$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B2B/9B8206D4CF9C11EEAF34465FC4F9AE02/wJ7fW2leBHksNRT0mPS7FEcJbvc.mft File: wJ7fW2leBHksNRT0mPS7FEcJbvc.mft (raw, json) Hash identifier: FVPougbPK9mXIj047v8M83QQJ8AYUfkoiqjoaem+URs= Subject key identifier: 70:1E:BB:40:48:DA:BE:1C:7B:A4:6A:29:7A:50:97:EB:48:33:AF:66 Authority key identifier: C0:9E:DF:5B:69:5E:04:79:2C:35:14:F4:98:F4:BB:14:47:09:6E:F7 Certificate issuer: /CN=A91D8B2B/serialNumber=C09EDF5B695E04792C3514F498F4BB1447096EF7 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wJ7fW2leBHksNRT0mPS7FEcJbvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B2B/9B8206D4CF9C11EEAF34465FC4F9AE02/wJ7fW2leBHksNRT0mPS7FEcJbvc.mft Manifest number: DB Signing time: Wed 23 Apr 2025 04:40:16 +0000 Manifest this update: Wed 23 Apr 2025 04:40:16 +0000 Manifest next update: Wed 30 Apr 2025 04:40:16 +0000 Files and hashes: 1: wJ7fW2leBHksNRT0mPS7FEcJbvc.crl (hash: dITXy8i4tlMuRuOMM0rbEFomb0hPVJmzb6oAliwL9bk=) 2: FC0907B8D45711EE93BD8B7CC4F9AE02.roa (hash: WEHBvskgD+7pAwM51UvYkvJPxMc31VB5wYczhy7vxrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B2B/9B8206D4CF9C11EEAF34465FC4F9AE02/wJ7fW2leBHksNRT0mPS7FEcJbvc.crl rsync://rpki.apnic.net/member_repository/A91D8B2B/9B8206D4CF9C11EEAF34465FC4F9AE02/wJ7fW2leBHksNRT0mPS7FEcJbvc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wJ7fW2leBHksNRT0mPS7FEcJbvc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B2B, serialNumber=C09EDF5B695E04792C3514F498F4BB1447096EF7 Validity Not Before: Apr 23 04:40:16 2025 GMT Not After : Apr 30 04:40:16 2025 GMT Subject: CN=68086f30-e0cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:ba:7a:57:5c:5f:aa:c7:29:49:c1:06:76: e0:19:3a:d8:0d:1a:7e:9c:07:a3:a6:27:c5:97:52: 5e:6c:0b:6e:25:29:46:26:47:55:43:5a:9c:53:9b: 4c:86:10:d1:59:1e:ce:d8:02:fd:e3:b5:e7:e1:f7: 9e:26:4a:06:9e:8e:56:8b:30:5b:cd:63:a4:40:17: ae:f0:fc:a6:3d:34:52:79:1a:da:46:76:29:0e:6c: b5:67:03:c9:86:3c:2e:17:07:e5:9c:d6:9f:b2:b0: 3a:3f:10:1b:19:45:f4:d2:45:09:bb:32:60:7f:ac: 11:5b:e6:51:e2:85:97:32:84:24:cf:13:de:50:97: 5d:ba:90:83:5b:26:28:00:6a:f8:cb:fc:5f:a3:39: 09:54:82:7a:3c:5b:06:b2:77:fd:d7:9a:6d:8f:f3: a5:6d:36:05:cc:11:41:d2:d3:98:f2:1d:7c:77:59: a1:c2:5a:b6:d4:81:bd:41:aa:c3:4d:77:e6:e3:d4: a8:fa:30:17:8c:a6:57:41:46:e4:62:51:38:2d:13: 08:03:3e:36:11:c2:52:4f:9e:98:f6:82:1b:81:04: 72:5c:b6:0e:6a:90:f1:14:84:39:39:36:b0:e1:15: 03:39:bd:06:0b:a2:da:f8:5d:4f:8e:9b:0a:a3:1a: 03:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:1E:BB:40:48:DA:BE:1C:7B:A4:6A:29:7A:50:97:EB:48:33:AF:66 X509v3 Authority Key Identifier: