$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: c6w60sxgZJ4Po+HjWn6BIyn1zroAN1PG32cCi7m/T94= Subject key identifier: FC:F3:0F:03:B1:45:BF:7E:AF:56:F9:AE:B8:19:BD:85:13:BD:16:F1 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 38 Signing time: Sun 27 Apr 2025 05:43:59 +0000 Manifest this update: Sun 27 Apr 2025 05:43:59 +0000 Manifest next update: Sun 04 May 2025 05:43:59 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: 76B5IKaPv2Wv8sLB3PvBjB4JFea8lDiFy0Y40BwkPfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Apr 27 05:43:59 2025 GMT Not After : May 4 05:43:59 2025 GMT Subject: CN=680dc41f-ffad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e9:49:69:8d:9e:59:55:9c:c5:9d:f9:ec:06: 55:23:65:8e:48:d9:a6:a1:a6:db:32:8d:89:42:13: e6:8d:97:61:ff:52:39:0c:4d:ef:9c:04:3f:29:bf: 21:7d:ff:ac:f5:2c:2e:63:ec:79:0f:01:b1:81:9f: 58:0f:22:e2:23:45:42:f8:6a:33:90:c7:73:02:68: 0d:50:19:48:e5:ce:f0:f3:98:ac:69:0a:ba:5d:d3: 99:99:cd:c0:04:74:a6:a6:6e:8b:7b:33:81:37:4e: 9b:42:35:f2:53:cb:72:97:0c:c2:c7:d0:24:25:3a: 59:0a:71:4f:29:d4:bb:5e:0f:7e:c3:d0:c8:24:9c: 23:11:77:13:2a:e7:1d:1c:5c:35:f5:d9:72:c6:a0: 85:df:a3:a4:15:5d:9f:8d:cc:95:c3:2d:ae:b4:d3: 2b:45:76:a2:be:fb:02:5e:e3:67:ac:8b:76:bb:05: 2a:30:12:a1:d8:d7:c1:37:05:c4:34:c8:f2:a8:94: 21:d8:d4:8e:66:da:d1:f4:02:f5:0f:27:94:1f:9e: a5:5c:72:2b:24:cc:66:12:02:18:f5:db:01:f2:b6: f0:75:a2:da:21:9d:52:37:c8:d0:d3:91:78:81:70: 79:24:00:3b:eb:4d:1f:09:ce:a6:ea:6f:bf:53:76: 7d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F3:0F:03:B1:45:BF:7E:AF:56:F9:AE:B8:19:BD:85:13:BD:16:F1 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:bf:ef:8b:36:11:e1:32:05:2f:e4:9e:2c:f6:bf:c3:3e:4e: 43:bd:d6:81:f1:70:df:6d:a9:64:2e:e5:7c:7b:87:eb:ef:68: f5:04:d6:93:a0:3c:66:2f:ce:5f:d9:8d:12:21:e3:6b:2d:7e: f9:f1:09:6b:2b:b8:d9:c4:b2:8e:42:44:a1:68:8a:1b:b1:33: 41:60:3b:c5:31:d0:3d:84:81:49:37:36:1d:70:a0:3e:6d:22: d2:83:99:30:62:09:19:d0:97:59:29:36:e5:72:dc:f7:95:15: 2b:e4:82:d5:7e:64:9a:56:36:53:cc:91:5b:4e:7e:d2:78:a5: 6d:c9:aa:3f:45:9d:af:10:c6:e4:14:2b:0f:a8:20:b9:fa:f9: 7d:e1:d8:77:78:a5:01:91:fc:25:44:cb:af:19:ff:ee:c6:9e: 9b:8d:7e:0c:b0:ec:0b:d8:d0:22:c4:00:0a:52:6e:08:29:1e: 49:00:c9:c2:83:4c:0c:d1:de:fa:55:16:8b:07:1e:be:f4:11: d3:52:06:75:b1:ac:01:b2:03:7b:f8:ed:c2:98:77:ae:85:df: 82:72:85:a5:d3:c5:b2:3a:22:0f:c7:f2:bd:25:04:6b:57:86: 49:b3:72:f5:d9:54:fb:1d:24:ee:1c:ca:dd:ec:74:53:e1:6b: 8c:52:1d:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMjhFREE3Qjk1RDVFOEQ0NTYyQTc1OTc0QzZERDdEQTY0 QzJBMkE4NjAeFw0yNTA0MjcwNTQzNTlaFw0yNTA1MDQwNTQzNTlaMBgxFjAUBgNV BAMTDTY4MGRjNDFmLWZmYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC6UlpjZ5ZVZzFnfnsBlUjZY5I2aahptsyjYlCE+aNl2H/UjkMTe+cBD8pvyF9 /6z1LC5j7HkPAbGBn1gPIuIjRUL4ajOQx3MCaA1QGUjlzvDzmKxpCrpd05mZzcAE dKambot7M4E3TptCNfJTy3KXDMLH0CQlOlkKcU8p1LteD37D0MgknCMRdxMq5x0c XDX12XLGoIXfo6QVXZ+NzJXDLa600ytFdqK++wJe42esi3a7BSowEqHY18E3BcQ0 yPKolCHY1I5m2tH0AvUPJ5QfnqVcciskzGYSAhj12wHytvB1otohnVI3yNDTkXiB cHkkADvrTR8Jzqbqb79Tdn3dAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/PMPA7FF v36vVvmuuBm9hRO9FvEwHwYDVR0jBBgwFoAUKO2nuV1ejUVip1l0xt19pkwqKoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFL0Q0MDlGODJBRDE2 OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvS08ybnVWMWVqVVZpcDFsMHh0MTlwa3dxS29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFL0Q0MDlGODJBRDE2OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVW aXAxbDB4dDE5cGt3cUtvWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFm/74s2EeEyBS/kniz2v8M+TkO91oHxcN9tqWQu5Xx7h+vvaPUE1pOg PGYvzl/ZjRIh42stfvnxCWsruNnEso5CRKFoihuxM0FgO8Ux0D2EgUk3Nh1woD5t ItKDmTBiCRnQl1kpNuVy3PeVFSvkgtV+ZJpWNlPMkVtOftJ4pW3Jqj9Fna8QxuQU Kw+oILn6+X3h2Hd4pQGR/CVEy68Z/+7GnpuNfgyw7AvY0CLEAApSbggpHkkAycKD TAzR3vpVFosHHr70EdNSBnWxrAGyA3v47cKYd66F34JyhaXTxbI6Ig/H8r0lBGtX hkmzcvXZVPsdJO4cyt3sdFPha4xSHUo= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net