$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json) Hash identifier: akyg+Ikiyp+WlgmtAN1sBtWTNCSlq941fEr7JGPbt24= Subject key identifier: 50:06:12:AD:82:9A:E2:9C:96:66:2E:95:BC:DB:93:69:F9:CE:36:92 Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft Manifest number: 3A Signing time: Sun 27 Apr 2025 06:24:48 +0000 Manifest this update: Sun 27 Apr 2025 06:24:47 +0000 Manifest next update: Sun 04 May 2025 06:24:47 +0000 Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: CPPfWiR0+KhnUuGnUuxZmuaoXC3AgI14Gt04msL+SWk=) 2: 5042D03ED2EF11EFBA610425C4F9AE02.roa (hash: Td45KF7s5KJjDmYTPbjMG6cwXZMtoTfhOtwsLcRRVB4=) 3: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gzNobaLbEvK3FJ3mC0CiPYdWO820L9Sv8IKQdUKftFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Apr 27 06:24:47 2025 GMT Not After : May 4 06:24:47 2025 GMT Subject: CN=680dcdb0-a42a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ae:69:5a:4c:d7:c9:19:0d:88:7c:b7:5d:0c: 8d:ba:d0:f5:04:63:b5:0d:ba:c5:3d:da:b3:72:bf: da:55:b2:2c:cd:ef:85:d1:38:e1:b6:6a:11:20:e9: 19:81:77:4a:ba:0f:41:30:51:a0:00:cd:38:72:c0: 59:cc:70:95:46:ab:9f:c9:81:48:00:22:1c:70:48: 25:0d:a2:e4:b5:4a:a4:a6:14:1c:52:98:03:74:53: d7:df:d0:68:88:a7:26:97:61:1f:a4:a8:ec:20:8e: 04:7a:d2:e4:0f:77:50:e7:cb:94:9f:56:57:43:95: 5c:ec:1f:4f:cf:25:9b:5c:39:35:84:03:56:b0:4e: 78:8a:48:33:4a:91:b5:5b:24:0a:29:81:5c:6a:eb: e3:79:f2:6b:57:f4:81:ae:e0:9b:7d:6a:43:4a:0c: ea:cc:bf:42:37:39:8a:47:11:6c:ac:39:ec:2f:9b: 7c:3d:cd:2a:55:24:3d:0f:34:f3:f7:ce:53:bd:83: 07:6f:e5:69:eb:78:50:a8:b8:f2:2a:e9:05:a1:a8: 54:1e:70:83:c9:53:05:e2:48:23:0c:aa:6f:c1:43: e7:94:4c:7c:0d:0e:41:9d:e0:3c:43:a4:00:9c:7c: 7b:74:36:da:f8:dd:9a:1b:26:0c:ee:8d:13:67:b3: 65:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:06:12:AD:82:9A:E2:9C:96:66:2E:95:BC:DB:93:69:F9:CE:36:92 X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:36:48:a7:b4:8b:85:74:01:4b:ac:1f:da:a7:58:28:8b:97: d7:15:04:7e:cf:1c:4e:06:87:04:90:02:39:14:b8:4d:47:78: 1f:9f:96:ec:c7:e4:9c:cb:f5:b1:36:6e:cc:48:1c:f9:b2:c6: 73:85:c9:5f:af:b0:4d:4f:e8:7a:d7:a9:38:24:83:70:71:6d: 1e:75:2f:7d:9a:4f:43:49:4c:b5:7d:bc:21:6d:f4:7e:16:f8: 57:8b:2b:57:f7:55:06:3c:5f:37:55:a9:22:b0:71:4b:f6:a9: 71:f2:8b:35:f8:ca:55:82:a9:5d:33:2c:07:a8:c4:6a:26:3f: 69:64:47:3c:a8:1b:78:09:59:7e:68:9e:d2:a5:9a:68:5d:00: 9f:d6:6d:1b:92:30:e7:a0:c0:a1:9e:cf:d5:b4:25:0d:19:68: 8b:d8:e9:25:5e:5f:e9:7c:36:a6:85:ed:e3:a9:54:95:87:4c: bd:58:e3:fa:7d:ec:05:55:ba:09:cf:e6:75:21:61:31:45:64: 59:f2:2e:3a:82:bd:b2:05:39:ff:fc:77:57:8e:d8:26:44:84: 40:c5:0a:fa:6e:be:6c:e2:67:c7:bc:02:e8:e3:ab:c4:40:23: 7e:8f:85:86:29:01:a5:0a:a0:a3:dc:98:6d:5d:c7:96:0e:2e: ca:d1:8d:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODU1MzExMC8GA1UEBRMoOTMwRERGNDEwMTA2OTAzQkVCOTkxOUM5OUJERTAxNjM4 NzA2NTVBRTAeFw0yNTA0MjcwNjI0NDdaFw0yNTA1MDQwNjI0NDdaMBgxFjAUBgNV BAMTDTY4MGRjZGIwLWE0MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHrmlaTNfJGQ2IfLddDI260PUEY7UNusU92rNyv9pVsizN74XROOG2ahEg6RmB d0q6D0EwUaAAzThywFnMcJVGq5/JgUgAIhxwSCUNouS1SqSmFBxSmAN0U9ff0GiI pyaXYR+kqOwgjgR60uQPd1Dny5SfVldDlVzsH0/PJZtcOTWEA1awTniKSDNKkbVb JAopgVxq6+N58mtX9IGu4Jt9akNKDOrMv0I3OYpHEWysOewvm3w9zSpVJD0PNPP3 zlO9gwdv5WnreFCouPIq6QWhqFQecIPJUwXiSCMMqm/BQ+eUTHwNDkGd4DxDpACc fHt0Ntr43ZobJgzujRNns2VJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUAYSrYKa 4pyWZi6VvNuTafnONpIwHwYDVR0jBBgwFoAUkw3fQQEGkDvrmRnJm94BY4cGVa4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NTUzL0E1OUJGRkU0RDJF RDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1Zh NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva3czZlFRRUdrRHZybVJuSm05NEJZNGNHVmE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 NTUzL0E1OUJGRkU0RDJFRDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2 cm1SbkptOTRCWTRjR1ZhNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI02SKe0i4V0AUusH9qnWCiLl9cVBH7PHE4GhwSQAjkUuE1HeB+fluzH 5JzL9bE2bsxIHPmyxnOFyV+vsE1P6HrXqTgkg3BxbR51L32aT0NJTLV9vCFt9H4W +FeLK1f3VQY8XzdVqSKwcUv2qXHyizX4ylWCqV0zLAeoxGomP2lkRzyoG3gJWX5o ntKlmmhdAJ/WbRuSMOegwKGez9W0JQ0ZaIvY6SVeX+l8NqaF7eOpVJWHTL1Y4/p9 7AVVugnP5nUhYTFFZFnyLjqCvbIFOf/8d1eO2CZEhEDFCvpuvmziZ8e8Aujjq8RA I36PhYYpAaUKoKPcmG1dx5YOLsrRjeY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net