$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: EmfezwqNQNPWTkwlfbfyP9qfnuD3ig6+PXlOCUSulyQ= Subject key identifier: 47:F0:4B:F1:81:2C:33:6C:17:9E:30:C5:1D:3A:CD:55:9A:E3:B9:D5 Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: A7 Signing time: Sun 27 Apr 2025 04:59:12 +0000 Manifest this update: Sun 27 Apr 2025 04:59:12 +0000 Manifest next update: Sun 04 May 2025 04:59:12 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: glRsFXVmyuIyhd8pycLzAZWDwjfZ7bk+beSxMDLLZUw=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: uOPt38YEsEAnQYMhJ/vWZ8Bh0zzqI6ovkE/WceLABSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: Apr 27 04:59:12 2025 GMT Not After : May 4 04:59:12 2025 GMT Subject: CN=680db9a0-9da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d5:93:b7:e9:1c:77:db:ad:26:c7:e8:26:95: 90:61:3a:fd:1f:52:45:81:97:36:bc:cf:fb:9a:bb: 78:a9:e6:13:04:ee:46:c2:29:ac:5b:35:a5:df:84: f9:68:3c:54:81:c4:66:1d:5e:f1:f1:ed:5a:29:76: 3a:ef:bb:b6:14:e1:44:3a:aa:a4:9a:cc:af:4f:9e: 59:75:da:37:39:db:02:0f:d8:80:54:a0:41:99:86: b4:2d:4d:91:c4:c6:61:c6:a4:c3:82:0b:8c:1c:e2: ad:83:98:bf:6e:5f:68:dd:d8:55:c6:df:85:43:15: 38:85:bc:ee:84:fd:46:9e:c7:d3:03:4a:5a:43:30: fd:e9:42:65:08:8d:74:96:9c:ea:2d:27:bf:b4:0d: 19:5d:36:0c:c2:b7:d2:5f:83:d0:e3:9b:e1:13:0d: ff:91:63:85:85:75:25:93:85:dc:ff:c3:3a:e1:50: 07:b3:a3:6a:4b:b0:bd:75:97:ae:7c:19:ab:99:be: 8e:1a:e7:0f:17:f5:f9:0a:af:e2:01:7d:39:09:d2: 06:1b:c4:65:90:13:e1:65:34:40:2b:e2:91:a2:c7: 6e:e0:b8:62:c9:cc:f3:1b:b2:a9:63:27:76:66:73: 83:82:d3:64:1f:51:36:dc:d6:e1:96:e2:b6:8e:46: 5c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F0:4B:F1:81:2C:33:6C:17:9E:30:C5:1D:3A:CD:55:9A:E3:B9:D5 X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:e8:ef:60:9a:3a:e9:37:c3:13:34:95:20:cf:db:32:0d:b8: 9d:0c:c5:b5:e9:54:73:d5:e0:17:c4:eb:06:11:36:f1:69:72: 3d:b0:b7:10:c6:02:40:89:f1:0f:00:09:92:45:c6:a6:84:ef: b8:70:c0:ad:f8:47:ba:5a:9f:68:c4:20:c5:ac:ec:4d:b1:6d: 46:1a:68:53:81:14:3c:3d:0b:a1:c5:06:6a:5a:9f:ae:db:5e: 0b:43:69:5a:fe:78:86:39:9b:c0:1d:f1:53:f1:52:58:79:a3: cb:87:db:6b:14:b5:b6:76:d5:82:a2:97:89:cb:b1:3b:da:29: f6:59:a5:b4:21:59:70:0c:72:90:f9:0f:d6:97:35:ee:3c:72: d9:0f:fa:cb:06:45:9d:39:96:bb:02:6d:8f:82:43:11:67:46: 00:c7:f7:62:61:3e:f7:e4:57:53:93:e6:f1:07:ca:1b:f6:dc: 97:ab:7a:00:42:c1:7b:7f:76:24:8a:4e:53:1b:04:ac:d9:18: ea:91:4c:21:f5:ec:96:f8:ea:0f:b1:4e:92:43:cc:ec:91:ef: 51:00:1f:83:df:61:07:4b:32:3a:ee:fc:fc:4e:af:80:15:12: a3:b8:df:91:50:96:26:19:8d:80:53:81:29:0b:23:20:11:23: c4:6a:16:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUwNDI3MDQ1OTEyWhcNMjUwNTA0MDQ1OTEyWjAYMRYwFAYD VQQDEw02ODBkYjlhMC05ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydWTt+kcd9utJsfoJpWQYTr9H1JFgZc2vM/7mrt4qeYTBO5GwimsWzWl34T5 aDxUgcRmHV7x8e1aKXY677u2FOFEOqqkmsyvT55Zddo3OdsCD9iAVKBBmYa0LU2R xMZhxqTDgguMHOKtg5i/bl9o3dhVxt+FQxU4hbzuhP1GnsfTA0paQzD96UJlCI10 lpzqLSe/tA0ZXTYMwrfSX4PQ45vhEw3/kWOFhXUlk4Xc/8M64VAHs6NqS7C9dZeu fBmrmb6OGucPF/X5Cq/iAX05CdIGG8RlkBPhZTRAK+KRosdu4LhiyczzG7KpYyd2 ZnODgtNkH1E23NbhluK2jkZcHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfwS/GB LDNsF54wxR06zVWa47nVMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk6O9gmjrpN8MTNJUgz9syDbidDMW16VRz1eAXxOsGETbxaXI9sLcQ xgJAifEPAAmSRcamhO+4cMCt+Ee6Wp9oxCDFrOxNsW1GGmhTgRQ8PQuhxQZqWp+u 214LQ2la/niGOZvAHfFT8VJYeaPLh9trFLW2dtWCopeJy7E72in2WaW0IVlwDHKQ +Q/WlzXuPHLZD/rLBkWdOZa7Am2PgkMRZ0YAx/diYT735FdTk+bxB8ob9tyXq3oA QsF7f3Ykik5TGwSs2RjqkUwh9eyW+OoPsU6SQ8zske9RAB+D32EHSzI67vz8Tq+A FRKjuN+RUJYmGY2AU4EpCyMgESPEahaO -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:50 2025 by rpki-client on console.sobornost.net