$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft File: TiWbqHpAtm2EKsjOCup4TkvXOC4.mft (raw, json) Hash identifier: iIwkuH9rt7MPhBAnuxIP4BM80TcokBBZcaJ6fAA5OBU= Subject key identifier: 71:55:8F:1B:DA:B6:16:AF:47:60:CE:91:52:7C:D0:C9:34:10:26:1E Authority key identifier: 4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E Certificate issuer: /CN=A91E57A9/serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft Manifest number: AA Signing time: Sun 27 Apr 2025 04:57:29 +0000 Manifest this update: Sun 27 Apr 2025 04:57:28 +0000 Manifest next update: Sun 04 May 2025 04:57:28 +0000 Files and hashes: 1: TiWbqHpAtm2EKsjOCup4TkvXOC4.crl (hash: xQbjENan0wLPz5TbY6JwHFWfDGfNRFtGt+rcRin5GDc=) 2: 4647BCD66E7F11EF9223EA62C4F9AE02.roa (hash: B83vyctz3B0CBY300XtJK40jQxKO2YbqnW1lhv/rnh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=4E259BA87A40B66D842AC8CE0AEA784E4BD7382E Validity Not Before: Apr 27 04:57:28 2025 GMT Not After : May 4 04:57:28 2025 GMT Subject: CN=680db938-24d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0e:dd:ec:55:cf:e3:cb:52:be:ea:c2:18:03: cc:3f:25:04:26:86:8e:d1:dc:27:80:52:28:02:e2: 7a:3f:82:f2:c9:59:a8:00:59:13:43:b5:f1:1f:59: 56:ca:b2:c5:3d:c8:5c:16:94:3c:14:4a:d2:a7:80: ca:e8:09:17:c4:83:6c:8d:d1:49:d9:54:88:2a:de: f1:85:e4:31:d1:78:03:a3:9d:af:46:20:ba:26:20: ac:31:03:00:fb:c3:d9:12:cc:a2:81:97:b4:95:59: 97:ce:82:3d:da:97:96:4c:73:9b:8d:d2:80:ca:a0: ab:09:04:22:56:6a:bb:f4:d6:e0:a8:26:4d:49:e0: bf:62:80:fe:1e:73:c9:16:10:c9:ad:c6:6d:9a:2b: c5:c3:42:1c:c9:29:d1:7d:63:13:05:96:25:7b:82: a8:d9:4b:13:26:e2:4c:f2:6a:96:08:71:8a:2f:6b: d1:12:9a:22:ec:e7:4c:43:ac:74:78:42:d8:d6:da: a9:5d:8e:f3:fd:6c:d6:b2:f4:13:c9:86:1f:57:86: 94:fa:2d:8d:d3:bc:02:f4:9d:67:7c:7b:e8:8d:85: ab:5e:ed:1b:61:e8:05:12:1a:34:91:1b:61:ad:0f: c1:71:d0:c7:9d:b0:7f:e2:44:a8:b5:ce:31:3f:6e: 78:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:55:8F:1B:DA:B6:16:AF:47:60:CE:91:52:7C:D0:C9:34:10:26:1E X509v3 Authority Key Identifier: keyid:4E:25:9B:A8:7A:40:B6:6D:84:2A:C8:CE:0A:EA:78:4E:4B:D7:38:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TiWbqHpAtm2EKsjOCup4TkvXOC4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/7BBD11AC1FF311EFA3FB2C81C4F9AE02/TiWbqHpAtm2EKsjOCup4TkvXOC4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:bd:18:b5:0a:74:92:89:a1:d5:10:44:3f:e8:26:08:47:c0: 