$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: U/VQxhse0Fnk87Wo9qTGZUznmXUUFQqlEOXSdRB6pHY= Subject key identifier: 4E:5D:81:80:DA:EA:4D:96:7B:34:E5:B9:01:26:CE:C5:A4:FF:7A:63 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: A6 Signing time: Sun 27 Apr 2025 05:01:23 +0000 Manifest this update: Sun 27 Apr 2025 05:01:23 +0000 Manifest next update: Sun 04 May 2025 05:01:23 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: StpETvkNKxtQHclS220XO8Nn5E+vTBLAwVEQRw6aPtc=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: 1IspOhl6gwbhdZvL5rloqYpEEE+IPoe5ali+fyL8EWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Apr 27 05:01:23 2025 GMT Not After : May 4 05:01:23 2025 GMT Subject: CN=680dba23-bc1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0f:4b:30:e0:a5:72:71:76:72:0b:95:a7:30: 10:ea:02:d8:99:fc:95:42:b6:2b:6f:62:04:98:0d: a0:bc:76:83:81:f0:ca:bf:ed:64:08:df:30:73:71: 5a:b6:95:bb:0d:72:1a:0d:2f:18:09:e3:e0:d3:ef: 0d:c3:e3:d6:ee:55:a6:3b:41:c8:14:0b:20:d6:df: 59:f7:b3:f0:c3:ac:9c:38:c5:4d:fd:64:49:94:69: ea:1d:27:ec:55:99:ce:00:2a:69:29:66:13:f4:71: 87:d8:fc:b4:35:04:73:5c:9b:3b:7b:71:83:da:bb: f1:89:4e:49:37:62:70:3b:a2:e8:8f:93:40:b1:70: 50:72:b7:23:c7:6c:ba:26:f7:40:fb:5f:8f:2f:85: ee:99:c5:21:21:f7:f4:5b:19:bf:63:37:9f:3a:59: 3d:0f:bc:24:06:00:8e:5c:32:be:3f:3e:f7:39:a3: f8:71:fd:23:49:ab:6d:84:71:43:6b:c9:15:a9:c5: 61:6b:5d:90:eb:05:04:25:44:f3:59:8d:a7:82:8d: fb:bc:6f:5e:7e:94:af:c2:ab:6f:52:5d:63:79:e4: 67:30:d4:3f:6f:26:1a:58:18:a7:82:e8:e7:9a:a3: 6d:d1:3f:f1:5d:b8:b3:73:14:f6:66:cd:78:f4:33: 48:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5D:81:80:DA:EA:4D:96:7B:34:E5:B9:01:26:CE:C5:A4:FF:7A:63 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:83:5b:bc:a6:3b:ce:a5:cb:e3:07:4c:5f:2e:e9:59:b7:8f: f9:1f:d5:27:72:9d:57:da:f9:b5:de:72:0b:3e:98:bd:03:f9: 23:62:e1:af:ea:94:37:4c:ff:04:3f:bb:29:a8:54:2c:35:ec: be:ce:1a:d0:f7:4c:b5:1a:ef:58:bd:62:59:09:99:87:10:fe: db:cb:ad:0f:7d:88:97:b8:03:39:17:2c:f4:3c:94:91:b4:02: 3d:82:e4:1b:d0:89:e5:76:22:be:f7:cc:ea:57:fc:30:8e:ee: 6e:04:5c:3b:d4:ea:ed:1b:ab:f3:cf:9b:73:d1:a8:bf:27:d0: 40:8e:26:82:12:02:9a:21:a8:b6:9b:df:d5:99:1e:a7:45:e2: 11:de:08:3a:65:d0:28:3d:36:70:5d:85:ad:1b:7d:ee:45:21: 28:81:11:8e:94:b2:96:a1:42:4a:56:ef:91:33:a3:03:bd:c6: e4:03:34:33:9d:46:98:a8:b6:4c:5c:16:bf:35:5b:20:be:5f: da:d0:cd:a0:19:96:e6:7a:e2:4f:f4:d1:5c:f3:da:77:d0:1e: 9e:1b:68:29:c1:c5:4c:a0:f4:6b:89:cd:75:51:7e:9f:a6:26: 5d:ef:ae:38:ab:7e:2a:2a:a1:1f:87:4f:40:96:47:18:13:4c: 6c:aa:f6:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUwNDI3MDUwMTIzWhcNMjUwNTA0MDUwMTIzWjAYMRYwFAYD VQQDEw02ODBkYmEyMy1iYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Q9LMOClcnF2cguVpzAQ6gLYmfyVQrYrb2IEmA2gvHaDgfDKv+1kCN8wc3Fa tpW7DXIaDS8YCePg0+8Nw+PW7lWmO0HIFAsg1t9Z97Pww6ycOMVN/WRJlGnqHSfs VZnOACppKWYT9HGH2Py0NQRzXJs7e3GD2rvxiU5JN2JwO6Loj5NAsXBQcrcjx2y6 JvdA+1+PL4XumcUhIff0Wxm/YzefOlk9D7wkBgCOXDK+Pz73OaP4cf0jSatthHFD a8kVqcVha12Q6wUEJUTzWY2ngo37vG9efpSvwqtvUl1jeeRnMNQ/byYaWBingujn mqNt0T/xXbizcxT2Zs149DNI7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5dgYDa 6k2WezTluQEmzsWk/3pjMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxg1u8pjvOpcvjB0xfLulZt4/5H9Uncp1X2vm13nILPpi9A/kjYuGv 6pQ3TP8EP7spqFQsNey+zhrQ90y1Gu9YvWJZCZmHEP7by60PfYiXuAM5Fyz0PJSR tAI9guQb0InldiK+98zqV/wwju5uBFw71OrtG6vzz5tz0ai/J9BAjiaCEgKaIai2 m9/VmR6nReIR3gg6ZdAoPTZwXYWtG33uRSEogRGOlLKWoUJKVu+RM6MDvcbkAzQz nUaYqLZMXBa/NVsgvl/a0M2gGZbmeuJP9NFc89p30B6eG2gpwcVMoPRric11UX6f piZd7644q34qKqEfh09AlkcYE0xsqvYL -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net