$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.mft File: Zw46BnIWhKtHO7vlzCLPBdAkv20.mft (raw, json) Hash identifier: i5pzODvsxbaz5NsYp/m6MsIXLj94kEEuSA9wkR0AXE4= Subject key identifier: 24:64:DF:47:B1:23:F1:E7:B5:A0:54:C1:DB:CE:2A:A3:ED:E0:72:0A Authority key identifier: 67:0E:3A:06:72:16:84:AB:47:3B:BB:E5:CC:22:CF:05:D0:24:BF:6D Certificate issuer: /CN=A91EAE0A/serialNumber=670E3A06721684AB473BBBE5CC22CF05D024BF6D Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zw46BnIWhKtHO7vlzCLPBdAkv20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.mft Manifest number: 48 Signing time: Sun 27 Apr 2025 06:12:51 +0000 Manifest this update: Sun 27 Apr 2025 06:12:51 +0000 Manifest next update: Sun 04 May 2025 06:12:51 +0000 Files and hashes: 1: Zw46BnIWhKtHO7vlzCLPBdAkv20.crl (hash: O8ASsZLnO6Cnrf+iFeOMXl5f1chy1Q+V5fxd55Jn6oo=) 2: 9C532970B72311EFBA17AB72C4F9AE02.roa (hash: V8Oi/Zt9u9c7P3V5ZEct3r3+92oknInn9a1C4JSyxzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.crl rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zw46BnIWhKtHO7vlzCLPBdAkv20.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE0A, serialNumber=670E3A06721684AB473BBBE5CC22CF05D024BF6D Validity Not Before: Apr 27 06:12:51 2025 GMT Not After : May 4 06:12:51 2025 GMT Subject: CN=680dcae3-280f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8e:18:2d:7a:3e:3f:f4:43:81:a7:bb:73:49: c9:9e:8d:df:1b:c4:21:c7:ff:5c:ab:43:d7:76:bd: 0f:8a:de:cb:d0:a5:ad:b8:1f:d1:01:dd:e7:1c:21: 5c:b4:85:61:7c:7c:fa:b5:ec:b1:ea:a8:50:5e:d2: e0:aa:42:81:ca:fb:e1:14:0d:56:fc:b5:fb:13:e8: 93:c0:ba:a1:c5:c7:16:1b:84:36:7d:04:24:25:ff: 86:13:c4:49:17:8c:65:cf:0e:44:37:4a:7f:92:a4: 64:d0:97:8c:f9:4e:6e:f6:ae:c1:8b:37:2d:c2:ce: d5:3e:ab:f9:90:52:9e:5d:f2:02:46:e7:4d:84:97: 22:db:1c:3c:9b:0e:71:64:56:0c:ff:3e:23:93:a8: 6a:8a:b4:6e:2f:0e:83:c5:83:c1:03:db:d1:df:eb: 5c:c9:44:f1:25:1e:36:bf:c2:1c:99:71:f3:92:f9: da:65:e0:a8:c9:e4:84:4f:e5:3c:7f:30:78:84:15: 41:27:8a:b0:7b:72:28:5e:38:db:16:fa:63:f1:fc: bf:be:61:47:86:c8:b4:82:ba:a6:8d:32:c2:f8:e4: 99:42:df:7a:ca:c0:98:af:94:cd:dd:0f:22:b5:82: f2:70:c7:7b:68:1c:67:83:e5:f8:9c:11:78:a3:58: 97:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:64:DF:47:B1:23:F1:E7:B5:A0:54:C1:DB:CE:2A:A3:ED:E0:72:0A X509v3 Authority Key Identifier: keyid:67:0E:3A:06:72:16:84:AB:47:3B:BB:E5:CC:22:CF:05:D0:24:BF:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zw46BnIWhKtHO7vlzCLPBdAkv20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE0A/DAF6D736B72211EFBC36A748C4F9AE02/Zw46BnIWhKtHO7vlzCLPBdAkv20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:f3:d3:b9:34:fe:c9:e3:45:08:e9:a0:a2:56:63:10:d9:63: 