$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: Fs5UH0QdKhYb/4thuUsG3gsfZB9lTYfJBEGiLelaKMY= Subject key identifier: 3B:46:40:07:49:33:C8:C7:E0:80:63:23:9F:BA:BF:8D:51:66:14:E7 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 03D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03D3 Signing time: Sun 27 Apr 2025 00:14:15 +0000 Manifest this update: Sun 27 Apr 2025 00:14:14 +0000 Manifest next update: Sun 04 May 2025 00:14:14 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: +qHOr+99WdJ981m21WO6rOrTczyN+PNwCNvBW0zvvV0=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Apr 27 00:14:14 2025 GMT Not After : May 4 00:14:14 2025 GMT Subject: CN=680d76d7-8404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:39:0f:2f:09:0b:a5:ae:de:23:de:d0:cd: 0f:e2:4d:96:b9:41:e5:51:56:07:70:d5:fb:33:25: 1f:fd:08:f0:11:f5:64:32:c5:9e:45:b6:99:d4:0b: 31:1a:61:c5:a8:da:e7:97:24:48:c2:b8:0d:6b:ff: a7:c4:6d:39:63:0c:e5:c2:8d:b9:0a:0c:21:ea:0d: 45:5f:b3:47:e1:81:34:81:2f:7b:2e:f5:e6:26:95: 2b:0a:5e:32:65:4d:11:46:bf:e0:5f:da:33:02:04: 08:ef:c0:26:62:f4:0c:75:b9:a8:97:a8:83:e2:b1: 44:46:2d:54:06:31:03:3e:37:a9:21:85:fc:54:fa: f7:a1:0b:ed:b6:34:5a:73:e5:c7:bd:e6:29:55:8c: 85:d7:5e:1b:35:b6:f4:77:bd:8a:61:4b:a3:ba:df: 53:36:66:4a:0d:c9:2a:c9:f0:6a:1d:81:fc:31:fa: da:a4:93:05:4a:b5:f1:b0:1b:87:27:22:26:00:a5: 41:70:1e:b1:1d:c6:33:eb:b4:b6:78:68:10:1a:90: 58:05:bc:d1:f3:89:1b:ae:9f:57:cf:2a:3d:86:97: 5e:c8:0e:42:e1:a4:43:9c:13:77:45:08:69:8f:6d: 6e:76:80:1e:14:24:5a:87:07:ad:29:cd:fe:4e:b0: eb:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:46:40:07:49:33:C8:C7:E0:80:63:23:9F:BA:BF:8D:51:66:14:E7 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:d6:b3:0d:c4:3c:ba:d9:39:ea:8a:db:f1:0b:1c:b3:ed:48: 4b:99:33:be:6a:b9:6d:54:80:64:66:3d:e9:eb:f8:74:1a:9d: 51:14:33:fb:04:dd:66:92:2b:65:e7:df:b0:73:14:ff:64:9a: d2:14:89:57:5a:b6:67:57:c9:df:06:5d:19:ec:6e:55:8d:b3: b6:7d:ac:7f:77:b0:df:27:13:84:75:64:4f:2b:48:fa:ab:da: 72:31:e0:a4:a4:3a:99:bc:f9:e8:db:dd:ca:ad:92:38:83:2a: 6b:44:53:f6:82:1c:c2:97:af:0c:06:e6:cc:22:87:5e:dc:9e: 08:40:7f:4f:56:c9:7f:e2:66:14:c5:bc:95:c1:2d:53:a5:ae: 88:a7:e3:fe:cd:83:92:ce:36:05:59:a7:26:ce:2f:56:27:72: 11:3f:20:fc:61:bc:53:6b:89:64:9b:45:16:2d:d3:37:5f:ec: dc:c7:54:3a:94:16:3d:52:17:ae:69:08:9e:80:74:26:80:78: 6b:9a:cc:cf:c4:45:e9:2c:9b:5f:1f:44:00:5c:67:32:f6:21: 39:76:69:bd:b1:bc:b7:8e:f4:1d:0e:ad:03:9a:80:38:2c:fe: 21:c1:a3:7c:fe:fe:2d:e4:fa:8e:77:1a:1f:fd:5e:ce:47:2b: 42:d6:11:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwNDI3MDAxNDE0WhcNMjUwNTA0MDAxNDE0WjAYMRYwFAYD VQQDEw02ODBkNzZkNy04NDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkU5Dy8JC6Wu3iPe0M0P4k2WuUHlUVYHcNX7MyUf/QjwEfVkMsWeRbaZ1Asx GmHFqNrnlyRIwrgNa/+nxG05Ywzlwo25Cgwh6g1FX7NH4YE0gS97LvXmJpUrCl4y ZU0RRr/gX9ozAgQI78AmYvQMdbmol6iD4rFERi1UBjEDPjepIYX8VPr3oQvttjRa c+XHveYpVYyF114bNbb0d72KYUujut9TNmZKDckqyfBqHYH8MfrapJMFSrXxsBuH JyImAKVBcB6xHcYz67S2eGgQGpBYBbzR84kbrp9Xzyo9hpdeyA5C4aRDnBN3RQhp j21udoAeFCRahwetKc3+TrDryQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtGQAdJ M8jH4IBjI5+6v41RZhTnMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl1rMNxDy62TnqitvxCxyz7UhLmTO+arltVIBkZj3p6/h0Gp1RFDP7 BN1mkitl59+wcxT/ZJrSFIlXWrZnV8nfBl0Z7G5VjbO2fax/d7DfJxOEdWRPK0j6 q9pyMeCkpDqZvPno293KrZI4gyprRFP2ghzCl68MBubMIode3J4IQH9PVsl/4mYU xbyVwS1Tpa6Ip+P+zYOSzjYFWacmzi9WJ3IRPyD8YbxTa4lkm0UWLdM3X+zcx1Q6 lBY9UheuaQiegHQmgHhrmszPxEXpLJtfH0QAXGcy9iE5dmm9sby3jvQdDq0DmoA4 LP4hwaN8/v4t5PqOdxof/V7ORytC1hFY -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:28 2025 by rpki-client on console.sobornost.net