$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft File: kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft (raw, json) Hash identifier: 9NUxj62d2BZGYS1y45w3m5T41ej35bICBkC/QnDGCtQ= Subject key identifier: EC:33:B0:2F:31:EB:C6:07:EC:A5:C1:89:45:07:AC:C9:AF:0E:22:0D Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 28C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft Manifest number: 27F6 Signing time: Sat 26 Apr 2025 15:38:46 +0000 Manifest this update: Sat 26 Apr 2025 15:38:45 +0000 Manifest next update: Sat 03 May 2025 15:38:45 +0000 Files and hashes: 1: kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl (hash: BMcf5oXCMz2MsGUIuJAS0MmMccOxKbS8iXrF9vp9sfM=) 2: BD3FF814A49811EEAD789D2AC4F9AE02.roa (hash: TklClzxx9K18o0RPLn1yMvXuXYYSv/q9QF8TfgX5y9s=) 3: CCF0C1920EBA11ECB2C2867AC4F9AE02.roa (hash: 2xWbrnHwz3OQ4/YSi1KDjiY+Btu6Pg+aM5b286IQ9MU=) 4: 4971496EAE1B11EF8FFE0422C4F9AE02.roa (hash: uKiFFY8vpTe1cBpydcM6MoqXZ6WNPxhGwHMFnSCc+M4=) 5: 28E35E4898F211ED9FB5D80DC4F9AE02.roa (hash: Jc7neVqmiIdnrebi7TQ+tno2juV2xxAmmlOymTBrBWE=) 6: 45163F62D61E11EEB0DF364BC4F9AE02.roa (hash: v3Cc5tKTf2iIByiBtMh2ub3e/Z8wxVHlA4ixpFZXtF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:38:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10432 (0x28c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: Apr 26 15:38:45 2025 GMT Not After : May 3 15:38:45 2025 GMT Subject: CN=680cfe06-dac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:00:67:d1:2d:df:6c:3d:11:71:ed:da:40:60: e2:05:ef:a0:0e:37:5c:c5:cc:4e:b8:57:17:54:93: d7:65:14:31:a5:d0:b8:e7:62:8d:40:2c:5c:68:22: 67:c8:e1:4d:63:1e:65:c2:70:4a:53:57:65:26:46: 16:ee:2a:29:2f:62:5d:31:5f:4e:84:f5:89:3f:12: fb:ae:ba:b7:4c:68:09:80:f1:cc:a7:7a:88:fb:f7: 64:fe:70:91:ba:47:b7:b5:6c:87:cf:3c:b4:6c:91: b9:a6:82:8f:40:b7:3c:c5:ac:3d:b3:55:f6:bf:d8: c2:1e:5c:31:ff:96:74:6d:cb:b1:b1:b6:ff:95:2b: 65:f7:7a:52:f9:32:68:73:db:e5:2d:4f:83:b2:67: e7:9b:ae:be:fd:53:99:20:ad:25:12:27:8d:f0:59: cf:4f:75:95:60:ca:7a:49:a7:88:51:a8:4e:87:ef: f7:89:61:29:f3:40:8e:58:5c:5c:65:30:aa:75:59: f4:d9:65:4d:f7:f4:0a:3f:41:fa:6c:8d:4c:d6:e3: 1f:0d:02:13:4b:39:14:e0:3c:45:e0:06:f4:af:61: 19:e6:2f:c6:04:f3:cf:61:d2:23:7c:96:55:ec:21: 42:f6:1f:10:f3:9b:4b:b2:14:af:01:44:76:34:a1: cc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:33:B0:2F:31:EB:C6:07:EC:A5:C1:89:45:07:AC:C9:AF:0E:22:0D X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:ce:28:4f:ab:20:ab:56:84:b5:45:b7:fa:fb:33:27:8f:82: af:92:ae:24:72:f5:ad:29:15:b0:41:9a:de:da:9b:3b:44:94: 4b:9f:ae:0a:f4:2b:53:f7:03:17:1c:2e:e7:40:7e:0d:b2:f3: 4b:db:bf:2e:ed:55:95:81:27:96:61:93:00:c1:3d:85:16:29: 63:02:78:af:3b:52:87:4c:e5:42:97:6d:8a:4e:4b:b5:28:f3: 24:24:ab:dc:ed:a4:9c:1d:1c:df:13:cd:52:32:06:7c:7c:ba: 39:d7:4d:f1:90:80:7f:94:3b:b5:80:a7:95:54:87:f9:42:cc: 80:f3:f7:03:70:af:33:ff:94:cd:3e:e0:c5:88:e7:df:b9:9e: 75:28:5c:8f:2d:24:3f:98:75:af:8b:f6:95:35:7c:1c:83:0e: a5:3d:ab:0d:ed:8c:82:b0:fa:9d:93:9a:e2:58:a9:a5:e6:85: 44:bf:93:c0:c9:33:24:48:58:fc:f3:80:2b:1c:bb:ac:54:10: 96:21:36:a2:de:82:18:2b:81:f5:6c:c7:09:96:cc:0b:c6:17: f7:83:fd:61:39:2d:5c:f5:84:37:8e:31:6a:2b:dc:6b:47:2d: 3c:3e:57:9b:b7:0e:45:31:fb:84:c8:87:6b:f1:e7:ec:cf:d5: a9:45:eb:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjUwNDI2MTUzODQ1WhcNMjUwNTAzMTUzODQ1WjAYMRYwFAYD VQQDEw02ODBjZmUwNi1kYWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wBn0S3fbD0Rce3aQGDiBe+gDjdcxcxOuFcXVJPXZRQxpdC452KNQCxcaCJn yOFNYx5lwnBKU1dlJkYW7iopL2JdMV9OhPWJPxL7rrq3TGgJgPHMp3qI+/dk/nCR uke3tWyHzzy0bJG5poKPQLc8xaw9s1X2v9jCHlwx/5Z0bcuxsbb/lStl93pS+TJo c9vlLU+Dsmfnm66+/VOZIK0lEieN8FnPT3WVYMp6SaeIUahOh+/3iWEp80COWFxc ZTCqdVn02WVN9/QKP0H6bI1M1uMfDQITSzkU4DxF4Ab0r2EZ5i/GBPPPYdIjfJZV 7CFC9h8Q85tLshSvAUR2NKHMPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwzsC8x 68YH7KXBiUUHrMmvDiINMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEY2Ni9CQzFEQzFGNkMxNzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3 T1dUeF9GYlA1RWJzVUVqUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBozihPqyCrVoS1Rbf6+zMnj4Kvkq4kcvWtKRWwQZre2ps7RJRLn64K 9CtT9wMXHC7nQH4NsvNL278u7VWVgSeWYZMAwT2FFiljAnivO1KHTOVCl22KTku1 KPMkJKvc7aScHRzfE81SMgZ8fLo5103xkIB/lDu1gKeVVIf5QsyA8/cDcK8z/5TN PuDFiOffuZ51KFyPLSQ/mHWvi/aVNXwcgw6lPasN7YyCsPqdk5riWKml5oVEv5PA yTMkSFj884ArHLusVBCWITai3oIYK4H1bMcJlswLxhf3g/1hOS1c9YQ3jjFqK9xr Ry08Plebtw5FMfuEyIdr8efsz9WpReu6 -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:41 2025 by rpki-client on console.sobornost.net