$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft File: RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft (raw, json) Hash identifier: cwWwvG8M+DEYMSKF9dkwOUTNVl/W7w/BNPVd+Xt6+WY= Subject key identifier: 33:85:9E:64:90:6D:0A:22:0D:04:F7:C9:3A:9E:D8:3A:A2:19:26:7E Authority key identifier: 44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D Certificate issuer: /CN=A91FF1CC/serialNumber=446FAF923BEBAF96357287FE250991C75491454D Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft Manifest number: 27 Signing time: Sun 27 Apr 2025 06:38:09 +0000 Manifest this update: Sun 27 Apr 2025 06:38:09 +0000 Manifest next update: Sun 04 May 2025 06:38:09 +0000 Files and hashes: 1: RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl (hash: C8ynasY+xtSE3vqN5dKzXubUnbnxXnA/2+5iWI3YmQ8=) 2: CC37DC24024311F0B8CC3D64C4F9AE02.roa (hash: p8FHrwqthntaiCGXD1qfLj6KRbEBkZSs0aBfuIq0c5c=) 3: B7E221E4024311F0BD990F64C4F9AE02.roa (hash: d1zImNClufU6mQa0qsoJOx/6gPAzww6pSPXhwifVLOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF1CC, serialNumber=446FAF923BEBAF96357287FE250991C75491454D Validity Not Before: Apr 27 06:38:09 2025 GMT Not After : May 4 06:38:09 2025 GMT Subject: CN=680dd0d1-f383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:86:02:8a:18:f0:4c:8d:42:12:a8:3e:c3:7f: fb:f0:62:cf:12:a5:cf:5d:79:ae:7d:85:7e:01:3c: 10:bc:bc:88:c0:b8:bb:28:a0:ac:9d:d9:ae:5d:da: a1:17:62:a5:cd:5d:59:ce:c6:4d:db:86:dc:d9:59: b4:99:d3:41:1f:98:b8:74:e2:ad:17:84:ca:bc:f8: ce:5c:ff:92:70:a6:9b:c3:43:76:0e:4d:b8:92:ac: 44:af:97:f8:d6:a6:0e:80:10:8a:4d:e8:c7:09:74: 52:95:8d:19:d4:0e:f6:2d:05:fc:f8:7d:5a:63:97: ff:02:1e:1e:4b:b7:c0:06:85:df:76:c5:0f:e8:01: 73:71:14:39:99:5d:cf:43:c3:2b:60:b8:28:94:8f: ae:ac:86:05:b6:a3:4a:45:ac:f7:a1:b1:15:86:0f: 22:74:87:63:12:f1:ba:ef:31:f1:4c:94:2e:16:94: 2a:c3:55:c7:66:06:d2:19:fd:52:41:2e:f1:28:c9: 6c:86:62:bc:d4:32:3a:11:81:5d:b9:19:a3:97:f6: a2:11:e1:e4:4e:d9:a7:15:ed:a6:68:68:92:5c:ff: 2f:20:84:19:8a:39:dc:7d:8d:ff:07:01:f9:29:54: c5:8d:e0:79:78:f3:c2:76:8b:7e:43:ee:d5:e6:3e: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:85:9E:64:90:6D:0A:22:0D:04:F7:C9:3A:9E:D8:3A:A2:19:26:7E X509v3 Authority Key Identifier: keyid:44:6F:AF:92:3B:EB:AF:96:35:72:87:FE:25:09:91:C7:54:91:45:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RG-vkjvrr5Y1cof-JQmRx1SRRU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF1CC/3AFC33E2EF6311EFBF64AB6AC4F9AE02/RG-vkjvrr5Y1cof-JQmRx1SRRU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:01:fa:3a:0c:0a:4e:e9:f8:dd:bc:e2:4c:d0:e1:6f:cb:21: