$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: MgWg8tmtVhkI1rvCMxm9B0RlATy0sHTl1gwg+YCcCGs= Subject key identifier: A9:43:39:84:19:DE:23:A9:5D:16:D4:DE:0B:C1:19:AE:A0:74:7B:2A Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: 6D Signing time: Sun 27 Apr 2025 05:45:11 +0000 Manifest this update: Sun 27 Apr 2025 05:45:10 +0000 Manifest next update: Sun 04 May 2025 05:45:10 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: zNI1g1cCtgwsfk6HnYvh89o2S7jYNwn1Tb8qtF9vpzA=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: yCZMfZ6NfluzN2Ky52xSRjoZCp2FkkrWLhsmfBj/nsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Apr 27 05:45:10 2025 GMT Not After : May 4 05:45:10 2025 GMT Subject: CN=680dc467-15cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:22:ad:9f:3a:ec:24:d4:ec:99:c2:b8:27:c0: 60:6f:b8:83:b2:e6:7e:5a:4e:1b:0d:40:de:a7:a2: 54:b3:9e:ed:da:d1:e1:7a:6e:e7:6a:e5:4a:71:10: b0:32:30:64:e9:0a:ab:9c:f5:c7:27:e1:8e:14:d3: 0b:36:85:14:38:93:7b:61:27:63:76:eb:cc:97:29: c9:4d:81:d2:98:dd:ba:fe:f0:f4:2f:53:5f:37:47: 12:81:aa:d6:79:ba:38:91:a4:93:71:db:2d:8d:a2: 3d:b5:98:71:68:04:1a:e9:d8:72:df:99:26:20:b9: 72:63:94:1b:eb:27:a4:93:26:2f:98:ad:e7:0c:f6: 06:c0:53:f8:4e:94:d6:97:f3:12:14:5b:cb:95:46: 2a:58:55:19:47:b8:a9:59:84:2c:5d:4f:20:ad:71: 84:8f:76:24:ec:1f:b6:59:0c:a8:6e:84:7c:94:e0: be:14:ef:16:7e:1d:13:cf:5c:43:93:f1:d1:53:73: 91:f4:2e:66:1b:f1:0e:dc:62:b5:b4:1c:51:88:2e: 74:61:41:52:50:fa:75:c7:98:a5:db:62:64:52:48: 3a:96:3a:c9:b0:0b:a9:54:9a:f5:42:32:0b:07:4a: 45:d2:36:02:99:64:f0:08:a4:df:ea:db:d5:c3:47: f8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:43:39:84:19:DE:23:A9:5D:16:D4:DE:0B:C1:19:AE:A0:74:7B:2A X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d7:99:90:10:9f:33:46:97:50:37:3f:eb:82:23:9f:cf:1c: 7c:12:b8:b5:14:3b:c8:e5:2e:82:13:07:85:e3:ed:70:ce:bf: 5c:47:ac:52:40:24:c7:ee:c5:90:f1:56:04:b4:98:9c:1a:2b: fb:f7:65:f7:29:ad:09:b4:74:02:59:9d:cb:9d:c5:d5:2b:77: 18:23:92:ee:8a:5e:b4:9e:22:62:e8:ef:49:69:27:fa:f5:ed: 7b:4d:cd:5d:97:0b:88:e4:05:b8:d2:9f:4a:6f:f3:20:8f:eb: a0:6a:2a:ad:85:87:b8:7b:ec:68:79:82:d5:17:d7:fc:51:04: e5:94:f6:fa:94:fd:3c:58:aa:f0:bc:84:1e:7a:85:f3:c6:bb: 9c:68:a2:f2:89:f4:98:35:ad:ba:e1:92:30:3b:75:e3:ca:69: c4:fc:63:1b:0d:ca:cb:eb:65:91:8f:e2:39:f8:1e:d3:f7:6d: a8:96:97:17:c5:2b:18:15:f9:65:c8:74:37:6d:2c:bf:c5:ab: e5:6b:bf:9c:bd:b3:ec:51:5a:0f:bf:6d:c7:3b:27:df:3f:d3: c8:aa:8b:20:73:d7:a7:6e:f0:54:b8:1e:47:ba:e0:a5:9c:98: 3c:2e:1c:ad:72:22:c4:36:a9:58:e6:7e:e5:70:b8:85:45:c7: 62:fd:d6:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoMkIzREI4NUVGOTUyMjM4RDE5MkRDRjE3MEVFNkJFQjFD OERCMDNBOTAeFw0yNTA0MjcwNTQ1MTBaFw0yNTA1MDQwNTQ1MTBaMBgxFjAUBgNV BAMTDTY4MGRjNDY3LTE1Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgIq2fOuwk1OyZwrgnwGBvuIOy5n5aThsNQN6nolSznu3a0eF6budq5UpxELAy MGTpCquc9ccn4Y4U0ws2hRQ4k3thJ2N268yXKclNgdKY3br+8PQvU183RxKBqtZ5 ujiRpJNx2y2Noj21mHFoBBrp2HLfmSYguXJjlBvrJ6STJi+YrecM9gbAU/hOlNaX 8xIUW8uVRipYVRlHuKlZhCxdTyCtcYSPdiTsH7ZZDKhuhHyU4L4U7xZ+HRPPXEOT 8dFTc5H0LmYb8Q7cYrW0HFGILnRhQVJQ+nXHmKXbYmRSSDqWOsmwC6lUmvVCMgsH SkXSNgKZZPAIpN/q29XDR/i/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqUM5hBne I6ldFtTeC8EZrqB0eyowHwYDVR0jBBgwFoAUKz24XvlSI40ZLc8XDua+scjbA6kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0UxODcxNzc2ODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3oyNFh2bFNJNDBaTGM4WER1YS1zY2piQTZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG NTI1L0UxODcxNzc2ODRFRDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQw WkxjOFhEdWEtc2NqYkE2ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAITXmZAQnzNGl1A3P+uCI5/PHHwSuLUUO8jlLoITB4Xj7XDOv1xHrFJA JMfuxZDxVgS0mJwaK/v3ZfcprQm0dAJZncudxdUrdxgjku6KXrSeImLo70lpJ/r1 7XtNzV2XC4jkBbjSn0pv8yCP66BqKq2Fh7h77Gh5gtUX1/xRBOWU9vqU/TxYqvC8 hB56hfPGu5xoovKJ9Jg1rbrhkjA7dePKacT8YxsNysvrZZGP4jn4HtP3baiWlxfF KxgV+WXIdDdtLL/Fq+Vrv5y9s+xRWg+/bcc7J98/08iqiyBz16du8FS4Hke64KWc mDwuHK1yIsQ2qVjmfuVwuIVFx2L91qY= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net