$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: nRzDiQaPofbSlyQjBS94skrQKr/g30J//4LMdg7YXQU= Subject key identifier: 36:B4:96:E1:23:E9:7E:E4:BB:8E:39:78:EE:61:8D:6F:E0:26:0B:DF Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: EC Signing time: Sun 27 Apr 2025 04:15:02 +0000 Manifest this update: Sun 27 Apr 2025 04:15:01 +0000 Manifest next update: Sun 04 May 2025 04:15:01 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: L/G/QT6gomr8xT9aUtbRLhvlfekRLoz8aJnZSR5bzrE=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Apr 27 04:15:01 2025 GMT Not After : May 4 04:15:01 2025 GMT Subject: CN=680daf46-5d07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a9:65:5e:2a:8f:c0:b4:42:a2:79:f5:61:9d: 3d:3b:18:37:ae:f2:a4:0a:0f:6e:e9:e6:39:e1:58: a9:5e:be:8c:f8:d4:02:5e:78:67:fc:d1:aa:96:df: f1:61:68:c0:9c:3b:46:d2:d2:7f:b9:45:8a:6e:66: 87:8b:ee:1b:1f:71:77:b6:af:d6:b4:f0:fc:48:02: ce:fe:bb:65:17:c0:0f:f4:fd:0a:21:be:cb:eb:d5: 0a:85:71:22:c9:9e:40:47:9c:b5:2d:7b:91:ac:5d: 9a:79:db:80:8b:1c:d5:44:f5:63:aa:14:6c:f2:26: 58:b9:4c:c5:93:2f:82:f6:a8:22:4d:f4:a2:1d:ee: 05:27:85:e9:b7:fe:37:92:23:6f:33:b0:ba:54:ff: 4f:72:0a:59:ec:2d:c0:3c:c9:30:79:83:8f:9b:6a: 48:0e:d4:a2:d0:cc:c4:1a:8d:26:39:30:ac:ec:e1: 28:a1:73:b7:80:2e:44:1a:dc:da:a1:7b:ef:a8:78: cd:0a:69:c1:bd:6d:dd:68:3f:0a:56:2d:4f:52:11: 66:46:17:c1:65:5e:bc:41:3c:c1:48:f8:26:d7:1f: 2b:d5:cb:3b:74:bc:f7:d8:d6:ab:dc:0d:0d:f4:2a: 73:c6:05:ee:c4:a0:a5:7d:53:ce:58:da:21:df:ce: e3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B4:96:E1:23:E9:7E:E4:BB:8E:39:78:EE:61:8D:6F:E0:26:0B:DF X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:ba:51:a4:6b:54:dd:e8:31:06:cc:9c:a2:c2:95:73:9a:30: 2f:62:36:0f:1b:f9:aa:96:1e:3e:2e:e0:7d:db:59:a2:b0:fc: cd:5d:3f:eb:93:9b:42:b2:3f:c3:ce:6e:f3:2a:e5:9b:cd:d1: b9:61:72:45:d6:64:a1:16:57:e5:be:9e:10:b6:68:d2:dc:1e: 95:60:3f:7a:1a:6f:73:2f:b9:70:54:19:4a:31:a8:04:31:9e: 63:64:34:22:28:6f:99:81:87:20:60:62:5a:08:75:20:fd:26: a8:72:b4:f9:1f:3a:10:52:25:69:4a:09:a9:9c:07:55:ee:0c: 3c:5f:88:03:70:26:e0:9b:55:73:27:6e:56:b4:24:41:d9:23: 2c:80:ab:d7:99:ee:73:f5:e7:18:f6:07:77:06:a6:d5:40:78: 72:d8:34:5a:58:71:a0:40:bf:df:0a:43:bf:e9:98:a3:c5:9b: 5d:b2:8a:05:5d:63:f9:51:6a:de:d4:c4:81:de:02:38:cb:ac: fb:ca:51:1e:8c:41:6b:e4:d3:60:59:32:e0:fb:a4:d9:8b:ee: fc:b2:2b:55:de:61:20:c7:ed:9b:5f:f7:57:e5:5c:80:29:6d: 5b:1e:55:4e:76:48:db:8d:b5:6f:71:84:eb:51:98:d2:31:d4: 5f:19:e9:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNDI3MDQxNTAxWhcNMjUwNTA0MDQxNTAxWjAYMRYwFAYD VQQDEw02ODBkYWY0Ni01ZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6llXiqPwLRConn1YZ09Oxg3rvKkCg9u6eY54VipXr6M+NQCXnhn/NGqlt/x YWjAnDtG0tJ/uUWKbmaHi+4bH3F3tq/WtPD8SALO/rtlF8AP9P0KIb7L69UKhXEi yZ5AR5y1LXuRrF2aeduAixzVRPVjqhRs8iZYuUzFky+C9qgiTfSiHe4FJ4Xpt/43 kiNvM7C6VP9PcgpZ7C3APMkweYOPm2pIDtSi0MzEGo0mOTCs7OEooXO3gC5EGtza oXvvqHjNCmnBvW3daD8KVi1PUhFmRhfBZV68QTzBSPgm1x8r1cs7dLz32Nar3A0N 9CpzxgXuxKClfVPOWNoh387jcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDa0luEj 6X7ku445eO5hjW/gJgvfMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlulGka1Td6DEGzJyiwpVzmjAvYjYPG/mqlh4+LuB921misPzNXT/r k5tCsj/Dzm7zKuWbzdG5YXJF1mShFlflvp4QtmjS3B6VYD96Gm9zL7lwVBlKMagE MZ5jZDQiKG+ZgYcgYGJaCHUg/SaocrT5HzoQUiVpSgmpnAdV7gw8X4gDcCbgm1Vz J25WtCRB2SMsgKvXme5z9ecY9gd3BqbVQHhy2DRaWHGgQL/fCkO/6ZijxZtdsooF XWP5UWre1MSB3gI4y6z7ylEejEFr5NNgWTLg+6TZi+78sitV3mEgx+2bX/dX5VyA KW1bHlVOdkjbjbVvcYTrUZjSMdRfGemt -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:42 2025 by rpki-client on console.sobornost.net