$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.mft File: T-GzX5rYKBtm9HAx9Qfg7n1UIRo.mft (raw, json) Hash identifier: XrMAAHJ2WPuSlHop6CzqrQ+FrEALW7bgzpJNxeV0tiA= Subject key identifier: B1:70:90:36:18:A3:6D:FF:1F:F5:5E:2D:C0:F9:B3:CF:32:A2:C1:DE Authority key identifier: 4F:E1:B3:5F:9A:D8:28:1B:66:F4:70:31:F5:07:E0:EE:7D:54:21:1A Certificate issuer: /CN=A91FDEFE/serialNumber=4FE1B35F9AD8281B66F47031F507E0EE7D54211A Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.mft Manifest number: 55 Signing time: Sun 27 Apr 2025 06:02:52 +0000 Manifest this update: Sun 27 Apr 2025 06:02:52 +0000 Manifest next update: Sun 04 May 2025 06:02:52 +0000 Files and hashes: 1: T-GzX5rYKBtm9HAx9Qfg7n1UIRo.crl (hash: iQ+g+GS+02+3caCqm3uGZGn0N4wL4yoijO5upz0x25Q=) 2: 669FD05EA53911EFBE261371C4F9AE02.roa (hash: C8BMzBjnObRwd1PN8+bj1Lr3uDFXe55TuSG2M+7J66A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=4FE1B35F9AD8281B66F47031F507E0EE7D54211A Validity Not Before: Apr 27 06:02:52 2025 GMT Not After : May 4 06:02:52 2025 GMT Subject: CN=680dc88c-0b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a7:80:e6:06:c7:8b:25:46:4f:45:c0:48:11: 7d:98:3f:a3:51:ce:ab:ba:19:df:c9:78:57:a9:0c: de:24:2d:fe:f7:18:62:7f:46:18:1d:51:62:5d:1c: 44:c9:e4:43:de:d2:12:45:51:89:cf:b1:44:b3:75: 5e:fc:17:6f:e9:1b:87:e9:f6:04:4c:c4:f3:e9:da: 96:df:dd:6f:7c:7c:f8:3e:f4:83:fb:7f:b4:57:5e: 6b:5f:80:27:15:a0:85:42:9e:b3:60:76:ef:1c:14: 62:65:f1:fa:7f:e1:ec:8d:3d:17:a9:25:90:fc:1e: ad:50:1e:bc:40:d2:f9:2c:cb:e9:db:3d:01:f3:f4: 7c:6f:14:37:57:98:cf:c2:81:84:db:bf:be:03:14: 02:16:c4:b0:96:b0:21:07:3b:d0:78:e3:e4:bb:1f: 15:ad:0c:2c:60:86:d7:61:bc:ce:24:f5:fb:7a:6b: b9:02:13:6c:1d:3c:56:18:77:1e:1c:e5:eb:7d:cf: 39:49:c6:47:00:e6:1c:1e:ab:ff:b9:7d:c5:9c:d5: b1:3f:c4:ef:87:f4:ef:67:66:0f:bb:ee:57:4c:93: 3a:db:1a:30:c7:ec:f8:35:4b:d6:31:1b:25:bf:c6: f7:08:6f:f8:fe:db:d5:5c:63:25:84:e5:39:9c:51: 1a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:70:90:36:18:A3:6D:FF:1F:F5:5E:2D:C0:F9:B3:CF:32:A2:C1:DE X509v3 Authority Key Identifier: keyid:4F:E1:B3:5F:9A:D8:28:1B:66:F4:70:31:F5:07:E0:EE:7D:54:21:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/194B7920A51611EF890ECD3EC4F9AE02/T-GzX5rYKBtm9HAx9Qfg7n1UIRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:f5:87:79:30:0d:44:4f:a7:94:ee:0d:dc:22:e5:78:84:6d: