$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: 5dMUiJPn5EsoCqZU9EpfuDEUpeF8jWa0IUO72pcLnlo= Subject key identifier: 0F:07:15:58:79:2D:74:B1:EF:B9:E4:52:7E:67:A0:65:D1:E3:C9:31 Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: 012A Signing time: Sun 27 Apr 2025 03:33:04 +0000 Manifest this update: Sun 27 Apr 2025 03:33:04 +0000 Manifest next update: Sun 04 May 2025 03:33:04 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: Vh+C22aCjlaRqdOSWTXQeJIvS5aTCDEWwLYtIepT4Ts=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C, serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Apr 27 03:33:04 2025 GMT Not After : May 4 03:33:04 2025 GMT Subject: CN=680da570-011d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f6:5b:16:a6:21:22:a4:45:ad:1e:39:17:29: 0f:ca:4a:c3:1c:8d:b1:5f:00:cb:c9:cb:3e:e5:06: 8e:c8:16:64:b2:41:3f:b2:6b:f6:c6:81:c5:19:9f: 67:c0:e8:b2:bc:11:60:f4:61:a8:e7:f2:ac:59:bd: 05:a0:61:35:7a:9f:c9:90:cf:a6:14:49:db:6f:45: 4d:7b:0b:c0:1d:0f:5e:e2:81:5a:46:5a:82:8b:a3: dd:0a:b8:bb:53:ff:b9:73:45:d6:dc:8f:b6:33:59: be:60:9e:e6:c8:0a:c4:54:27:c5:de:3b:49:76:eb: 7b:cb:55:73:c9:65:36:a8:4e:b3:2d:a5:d1:5b:62: 0c:51:53:77:a2:26:dd:fb:d7:65:f0:5a:47:84:10: ec:cc:1f:09:41:94:e5:59:09:0e:f4:ea:3a:76:ae: a5:9a:ff:6b:02:df:27:22:58:4b:f9:64:fa:c1:03: 0a:b2:9f:d1:84:aa:df:72:46:07:69:48:43:b6:10: 3b:f4:d3:4e:4d:6b:97:f0:5f:a5:e7:39:b3:0d:25: 39:b0:33:31:a3:c5:cb:f3:fc:68:18:0f:b0:91:28: 81:f4:21:25:c2:36:86:5a:79:30:d0:a1:0d:13:89: ab:8f:7d:d9:94:bb:9b:0a:88:ce:29:2f:40:d3:fb: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:07:15:58:79:2D:74:B1:EF:B9:E4:52:7E:67:A0:65:D1:E3:C9:31 X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:16:74:41:a6:da:bf:e1:d1:b0:83:0d:f6:4b:20:6e:fd:40: 36:28:6c:fa:08:42:f7:c4:e2:ae:7a:37:09:4a:ac:43:f5:38: f0:38:ce:49:ea:8d:06:70:fd:d6:05:b4:d0:05:25:66:35:d6: 7e:af:33:c4:08:a2:df:2c:aa:7e:26:e6:81:5c:8d:a0:b7:ae: 82:1a:db:90:b3:47:98:38:1f:f9:04:05:ee:8a:fb:2a:ec:14: 37:be:96:00:77:6a:cd:40:d2:f7:c2:a1:59:ff:c6:ca:52:66: f4:96:ad:d3:ea:2f:8e:6c:d8:60:96:72:72:bb:20:9a:64:4f: 55:60:48:72:fd:78:67:1a:7b:d1:3f:30:b9:d5:40:8d:e7:b4: f5:00:41:24:26:2d:fb:36:1a:de:8e:94:49:55:a5:e7:d0:7d: 04:22:34:f6:b8:a4:2a:88:ff:a5:67:a7:10:3c:83:3e:bc:d1: 35:ae:f2:7f:25:ec:c9:c3:95:32:47:64:7a:32:d6:c8:ac:7f: 93:4c:98:96:7f:a1:5c:7e:29:65:ff:0d:97:6d:e3:c4:cf:52: 72:91:58:31:fe:84:1e:ed:29:81:48:ca:39:1a:e0:51:e7:04: 3a:9e:aa:1f:24:88:00:6d:55:4e:88:06:81:ec:ae:4a:be:7b: 98:4b:57:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjUwNDI3MDMzMzA0WhcNMjUwNTA0MDMzMzA0WjAYMRYwFAYD VQQDEw02ODBkYTU3MC0wMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/ZbFqYhIqRFrR45FykPykrDHI2xXwDLycs+5QaOyBZkskE/smv2xoHFGZ9n wOiyvBFg9GGo5/KsWb0FoGE1ep/JkM+mFEnbb0VNewvAHQ9e4oFaRlqCi6PdCri7 U/+5c0XW3I+2M1m+YJ7myArEVCfF3jtJdut7y1VzyWU2qE6zLaXRW2IMUVN3oibd +9dl8FpHhBDszB8JQZTlWQkO9Oo6dq6lmv9rAt8nIlhL+WT6wQMKsp/RhKrfckYH aUhDthA79NNOTWuX8F+l5zmzDSU5sDMxo8XL8/xoGA+wkSiB9CElwjaGWnkw0KEN E4mrj33ZlLubCojOKS9A0/shYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8HFVh5 LXSx77nkUn5noGXR48kxMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0FnRBptq/4dGwgw32SyBu/UA2KGz6CEL3xOKuejcJSqxD9TjwOM5J 6o0GcP3WBbTQBSVmNdZ+rzPECKLfLKp+JuaBXI2gt66CGtuQs0eYOB/5BAXuivsq 7BQ3vpYAd2rNQNL3wqFZ/8bKUmb0lq3T6i+ObNhglnJyuyCaZE9VYEhy/XhnGnvR PzC51UCN57T1AEEkJi37NhrejpRJVaXn0H0EIjT2uKQqiP+lZ6cQPIM+vNE1rvJ/ JezJw5UyR2R6MtbIrH+TTJiWf6Fcfill/w2XbePEz1JykVgx/oQe7SmBSMo5GuBR 5wQ6nqofJIgAbVVOiAaB7K5KvnuYS1dO -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:15 2025 by rpki-client on console.sobornost.net