$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft File: w-IA1ABdmiPkv66uDtty6kPx0JY.mft (raw, json) Hash identifier: 5gAq9u2lHFc0QfRoKYLU+3RVi6FKGPM2jvmjrABDk3Q= Subject key identifier: C8:EC:2F:79:1C:CA:6C:E8:91:12:88:23:30:72:30:7E:9E:3B:39:2E Authority key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 Certificate issuer: /CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft Manifest number: E5 Signing time: Sun 27 Apr 2025 04:01:11 +0000 Manifest this update: Sun 27 Apr 2025 04:01:10 +0000 Manifest next update: Sun 04 May 2025 04:01:10 +0000 Files and hashes: 1: w-IA1ABdmiPkv66uDtty6kPx0JY.crl (hash: xOstw1IHSeQweSNxZ9jSe2B4oRZvs1BkYzUEpKAQBG0=) 2: C19C2720CA2711EE82C12B0CC4F9AE02.roa (hash: VHJTWsm4wzJziIer/htU6hv3gqL/KMd1K2nOD3+RJsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD1A2, serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Validity Not Before: Apr 27 04:01:10 2025 GMT Not After : May 4 04:01:10 2025 GMT Subject: CN=680dac06-a12c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fe:2a:f3:f3:f3:f4:5e:b0:bd:06:42:2d:34: cf:11:aa:26:6f:d5:df:f3:40:02:c8:8a:08:c9:8c: 52:4d:e1:eb:38:e0:9b:35:8d:e8:ae:40:33:d7:b2: 64:1c:93:4f:6a:99:8c:0a:11:a6:d4:bd:a9:1f:5a: 4a:9b:dd:87:45:9b:31:fd:b7:23:39:7d:18:d6:87: db:77:75:3a:f2:b7:e0:03:17:d0:4f:45:4d:4d:95: c9:be:88:13:18:e4:50:f7:ab:9a:28:c1:32:38:7e: 1b:95:7f:fc:84:19:e1:a8:49:74:4a:57:b4:30:b2: 55:66:ee:29:52:aa:7f:22:db:67:2b:a0:8d:52:a4: 42:02:14:80:f7:6f:bf:22:5a:fb:53:23:9b:1c:14: 2b:08:52:70:41:3d:21:5f:a2:50:ee:f4:ec:86:29: 01:4e:d9:cd:7b:1e:c8:23:bd:b3:6e:64:f5:9f:55: db:77:7a:15:f1:93:2f:51:c4:0f:52:3d:e5:46:01: b8:e1:1c:fe:41:09:72:6b:b0:17:14:19:4b:dd:70: d7:ee:7c:54:4c:d8:a1:b8:b5:33:1d:ba:fb:9f:78: 33:8c:1c:a2:30:b4:73:25:c9:88:5b:c4:30:39:82: 4c:8f:1a:88:0e:4e:f8:85:b4:ad:c5:ff:9d:55:59: 4e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EC:2F:79:1C:CA:6C:E8:91:12:88:23:30:72:30:7E:9E:3B:39:2E X509v3 Authority Key Identifier: keyid:C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:4a:1a:4b:6f:e6:9a:67:c7:6c:53:70:f3:ac:16:3a:77:63: f0:11:66:5e:e6:31:ec:ef:0b:19:19:cc:63:de:d4:2d:2c:a0: 30:60:f7:ad:80:81:bb:f0:f9:83:04:a8:4f:1f:37:9a:00:9e: 07:97:82:91:af:cf:a9:0f:02:07:7e:1e:4c:ac:64:ac:32:65: ea:72:63:dc:25:bb:51:1c:8b:00:16:e9:83:55:3f:99:b8:08: c7:5e:4c:9b:15:6f:48:91:60:b9:cc:09:27:2c:e0:2d:aa:5b: 29:8b:6a:91:ed:74:c9:aa:8c:e5:d7:03:32:ac:ff:aa:8f:10: 61:bb:95:02:24:28:5b:29:10:05:23:ea:cc:3c:7f:e6:b6:35: 53:67:fc:e5:35:d4:47:d1:fa:11:99:98:56:22:ff:95:de:97: 9c:8a:8b:e1:34:d4:a0:79:f0:c1:83:cd:7b:9f:2d:02:12:67: a9:f5:b1:e6:7a:31:47:50:20:f1:cc:29:a9:ff:72:f5:cd:d4: 7f:f5:d1:96:69:8e:4d:e2:28:e8:c6:66:07:91:6f:d8:ac:3a: 7c:ce:6a:43:b8:22:5d:9d:0d:8a:83:f4:43:d8:cd:91:1c:63: 55:a3:31:27:17:d7:11:b4:40:15:4f:f9:84:02:a4:27:23:19: ce:6d:6b:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxQTIxMTAvBgNVBAUTKEMzRTIwMEQ0MDA1RDlBMjNFNEJGQUVBRTBFREI3MkVB NDNGMUQwOTYwHhcNMjUwNDI3MDQwMTEwWhcNMjUwNTA0MDQwMTEwWjAYMRYwFAYD VQQDEw02ODBkYWMwNi1hMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvv4q8/Pz9F6wvQZCLTTPEaomb9Xf80ACyIoIyYxSTeHrOOCbNY3orkAz17Jk HJNPapmMChGm1L2pH1pKm92HRZsx/bcjOX0Y1ofbd3U68rfgAxfQT0VNTZXJvogT GORQ96uaKMEyOH4blX/8hBnhqEl0Sle0MLJVZu4pUqp/IttnK6CNUqRCAhSA92+/ Ilr7UyObHBQrCFJwQT0hX6JQ7vTshikBTtnNex7II72zbmT1n1Xbd3oV8ZMvUcQP Uj3lRgG44Rz+QQlya7AXFBlL3XDX7nxUTNihuLUzHbr7n3gzjByiMLRzJcmIW8Qw OYJMjxqIDk74hbStxf+dVVlOnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjsL3kc ymzokRKIIzByMH6eOzkuMB8GA1UdIwQYMBaAFMPiANQAXZoj5L+urg7bcupD8dCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDFBMi8xQTFFM0RFNEM5 RkExMUVFODNGNUIwMjlDNEY5QUUwMi93LUlBMUFCZG1pUGt2NjZ1RHR0eTZrUHgw SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ctSUExQUJkbWlQa3Y2NnVEdHR5NmtQeDBKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDFBMi8xQTFFM0RFNEM5RkExMUVFODNGNUIwMjlDNEY5QUUwMi93LUlBMUFCZG1p UGt2NjZ1RHR0eTZrUHgwSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8ShpLb+aaZ8dsU3DzrBY6d2PwEWZe5jHs7wsZGcxj3tQtLKAwYPet gIG78PmDBKhPHzeaAJ4Hl4KRr8+pDwIHfh5MrGSsMmXqcmPcJbtRHIsAFumDVT+Z uAjHXkybFW9IkWC5zAknLOAtqlspi2qR7XTJqozl1wMyrP+qjxBhu5UCJChbKRAF I+rMPH/mtjVTZ/zlNdRH0foRmZhWIv+V3peciovhNNSgefDBg817ny0CEmep9bHm ejFHUCDxzCmp/3L1zdR/9dGWaY5N4ijoxmYHkW/YrDp8zmpDuCJdnQ2Kg/RD2M2R HGNVozEnF9cRtEAVT/mEAqQnIxnObWv8 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:56 2025 by rpki-client on console.sobornost.net