$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft File: KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft (raw, json) Hash identifier: jTnghLMh1uTKhLaOIj7m0d6IeB+csMm45ma/79ptXj4= Subject key identifier: 50:DA:3D:D8:D7:BD:0F:51:68:12:1C:D0:1F:9C:E1:C1:5E:80:7D:D5 Authority key identifier: 2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 Certificate issuer: /CN=A91A4EF9/serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft Manifest number: DC Signing time: Sun 27 Apr 2025 04:25:05 +0000 Manifest this update: Sun 27 Apr 2025 04:25:04 +0000 Manifest next update: Sun 04 May 2025 04:25:04 +0000 Files and hashes: 1: KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl (hash: bNgaOTbDYbcQU6pnpm0Ohx15jCtak31yHcaf+5dH8W8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4EF9, serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Validity Not Before: Apr 27 04:25:04 2025 GMT Not After : May 4 04:25:04 2025 GMT Subject: CN=680db1a0-791a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d0:79:d1:58:71:82:0f:cc:3f:59:3f:7b:40: a2:66:fc:6f:f6:ca:27:49:28:4d:d9:1f:ae:a9:15: 8b:0c:6a:4f:48:f9:df:c6:b6:89:f5:10:85:08:7a: 1d:e5:f6:99:18:83:2e:b5:1f:3c:c8:87:9b:58:70: 26:74:f5:41:71:d6:4c:c2:72:d5:2b:18:fc:e4:3c: 58:16:50:16:a9:2f:78:09:94:37:4b:01:eb:e8:aa: c9:d8:f1:7d:a4:ca:9b:43:c3:1d:9d:dc:bc:1c:1a: ec:d8:bc:17:e1:90:06:b2:74:d3:1c:fd:fa:2f:93: 42:c4:9a:1d:78:4e:94:5b:12:9a:b6:07:05:ed:06: f3:f7:bd:90:88:63:b3:bf:ea:01:f8:88:5f:21:42: 1c:0a:f3:af:ee:db:46:58:46:7b:d6:4a:3e:fa:70: f4:e0:bf:89:8a:c9:14:48:3c:23:27:5e:7e:73:0b: d0:ee:0e:10:9a:01:27:2a:25:b4:87:47:26:0a:bd: 8c:e4:69:1e:74:a2:85:09:d1:56:9d:8d:37:8c:de: f5:6d:a5:3f:58:2b:91:74:ad:96:cd:84:96:ef:26: a8:0d:2d:f3:94:8c:49:5d:15:05:0c:7a:13:cb:12: 56:d9:92:9e:ea:de:a9:a4:66:c0:44:4b:21:f9:14: 8f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:DA:3D:D8:D7:BD:0F:51:68:12:1C:D0:1F:9C:E1:C1:5E:80:7D:D5 X509v3 Authority Key Identifier: keyid:2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ac:86:84:cb:60:14:a9:71:e5:26:01:4f:7e:0b:e7:1b:96: c7:0b:3c:5e:b0:95:62:34:cd:6e:83:5b:b0:e2:71:f6:dd:6c: 77:c4:a6:bc:2c:8f:fb:28:6c:07:34:05:22:f5:51:53:61:ed: 71:c4:ab:b8:6a:09:c6:a9:f9:2f:7b:12:27:6e:c1:55:10:81: 6b:70:78:03:ea:42:1a:ad:9d:0b:63:3b:01:1e:d1:bb:6c:ff: 08:d7:d6:6e:5d:f3:c0:27:97:e0:5d:7d:1c:db:5f:a5:69:cb: bf:73:19:07:6c:27:71:bb:2f:5b:8f:0f:0f:3a:12:f7:3e:d5: 83:21:07:e2:ea:41:2a:70:75:64:7f:fe:84:f9:fb:fd:a9:01: 49:7c:9d:ae:0e:92:7d:ee:a8:08:77:2e:25:53:46:fc:a4:14: a5:72:a5:e3:af:7e:5b:bd:21:27:cd:65:07:80:94:7f:21:b1: f3:be:2e:13:01:56:fc:97:f9:0f:71:1f:ef:b9:eb:f5:09:f8: 07:41:1b:8e:f5:53:37:36:3e:3e:e3:6d:d8:39:af:2f:30:28: 66:f0:aa:21:b2:5d:94:35:42:be:01:b1:a6:26:d4:12:1b:d8: f5:33:c9:47:96:eb:bf:83:3d:f2:5b:56:fb:fb:34:c8:4c:99: f2:88:79:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRjkxMTAvBgNVBAUTKDJBQzUzRTI2MjAyRjRCQ0JDMTQ4MDZGMTNFOUU4NjBE MEFDNjc3RjkwHhcNMjUwNDI3MDQyNTA0WhcNMjUwNTA0MDQyNTA0WjAYMRYwFAYD VQQDEw02ODBkYjFhMC03OTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tB50Vhxgg/MP1k/e0CiZvxv9sonSShN2R+uqRWLDGpPSPnfxraJ9RCFCHod 5faZGIMutR88yIebWHAmdPVBcdZMwnLVKxj85DxYFlAWqS94CZQ3SwHr6KrJ2PF9 pMqbQ8Mdndy8HBrs2LwX4ZAGsnTTHP36L5NCxJodeE6UWxKatgcF7Qbz972QiGOz v+oB+IhfIUIcCvOv7ttGWEZ71ko++nD04L+JiskUSDwjJ15+cwvQ7g4QmgEnKiW0 h0cmCr2M5GkedKKFCdFWnY03jN71baU/WCuRdK2WzYSW7yaoDS3zlIxJXRUFDHoT yxJW2ZKe6t6ppGbAREsh+RSPPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDaPdjX vQ9RaBIc0B+c4cFegH3VMB8GA1UdIwQYMBaAFCrFPiYgL0vLwUgG8T6ehg0Kxnf5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVGOS83RTlFMjNGOEQx MzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9Lc1UtSmlBdlM4dkJTQWJ4UHA2R0RRckdk X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzVS1KaUF2Uzh2QlNBYnhQcDZHRFFyR2Rfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVGOS83RTlFMjNGOEQxMzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9Lc1UtSmlBdlM4 dkJTQWJ4UHA2R0RRckdkX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvrIaEy2AUqXHlJgFPfgvnG5bHCzxesJViNM1ug1uw4nH23Wx3xKa8 LI/7KGwHNAUi9VFTYe1xxKu4agnGqfkvexInbsFVEIFrcHgD6kIarZ0LYzsBHtG7 bP8I19ZuXfPAJ5fgXX0c21+lacu/cxkHbCdxuy9bjw8POhL3PtWDIQfi6kEqcHVk f/6E+fv9qQFJfJ2uDpJ97qgIdy4lU0b8pBSlcqXjr35bvSEnzWUHgJR/IbHzvi4T AVb8l/kPcR/vuev1CfgHQRuO9VM3Nj4+423YOa8vMChm8Kohsl2UNUK+AbGmJtQS G9j1M8lHluu/gz3yW1b7+zTITJnyiHnK -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:53 2025 by rpki-client on console.sobornost.net