$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: 0eyljq9oHbtPVXdcF3y9QcoxTpbhtYuWQ8YJECAQ2Aw= Subject key identifier: AF:13:6B:53:39:C9:D6:A7:43:40:EC:C3:79:62:BB:F1:20:79:23:63 Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 13 Signing time: Sun 27 Apr 2025 06:51:19 +0000 Manifest this update: Sun 27 Apr 2025 06:51:19 +0000 Manifest next update: Sun 04 May 2025 06:51:19 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 0h3X1LHXw6SCzU9nEaFANI/vNPsk4g3r7Crjbp3wwSM=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: D+C1K1lzyhPvB9LwJB8gZilHLGwebOslipSKAX/r/Wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Apr 27 06:51:19 2025 GMT Not After : May 4 06:51:19 2025 GMT Subject: CN=680dd3e7-fba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7d:92:37:bc:b0:63:32:b8:52:87:9d:bc:87: 15:5c:38:d8:65:2e:0c:4e:0e:c1:d1:35:1c:7a:39: 56:a3:29:93:ab:1d:a3:f0:2c:5c:53:20:21:af:16: ab:79:62:bc:2c:e4:eb:81:8f:69:eb:05:73:0f:f7: 3c:8a:98:bf:d5:94:23:71:c0:76:a3:8b:43:a9:8d: e1:ed:dd:97:a5:04:a3:7a:00:7d:f3:22:67:e5:b1: 12:bf:47:22:b7:03:fe:52:2a:b5:4e:63:bd:5e:b6: 57:0a:b7:82:28:0a:6a:9e:29:16:26:23:01:a5:33: e8:52:88:a1:45:fa:16:6a:0e:a6:44:79:98:38:56: 89:c4:b5:83:65:b4:22:b2:df:f5:a7:16:fa:82:2b: 92:22:f6:71:36:64:67:3b:e3:72:8f:cd:cf:60:d8: 83:4e:86:90:75:1e:7c:8a:f8:a6:19:38:75:79:87: 64:4b:1b:41:41:c9:a0:98:b2:33:d9:e1:bf:77:f3: 54:50:4f:f7:fd:b6:c2:dc:b9:cd:0e:07:74:f5:bb: 09:98:31:d6:35:b5:62:1e:c5:fe:ec:f4:32:a8:d8: 9f:39:d2:d1:3a:13:e9:af:4c:51:ed:51:31:f1:bf: 27:80:c4:e6:b3:11:9c:e3:0f:1d:27:e2:a8:d7:f0: 96:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:13:6B:53:39:C9:D6:A7:43:40:EC:C3:79:62:BB:F1:20:79:23:63 X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:13:65:3b:00:60:31:5f:c2:e7:f8:0e:ce:41:49:03:dc:76: c1:1e:1a:98:95:7b:28:64:44:02:7b:ce:30:09:c3:d4:f8:c6: 76:0a:57:d9:96:48:4e:f6:62:97:83:0c:d4:4d:1b:17:25:db: 9b:82:0f:11:99:fc:f8:0e:40:08:16:2c:61:af:1c:21:4d:86: 85:2e:31:b2:47:e8:5a:df:93:c4:d2:ff:c1:1c:a5:5e:05:f9: ea:f1:a5:79:4c:64:16:57:cb:08:48:f4:dd:2c:c0:1a:70:a3: 64:68:dd:3d:c5:bc:87:9d:f3:2f:7f:54:94:15:16:48:57:dd: 47:2a:fe:e0:b0:f7:0a:87:5b:c3:b5:25:20:26:10:9b:85:89: 22:d5:da:e1:ac:ac:69:fc:d4:da:3a:81:37:2c:ae:81:87:17: 12:b8:cb:d5:66:f3:c6:ca:5a:47:c5:4b:e7:e8:98:80:c5:88: 6e:f2:1f:59:ae:75:8e:25:e5:fc:c9:ed:0a:0b:63:9f:eb:2d: bd:0a:b3:4c:63:3f:7e:ca:c6:a2:b3:b9:00:38:b4:16:88:ea: 2c:aa:76:9a:b1:8b:0b:21:e6:ac:cf:d6:60:44:ca:f0:71:6c: 55:74:3f:d2:67:0e:83:e4:ec:03:40:68:25:12:c1:64:2c:62: dd:14:fe:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMDhBMzkxQzZCMzg5QzgxMEU5NUJDNjEzOUNFQ0IyOUQ1 RDM5NThDNDAeFw0yNTA0MjcwNjUxMTlaFw0yNTA1MDQwNjUxMTlaMBgxFjAUBgNV BAMTDTY4MGRkM2U3LWZiYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPfZI3vLBjMrhSh528hxVcONhlLgxODsHRNRx6OVajKZOrHaPwLFxTICGvFqt5 Yrws5OuBj2nrBXMP9zyKmL/VlCNxwHaji0OpjeHt3ZelBKN6AH3zImflsRK/RyK3 A/5SKrVOY71etlcKt4IoCmqeKRYmIwGlM+hSiKFF+hZqDqZEeZg4VonEtYNltCKy 3/WnFvqCK5Ii9nE2ZGc743KPzc9g2INOhpB1HnyK+KYZOHV5h2RLG0FByaCYsjPZ 4b9381RQT/f9tsLcuc0OB3T1uwmYMdY1tWIexf7s9DKo2J850tE6E+mvTFHtUTHx vyeAxOazEZzjDx0n4qjX8JYVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrxNrUznJ 1qdDQOzDeWK78SB5I2MwHwYDVR0jBBgwFoAUCKORxrOJyBDpW8YTnOyynV05WMQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5Lzg3MDU1QjMyMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdN US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0tPUnhyT0p5QkRwVzhZVG5PeXluVjA1V01RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5Lzg3MDU1QjMyMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0NLT1J4ck9KeUJE cFc4WVRuT3l5blYwNVdNUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEcTZTsAYDFfwuf4Ds5BSQPcdsEeGpiVeyhkRAJ7zjAJw9T4xnYKV9mW SE72YpeDDNRNGxcl25uCDxGZ/PgOQAgWLGGvHCFNhoUuMbJH6Frfk8TS/8EcpV4F +erxpXlMZBZXywhI9N0swBpwo2Ro3T3FvIed8y9/VJQVFkhX3Ucq/uCw9wqHW8O1 JSAmEJuFiSLV2uGsrGn81No6gTcsroGHFxK4y9Vm88bKWkfFS+fomIDFiG7yH1mu dY4l5fzJ7QoLY5/rLb0Ks0xjP37KxqKzuQA4tBaI6iyqdpqxiwsh5qzP1mBEyvBx bFV0P9JnDoPk7ANAaCUSwWQsYt0U/uU= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:17 2025 by rpki-client on console.sobornost.net