$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: d8fGyh7kKJlvdVo/LZIZE6sDjzH8mnBqImRRB2WLB+M= Subject key identifier: 31:A4:86:FE:CA:CA:42:4F:C0:3A:1F:00:A8:66:C5:2D:81:5F:C3:E3 Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: 98 Signing time: Sun 27 Apr 2025 05:11:03 +0000 Manifest this update: Sun 27 Apr 2025 05:11:02 +0000 Manifest next update: Sun 04 May 2025 05:11:02 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: 8+isYok/hxZ3hrlBqBMJFBHnoKYx3Z/Oktj9WLKPCS4=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Apr 27 05:11:02 2025 GMT Not After : May 4 05:11:02 2025 GMT Subject: CN=680dbc67-b92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7e:ba:02:f7:c6:e4:f1:f3:b2:96:cf:18:76: ee:41:f8:95:da:d7:36:6a:c6:89:42:f4:24:a1:42: 10:a1:51:24:ea:58:d9:ab:07:00:25:60:45:b1:19: c6:02:f7:fc:b4:a5:e3:d7:96:6f:1e:f9:66:00:ac: c2:c4:55:da:53:73:e5:e5:9b:6b:af:9c:6f:da:45: ad:14:52:10:a5:5e:d7:e7:83:e0:b1:2b:a4:be:47: 98:0c:45:68:7a:23:32:b6:ed:28:45:df:4b:84:5f: 0f:47:10:45:07:80:da:62:69:38:7a:3f:2f:ce:57: 76:1e:ba:54:db:8f:af:cd:75:d4:52:91:38:e7:c8: 09:5e:5f:46:d8:49:89:52:3d:2b:37:b6:21:fa:bf: ef:e0:df:e1:67:f5:c8:eb:1b:98:02:b8:3d:7d:99: dd:dc:fa:cd:a0:04:22:bb:cf:98:be:b0:ab:20:29: bf:47:bc:98:80:f0:46:9e:1a:93:df:d2:f1:e1:fe: bc:6c:04:85:57:5b:82:29:f1:24:17:a2:f8:49:bb: 94:46:b4:57:97:65:1f:63:ff:f2:b4:0e:d9:99:30: 35:aa:f0:fd:28:2c:fd:ee:0d:f3:ed:b3:c0:8f:c9: e9:0c:bd:8c:12:18:dd:c5:3a:dc:5b:7f:1e:7e:7b: ed:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A4:86:FE:CA:CA:42:4F:C0:3A:1F:00:A8:66:C5:2D:81:5F:C3:E3 X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:0a:b6:8a:52:81:6e:44:36:d3:8f:fd:04:2f:6a:45:89:01: cc:9b:c3:28:b1:32:0c:1c:04:40:4c:c2:ac:75:09:c6:79:1f: 21:7d:36:91:fb:fa:11:43:56:17:fc:b1:83:b9:11:bc:88:98: 0d:c7:e5:2b:99:86:8f:29:aa:67:b6:5a:52:27:50:c0:30:30: 0c:71:e3:25:15:9d:01:c1:5a:aa:de:8a:55:9b:6a:4a:ac:28: 69:69:6c:59:4d:26:0f:3f:97:ab:b3:38:97:dd:66:ad:e2:a6: f6:93:ca:c4:83:85:a8:fd:1d:c2:b2:8c:25:e8:0a:3f:12:85: 4c:aa:9a:3c:09:f5:03:18:58:7d:f0:97:2d:33:d4:7b:c3:a5: 2d:97:70:69:51:2d:47:d9:91:24:8b:5a:d6:42:61:66:76:f4: 41:6c:0d:0f:1f:f6:cd:73:fc:45:9e:64:cf:81:24:60:6e:e4: 8d:8e:61:9c:6b:aa:57:72:9a:21:75:a5:93:30:8d:95:48:2d: d6:ff:17:ad:f3:a0:f8:59:eb:fe:93:e6:51:78:75:d6:b7:f6: 5c:6f:30:bc:98:b9:9a:b5:5c:a7:1f:37:39:8c:09:a1:86:cf: 67:dc:d8:d7:7e:06:e9:11:ce:86:b1:b4:88:42:aa:e0:6d:17: 38:23:8f:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUwNDI3MDUxMTAyWhcNMjUwNTA0MDUxMTAyWjAYMRYwFAYD VQQDEw02ODBkYmM2Ny1iOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX66AvfG5PHzspbPGHbuQfiV2tc2asaJQvQkoUIQoVEk6ljZqwcAJWBFsRnG Avf8tKXj15ZvHvlmAKzCxFXaU3Pl5Ztrr5xv2kWtFFIQpV7X54PgsSukvkeYDEVo eiMytu0oRd9LhF8PRxBFB4DaYmk4ej8vzld2HrpU24+vzXXUUpE458gJXl9G2EmJ Uj0rN7Yh+r/v4N/hZ/XI6xuYArg9fZnd3PrNoAQiu8+YvrCrICm/R7yYgPBGnhqT 39Lx4f68bASFV1uCKfEkF6L4SbuURrRXl2UfY//ytA7ZmTA1qvD9KCz97g3z7bPA j8npDL2MEhjdxTrcW38efnvtjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGkhv7K ykJPwDofAKhmxS2BX8PjMB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWCraKUoFuRDbTj/0EL2pFiQHMm8MosTIMHARATMKsdQnGeR8hfTaR +/oRQ1YX/LGDuRG8iJgNx+UrmYaPKapntlpSJ1DAMDAMceMlFZ0BwVqq3opVm2pK rChpaWxZTSYPP5ersziX3Wat4qb2k8rEg4Wo/R3Csowl6Ao/EoVMqpo8CfUDGFh9 8JctM9R7w6Utl3BpUS1H2ZEki1rWQmFmdvRBbA0PH/bNc/xFnmTPgSRgbuSNjmGc a6pXcpohdaWTMI2VSC3W/xet86D4Wev+k+ZReHXWt/ZcbzC8mLmatVynHzc5jAmh hs9n3NjXfgbpEc6GsbSIQqrgbRc4I48o -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net