08:5f:cf:46:6e:ce:ea:ac:61:aa:0d:3d:42:7a:4c:30:50:ac: 3d:27:57:f1:f4:60:2e:27:f8:08:06:08:8d:52:4e:9b:a5:9b: f8:d1:55:bd:a6:9d:28:90:ca:18:dd:05:5e:81:b8:cb:5a:de: f1:04:e7:94:ac:fb:c9:f8:d8:50:1f:a3:ee:9d:4e:0c:b0:46: 4b:c1:c8:a5:ab:87:29:5a:91:e6:0c:27:51:bd:95:e1:fa:3d: 28:98:d3:3b:8a:9c:13:ff:6f:54:d8:c9:d7:e1:4e:e1:ff:21: 46:08:95:ae:ee:2e:35:b3:01:fa:82:39:b5:97:f2:1b:ee:fc: 92:3f:58:d3:f4:7f:61:72:a1:a9:58:3f:4d:a9:38:41:f9:83: 00:de:51:7c:7e:30:6d:26:3f:36:3a:89:77:ef:c4:f6:72:48: 72:52:0a:4f:ba:b4:59:38:b8:f9:43:87:41:a7:f4:d3:d0:0a: d5:d1:c9:1e:03:e1:55:c3:60:6d:e4:a3:e7:27:4e:4d:99:60: 27:f6:93:d2:ab:01:d3:3c:f1:47:c5:08:7d:8c:31:52:ae:58: 86:bd:34:fc:fa:0a:4b:fe:d3:da:2e:3c:ce:00:35:d8:a3:1a: c8:ec:fb:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKDRFMjU5QkE4N0E0MEI2NkQ4NDJBQzhDRTBBRUE3ODRF NEJENzM4MkUwHhcNMjUwNDI3MDQ1NzI4WhcNMjUwNTA0MDQ1NzI4WjAYMRYwFAYD VQQDEw02ODBkYjkzOC0yNGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxw7d7FXP48tSvurCGAPMPyUEJoaO0dwngFIoAuJ6P4LyyVmoAFkTQ7XxH1lW yrLFPchcFpQ8FErSp4DK6AkXxINsjdFJ2VSIKt7xheQx0XgDo52vRiC6JiCsMQMA +8PZEsyigZe0lVmXzoI92peWTHObjdKAyqCrCQQiVmq79NbgqCZNSeC/YoD+HnPJ FhDJrcZtmivFw0IcySnRfWMTBZYle4Ko2UsTJuJM8mqWCHGKL2vREpoi7OdMQ6x0 eELY1tqpXY7z/WzWsvQTyYYfV4aU+i2N07wC9J1nfHvojYWrXu0bYegFEho0kRth rQ/BcdDHnbB/4kSotc4xP254kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFVjxva thavR2DOkVJ80Mk0ECYeMB8GA1UdIwQYMBaAFE4lm6h6QLZthCrIzgrqeE5L1zgu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS83QkJEMTFBQzFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRtMkVLc2pPQ3VwNFRrdlhP QzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RpV2JxSHBBdG0yRUtzak9DdXA0VGt2WE9DNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTdBOS83QkJEMTFBQzFGRjMxMUVGQTNGQjJDODFDNEY5QUUwMi9UaVdicUhwQXRt MkVLc2pPQ3VwNFRrdlhPQzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATvRi1CnSSiaHVEEQ/6CYIR8AIX89Gbs7qrGGqDT1CekwwUKw9J1fx 9GAuJ/gIBgiNUk6bpZv40VW9pp0okMoY3QVegbjLWt7xBOeUrPvJ+NhQH6PunU4M sEZLwcilq4cpWpHmDCdRvZXh+j0omNM7ipwT/29U2MnX4U7h/yFGCJWu7i41swH6 gjm1l/Ib7vySP1jT9H9hcqGpWD9NqThB+YMA3lF8fjBtJj82Ool378T2ckhyUgpP urRZOLj5Q4dBp/TT0ArV0ckeA+FVw2Bt5KPnJ05NmWAn9pPSqwHTPPFHxQh9jDFS rliGvTT8+gpL/tPaLjzOADXYoxrI7Pug -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:57 2025 by rpki-client on console.sobornost.net