4c:c9:87:4e:b7:d5:91:9e:57:6f:a7:c4:33:77:4c:23:a3:7c: 53:72:68:08:d5:83:61:73:26:cc:37:00:5e:08:bd:6e:19:19: f1:71:1d:46:af:ef:21:6b:4c:b6:a8:ae:18:1a:6a:0e:ff:42: 8b:bc:13:c6:a8:72:04:e1:1b:b7:96:26:68:a5:ec:f1:d0:f4: 91:b4:57:1d:7d:26:79:89:00:1d:6d:8e:c5:fd:32:0d:14:60: 3f:7e:08:af:bf:dd:4f:be:93:4d:00:62:f4:e8:3d:2c:50:c6: 46:f2:48:7c:c3:bc:1b:66:6c:b5:32:74:65:7e:11:cb:0d:8d: 34:08:cb:43:6d:73:ea:6e:0d:4a:29:4c:42:59:be:a1:7d:d5: 32:e2:f1:20:48:b9:85:c3:91:0d:af:0c:28:b1:73:ff:22:6c: 8f:a7:d7:5d:6a:b2:5f:9e:96:b1:e2:eb:40:d5:c2:79:cb:74: 80:69:1c:f5:43:ae:96:d5:6d:ec:e3:9c:2f:d4:f2:f1:7f:61: 94:8c:b0:ff:e2:8c:8d:9c:85:7b:54:b4:b6:d9:86:31:b8:1b: 11:1e:d0:73:35:d4:da:f8:d5:1b:e9:8f:d1:24:6e:44:a8:b4: 09:fa:a3:e0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUUwQTExMC8GA1UEBRMoNjcwRTNBMDY3MjE2ODRBQjQ3M0JCQkU1Q0MyMkNGMDVE MDI0QkY2RDAeFw0yNTA0MjcwNjEyNTFaFw0yNTA1MDQwNjEyNTFaMBgxFjAUBgNV BAMTDTY4MGRjYWUzLTI4MGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCljhgtej4/9EOBp7tzScmejd8bxCHH/1yrQ9d2vQ+K3svQpa24H9EB3eccIVy0 hWF8fPq17LHqqFBe0uCqQoHK++EUDVb8tfsT6JPAuqHFxxYbhDZ9BCQl/4YTxEkX jGXPDkQ3Sn+SpGTQl4z5Tm72rsGLNy3CztU+q/mQUp5d8gJG502ElyLbHDybDnFk Vgz/PiOTqGqKtG4vDoPFg8ED29Hf61zJRPElHja/whyZcfOS+dpl4KjJ5IRP5Tx/ MHiEFUEnirB7ciheONsW+mPx/L++YUeGyLSCuqaNMsL45JlC33rKwJivlM3dDyK1 gvJwx3toHGeD5ficEXijWJcbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJGTfR7Ej 8ee1oFTB284qo+3gcgowHwYDVR0jBBgwFoAUZw46BnIWhKtHO7vlzCLPBdAkv20w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRTBBL0RBRjZENzM2Qjcy MjExRUZCQzM2QTc0OEM0RjlBRTAyL1p3NDZCbklXaEt0SE83dmx6Q0xQQmRBa3Yy MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWnc0NkJuSVdoS3RITzd2bHpDTFBCZEFrdjIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RTBBL0RBRjZENzM2QjcyMjExRUZCQzM2QTc0OEM0RjlBRTAyL1p3NDZCbklXaEt0 SE83dmx6Q0xQQmRBa3YyMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFLz07k0/snjRQjpoKJWYxDZY0zJh0631ZGeV2+nxDN3TCOjfFNyaAjV g2FzJsw3AF4IvW4ZGfFxHUav7yFrTLaorhgaag7/Qou8E8aocgThG7eWJmil7PHQ 9JG0Vx19JnmJAB1tjsX9Mg0UYD9+CK+/3U++k00AYvToPSxQxkbySHzDvBtmbLUy dGV+EcsNjTQIy0Ntc+puDUopTEJZvqF91TLi8SBIuYXDkQ2vDCixc/8ibI+n111q sl+elrHi60DVwnnLdIBpHPVDrpbVbezjnC/U8vF/YZSMsP/ijI2chXtUtLbZhjG4 GxEe0HM11Nr41Rvpj9EkbkSotAn6o+A= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:58 2025 by rpki-client on console.sobornost.net