$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED35E/208DFC36AC4111EEBEE2A132C4F9AE02/vm13JvnXOebsmvk0fs7LQhevej8.mft File: vm13JvnXOebsmvk0fs7LQhevej8.mft (raw, json) Hash identifier: i7339sGHV8bEYgpOMw6SXW4ydQSre6sOqEQfhWJM10w= Subject key identifier: 1D:C7:80:6C:4A:53:55:A0:3C:AD:02:0B:8C:17:F6:1D:91:CD:AF:FA Authority key identifier: BE:6D:77:26:F9:D7:39:E6:EC:9A:F9:34:7E:CE:CB:42:17:AF:7A:3F Certificate issuer: /CN=A91ED35E/serialNumber=BE6D7726F9D739E6EC9AF9347ECECB4217AF7A3F Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vm13JvnXOebsmvk0fs7LQhevej8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED35E/208DFC36AC4111EEBEE2A132C4F9AE02/vm13JvnXOebsmvk0fs7LQhevej8.mft Manifest number: F8 Signing time: Sun 27 Apr 2025 04:06:11 +0000 Manifest this update: Sun 27 Apr 2025 04:06:11 +0000 Manifest next update: Sun 04 May 2025 04:06:11 +0000 Files and hashes: 1: vm13JvnXOebsmvk0fs7LQhevej8.crl (hash: 5NoQcH5I45I1cH80Hl/Py4pEedZKy5t1/lMAYHN7kmo=) 2: 3AE10060B0F111EE9727201AC4F9AE02.roa (hash: KyJCsFenYj6fuJ23jzQVPwAa2Ss88E8BW4syF1uzypU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED35E/208DFC36AC4111EEBEE2A132C4F9AE02/vm13JvnXOebsmvk0fs7LQhevej8.crl rsync://rpki.apnic.net/member_repository/A91ED35E/208DFC36AC4111EEBEE2A132C4F9AE02/vm13JvnXOebsmvk0fs7LQhevej8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vm13JvnXOebsmvk0fs7LQhevej8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED35E, serialNumber=BE6D7726F9D739E6EC9AF9347ECECB4217AF7A3F Validity Not Before: Apr 27 04:06:11 2025 GMT Not After : May 4 04:06:11 2025 GMT Subject: CN=680dad33-ca7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:d4:f5:4b:67:e7:2d:d8:dc:0a:40:27:80: f9:a2:fe:0a:14:dd:38:7f:2e:f0:9d:3e:33:9f:02: 2d:13:62:f3:0f:6b:f2:a8:2c:ef:d1:1b:34:bd:f8: 14:ed:0a:22:6a:13:6f:23:7b:1d:1d:6a:d8:5b:61: 29:56:99:b0:83:ca:ab:51:85:b9:1c:f0:9a:6a:f5: c8:7d:b6:14:b7:72:73:c5:c7:ca:83:55:50:17:4b: 52:8e:1d:16:7f:4d:cd:de:cd:64:a7:6d:d5:bd:80: fc:d2:81:46:cb:72:32:e0:ef:c1:f5:bf:13:8e:1c: f8:c5:38:f8:d3:d6:7b:f8:90:44:0e:44:e9:62:c1: cd:de:96:72:82:ab:c3:28:4a:f8:76:02:a6:ee:31: 19:cc:2b:ad:1a:96:38:57:1d:d2:68:3b:f7:4c:65: 70:a3:b6:30:86:98:fb:ae:a9:fc:0b:e7:db:6b:90: fc:41:39:9d:bc:73:7e:12:6d:ff:8f:10:2e:b9:ec: 92:18:a5:ed:3c:36:e5:f9:46:5e:97:00:ff:6d:94: d0:de:b2:90:c7:17:19:76:bb:c7:a0:fa:fe:b7:fc: 4b:b1:50:01:3f:00:4c:ca:f8:af:25:81:53:af:54: af:63:78:43:4e:ec:20:c7:e1:bb:f3:91:69:a9:d6: aa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C7:80:6C:4A:53:55:A0:3C:AD:02:0B:8C:17:F6:1D:91:CD:AF:FA X509v3 Authority Key Identifier: