$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: PF5W2drUnfv+tfArvO1LxvVTcyW7B0eQjchu9xRszQA= Subject key identifier: FF:C7:30:22:2B:D1:1E:9B:A8:5F:FA:97:F2:9A:BE:5D:9D:23:A1:06 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 012F Signing time: Sun 27 Apr 2025 03:27:03 +0000 Manifest this update: Sun 27 Apr 2025 03:27:03 +0000 Manifest next update: Sun 04 May 2025 03:27:03 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: bGCA3foSnnENiXl5b2W6M4dowMKJ8KbZfUvsPACB4GI=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: s8Vu/R6gOMwvLzsGf3nk9tFhiMljx1hOH6LnsMms3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Apr 27 03:27:03 2025 GMT Not After : May 4 03:27:03 2025 GMT Subject: CN=680da407-77ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:23:5b:09:15:d4:c4:57:6c:a9:ff:28:43: bb:c9:25:2b:ee:a7:7c:b4:33:f6:08:7b:44:fd:0d: 90:64:d3:e2:0b:13:75:a3:84:33:a4:31:93:6e:d9: 49:22:87:88:f8:c7:76:a2:65:53:96:fc:91:c8:1a: ea:a6:9e:3a:7c:49:57:e7:5b:c4:c3:e9:1d:94:e9: 09:af:29:92:a4:72:02:84:91:1f:a8:8f:3a:d9:b9: 87:3a:ed:14:fa:08:b8:d6:fc:35:a1:92:09:0b:ea: 0e:3a:86:cc:af:11:6e:99:b7:79:e7:a8:db:59:31: 52:81:62:a8:cf:1c:6b:ce:c7:f9:5c:73:63:ff:2d: ba:0e:2a:38:14:ad:07:8e:dc:6c:8a:32:28:36:65: 09:a9:f0:10:a6:71:1b:e0:81:d0:77:17:7a:cf:1c: ba:68:71:0b:0e:bb:fa:95:c5:9d:d9:b3:61:26:64: 45:a5:ce:7e:ad:0e:65:06:b3:98:63:df:15:e0:4c: ee:68:b2:39:1c:9c:2d:7c:53:57:7d:db:92:3a:40: ba:2e:c9:f6:fa:b4:21:b6:15:41:5a:c3:a4:8f:e5: 02:9e:b0:ef:ae:67:ed:0f:f3:dd:03:41:d7:3b:36: c3:47:b0:9e:c7:e1:17:39:b1:f8:dc:ab:10:c9:3c: 4c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C7:30:22:2B:D1:1E:9B:A8:5F:FA:97:F2:9A:BE:5D:9D:23:A1:06 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:d9:a3:80:80:10:5b:ad:ab:ca:9b:41:b9:c6:a0:48:6a:63: a9:a0:98:a1:8b:12:4c:9f:4d:29:fc:38:2c:9e:c7:c4:94:9c: 18:1f:2b:ca:87:41:0c:80:94:63:a7:cf:84:4f:4e:7c:df:19: 5d:53:5e:35:14:d5:3b:6c:d5:f1:90:59:f6:42:e6:56:0c:7e: 4b:e7:18:db:13:12:94:15:ea:cf:a5:b6:5e:f8:84:6b:8f:d6: 44:b8:63:26:38:a1:b5:6f:5b:bb:10:4e:bf:ff:f3:48:b4:68: 43:88:6a:ef:9e:46:92:f2:26:eb:d5:64:1b:18:a7:80:f1:1e: 38:2d:42:4f:bd:90:64:c1:f5:be:a5:76:48:ec:bc:ee:1b:96: b7:81:63:e2:9b:26:cf:b8:d6:01:25:1f:e6:24:01:f5:74:b6: 30:46:eb:ce:f7:39:cd:f5:22:6f:a2:d7:85:60:67:99:bc:80: e2:ff:36:df:40:b1:d9:04:ac:dd:5c:36:fd:c0:be:3d:31:d5: ff:70:47:21:45:b8:7f:de:b3:06:19:c6:5b:19:d2:fd:a1:10: ea:c1:9a:64:67:e2:25:ec:9a:ad:47:53:37:e9:54:31:f6:38: c4:8b:3b:73:4c:74:09:86:3d:a3:9e:4e:2d:8c:ba:81:f4:6f: 97:07:e4:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUwNDI3MDMyNzAzWhcNMjUwNTA0MDMyNzAzWjAYMRYwFAYD VQQDEw02ODBkYTQwNy03N2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtSwjWwkV1MRXbKn/KEO7ySUr7qd8tDP2CHtE/Q2QZNPiCxN1o4QzpDGTbtlJ IoeI+Md2omVTlvyRyBrqpp46fElX51vEw+kdlOkJrymSpHIChJEfqI862bmHOu0U +gi41vw1oZIJC+oOOobMrxFumbd556jbWTFSgWKozxxrzsf5XHNj/y26Dio4FK0H jtxsijIoNmUJqfAQpnEb4IHQdxd6zxy6aHELDrv6lcWd2bNhJmRFpc5+rQ5lBrOY Y98V4EzuaLI5HJwtfFNXfduSOkC6Lsn2+rQhthVBWsOkj+UCnrDvrmftD/PdA0HX OzbDR7Cex+EXObH43KsQyTxMLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/HMCIr 0R6bqF/6l/Kavl2dI6EGMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG2aOAgBBbravKm0G5xqBIamOpoJihixJMn00p/DgsnsfElJwYHyvK h0EMgJRjp8+ET0583xldU141FNU7bNXxkFn2QuZWDH5L5xjbExKUFerPpbZe+IRr j9ZEuGMmOKG1b1u7EE6///NItGhDiGrvnkaS8ibr1WQbGKeA8R44LUJPvZBkwfW+ pXZI7LzuG5a3gWPimybPuNYBJR/mJAH1dLYwRuvO9znN9SJvoteFYGeZvIDi/zbf QLHZBKzdXDb9wL49MdX/cEchRbh/3rMGGcZbGdL9oRDqwZpkZ+Il7JqtR1M36VQx 9jjEiztzTHQJhj2jnk4tjLqB9G+XB+QJ -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:10 2025 by rpki-client on console.sobornost.net