$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft (raw, json) Hash identifier: +Ll376FRYMJmHTBXwISwZ5lONXEhTqiFqpJAFqjLTjU= Subject key identifier: 29:BA:C2:7A:8F:25:AE:95:8F:B7:DF:3A:F2:80:6A:A1:8C:2F:AE:AB Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 04AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft Manifest number: 04A1 Signing time: Sat 26 Apr 2025 23:38:52 +0000 Manifest this update: Sat 26 Apr 2025 23:38:51 +0000 Manifest next update: Sat 03 May 2025 23:38:51 +0000 Files and hashes: 1: keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl (hash: 8usGOMb1Akq7vSo8AI4F3XsvgXNu6C+Z6qv7siUUcqM=) 2: C52B4E0A3FE011EF88794913C4F9AE02.roa (hash: BHc0YO4uerOV3pChxVjG7O544zd2LrVw+gOJhxCdrB0=) 3: 1295B5943FA611EF94664041C4F9AE02.roa (hash: FuWrvkmDIg3mxhyAWWbi/ukBRQacmBTwsE71FX0nX8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1197 (0x4ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Apr 26 23:38:51 2025 GMT Not After : May 3 23:38:51 2025 GMT Subject: CN=680d6e8b-e260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e9:df:5a:6b:92:9b:cf:21:47:48:6c:a6:d4: d6:22:d8:a5:f0:7b:e6:95:7e:03:04:23:e7:da:fe: 0f:27:6e:ab:6e:2d:28:00:83:3c:f7:78:74:f1:7a: be:0f:d3:4d:e8:c2:e8:41:f9:47:a6:a3:dc:86:ab: 8e:82:a4:39:7e:c0:70:d8:fa:d2:46:17:c4:dc:e7: 4e:c0:02:c0:dc:12:de:33:7a:57:7e:c2:2f:45:cd: 65:3d:0a:79:4b:d1:52:56:fb:a5:07:83:97:13:d8: a6:70:bd:5f:b1:60:e6:6a:78:62:94:cb:40:d2:28: 05:a0:60:8c:03:16:f0:35:65:34:0c:82:ce:8d:7b: df:ea:a0:3e:b9:57:1c:c6:9c:91:c5:28:26:04:a9: 0a:7c:be:52:b9:43:1b:f6:23:59:b2:54:22:a8:4e: 17:58:20:61:14:c8:84:98:dc:58:f1:c5:e3:8b:aa: f3:4b:f4:8c:82:19:11:24:21:fa:7f:7a:fc:4f:22: 1d:c2:16:aa:86:40:d2:60:7c:63:a9:bd:9f:96:07: 01:e9:5a:b0:8d:0f:e8:92:a7:c8:89:d7:23:9f:29: ee:14:7c:3f:3c:85:74:ff:d1:c0:b7:aa:6d:4f:7c: ad:76:79:88:88:98:a1:ed:65:c3:dc:e0:83:a6:50: ff:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:BA:C2:7A:8F:25:AE:95:8F:B7:DF:3A:F2:80:6A:A1:8C:2F:AE:AB X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:61:f0:16:d7:a7:ba:a0:93:5e:6c:2c:00:51:4b:df:a1:a8: 12:cb:6c:8d:75:99:b5:9e:b3:3d:89:35:d9:76:d3:ef:e8:7c: 19:07:d4:a6:25:49:74:2e:a1:63:2c:bd:18:ff:4c:17:3e:65: da:f5:82:66:6a:21:4e:d2:24:b2:3c:46:4d:6b:8a:d0:3e:51: 0b:0e:46:80:3f:4a:50:09:a4:af:27:cc:ff:32:56:ca:4d:06: bf:30:92:32:41:a2:ab:c5:e8:37:34:f3:88:c3:9a:1a:20:89: 69:68:4c:e8:e4:2a:03:f6:e3:cf:10:e6:46:f2:46:bb:65:d5: 83:06:d5:d1:b3:26:4f:ee:da:37:37:bd:0d:36:42:5a:14:d6: 4a:e7:23:f0:ad:86:6f:01:1e:8b:0f:e4:9f:98:e9:ef:8d:37: d3:bb:4d:c6:09:4b:d8:2e:e1:6f:bb:f8:8d:76:93:d5:ea:e8: a3:fc:3b:b3:2e:94:58:4f:8e:d7:8e:84:e8:a9:12:fd:d6:6f: f0:09:65:bd:2f:da:6e:4a:7a:6e:da:1e:4c:22:f2:8e:10:6a: 7b:e8:83:07:fb:b4:b0:10:2f:0f:9a:97:dc:1b:ff:14:16:4b: 95:1a:6d:9a:9a:f0:94:55:11:21:2d:23:9f:77:e0:b9:fd:1f: ae:01:f1:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjUwNDI2MjMzODUxWhcNMjUwNTAzMjMzODUxWjAYMRYwFAYD VQQDEw02ODBkNmU4Yi1lMjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOnfWmuSm88hR0hsptTWItil8HvmlX4DBCPn2v4PJ26rbi0oAIM893h08Xq+ D9NN6MLoQflHpqPchquOgqQ5fsBw2PrSRhfE3OdOwALA3BLeM3pXfsIvRc1lPQp5 S9FSVvulB4OXE9imcL1fsWDmanhilMtA0igFoGCMAxbwNWU0DILOjXvf6qA+uVcc xpyRxSgmBKkKfL5SuUMb9iNZslQiqE4XWCBhFMiEmNxY8cXji6rzS/SMghkRJCH6 f3r8TyIdwhaqhkDSYHxjqb2flgcB6VqwjQ/okqfIidcjnynuFHw/PIV0/9HAt6pt T3ytdnmIiJih7WXD3OCDplD/IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCm6wnqP Ja6Vj7ffOvKAaqGML66rMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRK Si11MzVHSElCWURTT1RXU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQYfAW16e6oJNebCwAUUvfoagSy2yNdZm1nrM9iTXZdtPv6HwZB9Sm JUl0LqFjLL0Y/0wXPmXa9YJmaiFO0iSyPEZNa4rQPlELDkaAP0pQCaSvJ8z/MlbK TQa/MJIyQaKrxeg3NPOIw5oaIIlpaEzo5CoD9uPPEOZG8ka7ZdWDBtXRsyZP7to3 N70NNkJaFNZK5yPwrYZvAR6LD+SfmOnvjTfTu03GCUvYLuFvu/iNdpPV6uij/Duz LpRYT47XjoToqRL91m/wCWW9L9puSnpu2h5MIvKOEGp76IMH+7SwEC8PmpfcG/8U FkuVGm2amvCUVREhLSOfd+C5/R+uAfHb -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:16 2025 by rpki-client on console.sobornost.net