keyid:C0:9E:DF:5B:69:5E:04:79:2C:35:14:F4:98:F4:BB:14:47:09:6E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B2B/9B8206D4CF9C11EEAF34465FC4F9AE02/wJ7fW2leBHksNRT0mPS7FEcJbvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wJ7fW2leBHksNRT0mPS7FEcJbvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B2B/9B8206D4CF9C11EEAF34465FC4F9AE02/wJ7fW2leBHksNRT0mPS7FEcJbvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:b2:3b:a1:f6:90:4b:41:c7:d1:51:22:6c:a1:70:1c:0e:65: 84:69:14:b0:7d:5e:f8:14:36:12:78:34:8e:a3:77:cd:a3:85: d6:16:b4:0b:4d:44:86:43:df:6d:f7:25:ad:03:df:60:04:14: 48:de:49:b3:62:4f:75:27:2f:72:f2:9d:d9:e1:a1:10:45:c5: 9e:f9:c6:f2:ab:24:e0:5c:8b:4a:af:35:d1:2e:2e:eb:f4:57: 84:d0:85:f2:b3:ff:9a:5a:bb:6f:58:eb:13:7c:41:10:33:a5: f8:2e:a5:7d:1e:cf:7b:09:48:72:6e:da:c4:a5:03:90:4d:5d: 23:d7:89:8d:89:3f:2b:af:ad:b7:bc:5b:ce:21:1a:6e:d6:cd: 3a:35:b0:0e:c1:48:5f:c6:f2:ff:a6:9f:e7:34:e0:c4:17:a6: ad:5e:db:a6:26:ed:86:93:88:27:81:63:39:de:32:4f:8c:1a: 03:ec:7a:72:30:57:ce:f1:8c:0e:13:71:12:ba:4a:57:23:40: 0f:2c:e3:9f:0a:f0:a8:5b:04:a4:b9:fe:3b:62:4c:0d:43:49: 18:1e:43:2a:c8:1a:77:46:c1:92:87:3b:29:b6:d3:6e:19:b8: f2:9c:2b:0b:0c:f7:b8:80:d8:1a:58:ba:ee:94:96:eb:9f:86: 51:e4:d7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCMkIxMTAvBgNVBAUTKEMwOUVERjVCNjk1RTA0NzkyQzM1MTRGNDk4RjRCQjE0 NDcwOTZFRjcwHhcNMjUwNDIzMDQ0MDE2WhcNMjUwNDMwMDQ0MDE2WjAYMRYwFAYD VQQDEw02ODA4NmYzMC1lMGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqci6eldcX6rHKUnBBnbgGTrYDRp+nAejpifFl1JebAtuJSlGJkdVQ1qcU5tM hhDRWR7O2AL947Xn4feeJkoGno5WizBbzWOkQBeu8PymPTRSeRraRnYpDmy1ZwPJ hjwuFwflnNafsrA6PxAbGUX00kUJuzJgf6wRW+ZR4oWXMoQkzxPeUJddupCDWyYo AGr4y/xfozkJVIJ6PFsGsnf915ptj/OlbTYFzBFB0tOY8h18d1mhwlq21IG9QarD TXfm49So+jAXjKZXQUbkYlE4LRMIAz42EcJST56Y9oIbgQRyXLYOapDxFIQ5OTaw 4RUDOb0GC6La+F1PjpsKoxoDnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHAeu0BI 2r4ce6RqKXpQl+tIM69mMB8GA1UdIwQYMBaAFMCe31tpXgR5LDUU9Jj0uxRHCW73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEIyQi85QjgyMDZENENG OUMxMUVFQUYzNDQ2NUZDNEY5QUUwMi93SjdmVzJsZUJIa3NOUlQwbVBTN0ZFY0pi dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3dKN2ZXMmxlQkhrc05SVDBtUFM3RkVjSmJ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEIyQi85QjgyMDZENENGOUMxMUVFQUYzNDQ2NUZDNEY5QUUwMi93SjdmVzJsZUJI a3NOUlQwbVBTN0ZFY0pidmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJsjuh9pBLQcfRUSJsoXAcDmWEaRSwfV74FDYSeDSOo3fNo4XWFrQL TUSGQ99t9yWtA99gBBRI3kmzYk91Jy9y8p3Z4aEQRcWe+cbyqyTgXItKrzXRLi7r 9FeE0IXys/+aWrtvWOsTfEEQM6X4LqV9Hs97CUhybtrEpQOQTV0j14mNiT8rr623 vFvOIRpu1s06NbAOwUhfxvL/pp/nNODEF6atXtumJu2Gk4gngWM53jJPjBoD7Hpy MFfO8YwOE3ESukpXI0APLOOfCvCoWwSkuf47YkwNQ0kYHkMqyBp3RsGShzspttNu GbjynCsLDPe4gNgaWLrulJbrn4ZR5Ne7 -----END CERTIFICATE-----Generated at Wed Apr 23 06:36:02 2025 by rpki-client on console.sobornost.net