$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC8F3/E9D30C8035D411EBBE277F33C4F9AE02/8VmsBLW4k3kF5p0b8l9NU7NUXJc.mft File: 8VmsBLW4k3kF5p0b8l9NU7NUXJc.mft (raw, json) Hash identifier: loBcjrGPIepEynq38+nbPkHLCA5iavIDV15Mit+pMlg= Subject key identifier: 53:DD:DA:A0:E2:6D:FD:8E:E2:63:5D:3F:39:45:B0:5D:FF:AD:0B:7E Authority key identifier: F1:59:AC:04:B5:B8:93:79:05:E6:9D:1B:F2:5F:4D:53:B3:54:5C:97 Certificate issuer: /CN=A91DC8F3/serialNumber=F159AC04B5B8937905E69D1BF25F4D53B3545C97 Certificate serial: 0720 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VmsBLW4k3kF5p0b8l9NU7NUXJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC8F3/E9D30C8035D411EBBE277F33C4F9AE02/8VmsBLW4k3kF5p0b8l9NU7NUXJc.mft Manifest number: 0718 Signing time: Sat 26 Apr 2025 21:33:16 +0000 Manifest this update: Sat 26 Apr 2025 21:33:15 +0000 Manifest next update: Sat 03 May 2025 21:33:15 +0000 Files and hashes: 1: 8VmsBLW4k3kF5p0b8l9NU7NUXJc.crl (hash: EcE72NLPaW+s6+/crz11ghG+CdKOJOIQEsg8/JRlx88=) 2: ADE3F5B635D611EB8466D634C4F9AE02.roa (hash: 8U9EPbtMKIJ3PvMvZUbdIHhWDysnxRWcaHtBd734a+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC8F3/E9D30C8035D411EBBE277F33C4F9AE02/8VmsBLW4k3kF5p0b8l9NU7NUXJc.crl rsync://rpki.apnic.net/member_repository/A91DC8F3/E9D30C8035D411EBBE277F33C4F9AE02/8VmsBLW4k3kF5p0b8l9NU7NUXJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VmsBLW4k3kF5p0b8l9NU7NUXJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC8F3, serialNumber=F159AC04B5B8937905E69D1BF25F4D53B3545C97 Validity Not Before: Apr 26 21:33:15 2025 GMT Not After : May 3 21:33:15 2025 GMT Subject: CN=680d511b-1e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:98:fe:1f:6a:eb:47:ce:50:b8:cc:ac:56:c6: c2:cc:a9:ca:ab:fc:d3:b0:25:08:4a:16:c6:7e:0c: 7f:ce:69:08:99:af:19:2a:2a:34:45:cd:76:5b:a0: 82:c6:ae:85:4a:bf:c3:81:46:1c:28:7f:06:2b:3a: 17:c8:04:eb:44:0c:0a:9d:f4:cc:a1:db:3b:2f:30: e5:2c:cd:a3:2a:d9:31:23:69:ef:6e:73:bb:03:4b: e1:dd:4d:ff:bb:d0:1a:ec:5d:90:d1:0d:b4:8f:da: a1:3e:6f:16:8e:11:70:1b:04:63:59:68:72:6f:7c: 9d:12:99:8a:48:17:f6:8f:51:cf:af:3b:d7:13:7a: bb:b6:09:6f:59:53:3e:2b:ff:6f:09:de:10:8c:91: f4:17:0f:63:7e:33:fd:ad:f1:78:10:ea:bc:12:eb: 15:46:ae:57:74:95:dd:d4:64:86:01:de:49:41:14: 7a:34:2a:90:c0:68:b5:55:ed:d1:e4:71:6d:70:7e: a1:61:7a:db:ec:67:0b:e9:9c:c1:a3:b1:9d:0f:51: c2:60:4b:e4:3e:4e:0b:13:e0:cd:2e:8c:a7:e4:34: a1:a8:43:6c:47:53:f5:4f:8f:89:73:68:ea:02:09: 0e:61:e9:6d:4f:dc:ef:62:ab:6a:15:6e:7d:79:a0: 78:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DD:DA:A0:E2:6D:FD:8E:E2:63:5D:3F:39:45:B0:5D:FF:AD:0B:7E X509v3 Authority Key Identifier: keyid:F1:59:AC:04:B5:B8:93:79:05:E6:9D:1B:F2:5F:4D:53:B3:54:5C:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC8F3/E9D30C8035D411EBBE277F33C4F9AE02/8VmsBLW4k3kF5p0b8l9NU7NUXJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8VmsBLW4k3kF5p0b8l9NU7NUXJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC8F3/E9D30C8035D411EBBE277F33C4F9AE02/8VmsBLW4k3kF5p0b8l9NU7NUXJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:db:dc:04:20:07:eb:6c:6b:4e:5f:57:74:24:52:ba:fe:7c: 6f:10:bf:dd:24:c2:7e:99:65:53:0d:1e:31:8b:2b:df:f3:b1: b5:d5:93:d8:e4:43:28:8c:b9:dd:d6:5e:6a:ce:8f:d7:3d:8a: 57:e5:6e:48:72:43:a5:ed:e6:f8:62:ee:80:50:35:b9:4a:f6: 3f:98:e2:3a:20:12:bd:0c:08:72:47:d5:a1:ce:17:81:e6:bb: 67:45:0d:34:3b:3d:22:d0:14:91:a0:53:91:42:d0:d5:01:11: 86:b1:8e:39:65:bd:80:f9:2e:44:b3:b0:fe:02:ec:4c:b1:63: b2:7c:5a:52:95:68:67:32:fd:77:38:0c:8c:0b:3c:4f:b1:5c: 0f:93:b5:05:2c:29:19:02:44:9a:29:35:a6:1e:df:91:93:0b: e4:50:22:3b:14:c8:14:e8:1a:55:74:27:d9:87:09:65:74:91: 50:4f:23:de:99:e8:15:21:1d:75:28:76:18:e1:d5:61:35:0b: e3:e4:ee:13:51:b8:01:17:09:d2:25:3f:ae:ab:79:43:1a:9f: 8a:08:12:5c:65:ae:c4:49:33:2c:64:a6:b5:d7:40:4f:b5:97: f3:a0:28:85:c6:fa:78:37:db:90:47:90:77:8e:a0:81:90:63: 62:5d:06:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM4RjMxMTAvBgNVBAUTKEYxNTlBQzA0QjVCODkzNzkwNUU2OUQxQkYyNUY0RDUz QjM1NDVDOTcwHhcNMjUwNDI2MjEzMzE1WhcNMjUwNTAzMjEzMzE1WjAYMRYwFAYD VQQDEw02ODBkNTExYi0xZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZj+H2rrR85QuMysVsbCzKnKq/zTsCUIShbGfgx/zmkIma8ZKio0Rc12W6CC xq6FSr/DgUYcKH8GKzoXyATrRAwKnfTMods7LzDlLM2jKtkxI2nvbnO7A0vh3U3/ u9Aa7F2Q0Q20j9qhPm8WjhFwGwRjWWhyb3ydEpmKSBf2j1HPrzvXE3q7tglvWVM+ K/9vCd4QjJH0Fw9jfjP9rfF4EOq8EusVRq5XdJXd1GSGAd5JQRR6NCqQwGi1Ve3R 5HFtcH6hYXrb7GcL6ZzBo7GdD1HCYEvkPk4LE+DNLoyn5DShqENsR1P1T4+Jc2jq AgkOYeltT9zvYqtqFW59eaB4YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPd2qDi bf2O4mNdPzlFsF3/rQt+MB8GA1UdIwQYMBaAFPFZrAS1uJN5BeadG/JfTVOzVFyX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzhGMy9FOUQzMEM4MDM1 RDQxMUVCQkUyNzdGMzNDNEY5QUUwMi84Vm1zQkxXNGsza0Y1cDBiOGw5TlU3TlVY SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhWbXNCTFc0azNrRjVwMGI4bDlOVTdOVVhKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzhGMy9FOUQzMEM4MDM1RDQxMUVCQkUyNzdGMzNDNEY5QUUwMi84Vm1zQkxXNGsz a0Y1cDBiOGw5TlU3TlVYSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw29wEIAfrbGtOX1d0JFK6/nxvEL/dJMJ+mWVTDR4xiyvf87G11ZPY 5EMojLnd1l5qzo/XPYpX5W5IckOl7eb4Yu6AUDW5SvY/mOI6IBK9DAhyR9WhzheB 5rtnRQ00Oz0i0BSRoFORQtDVARGGsY45Zb2A+S5Es7D+AuxMsWOyfFpSlWhnMv13 OAyMCzxPsVwPk7UFLCkZAkSaKTWmHt+RkwvkUCI7FMgU6BpVdCfZhwlldJFQTyPe megVIR11KHYY4dVhNQvj5O4TUbgBFwnSJT+uq3lDGp+KCBJcZa7ESTMsZKa110BP tZfzoCiFxvp4N9uQR5B3jqCBkGNiXQZa -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:12 2025 by rpki-client on console.sobornost.net