$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: /A+zsccBNiQ66dcEqJV8qaXy9dqSIb1LItWmN4pfxds= Subject key identifier: EE:B6:86:E1:38:2F:A7:4F:5B:01:3C:64:07:55:09:2C:A4:9B:B4:64 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 0895 Signing time: Sat 26 Apr 2025 20:19:50 +0000 Manifest this update: Sat 26 Apr 2025 20:19:50 +0000 Manifest next update: Sat 03 May 2025 20:19:50 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: 3srTx8OCkPcPZWIBShxyZq3zUaNvDt7W5tLBQGWdmiA=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Apr 26 20:19:50 2025 GMT Not After : May 3 20:19:50 2025 GMT Subject: CN=680d3fe6-70de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:20:4c:8f:27:7a:fe:dc:3c:5f:1f:b3:54:59: 19:a6:e6:71:07:1a:df:f3:73:d6:46:5b:00:56:56: f4:f4:0c:e9:dd:65:4c:9c:95:b6:18:cd:fd:58:b5: 42:fa:9a:b8:12:1d:24:60:8c:b1:bc:68:dc:f1:fd: 02:11:4c:ba:fa:c1:28:4c:ac:30:f4:75:b3:7a:27: 92:b2:96:ec:ce:0c:f8:54:4e:93:2f:00:9c:5e:90: d8:71:34:bf:a1:26:2d:35:97:a5:2d:09:9f:7f:dc: 4d:3c:05:51:7b:e8:39:47:e2:32:58:ad:f1:69:67: 29:8a:e9:cb:f5:89:14:29:30:a0:f4:cb:4a:b7:43: 01:17:f5:c6:4a:9d:af:3d:4d:cb:f6:a9:eb:42:fa: 30:f4:5e:55:96:cf:c7:f3:2c:84:1e:f4:a9:e9:68: ac:46:6a:f0:b3:aa:1c:c1:c8:25:2f:1d:23:17:e0: 50:fe:42:26:06:b3:d3:d4:8e:be:59:c3:2c:8f:28: 7c:6f:26:7b:0e:b6:65:14:2c:b6:1e:d1:74:60:8e: 02:9d:74:63:aa:8a:e1:ea:05:40:c9:ac:80:1e:20: ad:06:25:9a:22:90:2e:e3:cb:6d:b1:25:b6:5e:0c: 2c:80:80:03:48:c9:c8:e8:23:a4:e6:14:ce:89:19: 7d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:B6:86:E1:38:2F:A7:4F:5B:01:3C:64:07:55:09:2C:A4:9B:B4:64 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:0b:02:92:99:fc:81:17:a4:1b:37:98:34:3c:16:16:df:ef: 89:77:62:bd:eb:f7:60:c2:8a:80:59:a5:83:6c:43:fe:0e:4f: 32:e9:eb:cf:b4:d7:04:67:ea:79:a9:36:38:d7:af:83:ef:bd: 09:f8:f8:a9:ff:f9:67:04:c7:83:8c:fe:d5:77:98:28:2c:29: 6f:f2:11:48:79:9d:a5:78:c4:07:1a:c3:70:c1:01:be:3d:41: 07:54:81:0a:64:3f:62:00:cf:f0:e3:f6:96:60:34:5a:41:7b: 84:69:8b:8b:0e:d6:ce:17:88:8e:95:52:98:ff:1b:3b:96:3d: e8:db:f3:c1:b2:23:83:51:6e:0b:1d:49:b8:22:13:15:36:4c: be:69:5b:2a:61:04:aa:43:c2:2b:8d:c2:c9:50:a3:28:7d:c2: e3:fd:2d:7a:f2:ef:c2:bb:a2:74:8d:c4:d0:a0:29:c1:85:9d: 43:df:a1:92:f7:f7:93:9b:35:17:71:00:7a:87:6e:fc:39:a1: b0:d8:bb:4e:df:bb:ce:a5:49:e9:4b:66:a4:98:05:be:30:60: f4:b8:af:78:52:79:88:69:4f:a6:bd:d9:ec:b7:a6:3e:9b:2f: 19:0d:d9:5f:00:91:f2:c2:c5:a4:88:42:b7:41:ee:8e:c1:c8: c3:e3:6f:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUwNDI2MjAxOTUwWhcNMjUwNTAzMjAxOTUwWjAYMRYwFAYD VQQDEw02ODBkM2ZlNi03MGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSBMjyd6/tw8Xx+zVFkZpuZxBxrf83PWRlsAVlb09Azp3WVMnJW2GM39WLVC +pq4Eh0kYIyxvGjc8f0CEUy6+sEoTKww9HWzeieSspbszgz4VE6TLwCcXpDYcTS/ oSYtNZelLQmff9xNPAVRe+g5R+IyWK3xaWcpiunL9YkUKTCg9MtKt0MBF/XGSp2v PU3L9qnrQvow9F5Vls/H8yyEHvSp6WisRmrws6ocwcglLx0jF+BQ/kImBrPT1I6+ WcMsjyh8byZ7DrZlFCy2HtF0YI4CnXRjqorh6gVAyayAHiCtBiWaIpAu48ttsSW2 XgwsgIADSMnI6COk5hTOiRl9ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO62huE4 L6dPWwE8ZAdVCSykm7RkMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1CwKSmfyBF6QbN5g0PBYW3++Jd2K96/dgwoqAWaWDbEP+Dk8y6evP tNcEZ+p5qTY416+D770J+Pip//lnBMeDjP7Vd5goLClv8hFIeZ2leMQHGsNwwQG+ PUEHVIEKZD9iAM/w4/aWYDRaQXuEaYuLDtbOF4iOlVKY/xs7lj3o2/PBsiODUW4L HUm4IhMVNky+aVsqYQSqQ8IrjcLJUKMofcLj/S168u/Cu6J0jcTQoCnBhZ1D36GS 9/eTmzUXcQB6h278OaGw2LtO37vOpUnpS2akmAW+MGD0uK94UnmIaU+mvdnst6Y+ my8ZDdlfAJHywsWkiEK3Qe6OwcjD42+K -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:10 2025 by rpki-client on console.sobornost.net