$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: C7T7ptpPZNGS2JD613ba1sVeRWfe/6ml+6un3qWWcxA= Subject key identifier: 4A:B5:41:CE:B6:27:9E:79:33:A4:EC:25:DF:F3:3C:94:E6:A9:4A:20 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 349F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 348E Signing time: Mon 28 Apr 2025 14:24:36 +0000 Manifest this update: Mon 28 Apr 2025 14:24:36 +0000 Manifest next update: Mon 05 May 2025 14:24:36 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: vAg0779KQcpJVp1svLnabWRLQrXh0O6q6UPtwl9V9HE=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: nOTO05trzCD6uEEv4FInP/xVHgXMSyk7YCzU2yFeaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13471 (0x349f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Apr 28 14:24:36 2025 GMT Not After : May 5 14:24:36 2025 GMT Subject: CN=680f8fa4-39c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c2:94:e1:fb:4b:59:ca:bb:a5:b5:22:9f:a3: a4:5c:aa:cb:9b:02:96:a0:c1:59:6c:e3:c6:5a:48: 32:95:20:fa:ed:47:ad:83:ab:c0:02:c8:3d:28:de: cb:84:56:5f:29:ef:04:54:4b:e4:8d:9e:28:00:ef: 70:9d:63:a7:63:ce:7d:9e:4c:88:57:6f:d3:8b:d2: 04:f1:2a:db:58:45:e3:7c:31:03:fe:d4:f0:ca:7d: e8:35:3a:b4:c7:cb:74:17:6c:65:d4:2f:70:8f:dd: 6b:93:16:74:33:c8:f9:e4:43:90:96:b4:a5:ac:c1: 40:7d:74:fc:22:5c:f7:e2:27:1a:81:21:af:d3:33: 13:80:d5:3a:d8:87:7f:bc:48:ff:24:ef:97:21:41: 23:f1:f8:d5:64:fb:b3:9d:12:3e:01:fb:32:56:24: 7d:94:06:57:7b:48:3e:f2:bd:d3:b1:f2:e0:c4:69: 6f:1f:f6:6b:a8:9c:da:aa:c4:a0:d2:f7:ea:ff:2e: d5:b3:fe:f9:9a:e8:1f:55:96:ea:25:7b:11:0f:ac: e9:a4:ad:6e:bd:72:49:b4:12:c8:d8:a4:c1:1c:20: 77:f5:42:15:c8:08:99:fe:7e:fe:ff:3c:95:39:89: ae:3c:07:1a:57:c6:8c:e8:dc:3c:b7:3c:b9:6f:e0: 56:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B5:41:CE:B6:27:9E:79:33:A4:EC:25:DF:F3:3C:94:E6:A9:4A:20 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:db:91:fb:f9:c9:12:60:9f:d6:9b:ae:53:5f:99:a6:72:d1: 38:9c:2c:1e:1d:16:22:1d:62:20:f9:e1:b6:a2:c6:a6:f3:70: fd:a8:5b:5b:28:3c:f3:12:bb:4a:5c:54:ec:b7:92:81:ca:10: 81:12:98:ab:03:b5:57:92:f7:b2:1d:dc:c1:27:d2:50:01:47: 79:9a:ce:5d:d8:1b:7b:49:c8:eb:d2:18:58:ee:5c:93:38:4a: 2d:7e:41:4b:33:4f:52:b0:db:a8:c1:38:c2:3f:3d:05:6e:db: 66:b1:57:5d:05:15:a9:41:d4:81:7e:b1:bb:c4:96:c0:ea:e0: fa:fb:82:8c:aa:ec:24:ed:dc:83:01:78:04:77:f8:b0:50:63: f6:00:7f:1e:75:28:f1:07:5a:0c:1d:5f:96:f1:60:a4:e2:ea: 2c:6b:7f:40:a5:0f:bb:66:ff:5b:f0:c4:be:2c:24:06:22:57: 3e:81:ea:08:59:f3:2c:06:1a:a3:00:9a:91:54:6e:99:27:81: a2:a2:a5:fb:03:db:00:0d:d7:bc:a7:e4:00:4b:47:00:14:28: b8:a1:48:3b:75:99:57:7c:22:fb:58:35:7b:06:57:96:d2:8d: 40:5b:26:fb:74:fc:41:31:6c:80:a8:75:81:c2:6b:c2:4f:14: 2f:ae:5f:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUwNDI4MTQyNDM2WhcNMjUwNTA1MTQyNDM2WjAYMRYwFAYD VQQDEw02ODBmOGZhNC0zOWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAncKU4ftLWcq7pbUin6OkXKrLmwKWoMFZbOPGWkgylSD67Uetg6vAAsg9KN7L hFZfKe8EVEvkjZ4oAO9wnWOnY859nkyIV2/Ti9IE8SrbWEXjfDED/tTwyn3oNTq0 x8t0F2xl1C9wj91rkxZ0M8j55EOQlrSlrMFAfXT8Ilz34icagSGv0zMTgNU62Id/ vEj/JO+XIUEj8fjVZPuznRI+AfsyViR9lAZXe0g+8r3TsfLgxGlvH/ZrqJzaqsSg 0vfq/y7Vs/75mugfVZbqJXsRD6zppK1uvXJJtBLI2KTBHCB39UIVyAiZ/n7+/zyV OYmuPAcaV8aM6Nw8tzy5b+BWoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEq1Qc62 J555M6TsJd/zPJTmqUogMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC325H7+ckSYJ/Wm65TX5mmctE4nCweHRYiHWIg+eG2osam83D9qFtb KDzzErtKXFTst5KByhCBEpirA7VXkveyHdzBJ9JQAUd5ms5d2Bt7Scjr0hhY7lyT OEotfkFLM09SsNuowTjCPz0FbttmsVddBRWpQdSBfrG7xJbA6uD6+4KMquwk7dyD AXgEd/iwUGP2AH8edSjxB1oMHV+W8WCk4uosa39ApQ+7Zv9b8MS+LCQGIlc+geoI WfMsBhqjAJqRVG6ZJ4GioqX7A9sADde8p+QAS0cAFCi4oUg7dZlXfCL7WDV7BleW 0o1AWyb7dPxBMWyAqHWBwmvCTxQvrl9q -----END CERTIFICATE-----Generated at Mon Apr 28 17:45:10 2025 by rpki-client on console.sobornost.net