$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft File: TZAcNCU7ylsnTusQaZPe9yCiUqw.mft (raw, json) Hash identifier: cNuMH2JNYQs52hik2oaNqoyp49a9/0GyVV5OGgm7JlQ= Subject key identifier: 24:AE:19:7F:F0:D7:D7:06:D9:29:A9:A5:34:A1:54:73:00:8E:DE:33 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft Manifest number: 0C21 Signing time: Sat 26 Apr 2025 20:33:22 +0000 Manifest this update: Sat 26 Apr 2025 20:33:22 +0000 Manifest next update: Sat 03 May 2025 20:33:22 +0000 Files and hashes: 1: TZAcNCU7ylsnTusQaZPe9yCiUqw.crl (hash: QWD3+a6i8UGNcedl7w0A1VLB15XTbuie+Y5TNxclOC0=) 2: 8E4BBF50F5C511EF89110646C4F9AE02.roa (hash: S0EFM1LlMU93Q/SmaTsXJfrCySvLdm2xsJllc0bdMTA=) 3: A1B8D10EF5C511EF83B21246C4F9AE02.roa (hash: qJqe7xZLrZpale4qfa8dX4Bwzzbb4MiCN1zRa6JcZMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Apr 26 20:33:22 2025 GMT Not After : May 3 20:33:22 2025 GMT Subject: CN=680d4312-033b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:eb:03:08:d7:03:85:ef:8a:74:99:11:63:2b: dc:57:54:a0:ce:94:97:c1:c4:50:24:49:63:1c:b0: 86:b6:cb:0f:a6:72:f0:0b:34:2e:c9:8a:cf:28:77: 1f:c4:da:fd:87:5f:81:97:12:e2:7d:67:1e:79:41: 4c:42:a6:e3:b7:8d:17:ed:71:9e:84:49:7f:d8:7c: 34:9e:46:39:fc:a7:2b:cc:b0:4d:d4:c0:91:87:74: 1a:c2:aa:11:0b:7e:d2:3c:48:3b:db:f4:47:75:37: 74:69:2f:4c:ec:3e:34:d8:66:60:98:9d:2f:c3:d1: 7f:74:95:3b:12:0a:02:a2:37:d6:69:d1:62:b9:31: ee:e9:bd:3b:69:85:ba:8f:60:aa:78:87:03:97:a6: 45:8b:06:69:18:42:dc:a2:e1:64:04:f6:8d:9a:74: f9:8f:7b:cd:93:4c:4f:58:13:c4:aa:75:38:19:c8: 01:24:be:60:e4:82:0f:b5:44:0f:b6:6e:9e:60:85: 85:03:bb:fb:2e:93:e1:56:af:e8:80:03:d1:8a:38: a2:e1:f0:c8:18:e7:5f:c2:9d:ef:73:1d:99:21:54: 1a:68:6f:55:7e:a7:6c:6e:3d:fd:9f:0d:58:78:8f: d6:28:28:26:86:0f:94:1d:c6:0e:02:82:bb:6b:33: 5f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:AE:19:7F:F0:D7:D7:06:D9:29:A9:A5:34:A1:54:73:00:8E:DE:33 X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:8b:bd:1f:70:0a:df:1d:21:5b:db:bf:53:ea:03:e7:01:43: 09:ca:b7:c6:82:9b:e1:eb:12:70:02:38:5b:52:36:23:66:65: 6f:87:ff:75:3a:79:dd:4f:23:70:91:9a:6b:2f:7c:d4:02:df: c3:5a:c0:ed:32:f0:92:0d:81:7b:be:65:85:eb:c7:54:8a:a3: 73:dc:ad:8b:1b:53:f3:be:df:95:d4:1b:cd:35:bd:69:8b:40: 69:97:47:7e:7c:38:35:23:2c:44:38:90:3f:b5:46:67:69:77: 4f:76:02:7b:ae:87:b5:65:2e:35:a3:c0:be:d4:17:f9:31:f4: 38:5a:30:6d:fd:dd:39:a1:e0:84:4f:78:34:bc:c4:93:f3:63: f2:b8:4c:83:1f:05:8a:de:54:a8:c9:94:f6:f7:7c:2c:42:6e: 62:c1:30:6f:1d:f9:54:03:9d:95:51:c9:93:a8:a1:2d:e5:4a: 33:f5:2f:90:3f:b0:95:a4:9b:06:de:eb:a0:d2:f9:d8:62:07: 86:45:75:bc:b8:df:a6:fc:c2:06:23:93:22:6e:f5:a3:39:6c: 70:c1:6e:01:ee:00:39:64:96:bf:7d:81:80:d9:1d:22:5b:5d: 7b:5d:ad:84:fa:39:c2:6d:f7:ba:72:d6:44:b3:ba:82:7c:17: 32:d2:8b:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwNDI2MjAzMzIyWhcNMjUwNTAzMjAzMzIyWjAYMRYwFAYD VQQDEw02ODBkNDMxMi0wMzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzesDCNcDhe+KdJkRYyvcV1SgzpSXwcRQJEljHLCGtssPpnLwCzQuyYrPKHcf xNr9h1+BlxLifWceeUFMQqbjt40X7XGehEl/2Hw0nkY5/KcrzLBN1MCRh3QawqoR C37SPEg72/RHdTd0aS9M7D402GZgmJ0vw9F/dJU7EgoCojfWadFiuTHu6b07aYW6 j2CqeIcDl6ZFiwZpGELcouFkBPaNmnT5j3vNk0xPWBPEqnU4GcgBJL5g5IIPtUQP tm6eYIWFA7v7LpPhVq/ogAPRijii4fDIGOdfwp3vcx2ZIVQaaG9Vfqdsbj39nw1Y eI/WKCgmhg+UHcYOAoK7azNf1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSuGX/w 19cG2SmppTShVHMAjt4zMB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3ls c25UdXNRYVpQZTl5Q2lVcXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqi70fcArfHSFb279T6gPnAUMJyrfGgpvh6xJwAjhbUjYjZmVvh/91 OnndTyNwkZprL3zUAt/DWsDtMvCSDYF7vmWF68dUiqNz3K2LG1Pzvt+V1BvNNb1p i0Bpl0d+fDg1IyxEOJA/tUZnaXdPdgJ7roe1ZS41o8C+1Bf5MfQ4WjBt/d05oeCE T3g0vMST82PyuEyDHwWK3lSoyZT293wsQm5iwTBvHflUA52VUcmTqKEt5Uoz9S+Q P7CVpJsG3uug0vnYYgeGRXW8uN+m/MIGI5MibvWjOWxwwW4B7gA5ZJa/fYGA2R0i W117Xa2E+jnCbfe6ctZEs7qCfBcy0ovD -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:11 2025 by rpki-client on console.sobornost.net