cc:40:34:73:54:60:3e:50:c6:57:7a:ff:42:0d:55:e1:9b:ea: 70:81:63:b9:0c:4e:89:ad:ca:4d:6f:0a:08:96:2b:69:7f:31: 54:c7:ea:37:7e:41:77:66:c8:91:eb:20:02:82:0f:0f:fe:fb: 84:08:1c:52:78:28:ca:0b:06:b1:f5:fb:4c:96:91:42:25:5f: 4d:44:17:23:c8:8d:7c:7d:62:64:ad:22:19:ac:02:23:45:6a: 2c:47:87:e5:63:58:06:2a:49:58:90:5f:b8:79:8e:93:5c:27: 34:ab:70:ba:17:9a:b0:5e:21:59:5e:19:89:b2:32:a6:3b:64: 96:21:8f:41:f4:05:a1:d3:0a:f1:52:2a:39:1e:8f:55:16:62: f5:5e:bb:e4:03:9c:79:70:1d:ab:54:f6:be:99:d8:91:67:ce: cd:1f:9c:5a:c0:08:1b:9b:20:1d:93:42:ad:22:2d:19:b6:db: c0:39:f9:80:1f:6b:cb:dd:d4:5a:dc:06:32:6b:3d:4d:90:5c: e1:fd:89:ef:85:86:5c:61:1e:37:e7:99:c2:1c:a7:2b:ce:a4: b4:b0:86:8e:21:57:5a:53:f1:03:fc:7e:e7:e1:dd:0e:a8:a9: 37:f3:cc:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjFDQzExMC8GA1UEBRMoNDQ2RkFGOTIzQkVCQUY5NjM1NzI4N0ZFMjUwOTkxQzc1 NDkxNDU0RDAeFw0yNTA0MjcwNjM4MDlaFw0yNTA1MDQwNjM4MDlaMBgxFjAUBgNV BAMTDTY4MGRkMGQxLWYzODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmhgKKGPBMjUISqD7Df/vwYs8Spc9dea59hX4BPBC8vIjAuLsooKyd2a5d2qEX YqXNXVnOxk3bhtzZWbSZ00EfmLh04q0XhMq8+M5c/5JwppvDQ3YOTbiSrESvl/jW pg6AEIpN6McJdFKVjRnUDvYtBfz4fVpjl/8CHh5Lt8AGhd92xQ/oAXNxFDmZXc9D wytguCiUj66shgW2o0pFrPehsRWGDyJ0h2MS8brvMfFMlC4WlCrDVcdmBtIZ/VJB LvEoyWyGYrzUMjoRgV25GaOX9qIR4eRO2acV7aZoaJJc/y8ghBmKOdx9jf8HAfkp VMWN4Hl488J2i35D7tXmPlqzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM4WeZJBt CiINBPfJOp7YOqIZJn4wHwYDVR0jBBgwFoAURG+vkjvrr5Y1cof+JQmRx1SRRU0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGMUNDLzNBRkMzM0UyRUY2 MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZMWNvZi1KUW1SeDFTUlJV MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkctdmtqdnJyNVkxY29mLUpRbVJ4MVNSUlUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG MUNDLzNBRkMzM0UyRUY2MzExRUZCRjY0QUI2QUM0RjlBRTAyL1JHLXZranZycjVZ MWNvZi1KUW1SeDFTUlJVMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACoB+joMCk7p+N284kzQ4W/LIcxANHNUYD5Qxld6/0INVeGb6nCBY7kM Tomtyk1vCgiWK2l/MVTH6jd+QXdmyJHrIAKCDw/++4QIHFJ4KMoLBrH1+0yWkUIl X01EFyPIjXx9YmStIhmsAiNFaixHh+VjWAYqSViQX7h5jpNcJzSrcLoXmrBeIVle GYmyMqY7ZJYhj0H0BaHTCvFSKjkej1UWYvVeu+QDnHlwHatU9r6Z2JFnzs0fnFrA CBubIB2TQq0iLRm228A5+YAfa8vd1FrcBjJrPU2QXOH9ie+FhlxhHjfnmcIcpyvO pLSwho4hV1pT8QP8fufh3Q6oqTfzzLo= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net