$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft File: k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft (raw, json) Hash identifier: HJq/cVQiBDPd9/IvNCIoxZGH2mlEcoi75OqS57k2pcg= Subject key identifier: 04:39:D9:74:D8:2B:E2:F8:BF:FF:72:BE:5A:83:1E:A3:32:E5:D5:41 Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft Manifest number: 0522 Signing time: Sat 26 Apr 2025 23:12:15 +0000 Manifest this update: Sat 26 Apr 2025 23:12:14 +0000 Manifest next update: Sat 03 May 2025 23:12:14 +0000 Files and hashes: 1: k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl (hash: 0IyQrTmitBe6lV96WjrbivJwqg9r+NniQj0oJrpvO4g=) 2: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (hash: gsNxtD+HCrA+T6b9YqONqQ4jv3lalAETh9MJihh24Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 23:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F, serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Validity Not Before: Apr 26 23:12:14 2025 GMT Not After : May 3 23:12:14 2025 GMT Subject: CN=680d684e-2abf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:dc:f3:fe:36:d4:8b:9e:9f:3c:da:c8:e0: 38:47:13:b9:7a:6b:e2:30:e7:89:24:32:d4:06:1a: 1c:85:e6:72:de:72:0b:5c:72:b7:aa:94:e4:35:9a: ad:d2:f7:b1:e7:22:c5:be:7b:e7:db:8d:f0:3c:bb: 28:3e:17:a4:b3:06:4e:1e:17:40:bd:13:38:f8:90: 14:22:92:f6:c5:f8:4c:63:73:75:08:ba:75:c1:9d: 4f:90:0e:de:80:43:8f:37:44:df:69:39:b9:34:29: 5c:05:fa:76:de:85:48:8d:d7:45:00:9f:96:c3:63: 08:7b:ee:9f:74:68:02:93:2c:19:ea:73:20:05:ef: ad:f8:20:5a:ac:4e:09:74:83:9c:12:ed:55:08:7a: 6b:bc:ab:00:ba:28:e6:c6:f0:76:f3:d4:d1:bf:73: c2:2a:cf:d5:f4:6b:ca:ab:3e:12:5d:d5:79:39:4a: bb:91:d0:90:a8:17:6b:da:04:67:1a:47:d5:24:2f: b0:6c:e5:42:22:8b:0b:90:8e:16:63:51:d3:08:fd: 33:77:af:85:8d:e6:34:cc:bc:05:3e:fc:af:53:1e: 8a:47:32:e7:99:84:54:98:a4:4a:23:18:25:ca:db: 6d:8f:78:6a:db:5e:c4:22:24:ae:9f:71:26:37:e0: 21:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:39:D9:74:D8:2B:E2:F8:BF:FF:72:BE:5A:83:1E:A3:32:E5:D5:41 X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:31:df:db:f1:36:ae:ee:b4:be:ad:e8:8a:b2:2a:f0:14:70: c9:07:19:23:29:ec:f5:4f:c0:64:8f:b0:9c:80:f0:0a:80:04: 8b:33:b6:65:83:09:7f:b3:e0:68:7f:e5:c4:f5:1e:a2:8d:93: 5b:0f:14:cc:e0:5a:6b:06:b0:53:4b:64:41:8e:9e:da:d9:c2: c3:3d:27:9d:0a:db:19:94:9f:02:d3:d2:88:f0:3d:52:20:5d: 1c:7a:de:2a:f9:ca:e7:1c:f3:b0:a6:4e:61:ba:05:0c:8b:33: 05:53:23:a1:fc:84:ed:9b:4d:70:a7:b5:74:93:3d:b7:47:45: 07:6e:9d:46:5c:94:79:95:f8:f3:2e:38:39:fa:c0:de:f4:52: 4e:b4:e4:51:4a:08:f4:53:e4:79:60:3e:78:e6:ee:e9:27:8a: 99:2f:59:9f:c4:8b:fc:e2:7e:b5:97:bc:f5:eb:ba:8b:30:75: cc:05:a9:20:c1:2f:d5:01:88:66:37:af:9b:94:58:90:40:ef: cf:f4:8a:83:73:f1:26:23:9f:ee:8c:32:3c:cf:76:cd:1d:0a: 19:9e:8b:4f:98:98:ab:96:89:64:8b:6d:70:59:80:a5:b8:e5: 73:ad:6f:a5:c4:cb:0a:12:26:4c:a5:90:43:9e:7e:20:07:eb: f1:19:ec:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjUwNDI2MjMxMjE0WhcNMjUwNTAzMjMxMjE0WjAYMRYwFAYD VQQDEw02ODBkNjg0ZS0yYWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0rc8/421IuenzzayOA4RxO5emviMOeJJDLUBhocheZy3nILXHK3qpTkNZqt 0vex5yLFvnvn243wPLsoPhekswZOHhdAvRM4+JAUIpL2xfhMY3N1CLp1wZ1PkA7e gEOPN0TfaTm5NClcBfp23oVIjddFAJ+Ww2MIe+6fdGgCkywZ6nMgBe+t+CBarE4J dIOcEu1VCHprvKsAuijmxvB289TRv3PCKs/V9GvKqz4SXdV5OUq7kdCQqBdr2gRn GkfVJC+wbOVCIosLkI4WY1HTCP0zd6+FjeY0zLwFPvyvUx6KRzLnmYRUmKRKIxgl ytttj3hq217EIiSun3EmN+AhJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQ52XTY K+L4v/9yvlqDHqMy5dVBMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTg0Ri9ERDcyQ0U1OEY5QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9N TjdkX2w1QTNCcllmQy1fdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvMd/b8Tau7rS+reiKsirwFHDJBxkjKez1T8Bkj7CcgPAKgASLM7Zl gwl/s+Bof+XE9R6ijZNbDxTM4FprBrBTS2RBjp7a2cLDPSedCtsZlJ8C09KI8D1S IF0cet4q+crnHPOwpk5hugUMizMFUyOh/ITtm01wp7V0kz23R0UHbp1GXJR5lfjz Ljg5+sDe9FJOtORRSgj0U+R5YD545u7pJ4qZL1mfxIv84n61l7z167qLMHXMBakg wS/VAYhmN6+blFiQQO/P9IqDc/EmI5/ujDI8z3bNHQoZnotPmJirlolki21wWYCl uOVzrW+lxMsKEiZMpZBDnn4gB+vxGewQ -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:08 2025 by rpki-client on console.sobornost.net