$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: 5/okv2oJd8NQdlESBm+d7bHv5Giw/1D7qV85jy1APgk= Subject key identifier: 6A:77:B6:58:79:8D:58:55:E7:98:33:1B:41:B4:A4:1C:8D:A1:87:62 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 066E Signing time: Sat 26 Apr 2025 22:04:29 +0000 Manifest this update: Sat 26 Apr 2025 22:04:29 +0000 Manifest next update: Sat 03 May 2025 22:04:29 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: /xz6nre1gI34ajSR5xtmpfoLHtkp3kNUftx/SXdoixg=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Apr 26 22:04:29 2025 GMT Not After : May 3 22:04:29 2025 GMT Subject: CN=680d586d-3f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:38:a6:44:e6:db:da:b3:61:46:d5:13:95:14: dd:87:63:92:a1:ce:d0:c6:41:f2:fa:b9:76:eb:ed: 65:22:20:f0:9d:cc:36:8a:6f:76:36:71:83:c1:8a: 9a:89:e3:e0:0f:be:66:7c:62:47:36:24:39:9a:47: ec:81:b6:54:ab:95:0c:69:7e:92:e1:dd:41:b6:55: db:2a:bb:64:70:00:9f:97:44:82:14:9f:71:d3:55: 74:b7:7e:93:5e:55:dc:f0:b5:8e:68:e9:2b:2c:62: e1:ce:1e:1b:dc:ad:9a:13:ce:49:64:ab:37:1e:44: 36:9e:a6:c3:f0:b1:77:13:54:c2:28:8b:37:40:30: 7f:df:1e:ef:a1:10:ed:74:ae:9c:fb:82:6b:a8:a2: 90:19:b4:c9:1e:3b:7a:c7:1e:0a:a4:f5:9b:67:dc: 8e:90:ee:7e:ea:c1:14:80:98:3f:e7:bb:fa:7a:2e: 71:85:59:cc:db:f9:ff:2d:b0:20:07:64:da:b6:49: 7c:df:89:8c:43:ff:d1:f3:2d:df:b5:25:6d:c8:16: 05:c1:11:ac:06:a8:09:2e:4f:6c:47:e0:f6:c6:a8: 3e:a6:fe:e6:6e:13:30:bb:0d:3e:a9:82:44:88:0f: 1a:44:6c:22:df:79:8a:e7:e6:5a:6b:74:63:1d:56: 41:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:77:B6:58:79:8D:58:55:E7:98:33:1B:41:B4:A4:1C:8D:A1:87:62 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:0c:e2:34:23:76:20:2c:b4:49:65:eb:65:6f:6d:8f:4d:4c: 0e:1f:1c:a3:49:34:13:5d:16:cf:3a:f5:24:de:de:f9:8e:89: a6:e5:3c:b6:1b:0a:9b:2c:20:ea:12:0e:fb:de:13:08:c7:24: e4:8e:8e:d2:e3:d5:ae:12:75:10:10:d8:fd:4d:be:2a:d9:d6: 72:6c:bc:c7:0d:ea:d2:3c:1e:6b:e4:77:23:44:72:4b:43:42: b3:62:42:f9:8b:07:7f:f4:05:b7:5c:d1:ae:aa:b2:7b:38:fd: f1:e6:2d:19:79:aa:d7:a8:7c:71:49:8f:ff:06:a5:07:4a:1e: 70:60:8e:d4:2d:a5:60:97:26:81:12:2c:16:08:d0:66:9f:65: b6:49:bc:07:f9:2d:6a:a3:aa:7f:68:b4:d3:cd:6a:d8:b0:2b: bf:c2:94:02:a0:bc:6f:8d:d8:a4:3f:61:18:0e:39:dd:d8:71: 3b:cf:37:d3:94:ad:a8:0a:21:b9:07:5a:b6:ba:d9:57:f6:b1: 6f:18:23:d4:98:07:90:6f:ac:bf:bb:b3:60:34:01:17:0d:75: b1:2e:3c:77:85:2b:d2:82:f9:54:a6:0c:88:3c:9f:fc:6d:99: 96:c1:92:9e:0c:cf:82:a0:b0:87:15:60:c4:0b:3a:b4:9f:cd: 31:86:fb:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwNDI2MjIwNDI5WhcNMjUwNTAzMjIwNDI5WjAYMRYwFAYD VQQDEw02ODBkNTg2ZC0zZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTimRObb2rNhRtUTlRTdh2OSoc7QxkHy+rl26+1lIiDwncw2im92NnGDwYqa iePgD75mfGJHNiQ5mkfsgbZUq5UMaX6S4d1BtlXbKrtkcACfl0SCFJ9x01V0t36T XlXc8LWOaOkrLGLhzh4b3K2aE85JZKs3HkQ2nqbD8LF3E1TCKIs3QDB/3x7voRDt dK6c+4JrqKKQGbTJHjt6xx4KpPWbZ9yOkO5+6sEUgJg/57v6ei5xhVnM2/n/LbAg B2Tatkl834mMQ//R8y3ftSVtyBYFwRGsBqgJLk9sR+D2xqg+pv7mbhMwuw0+qYJE iA8aRGwi33mK5+Zaa3RjHVZBZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGp3tlh5 jVhV55gzG0G0pByNoYdiMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMDOI0I3YgLLRJZetlb22PTUwOHxyjSTQTXRbPOvUk3t75jomm5Ty2 GwqbLCDqEg773hMIxyTkjo7S49WuEnUQENj9Tb4q2dZybLzHDerSPB5r5HcjRHJL Q0KzYkL5iwd/9AW3XNGuqrJ7OP3x5i0ZearXqHxxSY//BqUHSh5wYI7ULaVglyaB EiwWCNBmn2W2SbwH+S1qo6p/aLTTzWrYsCu/wpQCoLxvjdikP2EYDjnd2HE7zzfT lK2oCiG5B1q2utlX9rFvGCPUmAeQb6y/u7NgNAEXDXWxLjx3hSvSgvlUpgyIPJ/8 bZmWwZKeDM+CoLCHFWDECzq0n80xhvsb -----END CERTIFICATE-----Generated at Sun Apr 27 05:41:40 2025 by rpki-client on console.sobornost.net