e9:a6:7b:a8:6a:ae:44:e1:a2:a9:e6:26:7b:1b:32:9c:99:2a: c8:5c:ac:5a:26:46:17:d8:f7:97:9c:30:10:1d:23:7a:64:c8: f1:b2:c8:10:79:27:f2:0b:50:3d:d1:ef:96:3a:db:d3:0d:38: 1f:62:d2:bf:b7:9d:3f:f7:9f:50:47:c9:e0:09:52:51:2a:95: 4c:54:f1:62:6e:9f:a0:b8:09:5d:fb:76:d9:85:eb:5c:17:f0: 90:c2:e9:a0:ff:e9:f1:ea:41:f2:74:15:f3:9f:ea:dc:c7:84: 69:ca:5a:b2:ea:ce:fa:fc:ea:c7:98:a9:19:1e:71:56:16:a9: c6:7d:47:2d:c3:23:1a:02:0d:6d:cc:45:48:70:43:89:ed:db: 16:6d:d7:07:ec:03:04:3f:24:dc:96:f0:d8:42:be:68:17:a9: 82:49:e6:9b:ee:b0:94:00:af:b5:5a:a1:73:2d:bc:e1:e4:25: 8c:f6:8b:3d:e7:c9:38:58:1a:14:b4:73:36:d2:fc:b3:f8:17: 58:56:ce:3b:79:b6:98:4f:55:fa:5d:b5:f0:27:bc:a9:32:2b: e2:19:4c:eb:60:bf:0a:6c:b8:26:3a:50:14:23:bc:ab:31:13: 1e:07:4e:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REVGRTExMC8GA1UEBRMoNEZFMUIzNUY5QUQ4MjgxQjY2RjQ3MDMxRjUwN0UwRUU3 RDU0MjExQTAeFw0yNTA0MjcwNjAyNTJaFw0yNTA1MDQwNjAyNTJaMBgxFjAUBgNV BAMTDTY4MGRjODhjLTBiN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCp4DmBseLJUZPRcBIEX2YP6NRzqu6Gd/JeFepDN4kLf73GGJ/RhgdUWJdHETJ 5EPe0hJFUYnPsUSzdV78F2/pG4fp9gRMxPPp2pbf3W98fPg+9IP7f7RXXmtfgCcV oIVCnrNgdu8cFGJl8fp/4eyNPRepJZD8Hq1QHrxA0vksy+nbPQHz9HxvFDdXmM/C gYTbv74DFAIWxLCWsCEHO9B44+S7HxWtDCxghtdhvM4k9ft6a7kCE2wdPFYYdx4c 5et9zzlJxkcA5hweq/+5fcWc1bE/xO+H9O9nZg+77ldMkzrbGjDH7Pg1S9YxGyW/ xvcIb/j+29VcYyWE5TmcURrrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsXCQNhij bf8f9V4twPmzzzKiwd4wHwYDVR0jBBgwFoAUT+GzX5rYKBtm9HAx9Qfg7n1UIRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERUZFLzE5NEI3OTIwQTUx NjExRUY4OTBFQ0QzRUM0RjlBRTAyL1QtR3pYNXJZS0J0bTlIQXg5UWZnN24xVUlS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVC1Helg1cllLQnRtOUhBeDlRZmc3bjFVSVJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RUZFLzE5NEI3OTIwQTUxNjExRUY4OTBFQ0QzRUM0RjlBRTAyL1QtR3pYNXJZS0J0 bTlIQXg5UWZnN24xVUlSby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHr1h3kwDURPp5TuDdwi5XiEbemme6hqrkThoqnmJnsbMpyZKshcrFom RhfY95ecMBAdI3pkyPGyyBB5J/ILUD3R75Y629MNOB9i0r+3nT/3n1BHyeAJUlEq lUxU8WJun6C4CV37dtmF61wX8JDC6aD/6fHqQfJ0FfOf6tzHhGnKWrLqzvr86seY qRkecVYWqcZ9Ry3DIxoCDW3MRUhwQ4nt2xZt1wfsAwQ/JNyW8NhCvmgXqYJJ5pvu sJQAr7VaoXMtvOHkJYz2iz3nyThYGhS0czbS/LP4F1hWzjt5tphPVfpdtfAnvKky K+IZTOtgvwpsuCY6UBQjvKsxEx4HTpY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:59 2025 by rpki-client on console.sobornost.net