$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft (raw, json) Hash identifier: dkSO0Ryfh4cWUAow/TBsMI5ZE6GQ+Wwh0h/Nl1nHHHc= Subject key identifier: 4C:8C:7B:A0:A2:66:86:28:25:D8:05:4B:1E:9F:20:38:0A:14:A6:ED Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: 36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft Manifest number: 35 Signing time: Sun 27 Apr 2025 06:25:32 +0000 Manifest this update: Sun 27 Apr 2025 06:25:32 +0000 Manifest next update: Sun 04 May 2025 06:25:32 +0000 Files and hashes: 1: kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl (hash: MbUG/ftV0TfmF3v5k6p25KJADyMjEDvX3fLWc2xj97U=) 2: 06522672D49411EFA8DF5E69C4F9AE02.roa (hash: xnlYEk4KW2VhWwSazH9YyKPxeFaHVTp0cHWmf0iyBnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Validity Not Before: Apr 27 06:25:32 2025 GMT Not After : May 4 06:25:32 2025 GMT Subject: CN=680dcddc-c326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ce:07:ef:7f:f5:03:b8:0d:3c:38:4d:cf:b9: e3:64:a8:fc:32:4b:ae:a8:45:08:f8:28:55:ea:eb: 17:d0:1c:fd:01:f0:58:23:0a:a8:11:02:bb:25:ea: 64:3d:b4:64:a7:5f:5a:26:d7:cd:8b:a2:fc:cf:c1: 47:6d:77:32:e9:be:41:df:06:37:4b:a5:30:db:e6: 6f:25:c3:6d:05:6a:ad:47:f4:2b:bf:00:d6:e7:55: 95:5d:03:e3:7f:08:9c:72:59:0a:cd:aa:32:51:32: 31:dd:54:a8:ae:9e:30:b0:f4:40:e5:88:46:db:14: 8d:e6:38:27:c4:16:e1:ce:16:c2:eb:50:2b:23:7d: 41:89:e8:80:a8:85:12:9a:6f:16:c4:30:83:48:9b: 2b:a7:f3:98:87:2d:11:5f:35:78:d0:35:1d:76:02: bf:db:45:5a:83:b1:ae:75:1b:96:1a:e1:68:fb:d1: c5:fc:12:38:2b:3b:62:72:0d:a8:50:a1:1e:25:0a: f4:59:5d:02:7f:06:1e:84:d1:56:f2:a7:ef:ef:46: 0c:80:20:e5:41:1e:03:a3:b6:11:d3:e9:46:ab:fb: 90:4d:5b:a5:b9:04:9b:f6:48:0f:62:f9:30:9f:3d: b9:c3:86:ea:95:16:2a:aa:6d:b8:bd:6d:1a:a8:cc: 59:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:8C:7B:A0:A2:66:86:28:25:D8:05:4B:1E:9F:20:38:0A:14:A6:ED X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d9:ce:7d:2d:8a:09:7a:29:50:6c:d3:6d:f4:cb:22:99:ec: 7c:e5:c4:fa:7b:d8:28:bc:d9:d4:a3:3d:11:15:52:95:54:b4: e4:8e:f3:06:61:8e:1a:0f:1d:5d:c6:84:7b:2e:c0:29:d8:f3: 10:a5:de:b6:2b:4b:98:58:af:54:aa:d0:ea:3a:9c:1e:53:53: ec:ed:5a:21:55:1c:55:7c:0a:dd:13:77:cd:3a:6f:56:96:ac: 46:58:ec:ea:7d:ce:57:e7:9b:e0:d5:2c:0b:ac:64:46:77:3d: a4:6d:ed:c2:e7:e7:9e:b9:67:da:19:c9:9c:99:9b:d4:ce:e6: 92:ea:44:48:43:2d:95:19:c6:78:c1:17:7c:ff:8a:c8:38:ac: f9:e3:84:99:b6:95:09:3b:c8:d8:c4:a6:c0:10:3d:15:84:8f: 90:15:b0:9d:48:a6:db:c1:e7:66:02:4e:b0:dd:ae:01:c9:b3: 40:c8:e8:93:02:42:ca:09:d2:5d:98:e1:d1:01:96:69:05:44: 20:84:d9:05:c5:5a:66:83:01:85:6c:b8:ce:4e:8a:b8:28:38: 7a:2d:43:33:af:9e:15:30:3f:79:0a:a4:32:ea:07:c3:51:d8: 10:08:71:83:21:c9:52:16:a4:2d:d9:72:47:2f:46:3e:ad:e6: f1:f7:6c:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkEzNTExMC8GA1UEBRMoOTI0ODY2QjQwQzMwNDQyRDY5NkYyNDc3MDE1NDc1QzVG MDcwMkFDODAeFw0yNTA0MjcwNjI1MzJaFw0yNTA1MDQwNjI1MzJaMBgxFjAUBgNV BAMTDTY4MGRjZGRjLWMzMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQzgfvf/UDuA08OE3PueNkqPwyS66oRQj4KFXq6xfQHP0B8FgjCqgRArsl6mQ9 tGSnX1om182LovzPwUdtdzLpvkHfBjdLpTDb5m8lw20Faq1H9Cu/ANbnVZVdA+N/ CJxyWQrNqjJRMjHdVKiunjCw9EDliEbbFI3mOCfEFuHOFsLrUCsjfUGJ6ICohRKa bxbEMINImyun85iHLRFfNXjQNR12Ar/bRVqDsa51G5Ya4Wj70cX8EjgrO2JyDahQ oR4lCvRZXQJ/Bh6E0Vbyp+/vRgyAIOVBHgOjthHT6Uar+5BNW6W5BJv2SA9i+TCf PbnDhuqVFiqqbbi9bRqozFn7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTIx7oKJm higl2AVLHp8gOAoUpu0wHwYDVR0jBBgwFoAUkkhmtAwwRC1pbyR3AVR1xfBwKsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTM1Lzk5Mjc3ODQ2RDQ5 MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2tobXRBd3dSQzFwYnlSM0FWUjF4ZkJ3S3NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 QTM1Lzk5Mjc3ODQ2RDQ5MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMx cGJ5UjNBVlIxeGZCd0tzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJLZzn0tigl6KVBs0230yyKZ7HzlxPp72Ci82dSjPREVUpVUtOSO8wZh jhoPHV3GhHsuwCnY8xCl3rYrS5hYr1Sq0Oo6nB5TU+ztWiFVHFV8Ct0Td806b1aW rEZY7Op9zlfnm+DVLAusZEZ3PaRt7cLn5565Z9oZyZyZm9TO5pLqREhDLZUZxnjB F3z/isg4rPnjhJm2lQk7yNjEpsAQPRWEj5AVsJ1IptvB52YCTrDdrgHJs0DI6JMC QsoJ0l2Y4dEBlmkFRCCE2QXFWmaDAYVsuM5OirgoOHotQzOvnhUwP3kKpDLqB8NR 2BAIcYMhyVIWpC3ZckcvRj6t5vH3bG0= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net