$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: 7IRBOyCJnOx/xLPO5I8Y+SuZRIDynUH2E3EOwsvArwU= Subject key identifier: 59:22:B2:45:9E:01:C0:21:59:9B:34:48:2A:25:F6:74:B7:36:ED:86 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 68 Signing time: Sun 27 Apr 2025 05:46:19 +0000 Manifest this update: Sun 27 Apr 2025 05:46:19 +0000 Manifest next update: Sun 04 May 2025 05:46:19 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: X9SSVE6EqvjrC/qXh1gv6cQauHV+WQZ/dBYjTGTxlgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Apr 27 05:46:19 2025 GMT Not After : May 4 05:46:19 2025 GMT Subject: CN=680dc4ab-5e88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:31:56:73:d6:6d:59:fa:5c:3a:b4:6b:65:0b: 27:2b:8c:f6:01:f8:c6:91:29:41:43:02:2c:69:af: 06:5a:62:48:6c:c4:91:70:3a:0c:c1:e8:7c:e3:35: cc:b0:6d:56:7b:30:8a:b8:14:7f:7b:86:29:98:e1: 59:cd:a3:dc:4f:49:09:f0:37:16:f4:8a:82:4c:13: b8:a0:5d:b1:77:61:0e:49:91:0d:ca:6b:fd:82:03: 25:70:e1:b2:e3:d5:f6:0a:65:25:29:db:ba:af:ff: bf:2c:49:12:f1:6b:b1:9f:34:53:40:c1:b8:21:92: 71:ee:1d:05:dd:59:7a:cf:ab:0c:0c:53:f0:05:cf: db:44:b2:fa:78:30:a7:15:62:ed:9e:1c:16:a0:00: 51:b3:63:ea:d4:31:f8:9f:33:68:d2:1a:ee:7b:18: e7:07:dd:a4:1a:41:69:d1:3a:a4:eb:fe:27:be:25: b4:6a:74:b5:b7:cf:70:4c:16:23:ff:4c:a2:bc:6f: 66:a1:af:8d:d5:c2:25:05:79:fe:ac:21:d9:d7:34: e1:69:5a:5a:6e:3d:65:39:cb:de:d9:0e:75:b2:9d: e4:43:9c:53:ca:b9:3c:0a:6a:3c:0b:cb:77:99:6f: e8:b2:1f:07:56:62:36:38:41:dd:1e:42:f6:87:a7: 1f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:22:B2:45:9E:01:C0:21:59:9B:34:48:2A:25:F6:74:B7:36:ED:86 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:76:68:ec:fc:b0:2c:2e:a8:21:c0:82:87:e2:a2:bd:d2:a2: 34:51:56:de:4e:97:83:4c:0d:cd:01:c7:d2:14:15:22:cd:98: a7:52:9e:2e:02:58:34:af:60:6d:26:f7:43:91:e7:04:5e:b9: e8:d8:19:98:f5:32:50:91:29:e7:23:28:49:e0:52:b2:e6:c6: e3:5c:74:e3:08:ed:1a:c9:68:3a:0b:da:78:7f:ca:be:04:a7: 9e:87:68:c4:b6:0c:e0:73:1d:85:a6:13:37:9d:d8:3e:b5:f4: 48:91:1b:03:36:ff:11:71:58:89:cc:81:4e:9b:e9:5c:1c:e3: 99:dc:89:02:2b:e8:34:59:c6:59:ee:05:e8:4c:da:bb:64:91: 60:52:f1:59:79:3a:56:c8:9d:6e:71:93:94:fe:db:9c:8b:a3: 30:ae:32:54:4a:65:1b:84:da:43:4e:fa:ac:2e:a8:7a:60:a3: 4d:4f:ba:24:98:1e:be:24:cd:f7:96:59:5a:cf:34:00:3f:3f: 03:1f:0b:18:81:e8:38:eb:90:04:8b:76:95:6f:b2:5f:18:fa: cb:3d:a5:8f:91:a3:0f:36:2e:ca:76:bc:ac:72:d5:5b:06:65: d4:8d:4b:58:cd:39:32:56:b3:17:19:fb:77:90:e3:11:2d:0e: 16:a1:5c:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoMjlBMDA5MDEzRjc0MzFERTM2OUMwMENBQjU0NzE2Q0E5 MzQ1MjZEMzAeFw0yNTA0MjcwNTQ2MTlaFw0yNTA1MDQwNTQ2MTlaMBgxFjAUBgNV BAMTDTY4MGRjNGFiLTVlODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqMVZz1m1Z+lw6tGtlCycrjPYB+MaRKUFDAixprwZaYkhsxJFwOgzB6HzjNcyw bVZ7MIq4FH97himY4VnNo9xPSQnwNxb0ioJME7igXbF3YQ5JkQ3Ka/2CAyVw4bLj 1fYKZSUp27qv/78sSRLxa7GfNFNAwbghknHuHQXdWXrPqwwMU/AFz9tEsvp4MKcV Yu2eHBagAFGzY+rUMfifM2jSGu57GOcH3aQaQWnROqTr/ie+JbRqdLW3z3BMFiP/ TKK8b2ahr43VwiUFef6sIdnXNOFpWlpuPWU5y97ZDnWyneRDnFPKuTwKajwLy3eZ b+iyHwdWYjY4Qd0eQvaHpx+HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWSKyRZ4B wCFZmzRIKiX2dLc27YYwHwYDVR0jBBgwFoAUKaAJAT90Md42nADKtUcWypNFJtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzMwNDM2MzVDODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2FBSkFUOTBNZDQybkFES3RVY1d5cE5GSnRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MUNGLzMwNDM2MzVDODZENzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0 Mm5BREt0VWNXeXBORkp0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIB2aOz8sCwuqCHAgofior3SojRRVt5Ol4NMDc0Bx9IUFSLNmKdSni4C WDSvYG0m90OR5wReuejYGZj1MlCRKecjKEngUrLmxuNcdOMI7RrJaDoL2nh/yr4E p56HaMS2DOBzHYWmEzed2D619EiRGwM2/xFxWInMgU6b6Vwc45nciQIr6DRZxlnu BehM2rtkkWBS8Vl5OlbInW5xk5T+25yLozCuMlRKZRuE2kNO+qwuqHpgo01PuiSY Hr4kzfeWWVrPNAA/PwMfCxiB6DjrkASLdpVvsl8Y+ss9pY+Row82Lsp2vKxy1VsG ZdSNS1jNOTJWsxcZ+3eQ4xEtDhahXA8= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:48 2025 by rpki-client on console.sobornost.net