$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: 4mrXxuPYRq9ghZfnaQb7dj8BytfRBTvNP1kWXsuPM0c= Subject key identifier: 1E:5C:2A:55:99:66:A6:FA:61:E1:BB:CF:C2:DD:AC:5A:E4:58:59:AC Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 042B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 0427 Signing time: Sun 27 Apr 2025 00:01:14 +0000 Manifest this update: Sun 27 Apr 2025 00:01:14 +0000 Manifest next update: Sun 04 May 2025 00:01:14 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: TP2Pgt6QM0OvGYeaH/gvSFyEQaRc3qMG6VcIxkpt0FQ=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: RiGNiFnNAoJRKUyYrUN1wLZV9I9idQnh7FmtgNq/Suc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2, serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Apr 27 00:01:14 2025 GMT Not After : May 4 00:01:14 2025 GMT Subject: CN=680d73ca-350c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:53:1f:81:b0:34:b7:05:ef:f8:c2:06:6a:f9: b5:d8:5b:40:bb:1a:c3:17:13:21:d1:ae:ec:fd:e5: fe:9a:13:6d:3c:84:66:fb:6f:8f:48:96:4e:ef:c2: 7c:b5:29:e3:28:38:a8:d1:ce:98:a9:ce:91:ed:82: c0:3d:83:91:b2:c1:45:6c:74:84:5d:c5:5d:c1:03: c1:c1:cd:5e:38:1a:4b:bb:5d:b7:99:0c:d2:4b:58: 2c:e6:ff:25:47:3a:19:f2:33:b9:67:92:9b:c0:b1: ae:61:80:14:a1:6c:67:bb:48:b9:d3:12:70:eb:cf: f3:f5:05:ee:d6:24:a3:99:8a:7f:e2:9e:3d:c6:7b: c7:17:1d:4a:50:7d:a2:2a:9b:16:1e:d7:f2:fd:3b: 75:48:ff:19:27:ba:eb:06:78:c5:2e:39:0a:86:ff: 99:37:f7:92:8e:88:a7:3f:a4:88:c7:d0:2d:97:02: cd:cf:31:15:06:5e:9c:44:3a:70:a7:17:47:0d:46: 8e:1f:59:6f:81:77:00:4d:86:a7:84:ab:e6:3a:62: 10:1e:40:dc:52:b2:de:46:a4:1d:6e:5b:e3:fe:c0: d4:0d:e8:b9:ee:c1:30:e9:ed:71:a2:44:5a:58:68: c1:af:46:1a:4f:74:51:d1:9a:67:f6:08:32:91:82: 8a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5C:2A:55:99:66:A6:FA:61:E1:BB:CF:C2:DD:AC:5A:E4:58:59:AC X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:19:17:42:bc:51:88:2b:27:a4:bf:58:31:42:1b:0f:d0:68: 26:30:d3:d7:e8:a4:12:e7:08:35:e6:98:ac:ec:63:87:35:49: 92:86:d6:af:b6:a4:87:1b:6e:49:ee:51:69:8f:56:98:00:91: 38:4b:31:5e:86:a5:5e:38:9c:0e:3f:f3:3f:6d:da:d1:ec:ba: fa:4c:94:97:5a:c4:1c:f5:47:52:75:ce:a9:5d:ce:c5:c7:3b: 30:da:b8:c2:a7:3c:08:b6:c4:d2:bf:fc:0d:bb:47:10:76:4b: 14:29:d2:bf:b7:00:0b:5c:fa:42:2f:12:f4:8f:22:53:59:6b: a0:95:fc:3c:78:9b:dc:14:40:2a:43:0a:ad:81:48:d8:94:eb: d6:f4:96:6e:e5:3e:4f:80:f0:75:af:0b:d1:d9:f0:7c:2c:8a: e0:79:1d:f2:d7:c8:0b:9e:a2:58:d8:f0:e2:18:33:81:81:00: 8b:b7:95:71:3e:a9:90:f8:5b:d6:a5:6b:b5:b4:37:c2:57:c6: 49:2c:00:b7:82:83:af:1f:50:f7:73:94:92:0b:dd:86:14:a2: 52:56:82:ff:ab:9f:3e:d8:3b:f1:e9:5d:88:9d:47:90:24:f9: 07:8d:6c:29:5d:e0:e1:a3:5e:75:83:70:25:10:ed:11:78:7d: 29:0f:c3:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjUwNDI3MDAwMTE0WhcNMjUwNTA0MDAwMTE0WjAYMRYwFAYD VQQDEw02ODBkNzNjYS0zNTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm1MfgbA0twXv+MIGavm12FtAuxrDFxMh0a7s/eX+mhNtPIRm+2+PSJZO78J8 tSnjKDio0c6Yqc6R7YLAPYORssFFbHSEXcVdwQPBwc1eOBpLu123mQzSS1gs5v8l RzoZ8jO5Z5KbwLGuYYAUoWxnu0i50xJw68/z9QXu1iSjmYp/4p49xnvHFx1KUH2i KpsWHtfy/Tt1SP8ZJ7rrBnjFLjkKhv+ZN/eSjoinP6SIx9AtlwLNzzEVBl6cRDpw pxdHDUaOH1lvgXcATYanhKvmOmIQHkDcUrLeRqQdblvj/sDUDei57sEw6e1xokRa WGjBr0YaT3RR0Zpn9ggykYKKJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5cKlWZ Zqb6YeG7z8LdrFrkWFmsMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiGRdCvFGIKyekv1gxQhsP0GgmMNPX6KQS5wg15pis7GOHNUmShtav tqSHG25J7lFpj1aYAJE4SzFehqVeOJwOP/M/bdrR7Lr6TJSXWsQc9UdSdc6pXc7F xzsw2rjCpzwItsTSv/wNu0cQdksUKdK/twALXPpCLxL0jyJTWWuglfw8eJvcFEAq QwqtgUjYlOvW9JZu5T5PgPB1rwvR2fB8LIrgeR3y18gLnqJY2PDiGDOBgQCLt5Vx PqmQ+FvWpWu1tDfCV8ZJLAC3goOvH1D3c5SSC92GFKJSVoL/q58+2Dvx6V2InUeQ JPkHjWwpXeDho151g3AlEO0ReH0pD8MQ -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:14 2025 by rpki-client on console.sobornost.net