$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: 3C8Rp01s5EQNOplWwbuANNowV91jFry4n6AtciK3HA4= Subject key identifier: 9D:63:54:94:FE:8D:34:2A:5D:3A:50:34:5F:7D:CA:E1:E2:8E:EB:6A Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 022C Signing time: Sun 27 Apr 2025 01:33:11 +0000 Manifest this update: Sun 27 Apr 2025 01:33:11 +0000 Manifest next update: Sun 04 May 2025 01:33:11 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: VxY4PT6qNFjWEvECoK8GsZzuOj3SnFTfWBdHsYehl1s=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: 6xgX7RCx1jR+s1bDY/KUKo4N6DkkwUVmskiN+xXDBfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Apr 27 01:33:11 2025 GMT Not After : May 4 01:33:11 2025 GMT Subject: CN=680d8957-5e10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:5b:3b:29:d4:38:8e:7a:24:6a:68:2e:52: b3:8f:4a:53:be:23:c2:bc:18:f4:89:e5:f4:af:fe: c5:42:77:af:ed:fa:a4:a5:00:39:f3:40:6d:bf:cb: 33:59:71:d2:31:39:7b:5a:10:5e:b2:c0:8e:87:51: 3a:5c:ed:5a:85:2d:f7:b4:7d:94:31:c7:bc:29:48: bd:56:58:6a:de:59:ad:59:61:2b:35:2a:a4:4e:93: d2:aa:64:29:09:f8:14:ca:d9:53:d0:9a:e0:77:1a: 49:55:bc:da:81:d4:ea:04:25:1c:60:9a:03:8e:93: 20:e3:48:a3:8c:a9:c6:52:83:db:4e:02:25:4e:9f: e1:dd:32:1b:bf:16:8b:39:09:8c:ba:a2:82:31:8d: 33:98:9b:7b:4f:65:31:84:1e:d5:77:91:96:aa:a8: a8:00:b6:e3:5b:1e:95:09:65:c1:29:40:55:f8:8a: 0e:b5:7a:2e:32:13:00:1c:1d:4b:a1:ed:cf:83:95: 4c:54:e6:79:3c:da:4f:60:a6:61:02:05:4f:c6:55: 88:b1:bd:b6:8c:78:20:44:e4:25:14:47:be:73:de: a6:58:f2:34:e9:83:c0:f6:11:e9:f5:b4:8d:3f:bc: b2:06:f1:ee:c1:ee:8a:21:e6:a9:ba:5e:5e:8f:3b: a1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:63:54:94:FE:8D:34:2A:5D:3A:50:34:5F:7D:CA:E1:E2:8E:EB:6A X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:3e:d9:74:bd:b9:e5:86:6d:d2:f7:27:f2:13:f8:d8:67:39: 0f:84:36:6a:47:d8:dd:9b:d0:c1:d4:ad:22:8c:91:1e:3e:28: 9b:cb:4e:c2:bf:29:be:98:7a:8f:b8:dc:a9:3f:97:5c:7d:ae: a9:9c:f0:04:0a:fa:9e:bd:bb:69:b2:d2:a3:ee:c3:a6:8c:65: 6d:2e:93:0a:82:a6:53:b4:81:b9:48:05:58:b3:39:43:e9:fa: 16:2f:b9:ba:df:e6:cb:fa:db:26:95:4c:19:05:50:b0:7f:39: 70:a3:83:5c:79:7a:ea:0e:54:a4:18:b3:e5:bd:aa:c0:b6:20: a7:fa:4a:f7:23:29:78:4f:27:e7:d6:67:2a:c4:21:2a:aa:83: 39:2c:df:27:a1:a8:48:a8:ff:e6:ac:c7:c7:0d:ee:d5:b8:c1: 13:f9:63:1c:ec:4c:a9:e0:5c:ee:6b:f5:c1:e6:4a:1b:a3:5f: d2:43:bb:d8:7f:0a:3f:a7:64:23:b7:f9:40:f3:3d:0a:b8:3f: 1d:1c:a3:c2:23:90:5f:7d:15:b6:10:c1:b8:55:7b:97:e3:af: 48:3e:25:3e:fe:a2:ae:db:09:79:93:6a:bc:80:c4:e4:14:4d: b0:4a:91:fc:61:10:06:6f:bc:d8:4f:b5:b5:86:2f:cf:82:37: 8e:89:a1:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUwNDI3MDEzMzExWhcNMjUwNTA0MDEzMzExWjAYMRYwFAYD VQQDEw02ODBkODk1Ny01ZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUBbOynUOI56JGpoLlKzj0pTviPCvBj0ieX0r/7FQnev7fqkpQA580Btv8sz WXHSMTl7WhBessCOh1E6XO1ahS33tH2UMce8KUi9Vlhq3lmtWWErNSqkTpPSqmQp CfgUytlT0JrgdxpJVbzagdTqBCUcYJoDjpMg40ijjKnGUoPbTgIlTp/h3TIbvxaL OQmMuqKCMY0zmJt7T2UxhB7Vd5GWqqioALbjWx6VCWXBKUBV+IoOtXouMhMAHB1L oe3Pg5VMVOZ5PNpPYKZhAgVPxlWIsb22jHggROQlFEe+c96mWPI06YPA9hHp9bSN P7yyBvHuwe6KIeapul5ejzuhKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1jVJT+ jTQqXTpQNF99yuHijutqMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrPtl0vbnlhm3S9yfyE/jYZzkPhDZqR9jdm9DB1K0ijJEePiiby07C vym+mHqPuNypP5dcfa6pnPAECvqevbtpstKj7sOmjGVtLpMKgqZTtIG5SAVYszlD 6foWL7m63+bL+tsmlUwZBVCwfzlwo4NceXrqDlSkGLPlvarAtiCn+kr3Iyl4Tyfn 1mcqxCEqqoM5LN8noahIqP/mrMfHDe7VuMET+WMc7Eyp4Fzua/XB5kobo1/SQ7vY fwo/p2Qjt/lA8z0KuD8dHKPCI5BffRW2EMG4VXuX469IPiU+/qKu2wl5k2q8gMTk FE2wSpH8YRAGb7zYT7W1hi/PgjeOiaG1 -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:14 2025 by rpki-client on console.sobornost.net