$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: I5NLscC3zMOJme4s80Bu4iF3cnLDmG24uacN74G4qPs= Subject key identifier: 20:97:92:6A:C9:76:36:33:A7:E1:8B:9C:3F:ED:C4:C9:4B:79:F2:76 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: 86 Signing time: Sun 27 Apr 2025 05:22:53 +0000 Manifest this update: Sun 27 Apr 2025 05:22:52 +0000 Manifest next update: Sun 04 May 2025 05:22:52 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: 3fKbDnGCbsfV8foYEHjUs8+AO1D3YnHpKh0KQtrn7CA=) 2: 7490D0DE5AE111EFAD7EB82CC4F9AE02.roa (hash: 2zLHgEDWGwo9zlyqNnj3rIHawpIWGW43p4pSnf/kapk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Apr 27 05:22:52 2025 GMT Not After : May 4 05:22:52 2025 GMT Subject: CN=680dbf2c-059a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c8:01:1f:ff:ef:8b:ed:2e:80:2e:2f:db:2f: 43:ce:46:01:2f:d8:3c:e2:a4:30:37:59:92:8a:30: e0:c0:9d:4c:11:11:91:16:94:73:80:b8:04:c9:88: 57:e1:61:99:63:ea:62:aa:67:fc:e5:02:e4:eb:7c: 8f:ea:b3:2f:1b:be:7b:f8:1f:3d:a8:c9:35:59:1a: cd:89:39:64:80:c6:ed:41:2b:75:e3:ff:be:e9:b3: ef:35:1e:dc:3f:b4:2b:3d:48:0c:8d:6c:44:bb:f1: 5b:18:a1:aa:e9:f3:cb:7f:32:de:32:9c:a5:11:19: 0b:b9:56:31:7c:35:1c:ff:f1:24:bd:8d:54:45:97: 61:2e:e1:12:d5:ab:36:a3:1d:47:7f:6f:a1:fa:b1: 3e:a6:76:21:d6:83:96:fc:87:d1:ab:05:9f:6f:38: 10:e1:3f:9c:2b:a6:5e:6e:9c:8e:72:7b:72:8e:f3: ef:cc:c2:89:72:88:09:21:6d:79:7e:74:2c:97:45: bb:b1:e2:28:72:0d:ae:54:cf:db:4d:b3:57:15:01: e6:16:21:8c:38:f4:39:fd:cd:f1:53:87:ff:ea:ec: b1:9c:0e:6a:1f:7a:78:81:48:28:8f:70:95:3b:a1: 02:fe:c6:13:67:c5:ea:7f:62:55:29:da:09:de:40: 06:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:97:92:6A:C9:76:36:33:A7:E1:8B:9C:3F:ED:C4:C9:4B:79:F2:76 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:83:84:86:6b:b4:4f:b8:74:9e:36:66:e5:a5:1a:23:72:49: 2d:49:a6:bb:de:85:48:bc:61:b1:5f:d5:1f:0f:8a:7a:06:10: 5a:52:86:df:9c:fd:a8:65:01:16:de:b0:d5:33:68:06:7b:ac: 22:7e:dd:82:18:bc:9c:8a:4f:45:b4:e7:d5:b6:9a:a8:34:12: 67:30:32:cf:70:9a:ae:4c:90:9d:1f:35:ec:17:66:20:9f:b4: c8:94:9b:17:be:3c:10:ba:f4:ab:55:32:11:42:22:57:ea:d6: 59:91:b8:71:f6:0b:51:bf:ed:3c:a9:23:43:3c:a2:61:08:af: 80:7a:44:a1:24:c3:b3:da:47:84:4c:2f:c1:9b:00:8a:92:74: 65:f2:f4:3a:68:82:e1:59:f7:2b:a6:b9:2e:0d:7b:9a:96:80: 4c:00:36:94:25:ce:5c:f1:dd:c1:2e:d2:a8:76:04:d6:47:1f: 43:47:75:a2:9b:63:ba:56:89:e0:3e:3e:b5:2f:fd:7f:fc:d2: e0:91:06:f3:c1:a9:f4:1b:92:d5:3f:6d:05:0e:6e:cc:98:d5: 39:4f:78:60:a6:66:40:c3:0c:4e:18:36:f4:5e:b3:45:00:fe: 79:18:18:cb:f9:c6:1b:75:36:d5:09:02:6e:3a:62:71:be:65: 1a:97:e7:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUwNDI3MDUyMjUyWhcNMjUwNTA0MDUyMjUyWjAYMRYwFAYD VQQDEw02ODBkYmYyYy0wNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMgBH//vi+0ugC4v2y9DzkYBL9g84qQwN1mSijDgwJ1MERGRFpRzgLgEyYhX 4WGZY+piqmf85QLk63yP6rMvG757+B89qMk1WRrNiTlkgMbtQSt14/++6bPvNR7c P7QrPUgMjWxEu/FbGKGq6fPLfzLeMpylERkLuVYxfDUc//EkvY1URZdhLuES1as2 ox1Hf2+h+rE+pnYh1oOW/IfRqwWfbzgQ4T+cK6ZebpyOcntyjvPvzMKJcogJIW15 fnQsl0W7seIocg2uVM/bTbNXFQHmFiGMOPQ5/c3xU4f/6uyxnA5qH3p4gUgoj3CV O6EC/sYTZ8Xqf2JVKdoJ3kAGUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCXkmrJ djYzp+GLnD/txMlLefJ2MB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzg4SGa7RPuHSeNmblpRojckktSaa73oVIvGGxX9UfD4p6BhBaUobf nP2oZQEW3rDVM2gGe6wift2CGLycik9FtOfVtpqoNBJnMDLPcJquTJCdHzXsF2Yg n7TIlJsXvjwQuvSrVTIRQiJX6tZZkbhx9gtRv+08qSNDPKJhCK+AekShJMOz2keE TC/BmwCKknRl8vQ6aILhWfcrprkuDXualoBMADaUJc5c8d3BLtKodgTWRx9DR3Wi m2O6VongPj61L/1//NLgkQbzwan0G5LVP20FDm7MmNU5T3hgpmZAwwxOGDb0XrNF AP55GBjL+cYbdTbVCQJuOmJxvmUal+cq -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net