$ rpki-client -vvf rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft File: KurroPAY2-_Rh00iahT7C5SpWH4.mft (raw, json) Hash identifier: iUaTGF7nwkqBZJy5r0kzaQzrogltuisrW2bJN599S2o= Subject key identifier: 8D:2B:E6:59:F8:9E:9D:5A:40:75:63:E3:68:56:40:9B:91:50:A3:84 Authority key identifier: 2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E Certificate issuer: /CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft Manifest number: 01C2 Signing time: Sat 03 May 2025 02:34:39 +0000 Manifest this update: Sat 03 May 2025 02:34:39 +0000 Manifest next update: Sat 10 May 2025 02:34:39 +0000 Files and hashes: 1: KurroPAY2-_Rh00iahT7C5SpWH4.crl (hash: uXNFZZS4blbM6pyWELdsC6uYZZ1oJSquP1ioNeZ2O6g=) 2: B2233F6C7FAB11ED834D8D52C4F9AE02.roa (hash: MPBXfbZCyqMb6fDvtDouYAKXgZIENFo3o8Zo6D/vFQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130BF5, serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Validity Not Before: May 3 02:34:39 2025 GMT Not After : May 10 02:34:39 2025 GMT Subject: CN=681580bf-54aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7f:03:31:3b:f9:5b:9f:e9:84:95:80:08:9a: 64:a7:18:0b:9e:32:b4:6e:a2:0e:ee:b8:fd:8b:6a: fc:18:f2:6b:e4:fd:bf:64:e3:04:b1:7a:69:46:81: eb:bf:fb:a1:35:1c:cd:75:b8:db:f5:f6:86:2c:6b: 43:cd:3a:ce:c8:6e:1b:cb:a4:07:91:b4:ce:f9:b7: 46:c3:c3:f9:31:47:75:22:60:4e:18:48:10:1d:9d: 1d:30:61:de:5c:a5:2a:34:cc:80:a7:db:bf:27:67: 84:5d:ed:a7:dc:a4:0e:e7:a1:7f:0d:dd:f5:b3:03: b3:3f:c9:f6:ce:18:15:91:9e:70:67:1f:8a:80:a5: 2f:6c:4b:34:3d:8e:1d:13:2d:d7:fd:ec:1f:00:27: 10:c8:3b:c7:3f:80:28:3d:81:b2:56:5e:08:8b:ee: bd:bd:0a:a5:b1:f2:53:44:83:e9:b8:91:26:81:a8: df:77:e6:64:3e:2e:a3:f2:f0:a5:cb:90:35:3d:05: 7a:c8:24:0a:5f:94:0d:27:c2:11:db:b9:51:30:6b: 68:a1:5f:69:53:2d:e0:b7:07:dd:35:f3:f1:97:27: 68:04:45:09:ea:c5:d7:b9:f2:7b:75:c3:50:0e:fa: 87:7e:de:f8:f7:2e:f0:27:c7:8e:a9:5b:68:2a:19: 54:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2B:E6:59:F8:9E:9D:5A:40:75:63:E3:68:56:40:9B:91:50:A3:84 X509v3 Authority Key Identifier: keyid:2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:82:89:62:56:52:3f:cd:42:3f:b6:99:20:cf:b3:8e:f8:9f: 40:df:ad:fd:89:77:03:98:13:97:f9:35:fc:53:c0:03:3f:7e: 78:35:b5:af:28:13:1f:a6:75:42:48:37:19:03:58:a5:80:4b: f4:ca:23:4a:27:0e:8e:b8:87:7e:48:46:15:e3:b0:f1:3b:26: bc:71:e1:70:6f:17:47:1a:17:b8:8f:49:2c:39:2b:ab:93:bb: 91:a9:63:ee:d6:52:91:9d:18:8d:4b:84:d5:92:1b:3c:10:3b: 4d:75:48:ec:a0:39:30:db:bf:35:7f:e9:ed:67:16:1c:26:56: e8:ca:fa:a4:6d:8a:c3:b3:4f:b1:f7:2a:af:d1:4b:52:fb:85: e2:99:e9:e9:78:a1:02:d8:b7:04:77:1a:fb:da:1f:8e:e8:4b: dc:0d:8e:c0:81:66:37:44:c9:fb:16:94:41:75:81:4a:ed:ff: 41:c7:8d:7c:47:2f:eb:1f:4e:41:ff:44:88:c4:92:b4:a2:97: 3b:c9:1a:d1:f4:20:bd:c6:83:f7:73:5b:dc:1e:80:97:11:10: cf:18:c4:5f:87:c3:fc:1a:05:bc:af:e0:0f:45:57:ea:6c:2e: 5d:d4:bc:8c:a1:db:3a:bc:6d:34:68:b5:1c:a4:bb:fc:fa:01: 53:52:f7:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBCRjUxMTAvBgNVBAUTKDJBRUFFQkEwRjAxOERCRUZEMTg3NEQyMjZBMTRGQjBC OTRBOTU4N0UwHhcNMjUwNTAzMDIzNDM5WhcNMjUwNTEwMDIzNDM5WjAYMRYwFAYD VQQDEw02ODE1ODBiZi01NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn8DMTv5W5/phJWACJpkpxgLnjK0bqIO7rj9i2r8GPJr5P2/ZOMEsXppRoHr v/uhNRzNdbjb9faGLGtDzTrOyG4by6QHkbTO+bdGw8P5MUd1ImBOGEgQHZ0dMGHe XKUqNMyAp9u/J2eEXe2n3KQO56F/Dd31swOzP8n2zhgVkZ5wZx+KgKUvbEs0PY4d Ey3X/ewfACcQyDvHP4AoPYGyVl4Ii+69vQqlsfJTRIPpuJEmgajfd+ZkPi6j8vCl y5A1PQV6yCQKX5QNJ8IR27lRMGtooV9pUy3gtwfdNfPxlydoBEUJ6sXXufJ7dcNQ DvqHft749y7wJ8eOqVtoKhlUWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0r5ln4 np1aQHVj42hWQJuRUKOEMB8GA1UdIwQYMBaAFCrq66DwGNvv0YdNImoU+wuUqVh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEJGNS82RkM2NDEzNDdG QTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTItX1JoMDBpYWhUN0M1U3BX SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t1cnJvUEFZMi1fUmgwMGlhaFQ3QzVTcFdINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEJGNS82RkM2NDEzNDdGQTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTIt X1JoMDBpYWhUN0M1U3BXSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8goliVlI/zUI/tpkgz7OO+J9A3639iXcDmBOX+TX8U8ADP354NbWv KBMfpnVCSDcZA1ilgEv0yiNKJw6OuId+SEYV47DxOya8ceFwbxdHGhe4j0ksOSur k7uRqWPu1lKRnRiNS4TVkhs8EDtNdUjsoDkw2781f+ntZxYcJlboyvqkbYrDs0+x 9yqv0UtS+4XimenpeKEC2LcEdxr72h+O6EvcDY7AgWY3RMn7FpRBdYFK7f9Bx418 Ry/rH05B/0SIxJK0opc7yRrR9CC9xoP3c1vcHoCXERDPGMRfh8P8GgW8r+APRVfq bC5d1LyMods6vG00aLUcpLv8+gFTUvfL -----END CERTIFICATE-----Generated at Sat May 3 06:09:57 2025 by rpki-client on console.sobornost.net