keyid:BE:6D:77:26:F9:D7:39:E6:EC:9A:F9:34:7E:CE:CB:42:17:AF:7A:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED35E/208DFC36AC4111EEBEE2A132C4F9AE02/vm13JvnXOebsmvk0fs7LQhevej8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vm13JvnXOebsmvk0fs7LQhevej8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED35E/208DFC36AC4111EEBEE2A132C4F9AE02/vm13JvnXOebsmvk0fs7LQhevej8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:4a:86:36:0c:04:46:7c:05:ea:e8:ae:c7:d5:9f:15:80:b6: 35:c0:31:82:d8:7f:80:3e:1c:be:65:24:9a:29:d3:57:5f:f0: 27:42:af:dc:c7:09:e7:bd:35:1b:72:57:71:04:3e:f9:c7:31: fe:75:31:b1:d4:5d:a5:2c:c3:eb:1c:14:18:1d:d0:b6:2b:54: 02:3b:75:c6:60:df:f1:01:21:c1:ed:bb:63:fd:8a:6d:7a:3e: 79:4e:5d:14:5a:da:8e:55:10:c6:b4:5c:31:24:71:30:b3:cc: 9a:be:24:b4:74:31:c7:65:71:31:05:c7:03:bc:e5:c1:f4:45: 11:28:12:e0:bd:ad:9e:1e:ed:df:17:e5:36:62:68:6d:62:03: b7:e3:16:3e:24:dd:a9:00:f9:89:b1:76:bc:1e:2e:f6:a0:32: d2:1d:05:df:3b:cf:b4:0e:d8:4e:2b:51:cf:c0:92:10:39:93: fd:35:19:b3:a3:15:97:28:d1:27:66:68:7a:fc:d2:cc:f0:8d: 4f:ca:ce:50:4d:64:cb:c2:08:df:57:35:00:04:b9:e1:d9:d2: 7f:fa:fc:7a:cd:8b:d7:2b:29:e9:52:2d:b3:9e:34:32:15:a3: 62:74:88:d9:bd:27:fa:8a:66:02:42:45:46:24:ee:b8:15:f3: ac:ff:a6:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQzNUUxMTAvBgNVBAUTKEJFNkQ3NzI2RjlENzM5RTZFQzlBRjkzNDdFQ0VDQjQy MTdBRjdBM0YwHhcNMjUwNDI3MDQwNjExWhcNMjUwNTA0MDQwNjExWjAYMRYwFAYD VQQDEw02ODBkYWQzMy1jYTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkPU9Utn5y3Y3ApAJ4D5ov4KFN04fy7wnT4znwItE2LzD2vyqCzv0Rs0vfgU 7QoiahNvI3sdHWrYW2EpVpmwg8qrUYW5HPCaavXIfbYUt3JzxcfKg1VQF0tSjh0W f03N3s1kp23VvYD80oFGy3Iy4O/B9b8Tjhz4xTj409Z7+JBEDkTpYsHN3pZygqvD KEr4dgKm7jEZzCutGpY4Vx3SaDv3TGVwo7Ywhpj7rqn8C+fba5D8QTmdvHN+Em3/ jxAuueySGKXtPDbl+UZelwD/bZTQ3rKQxxcZdrvHoPr+t/xLsVABPwBMyvivJYFT r1SvY3hDTuwgx+G785FpqdaqdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3HgGxK U1WgPK0CC4wX9h2Rza/6MB8GA1UdIwQYMBaAFL5tdyb51znm7Jr5NH7Oy0IXr3o/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDM1RS8yMDhERkMzNkFD NDExMUVFQkVFMkExMzJDNEY5QUUwMi92bTEzSnZuWE9lYnNtdmswZnM3TFFoZXZl ajguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZtMTNKdm5YT2Vic212azBmczdMUWhldmVqOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDM1RS8yMDhERkMzNkFDNDExMUVFQkVFMkExMzJDNEY5QUUwMi92bTEzSnZuWE9l YnNtdmswZnM3TFFoZXZlajgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRSoY2DARGfAXq6K7H1Z8VgLY1wDGC2H+APhy+ZSSaKdNXX/AnQq/c xwnnvTUbcldxBD75xzH+dTGx1F2lLMPrHBQYHdC2K1QCO3XGYN/xASHB7btj/Ypt ej55Tl0UWtqOVRDGtFwxJHEws8yaviS0dDHHZXExBccDvOXB9EURKBLgva2eHu3f F+U2YmhtYgO34xY+JN2pAPmJsXa8Hi72oDLSHQXfO8+0DthOK1HPwJIQOZP9NRmz oxWXKNEnZmh6/NLM8I1Pys5QTWTLwgjfVzUABLnh2dJ/+vx6zYvXKynpUi2znjQy FaNidIjZvSf6imYCQkVGJO64FfOs/6b5 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:58 2025 by rpki-client on console.sobornost.net