$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: yWRNTguuZj4ylho3gnhWLnTktqgy1imN0AI1Sj5kwSE= Subject key identifier: 2D:5E:68:02:CA:F2:60:0C:12:EF:C8:9A:AD:48:4B:D1:08:D0:FB:48 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: A0 Signing time: Sun 27 Apr 2025 05:02:52 +0000 Manifest this update: Sun 27 Apr 2025 05:02:52 +0000 Manifest next update: Sun 04 May 2025 05:02:52 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: mzaq16g8U9xyW1nToKFJE13CQJSurM3dBl/m6PnlrhY=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Apr 27 05:02:52 2025 GMT Not After : May 4 05:02:52 2025 GMT Subject: CN=680dba7c-2d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b5:83:be:7f:06:1c:de:12:bf:65:28:d6:a9: 1c:b2:8a:83:20:dd:40:5b:9e:e9:69:f5:17:79:13: 04:dc:95:96:15:a3:05:90:63:db:1a:e3:93:08:85: 15:6a:2a:ee:18:e1:92:44:eb:95:5a:21:3d:a5:0a: 41:ec:4e:d6:38:5e:74:ba:ca:80:61:31:fb:17:e7: 22:05:68:12:b4:a9:f8:db:ce:17:4f:97:94:fc:e1: 3f:2f:2b:23:82:fd:0e:4f:07:26:4f:be:54:33:b2: 37:a0:62:fa:86:3c:57:9b:aa:52:8f:37:35:d1:41: 19:b1:66:eb:65:06:a2:a7:3e:3c:a2:e2:3c:fe:23: 70:7d:ab:db:62:42:cb:ba:f1:b1:ac:cd:d1:30:25: dc:9d:83:4f:db:7a:ba:09:a1:a1:2c:08:c5:60:92: cf:5a:51:b5:0e:7e:2a:9e:0f:69:4f:0e:33:c5:b7: 07:d5:d6:f1:04:e5:f7:07:d1:e4:8c:4e:0c:fa:4f: 1a:d8:7f:d2:59:a4:35:46:aa:11:1f:26:45:6f:bd: 6e:e7:d2:87:c1:d6:ae:a9:d3:d9:a4:b5:81:15:a0: 9a:f4:a1:b7:31:2a:4b:56:80:d0:94:9b:cb:95:a9: 2d:af:2a:d7:3c:64:97:92:91:69:77:4b:f4:98:a0: c3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:5E:68:02:CA:F2:60:0C:12:EF:C8:9A:AD:48:4B:D1:08:D0:FB:48 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:29:33:de:06:12:1d:25:a9:71:2b:ce:61:cd:a9:45:75:b3: c1:29:6c:87:14:94:8b:cd:ed:62:8a:1a:36:8d:41:3e:2d:02: 17:2e:51:f7:6a:99:04:f8:e4:09:b5:1e:d9:c7:e8:39:3d:12: 21:1c:e9:f1:d8:e8:71:c1:78:43:2b:46:32:00:1e:1a:48:6e: cd:25:6c:19:0a:1c:48:d0:aa:a3:c7:03:b0:e3:2a:ae:75:51: f4:98:a1:f4:9e:b4:f2:cb:00:1b:b9:c7:14:03:59:17:03:53: 76:65:12:a3:e5:1d:c7:e6:dd:a1:28:4b:30:7d:5a:da:dc:d0: 11:5a:fa:cd:45:88:d8:35:2c:fb:3e:43:70:60:88:5f:2c:60: f3:c1:2d:24:69:12:93:73:e6:af:4f:ec:db:c2:de:ac:1e:a5: 30:48:b0:40:7d:e4:1a:7c:2b:30:ee:43:1e:13:22:32:de:43: 4f:5c:94:8d:ba:a2:2a:1c:58:4b:84:7f:41:74:a3:e0:2a:88: 66:55:46:c9:36:07:17:cc:ad:e2:b1:ef:6b:6c:b7:7f:ab:7a: b8:1b:4a:e6:e1:a0:0a:2b:21:07:f8:52:98:6b:c3:00:59:b5: ab:d9:6b:2e:07:4a:41:d6:7f:0e:32:f7:a9:88:9b:0a:07:18: c5:81:d9:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNDI3MDUwMjUyWhcNMjUwNTA0MDUwMjUyWjAYMRYwFAYD VQQDEw02ODBkYmE3Yy0yZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47WDvn8GHN4Sv2Uo1qkcsoqDIN1AW57pafUXeRME3JWWFaMFkGPbGuOTCIUV airuGOGSROuVWiE9pQpB7E7WOF50usqAYTH7F+ciBWgStKn4284XT5eU/OE/Lysj gv0OTwcmT75UM7I3oGL6hjxXm6pSjzc10UEZsWbrZQaipz48ouI8/iNwfavbYkLL uvGxrM3RMCXcnYNP23q6CaGhLAjFYJLPWlG1Dn4qng9pTw4zxbcH1dbxBOX3B9Hk jE4M+k8a2H/SWaQ1RqoRHyZFb71u59KHwdauqdPZpLWBFaCa9KG3MSpLVoDQlJvL laktryrXPGSXkpFpd0v0mKDD8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1eaALK 8mAMEu/Imq1IS9EI0PtIMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5KTPeBhIdJalxK85hzalFdbPBKWyHFJSLze1iiho2jUE+LQIXLlH3 apkE+OQJtR7Zx+g5PRIhHOnx2OhxwXhDK0YyAB4aSG7NJWwZChxI0KqjxwOw4yqu dVH0mKH0nrTyywAbuccUA1kXA1N2ZRKj5R3H5t2hKEswfVra3NARWvrNRYjYNSz7 PkNwYIhfLGDzwS0kaRKTc+avT+zbwt6sHqUwSLBAfeQafCsw7kMeEyIy3kNPXJSN uqIqHFhLhH9BdKPgKohmVUbJNgcXzK3ise9rbLd/q3q4G0rm4aAKKyEH+FKYa8MA WbWr2WsuB0pB1n8OMvepiJsKBxjFgdl7 -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:52 2025 by rpki-client on console.sobornost.net