$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft File: wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft (raw, json) Hash identifier: 3G6iOwN14MQRQhMgaZcZ9EdHLqX/ygSNN/Yca1HCxXE= Subject key identifier: FE:9E:A9:9A:63:B6:21:22:29:74:DB:C0:26:D4:0C:14:C3:12:91:64 Authority key identifier: C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 Certificate issuer: /CN=A91CE821/serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Certificate serial: 14B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft Manifest number: 18F2 Signing time: Mon 28 Apr 2025 17:06:13 +0000 Manifest this update: Mon 28 Apr 2025 17:06:13 +0000 Manifest next update: Mon 05 May 2025 17:06:13 +0000 Files and hashes: 1: wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl (hash: 15urwLgdcevq13Qxp8i5x6rENhOy1G0ejPL6B0xA7fY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 17:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5298 (0x14b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE821, serialNumber=C222C19EBF52844D4B7CDA0EF754E6D330C4B609 Validity Not Before: Apr 28 17:06:13 2025 GMT Not After : May 5 17:06:13 2025 GMT Subject: CN=680fb585-be2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:86:0d:ac:72:d5:52:93:d4:60:45:a1:8d: 34:62:63:32:2a:d9:01:a5:63:be:3b:bf:7e:48:9a: 2b:37:b5:2e:ac:34:8a:67:2f:ca:bc:16:97:5c:76: 97:cf:be:76:7b:19:80:6b:ed:95:28:15:b0:47:fe: 18:d3:91:6a:8b:d0:68:92:f8:aa:e1:e6:8d:14:f0: 08:43:ce:20:c5:10:10:24:1f:bc:a6:b0:bc:1c:97: 12:aa:84:62:13:18:ed:73:1b:9b:84:cb:4a:28:02: a8:d7:4b:21:81:01:18:30:ac:5d:2f:3d:f1:71:05: 3a:b0:56:54:f4:57:85:6d:ac:f4:e7:23:69:de:12: a1:e9:c4:e7:2a:3d:a1:e2:e3:7d:5b:e0:a2:5d:09: ef:e7:f2:43:9f:8a:b0:01:e0:b4:2c:e8:7d:59:9b: 97:4a:67:38:0f:94:8a:ec:87:a4:27:a9:65:fe:f5: 2a:b9:ae:e4:8d:1d:f0:ab:7c:f2:7d:ce:c6:47:51: 28:64:0f:cf:69:39:c5:45:b2:71:d4:db:20:d4:86: 62:01:2e:27:9a:df:ff:3e:fe:2f:cc:43:55:4f:ed: 62:2f:57:22:39:14:54:86:f2:69:41:ea:dd:55:62: 0a:de:af:84:68:63:74:68:76:56:89:8e:72:9c:a6: 59:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:9E:A9:9A:63:B6:21:22:29:74:DB:C0:26:D4:0C:14:C3:12:91:64 X509v3 Authority Key Identifier: keyid:C2:22:C1:9E:BF:52:84:4D:4B:7C:DA:0E:F7:54:E6:D3:30:C4:B6:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wiLBnr9ShE1LfNoO91Tm0zDEtgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE821/811FB590605111E88CD8EC47C4F9AE02/wiLBnr9ShE1LfNoO91Tm0zDEtgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:25:56:b6:70:7c:92:ef:07:ba:3e:06:69:b3:51:61:7a:df: 08:67:34:e8:f1:3e:92:6c:bb:86:8b:b3:61:dd:fd:87:64:fd: 50:04:97:c4:e8:bd:60:4c:06:62:e6:de:82:50:06:81:c7:b8: 63:68:a4:9a:2c:2e:32:e9:0c:f1:3d:71:e3:35:32:a9:96:40: ab:79:2e:e8:dd:99:52:05:0c:4f:5c:c5:eb:75:1d:cd:15:f1: 4a:64:26:2b:b4:c7:31:36:bc:2b:40:a0:ee:5a:a5:8e:6b:f0: 15:8e:d6:3e:96:be:dd:92:f7:da:79:bc:00:63:cb:a7:99:d8: f2:1d:2c:10:3e:c2:5d:5c:a0:63:72:17:3a:07:62:01:94:b2: ff:c1:38:70:97:f7:b8:e0:6c:d3:aa:bc:5b:b3:2f:9b:62:a0: fd:74:a0:b6:be:9a:02:70:b6:64:fc:42:56:cd:0d:ec:3d:87: e2:11:f7:ef:8a:b4:57:21:4e:21:0d:83:f3:23:b2:a1:2e:09: 95:5e:25:b8:ad:b6:8b:16:82:de:aa:b7:0b:58:cc:03:72:3b: 58:e4:6f:92:c0:ed:44:eb:f2:ea:ee:3d:a6:81:99:bd:f9:3c: f3:2b:0b:1b:5d:8f:ff:99:59:77:90:b0:62:ad:fd:85:77:01: 79:04:d7:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U4MjExMTAvBgNVBAUTKEMyMjJDMTlFQkY1Mjg0NEQ0QjdDREEwRUY3NTRFNkQz MzBDNEI2MDkwHhcNMjUwNDI4MTcwNjEzWhcNMjUwNTA1MTcwNjEzWjAYMRYwFAYD VQQDEw02ODBmYjU4NS1iZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6CGDaxy1VKT1GBFoY00YmMyKtkBpWO+O79+SJorN7UurDSKZy/KvBaXXHaX z752exmAa+2VKBWwR/4Y05Fqi9Bokviq4eaNFPAIQ84gxRAQJB+8prC8HJcSqoRi ExjtcxubhMtKKAKo10shgQEYMKxdLz3xcQU6sFZU9FeFbaz05yNp3hKh6cTnKj2h 4uN9W+CiXQnv5/JDn4qwAeC0LOh9WZuXSmc4D5SK7IekJ6ll/vUqua7kjR3wq3zy fc7GR1EoZA/PaTnFRbJx1Nsg1IZiAS4nmt//Pv4vzENVT+1iL1ciORRUhvJpQerd VWIK3q+EaGN0aHZWiY5ynKZZqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6eqZpj tiEiKXTbwCbUDBTDEpFkMB8GA1UdIwQYMBaAFMIiwZ6/UoRNS3zaDvdU5tMwxLYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTgyMS84MTFGQjU5MDYw NTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hFMUxmTm9POTFUbTB6REV0 Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dpTEJucjlTaEUxTGZOb085MVRtMHpERXRnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTgyMS84MTFGQjU5MDYwNTExMUU4OENEOEVDNDdDNEY5QUUwMi93aUxCbnI5U2hF MUxmTm9POTFUbTB6REV0Z2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACJVa2cHyS7we6PgZps1Fhet8IZzTo8T6SbLuGi7Nh3f2HZP1QBJfE 6L1gTAZi5t6CUAaBx7hjaKSaLC4y6QzxPXHjNTKplkCreS7o3ZlSBQxPXMXrdR3N FfFKZCYrtMcxNrwrQKDuWqWOa/AVjtY+lr7dkvfaebwAY8unmdjyHSwQPsJdXKBj chc6B2IBlLL/wThwl/e44GzTqrxbsy+bYqD9dKC2vpoCcLZk/EJWzQ3sPYfiEffv irRXIU4hDYPzI7KhLgmVXiW4rbaLFoLeqrcLWMwDcjtY5G+SwO1E6/Lq7j2mgZm9 +TzzKwsbXY//mVl3kLBirf2FdwF5BNc/ -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:59 2025 by rpki-client on console.sobornost.net