$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft File: _0KzQ2BElUaW_-CLDuGXXGxbjW0.mft (raw, json) Hash identifier: UkLlHRfR26YaTIl5uhbocV+VENE2L6NfsZhip7yhS5E= Subject key identifier: AE:8F:54:9D:E9:C9:50:FA:3A:BC:17:70:69:36:64:28:D2:9B:85:6C Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft Manifest number: 0194 Signing time: Sun 27 Apr 2025 02:33:16 +0000 Manifest this update: Sun 27 Apr 2025 02:33:16 +0000 Manifest next update: Sun 04 May 2025 02:33:16 +0000 Files and hashes: 1: _0KzQ2BElUaW_-CLDuGXXGxbjW0.crl (hash: 5gsfN6JLEOBp6wcI3L4rYbBKLHwDOXY/Ua6eHm/v0Ns=) 2: BCAE303EF6C611EE8AA17A87C4F9AE02.roa (hash: b9dTa2nX+qFG6d7y+XsHyu+bx2asCK2u/yxDxyFKOqQ=) 3: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (hash: wwr+xiQ0ICFC4K2aFb1fxrN51KszvejW5t2iwGw5e3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Apr 27 02:33:16 2025 GMT Not After : May 4 02:33:16 2025 GMT Subject: CN=680d976c-a37c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:90:20:19:14:41:0b:2f:d7:d8:82:58:8d:52: 09:b4:81:fd:66:9a:13:79:d1:ab:e8:0d:45:7c:1e: de:05:54:9f:cd:92:c4:d4:72:4b:a8:f3:6a:86:b0: b9:28:b4:17:be:21:1f:c7:d5:0d:95:64:03:85:e7: 0a:a9:08:9a:17:08:c3:2a:92:0f:ba:d3:a8:03:58: b2:e8:05:e2:5c:fc:6b:78:51:37:ad:3f:2d:09:0d: 86:4d:e5:f4:c0:92:87:37:b7:41:ac:87:4f:7e:30: 48:e0:0b:21:5e:0a:cd:12:d4:1e:8d:23:4c:c6:17: 8f:cf:d4:9d:d8:81:9a:77:1c:1e:db:a7:e7:e5:ca: a7:96:5e:a4:56:0f:6f:27:e0:e0:4d:bb:6d:d3:26: ef:dc:db:c2:4d:c6:8e:cb:fe:0d:b0:e6:d4:a1:39: a1:df:03:6e:9b:55:09:32:9f:3a:54:ea:97:35:34: 5f:06:0b:dc:0c:1c:bd:bc:a9:6b:51:00:fb:b5:04: 23:19:03:6c:33:bf:85:a7:07:07:ed:98:a3:31:f6: 44:b4:ff:f4:f5:aa:26:c5:e2:91:d5:13:fe:7e:48: 66:a4:3f:5c:c3:1c:59:39:75:a2:2f:af:40:f6:e5: 74:b2:21:b5:14:11:00:4f:26:a2:4f:bb:60:67:b2: 09:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8F:54:9D:E9:C9:50:FA:3A:BC:17:70:69:36:64:28:D2:9B:85:6C X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:96:3f:f5:7d:1d:c5:a7:81:7d:8f:a3:ae:40:10:19:27:d4: 4e:ad:0f:24:57:b5:30:7c:2f:94:b6:e6:98:2e:71:03:08:3c: d5:21:09:80:30:b6:50:06:00:c5:3c:96:6b:d4:72:9b:8a:4f: b7:40:07:c2:fe:d8:c3:76:6d:ec:f5:db:fa:d7:86:49:33:55: 26:89:47:ef:c2:c7:5a:cb:2d:8d:0e:1f:73:92:8e:23:44:0e: 25:6e:4c:f6:ad:e1:5d:24:8b:f6:99:01:a6:d7:bc:77:6e:53: 24:c5:cd:cf:e8:f4:69:61:cf:43:ce:ca:0e:2a:a4:93:73:d7: e5:df:5a:5b:90:ff:b3:92:72:75:8d:5e:94:92:88:ae:01:51: 83:b3:5f:e9:13:a6:2a:d1:99:2e:b1:1f:21:25:46:62:39:31: b1:31:6a:2e:8d:b3:ad:70:9f:69:26:72:ac:4f:d0:71:04:83: e9:14:5e:ec:d1:1b:13:79:d2:43:21:ea:b1:2f:36:dd:16:fb: 65:3f:ed:da:f7:dd:a3:18:a4:86:64:fb:ce:68:f3:78:b0:70: 0b:e0:4d:be:22:34:57:34:bf:d8:69:58:d7:48:27:72:d7:ff: 89:a1:f4:87:94:e6:b8:b6:ef:30:ac:2d:34:62:9b:e2:1a:0d: 43:cc:77:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUwNDI3MDIzMzE2WhcNMjUwNTA0MDIzMzE2WjAYMRYwFAYD VQQDEw02ODBkOTc2Yy1hMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ZAgGRRBCy/X2IJYjVIJtIH9ZpoTedGr6A1FfB7eBVSfzZLE1HJLqPNqhrC5 KLQXviEfx9UNlWQDhecKqQiaFwjDKpIPutOoA1iy6AXiXPxreFE3rT8tCQ2GTeX0 wJKHN7dBrIdPfjBI4AshXgrNEtQejSNMxhePz9Sd2IGadxwe26fn5cqnll6kVg9v J+DgTbtt0ybv3NvCTcaOy/4NsObUoTmh3wNum1UJMp86VOqXNTRfBgvcDBy9vKlr UQD7tQQjGQNsM7+FpwcH7ZijMfZEtP/09aomxeKR1RP+fkhmpD9cwxxZOXWiL69A 9uV0siG1FBEATyaiT7tgZ7IJLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6PVJ3p yVD6OrwXcGk2ZCjSm4VsMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjRBNy9DODA1NUZENkM5MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxV YVdfLUNMRHVHWFhHeGJqVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCilj/1fR3Fp4F9j6OuQBAZJ9ROrQ8kV7UwfC+UtuaYLnEDCDzVIQmA MLZQBgDFPJZr1HKbik+3QAfC/tjDdm3s9dv614ZJM1UmiUfvwsdayy2NDh9zko4j RA4lbkz2reFdJIv2mQGm17x3blMkxc3P6PRpYc9DzsoOKqSTc9fl31pbkP+zknJ1 jV6UkoiuAVGDs1/pE6Yq0ZkusR8hJUZiOTGxMWoujbOtcJ9pJnKsT9BxBIPpFF7s 0RsTedJDIeqxLzbdFvtlP+3a992jGKSGZPvOaPN4sHAL4E2+IjRXNL/YaVjXSCdy 1/+JofSHlOa4tu8wrC00YpviGg1DzHeT -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:12 2025 by rpki-client on console.sobornost.net