$ rpki-client -vvf rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft File: pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft (raw, json) Hash identifier: eLUk3ENW2hhGYQU14X8cZKegO3j0HN3zav1R5+jGtF8= Subject key identifier: A0:3E:EF:66:1B:F4:6A:1E:A7:DE:D8:80:51:9B:DD:4C:BB:B1:30:D6 Authority key identifier: A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF Certificate issuer: /CN=A912DC44/serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Certificate serial: 0D4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft Manifest number: 0D11 Signing time: Mon 28 Apr 2025 18:19:43 +0000 Manifest this update: Mon 28 Apr 2025 18:19:43 +0000 Manifest next update: Mon 05 May 2025 18:19:43 +0000 Files and hashes: 1: pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl (hash: TWBpFNhfK79Yde2+MWbnrQGmQqVBwHSfr3OfqcAveGk=) 2: 938E408897E011EB8870DB29C4F9AE02.roa (hash: AvnHda6N9uSW4caKdT/1qliaFxGzoCjsBnC7c0M2BTI=) 3: 5614ADF6C2D811EF873CE458C4F9AE02.roa (hash: RDs4E4PsjjGLZT+7OZQ+4M3HWmV0V93uL7g7uiZOHjA=) 4: 073C2C80C4C411EEA7C8041DC4F9AE02.roa (hash: +NoTiVoOFpuwdO/IMcCankOcyEeq0d7jzR0LbMB2Mow=) 5: 82F618E6187311F0A89EDE11C4F9AE02.roa (hash: F6pHZaK0p+hfG2R8U42UIH6mVTyAquKiquy2pjJGlpw=) 6: 5B4A8D6EC37C11EF91554967C4F9AE02.roa (hash: DyFZphDj+xYQOQuO59LnOvFtMeJz8Mp/8a6Sd7JeRP8=) 7: 27F7A40AE4FD11E990830B62C4F9AE02.roa (hash: 0CwL/9pIHvX1NQjOju2K8M/8kw+TsmpQ+hJ5ObtVylo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 18:19:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3403 (0xd4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DC44, serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Validity Not Before: Apr 28 18:19:43 2025 GMT Not After : May 5 18:19:43 2025 GMT Subject: CN=680fc6bf-a72c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:06:23:d3:3e:27:28:5d:f9:d0:e1:d4:7c: 2b:85:db:8c:8c:92:77:2d:02:3d:3d:1e:c6:10:01: 6d:7c:52:03:a1:24:e5:32:43:45:11:52:5d:dd:11: 06:a6:fe:f5:01:af:6f:14:25:11:4b:f7:89:6d:c5: b1:f9:32:f1:18:3b:84:3f:f5:af:31:5f:5d:2d:d8: a1:40:57:3b:97:91:f8:84:7c:26:81:83:2e:25:7e: d0:3d:06:46:00:1f:3d:b9:cd:e8:80:9a:a2:b8:3f: 98:54:a3:c3:47:fe:d7:52:47:21:ad:a3:d3:05:60: 32:d7:b8:b9:1b:91:53:76:9e:73:f0:29:13:58:e0: 81:02:85:f3:3b:b0:a4:52:a5:1e:9c:ee:58:d3:de: 5b:06:65:e3:c7:c7:08:ab:bc:66:a0:1c:fc:d3:9e: fc:be:e2:3a:37:d2:63:71:1a:d9:47:f6:0a:ce:cf: 31:1f:d8:79:5d:15:c7:a5:a5:1c:13:41:05:3f:59: d6:8a:13:cc:0f:9c:bd:a4:8d:06:38:71:92:82:ac: 05:e1:c2:5a:e3:db:34:2a:5b:ad:30:35:fd:a0:52: fe:4d:2a:99:fa:32:6d:d4:1a:23:4b:04:09:1d:4e: 40:96:8b:ee:d8:07:a8:91:dc:91:fa:52:36:52:1c: 34:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:3E:EF:66:1B:F4:6A:1E:A7:DE:D8:80:51:9B:DD:4C:BB:B1:30:D6 X509v3 Authority Key Identifier: keyid:A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:8e:4f:cc:0f:c5:96:6e:b1:21:d3:9a:02:d3:35:59:a0:be: 9f:fd:9c:f1:bf:3e:90:8d:9f:6e:52:5e:0d:17:da:15:78:42: b1:61:db:a0:d1:15:8e:98:61:91:6e:78:fa:50:20:cb:07:56: cf:b9:e7:7f:0d:cb:de:4d:93:ea:48:1a:25:59:a0:51:d8:d9: db:86:43:ba:c4:d6:32:1c:dd:97:ee:6c:b0:72:33:db:c4:39: f8:05:a4:78:0a:18:d2:25:1c:21:22:4c:66:d3:72:6b:af:90: 9c:12:79:11:f0:fa:3b:f6:6e:3a:ea:41:52:ca:ee:7b:f3:42: 53:17:3f:ac:f6:0a:59:0b:e9:52:39:09:8c:3a:96:98:b6:36: fc:78:65:a4:a4:4d:3b:4c:2f:0a:b2:88:17:4e:d1:7a:fe:95: 40:60:e7:19:47:ed:6a:f1:05:cc:3a:c9:fb:b9:0e:61:6f:39: 65:02:98:f2:fe:e5:12:5a:37:0c:cd:1e:21:04:a2:0b:77:41: 79:b1:97:01:f5:d9:1b:05:d6:57:c7:bd:f2:44:91:91:64:62: f5:1d:b2:d9:78:77:6d:f8:17:bc:f5:66:ff:b9:04:18:cb:90: 61:5c:67:1f:6e:c9:3f:da:f1:d9:dd:ad:ae:e0:19:09:12:b1: 82:7a:88:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRDNDQxMTAvBgNVBAUTKEE2NDIxRkUxM0Q4QzkzQTdCRERGRjhCNTM3MTlCNTgw ODc0OEQwREYwHhcNMjUwNDI4MTgxOTQzWhcNMjUwNTA1MTgxOTQzWjAYMRYwFAYD VQQDEw02ODBmYzZiZi1hNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQEGI9M+Jyhd+dDh1HwrhduMjJJ3LQI9PR7GEAFtfFIDoSTlMkNFEVJd3REG pv71Aa9vFCURS/eJbcWx+TLxGDuEP/WvMV9dLdihQFc7l5H4hHwmgYMuJX7QPQZG AB89uc3ogJqiuD+YVKPDR/7XUkchraPTBWAy17i5G5FTdp5z8CkTWOCBAoXzO7Ck UqUenO5Y095bBmXjx8cIq7xmoBz80578vuI6N9JjcRrZR/YKzs8xH9h5XRXHpaUc E0EFP1nWihPMD5y9pI0GOHGSgqwF4cJa49s0KlutMDX9oFL+TSqZ+jJt1BojSwQJ HU5Alovu2AeokdyR+lI2Uhw0aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKA+72Yb 9Goep97YgFGb3Uy7sTDWMB8GA1UdIwQYMBaAFKZCH+E9jJOnvd/4tTcZtYCHSNDf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREM0NC8yOUI2QkVEQUU0 RkMxMUU5QjEzQjQ4NjBDNEY5QUUwMi9wa0lmNFQyTWs2ZTkzX2kxTnhtMWdJZEkw TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BrSWY0VDJNazZlOTNfaTFOeG0xZ0lkSTBOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REM0NC8yOUI2QkVEQUU0RkMxMUU5QjEzQjQ4NjBDNEY5QUUwMi9wa0lmNFQyTWs2 ZTkzX2kxTnhtMWdJZEkwTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+jk/MD8WWbrEh05oC0zVZoL6f/Zzxvz6QjZ9uUl4NF9oVeEKxYdug 0RWOmGGRbnj6UCDLB1bPued/DcveTZPqSBolWaBR2NnbhkO6xNYyHN2X7mywcjPb xDn4BaR4ChjSJRwhIkxm03Jrr5CcEnkR8Po79m466kFSyu5780JTFz+s9gpZC+lS OQmMOpaYtjb8eGWkpE07TC8KsogXTtF6/pVAYOcZR+1q8QXMOsn7uQ5hbzllApjy /uUSWjcMzR4hBKILd0F5sZcB9dkbBdZXx73yRJGRZGL1HbLZeHdt+Be89Wb/uQQY y5BhXGcfbsk/2vHZ3a2u4BkJErGCeojG -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:26 2025 by rpki-client on console.sobornost.net