$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: SyMA3Bn+DuZZi8l0Yeday4DRz3stKURA3Ew/vKIsJB4= Subject key identifier: A5:8D:46:13:34:BF:47:29:41:AF:C7:68:2D:8E:45:F7:55:73:4E:74 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 0620 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 061B Signing time: Sat 26 Apr 2025 22:10:45 +0000 Manifest this update: Sat 26 Apr 2025 22:10:44 +0000 Manifest next update: Sat 03 May 2025 22:10:44 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: Iu/0PlGVBWFvxQQBibxxKvyMQURHLXq2TMhHxiU8mh8=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: GBv0Bwrza6PzeZcBlfUxDT4tM9xuaZtoH+l5x8EcaKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA, serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Validity Not Before: Apr 26 22:10:44 2025 GMT Not After : May 3 22:10:44 2025 GMT Subject: CN=680d59e5-c0b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:67:55:f3:6f:2a:61:48:83:01:0b:26:f9:3f: 6b:1c:63:cd:42:19:c5:cc:40:4d:dc:40:18:a5:a8: e0:29:23:65:c4:03:0d:24:7a:50:06:ee:d4:85:c4: fa:84:58:96:db:d4:9e:72:d3:35:1b:c4:ff:93:16: c8:32:28:a8:98:4a:29:67:cf:1c:30:12:17:f7:4c: 82:77:83:f6:10:55:7f:54:94:2d:0a:7f:98:a0:00: c4:e7:77:cb:1f:ad:27:20:3b:f1:3c:19:08:da:98: 6b:d0:fa:b7:fb:5d:7a:a2:51:c9:c9:f1:66:9e:53: 7c:ed:b1:76:84:6e:53:09:c7:50:20:ea:49:43:e6: 8e:58:80:e5:22:3b:6b:c2:2e:36:7d:d3:77:47:53: ed:71:ac:19:4b:98:42:58:ed:3f:f0:36:c7:81:f9: 90:ea:86:03:94:85:37:04:51:7d:5c:ee:41:40:e6: df:f0:8b:04:9b:b8:02:06:d7:ce:d3:f7:af:67:05: ae:c6:33:a5:7d:db:9a:52:52:21:98:fc:6a:cb:c2: e3:eb:34:40:a8:95:63:08:3e:a1:e3:08:8e:3f:68: 74:dd:66:40:8d:cf:a7:47:44:97:51:9f:18:e8:dc: e9:de:5f:44:91:7c:41:49:1a:5a:35:a3:47:d2:0e: a2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:8D:46:13:34:BF:47:29:41:AF:C7:68:2D:8E:45:F7:55:73:4E:74 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a0:63:b1:bb:38:c5:ac:93:b0:26:be:18:3f:e4:c7:17:35: 03:85:f7:af:db:54:7e:33:af:15:6d:97:b8:a4:a8:33:2e:7f: 07:8b:33:80:6e:dd:09:c9:d5:fc:c9:23:44:9a:c2:36:f1:e2: 91:1c:66:18:0d:43:9f:7a:e8:02:b3:3c:0f:d3:f2:20:27:7b: e9:6e:e7:e3:44:7b:ce:10:be:e2:f0:16:0c:78:68:e8:35:5b: c2:24:d4:03:13:f2:9d:74:bb:97:c9:fe:e8:9e:89:d1:2f:e5: 09:eb:ef:f9:d7:74:c4:3a:63:cc:d6:a6:cb:d1:3e:75:62:b1: 3d:ce:0c:7e:da:a4:5c:75:ca:9e:51:72:7a:97:30:56:a1:7a: 02:3f:2b:19:21:b4:c9:27:0b:3d:74:54:c9:d7:33:8b:90:80: d8:98:4d:d6:c9:ae:6c:79:e4:47:51:4c:cb:27:64:4a:49:08: 2d:96:17:45:af:f0:d3:5d:4a:18:57:8a:c4:8d:01:61:63:8a: 41:43:98:38:b4:a8:30:71:d1:eb:ae:3b:66:c2:bd:75:3f:62: c2:99:b5:57:86:d6:0e:f6:d9:2d:3c:51:33:d5:05:81:ac:50: fd:00:7c:6a:f0:90:60:b5:81:b0:d1:dc:d9:80:bd:c3:ff:35: 50:c2:39:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjUwNDI2MjIxMDQ0WhcNMjUwNTAzMjIxMDQ0WjAYMRYwFAYD VQQDEw02ODBkNTllNS1jMGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mdV828qYUiDAQsm+T9rHGPNQhnFzEBN3EAYpajgKSNlxAMNJHpQBu7UhcT6 hFiW29SectM1G8T/kxbIMiiomEopZ88cMBIX90yCd4P2EFV/VJQtCn+YoADE53fL H60nIDvxPBkI2phr0Pq3+116olHJyfFmnlN87bF2hG5TCcdQIOpJQ+aOWIDlIjtr wi42fdN3R1PtcawZS5hCWO0/8DbHgfmQ6oYDlIU3BFF9XO5BQObf8IsEm7gCBtfO 0/evZwWuxjOlfduaUlIhmPxqy8Lj6zRAqJVjCD6h4wiOP2h03WZAjc+nR0SXUZ8Y 6Nzp3l9EkXxBSRpaNaNH0g6i8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWNRhM0 v0cpQa/HaC2ORfdVc050MB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLoGOxuzjFrJOwJr4YP+THFzUDhfev21R+M68VbZe4pKgzLn8HizOA bt0JydX8ySNEmsI28eKRHGYYDUOfeugCszwP0/IgJ3vpbufjRHvOEL7i8BYMeGjo NVvCJNQDE/KddLuXyf7ononRL+UJ6+/513TEOmPM1qbL0T51YrE9zgx+2qRcdcqe UXJ6lzBWoXoCPysZIbTJJws9dFTJ1zOLkIDYmE3Wya5seeRHUUzLJ2RKSQgtlhdF r/DTXUoYV4rEjQFhY4pBQ5g4tKgwcdHrrjtmwr11P2LCmbVXhtYO9tktPFEz1QWB rFD9AHxq8JBgtYGw0dzZgL3D/zVQwjnL -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:09 2025 by rpki-client on console.sobornost.net