10:10:ef:b8:f7:9a:c0:92:70:f5:a3:bb:60:28:52:ae: 82:67:30:84:d2:91:b4:e9:e9:3d:3b:40:b7:52:f7:ca:72:2b: 19:63:43:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjUwNDI3MDI0NzEwWhcNMjUwNTA0MDI0NzEwWjAYMRYwFAYD VQQDEw02ODBkOWFhZS1iYzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqjbMKvfN/Twc3leBy2fyo8P8DjCyPy+i1eUbziFQTfmbXXTj3zwsXTnrF4E 1pJp2YnXeBSG0mL+gLtrn6q3vgn7KI5Jjz+ohtyZvZQi8r1Vew29YG9EoB3ibAaw Xh4CGNWS2U5EknizadvOk+1VANEcukskiGRgsD2IpARAvcVhXaVxwR7TYqnTJGfn E1GIGW9YDASLCuGxOtiCAlHFLNpkFBpJhmiQBheDVSdOjuGaJ4N5RYidqizct3pT MaC7hMdEez9T3L9htp5J6UyEtLkbjCwjvGfX4w3zrQdVTNb5ghdefcprtt7rt31Q cIaF4Ca8bcLwvwS+UBJEOFAC3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHm7nKP eEwWEeT3nr0prnF1tiZkMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzFFOS9CQkNENUQyQ0VGQ0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2 WEJsYVhtMng2a1pIWTB2dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh9xqgmJcQL2b9xFGf6NZBb7/ishgQ3XTdci5I1HA1dugCD2zMcUNq oh16aGteSMGQqt6Om9/K+UUEUptlu/bXwyunleaOIax471l06UhOIw/BQ7FKV7c/ 0bcNAxNQRfFElf1LCKV/qYZHKC/LrEwG49qQoq6GSpcS13mYZbOyxAOAzQgt1307 reNYbT7wF4RvN7fAU6j2OBl3uaxW8vLw88lS1XcfUNFtLT977SHD+bxFaesTvzV+ hyaNebWRQMyV7vSTltbN5KS/jGpW51EHfF1DCVZKqW51QRAQ77j3msCScPWju2Ao Uq6CZzCE0pG06ek9O0C3UvfKcisZY0PM -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net