$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft File: hkxROVpl1d5w7NMKrSemn0ubIrw.mft (raw, json) Hash identifier: kYEnK207QaxvZB9Sn4NZPBVM6mUmYNfFrBk+XsjiulI= Subject key identifier: C2:7C:1F:10:8B:14:60:09:8C:A3:AA:62:33:03:B3:E0:5C:18:0F:23 Authority key identifier: 86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC Certificate issuer: /CN=A9125E1B/serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft Manifest number: 0115 Signing time: Sun 27 Apr 2025 03:46:22 +0000 Manifest this update: Sun 27 Apr 2025 03:46:22 +0000 Manifest next update: Sun 04 May 2025 03:46:21 +0000 Files and hashes: 1: hkxROVpl1d5w7NMKrSemn0ubIrw.crl (hash: fBDrOtAUj3MvikrwOfRm+vyfK64n/IhcD1aoBOujBDM=) 2: BA3E92207D2311EEA3696814C4F9AE02.roa (hash: UKOODE+aPAFflvFmKVNYOJaCaH8V6bUeZIgoCqj/k80=) 3: B9CAD7A47D2311EEA3696814C4F9AE02.roa (hash: IP+1b1MWNwsXEa5/Ri8CW/cM8GMHLYMixTxcrnkax+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E1B, serialNumber=864C51395A65D5DE70ECD30AAD27A69F4B9B22BC Validity Not Before: Apr 27 03:46:22 2025 GMT Not After : May 4 03:46:21 2025 GMT Subject: CN=680da88e-72d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:81:2a:d8:b7:2a:25:33:43:4b:3e:44:48:74: 3d:4c:64:bf:b5:2f:16:6a:c6:42:71:7d:8c:e3:ee: ea:ab:78:0d:4c:38:c3:9f:8e:79:98:4f:c1:fe:63: 84:f0:7c:2a:d9:db:eb:33:aa:53:f4:b9:32:3c:49: 5f:2d:d9:e9:bc:6d:da:23:67:d2:1f:3f:ff:0b:59: 8c:9a:42:54:b5:4b:40:e1:1d:ff:b6:94:d1:ad:58: c0:74:05:f2:2b:c3:04:5e:21:99:39:2b:9f:53:84: 8b:e4:71:a2:54:a3:45:ba:96:5b:b2:c9:a0:4f:95: c2:27:5c:a0:80:a0:1c:37:b3:6a:a3:2d:7b:63:9e: f8:0e:c5:7e:3f:5b:26:c2:04:37:bc:b8:62:2a:2c: 40:fb:ed:99:c9:ba:4a:7b:17:bd:db:4e:98:c4:63: 46:88:9e:21:97:70:87:60:b1:f0:73:5c:94:36:2f: c3:e6:ae:6d:8a:18:e4:2a:c3:82:3b:f9:e2:0b:15: c8:82:56:0f:a9:b4:0d:35:e8:58:69:b6:2b:92:d1: e1:e3:6a:6f:35:0f:2c:62:05:70:88:83:bf:83:d2: 84:1b:7d:00:80:09:50:4c:21:a7:67:7b:e7:ad:27: 86:d7:14:a3:2d:2a:82:f7:42:2e:c9:2c:de:83:4d: bf:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7C:1F:10:8B:14:60:09:8C:A3:AA:62:33:03:B3:E0:5C:18:0F:23 X509v3 Authority Key Identifier: keyid:86:4C:51:39:5A:65:D5:DE:70:EC:D3:0A:AD:27:A6:9F:4B:9B:22:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hkxROVpl1d5w7NMKrSemn0ubIrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E1B/749525147D2211EEA7B07460C4F9AE02/hkxROVpl1d5w7NMKrSemn0ubIrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:fd:8e:3a:36:ab:1c:b9:e7:c3:f0:e8:ec:42:19:e7:a0:79: ec:36:57:9b:32:92:40:1a:d4:ee:02:20:5f:44:7c:f9:a7:99: 4e:26:12:3f:fe:ff:23:a6:ac:74:85:61:e1:8a:e8:a0:91:91: ee:c2:85:77:07:15:64:3e:7f:a3:20:87:f4:74:ae:b6:d1:f5: 26:0d:55:42:bd:ce:6e:a9:29:55:22:a0:8e:e6:c5:2f:80:34: b6:94:15:b0:4d:99:13:82:fd:d1:52:70:cc:59:e9:4d:38:62: 73:d3:06:e8:5e:15:f0:8a:48:ad:42:8c:98:27:62:c0:87:d6: 62:56:b9:82:2b:1c:37:70:6f:30:10:1b:b5:85:9a:76:81:4d: 53:2b:36:38:8b:f7:48:a8:6e:42:78:f7:88:c0:a0:03:43:ab: 45:d5:a6:13:85:20:91:9f:7e:b6:54:19:f1:ca:8e:bb:a6:78: 43:c9:2c:6e:f7:eb:a1:e5:2d:ba:b1:8e:39:be:02:83:f4:7b: 4d:b9:11:99:fb:77:49:79:4c:42:24:90:61:10:f2:24:73:63: 38:22:02:f7:fe:72:06:fb:84:71:bc:ea:29:cb:4d:d0:9c:5a: cd:bf:d8:2f:37:52:9e:37:b1:27:e1:fe:d6:f2:0f:72:b4:07: c1:35:52:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFMUIxMTAvBgNVBAUTKDg2NEM1MTM5NUE2NUQ1REU3MEVDRDMwQUFEMjdBNjlG NEI5QjIyQkMwHhcNMjUwNDI3MDM0NjIyWhcNMjUwNTA0MDM0NjIxWjAYMRYwFAYD VQQDEw02ODBkYTg4ZS03MmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoEq2LcqJTNDSz5ESHQ9TGS/tS8WasZCcX2M4+7qq3gNTDjDn455mE/B/mOE 8Hwq2dvrM6pT9LkyPElfLdnpvG3aI2fSHz//C1mMmkJUtUtA4R3/tpTRrVjAdAXy K8MEXiGZOSufU4SL5HGiVKNFupZbssmgT5XCJ1yggKAcN7Nqoy17Y574DsV+P1sm wgQ3vLhiKixA++2ZybpKexe9206YxGNGiJ4hl3CHYLHwc1yUNi/D5q5tihjkKsOC O/niCxXIglYPqbQNNehYabYrktHh42pvNQ8sYgVwiIO/g9KEG30AgAlQTCGnZ3vn rSeG1xSjLSqC90IuySzeg02/UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ8HxCL FGAJjKOqYjMDs+BcGA8jMB8GA1UdIwQYMBaAFIZMUTlaZdXecOzTCq0npp9LmyK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUUxQi83NDk1MjUxNDdE MjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFkNXc3Tk1LclNlbW4wdWJJ cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hreFJPVnBsMWQ1dzdOTUtyU2VtbjB1Yklydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUUxQi83NDk1MjUxNDdEMjIxMUVFQTdCMDc0NjBDNEY5QUUwMi9oa3hST1ZwbDFk NXc3Tk1LclNlbW4wdWJJcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ/Y46NqscuefD8OjsQhnnoHnsNlebMpJAGtTuAiBfRHz5p5lOJhI/ /v8jpqx0hWHhiuigkZHuwoV3BxVkPn+jIIf0dK620fUmDVVCvc5uqSlVIqCO5sUv gDS2lBWwTZkTgv3RUnDMWelNOGJz0wboXhXwikitQoyYJ2LAh9ZiVrmCKxw3cG8w EBu1hZp2gU1TKzY4i/dIqG5CePeIwKADQ6tF1aYThSCRn362VBnxyo67pnhDySxu 9+uh5S26sY45vgKD9HtNuRGZ+3dJeUxCJJBhEPIkc2M4IgL3/nIG+4RxvOopy03Q nFrNv9gvN1KeN7En4f7W8g9ytAfBNVIh -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:19 2025 by rpki-client on console.sobornost.net