$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft File: kNimlscsPFwGLY8AJhBf_c0Bz40.mft (raw, json) Hash identifier: AG+FqYWIpOFFQnOV4p7cvcsJTHUd5Y0jc+ullKHHlzs= Subject key identifier: C4:D2:43:FE:8C:40:A9:CB:54:09:A6:4E:15:2C:24:DE:F6:1E:45:00 Authority key identifier: 90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D Certificate issuer: /CN=A9192C28/serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Certificate serial: 040D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft Manifest number: 0405 Signing time: Sun 27 Apr 2025 00:07:02 +0000 Manifest this update: Sun 27 Apr 2025 00:07:01 +0000 Manifest next update: Sun 04 May 2025 00:07:01 +0000 Files and hashes: 1: kNimlscsPFwGLY8AJhBf_c0Bz40.crl (hash: oHmrVv9OQsJZaW4/orXmBC7qN9698hWduVOd/s3KQzk=) 2: 28741DDC85CD11ECA5E28171C4F9AE02.roa (hash: c0Qo/V4Zd6PI/SmvO+fxR2cS+G3poh+IiHb3vxBLGEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:07:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1037 (0x40d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C28, serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Validity Not Before: Apr 27 00:07:01 2025 GMT Not After : May 4 00:07:01 2025 GMT Subject: CN=680d7526-cf0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:32:28:21:eb:6b:23:ff:49:ca:47:ae:41:4c: e4:35:0a:12:6d:3b:ba:35:08:89:7a:02:be:25:12: 9b:26:5c:da:fa:24:2c:5b:d7:84:8c:15:0a:c1:47: b3:3f:25:96:5f:2b:45:60:d5:f2:ea:d0:6d:c6:d7: 43:fe:14:01:b9:8e:0f:ef:21:0c:0f:de:76:27:c7: e8:e0:68:bb:db:03:d8:5d:68:71:59:7c:b8:e8:c4: 1e:5b:4f:8a:ba:ee:d5:5a:a6:34:80:86:2d:97:8a: d9:a5:35:04:0a:c5:2e:43:0b:62:47:1c:7d:25:1c: 6f:bc:62:4b:dd:7c:e2:55:98:11:17:bc:ca:72:f9: a2:7c:42:42:87:ab:92:e9:da:96:ee:aa:c8:25:76: a9:bb:75:17:b6:0b:19:4e:b6:35:13:1e:aa:aa:1c: e3:ec:bf:34:93:0f:b1:5b:79:4e:0f:49:92:59:35: 24:13:3c:3d:9e:8c:bd:b7:b6:95:d9:26:6d:9f:cc: 11:2a:af:50:6b:6f:98:23:04:e8:c9:bf:24:30:2d: 4d:10:dd:46:e0:38:20:ef:31:9b:43:b5:74:aa:72: 31:93:31:26:cc:8d:ca:ae:f7:38:c7:86:23:11:56: 58:e6:68:30:6e:3e:18:8b:5b:db:77:9c:ed:04:b7: e5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D2:43:FE:8C:40:A9:CB:54:09:A6:4E:15:2C:24:DE:F6:1E:45:00 X509v3 Authority Key Identifier: keyid:90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:20:14:ec:d9:70:37:35:f2:ea:d5:52:d4:7f:19:25:46:37: df:bc:58:cc:52:74:d4:3f:b9:57:44:82:b3:fc:9e:76:19:14: 90:b7:ae:3e:7e:64:23:5a:7f:09:44:36:40:e3:49:f1:35:0c: 3c:dc:89:e1:96:eb:63:b2:07:4c:ad:03:85:df:02:0a:98:af: 21:21:ed:f1:c3:57:a3:3f:1f:7d:c7:bd:4c:52:ce:90:85:89: a4:10:f1:5c:75:f7:73:5e:ca:0d:e0:08:8d:9d:02:1a:20:4b: b9:38:4e:45:ae:16:de:c5:3d:d7:35:45:82:6b:6b:ed:4f:25: 06:7f:6c:41:f3:4f:8f:49:65:7f:9e:b6:38:6e:5a:c6:55:87: 09:a9:a3:2e:53:d5:31:39:16:d5:f1:4d:47:cf:b2:c0:e3:7e: ea:8a:49:45:d0:49:f6:1e:bb:61:f5:ae:0a:55:22:d7:e9:37: 2a:0d:3c:b8:7c:28:da:74:e7:60:c6:90:48:26:f6:d7:73:33: 59:cb:94:e4:8d:a8:76:ec:37:cb:48:39:c7:6f:f7:1a:94:96: be:46:02:2b:ab:41:d3:df:25:ef:70:02:61:7f:28:9a:b4:d9: af:3e:59:d0:62:67:16:6b:7e:83:73:ab:dc:d3:16:90:00:33: f5:25:f5:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMjgxMTAvBgNVBAUTKDkwRDhBNjk2QzcyQzNDNUMwNjJEOEYwMDI2MTA1RkZE Q0QwMUNGOEQwHhcNMjUwNDI3MDAwNzAxWhcNMjUwNTA0MDAwNzAxWjAYMRYwFAYD VQQDEw02ODBkNzUyNi1jZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzIoIetrI/9JykeuQUzkNQoSbTu6NQiJegK+JRKbJlza+iQsW9eEjBUKwUez PyWWXytFYNXy6tBtxtdD/hQBuY4P7yEMD952J8fo4Gi72wPYXWhxWXy46MQeW0+K uu7VWqY0gIYtl4rZpTUECsUuQwtiRxx9JRxvvGJL3XziVZgRF7zKcvmifEJCh6uS 6dqW7qrIJXapu3UXtgsZTrY1Ex6qqhzj7L80kw+xW3lOD0mSWTUkEzw9noy9t7aV 2SZtn8wRKq9Qa2+YIwToyb8kMC1NEN1G4Dgg7zGbQ7V0qnIxkzEmzI3Krvc4x4Yj EVZY5mgwbj4Yi1vbd5ztBLfl8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTSQ/6M QKnLVAmmThUsJN72HkUAMB8GA1UdIwQYMBaAFJDYppbHLDxcBi2PACYQX/3NAc+N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMyOC8zQTAxNjQ3NjZE NTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BGd0dMWThBSmhCZl9jMEJ6 NDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOaW1sc2NzUEZ3R0xZOEFKaEJmX2MwQno0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkMyOC8zQTAxNjQ3NjZENTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BG d0dMWThBSmhCZl9jMEJ6NDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0IBTs2XA3NfLq1VLUfxklRjffvFjMUnTUP7lXRIKz/J52GRSQt64+ fmQjWn8JRDZA40nxNQw83InhlutjsgdMrQOF3wIKmK8hIe3xw1ejPx99x71MUs6Q hYmkEPFcdfdzXsoN4AiNnQIaIEu5OE5FrhbexT3XNUWCa2vtTyUGf2xB80+PSWV/ nrY4blrGVYcJqaMuU9UxORbV8U1Hz7LA437qiklF0En2Hrth9a4KVSLX6TcqDTy4 fCjadOdgxpBIJvbXczNZy5Tkjah27DfLSDnHb/calJa+RgIrq0HT3yXvcAJhfyia tNmvPlnQYmcWa36Dc6vc0xaQADP1JfXI -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:59 2025 by rpki-client on console.sobornost.net