$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft File: _K1GEVffaBwFC9O-7qLqzfttUks.mft (raw, json) Hash identifier: 9ajYrJEPanrrrC7yh1N6vhrM/Fvjrisq/dhsQMVDr1w= Subject key identifier: 73:6A:AF:D2:F9:8E:31:E1:EC:77:C0:91:D9:ED:28:75:34:45:72:19 Authority key identifier: FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B Certificate issuer: /CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Certificate serial: 068C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft Manifest number: 066F Signing time: Sat 26 Apr 2025 22:06:37 +0000 Manifest this update: Sat 26 Apr 2025 22:06:37 +0000 Manifest next update: Sat 03 May 2025 22:06:37 +0000 Files and hashes: 1: _K1GEVffaBwFC9O-7qLqzfttUks.crl (hash: 2ZzzVD105M99xi9fFRWQku2Ci1+CsJd5z9AIsd5ypvY=) 2: D55D5DE2F07011EDAD0F5D62C4F9AE02.roa (hash: RSMVC0D0tBk2Fp59m5jA59HhRZpxrqk4YRYpw+Pzr0g=) 3: BC582AA44FEA11EFBFC72970C4F9AE02.roa (hash: aE8ILqsqa75udSkv7yAA18S8PO5yG42/7QwpuX3oUy8=) 4: 26F87D4A272711EC88E40644C4F9AE02.roa (hash: /9xJi3PLMQkKlzkomr7AvtnsuMXJh+Vt8LpT6XO4pUs=) 5: 50D705A87FA911EBA8C11D63C4F9AE02.roa (hash: ooqccoiogCkkJFxNvgTBDRvRTl072blE1cY1UXNoB0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 22:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1676 (0x68c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Validity Not Before: Apr 26 22:06:37 2025 GMT Not After : May 3 22:06:37 2025 GMT Subject: CN=680d58ed-dd48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f8:8a:b4:e9:36:93:9a:bb:14:4e:5c:35:28: 2c:ac:f4:ff:68:e3:75:a6:03:02:3c:69:23:a5:01: fc:2f:01:cf:af:6e:d9:e1:22:2c:76:0c:83:10:9c: 34:73:a0:8c:45:e8:5b:f5:6f:14:d5:86:42:12:68: 77:e0:1b:53:24:9e:52:1d:35:dd:21:fd:ec:0e:2c: 10:a6:b8:77:26:44:98:5f:6c:56:7d:1f:81:f7:ba: 6a:a4:52:64:ac:66:60:f4:ff:85:fc:80:2d:89:0b: 3f:56:4b:54:cd:63:19:29:b4:16:f2:42:d5:e8:99: 32:19:05:ee:96:45:32:fd:e3:c2:f2:45:9f:cf:b7: de:32:ba:66:67:8a:7f:94:3a:7b:82:6e:b5:69:cd: 0c:e2:2f:91:29:18:af:cc:69:9b:bd:7c:9d:9a:73: 58:20:4a:f1:b5:5b:76:70:c3:bf:f4:dc:e4:6f:61: 8c:bf:8a:e4:12:bf:58:46:be:82:4a:98:e2:90:83: f2:8c:b9:dd:06:d6:58:ff:3b:44:95:09:c2:e9:b5: 1f:e6:26:71:42:2e:b1:ca:94:88:55:50:07:8d:10: 2e:12:d0:b2:12:a5:77:2e:38:5c:72:a1:a9:ae:c9: 25:83:fa:fc:c7:c2:7c:47:bb:81:fb:a8:d6:2e:6f: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6A:AF:D2:F9:8E:31:E1:EC:77:C0:91:D9:ED:28:75:34:45:72:19 X509v3 Authority Key Identifier: keyid:FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:52:bf:ce:cd:f8:fb:43:c7:2f:50:97:dd:dc:36:08:dc:e1: 99:37:73:39:b8:70:7c:92:06:05:1e:19:19:aa:ec:b0:36:35: 37:ba:f5:f3:8d:c0:0a:44:b3:70:f6:04:9d:55:5e:ef:69:59: ef:a6:71:e0:f3:e9:5b:1b:fb:0d:f4:1e:4c:2d:cf:79:e5:3e: 98:73:a6:41:e6:59:85:c4:82:fa:3f:09:ea:87:f6:2a:f2:8b: 2e:3a:63:b8:f8:88:92:46:b4:2a:c4:4c:d6:55:19:4a:2f:8a: e7:2e:c5:b9:56:5d:dd:ce:44:5a:a3:db:a6:90:4a:f3:59:74: 16:ec:c7:09:63:a5:d8:1f:a9:39:a5:01:73:ef:a2:30:93:7c: 83:4e:ea:79:b5:af:25:81:af:fa:1d:aa:31:f7:7c:b6:9c:6a: 1c:eb:40:4e:a3:12:2e:aa:b0:6c:4a:44:cc:fc:3f:94:09:5e: 97:11:81:f6:66:f8:40:93:56:ce:ae:16:7e:7c:b3:58:bc:4e: fc:b5:ad:b7:5f:f2:ce:cf:17:1c:3a:b6:40:64:e5:30:80:d0: e4:7a:f4:6e:9f:0a:fa:c4:70:d8:77:8e:fc:e0:9a:8a:f0:01: e1:d5:7d:c3:88:4b:19:3c:c4:be:97:76:22:a2:9b:32:c9:f9: be:d8:47:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEZDQUQ0NjExNTdERjY4MUMwNTBCRDNCRUVFQTJFQUNE RkI2RDUyNEIwHhcNMjUwNDI2MjIwNjM3WhcNMjUwNTAzMjIwNjM3WjAYMRYwFAYD VQQDEw02ODBkNThlZC1kZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPiKtOk2k5q7FE5cNSgsrPT/aON1pgMCPGkjpQH8LwHPr27Z4SIsdgyDEJw0 c6CMRehb9W8U1YZCEmh34BtTJJ5SHTXdIf3sDiwQprh3JkSYX2xWfR+B97pqpFJk rGZg9P+F/IAtiQs/VktUzWMZKbQW8kLV6JkyGQXulkUy/ePC8kWfz7feMrpmZ4p/ lDp7gm61ac0M4i+RKRivzGmbvXydmnNYIErxtVt2cMO/9Nzkb2GMv4rkEr9YRr6C SpjikIPyjLndBtZY/ztElQnC6bUf5iZxQi6xypSIVVAHjRAuEtCyEqV3LjhccqGp rsklg/r8x8J8R7uB+6jWLm+LPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNqr9L5 jjHh7HfAkdntKHU0RXIZMB8GA1UdIwQYMBaAFPytRhFX32gcBQvTvu6i6s37bVJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC83NjkyMjc4QTdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFCd0ZDOU8tN3FMcXpmdHRV a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19LMUdFVmZmYUJ3RkM5Ty03cUxxemZ0dFVrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNDNC83NjkyMjc4QTdGOTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFC d0ZDOU8tN3FMcXpmdHRVa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSUr/Ozfj7Q8cvUJfd3DYI3OGZN3M5uHB8kgYFHhkZquywNjU3uvXz jcAKRLNw9gSdVV7vaVnvpnHg8+lbG/sN9B5MLc955T6Yc6ZB5lmFxIL6Pwnqh/Yq 8osuOmO4+IiSRrQqxEzWVRlKL4rnLsW5Vl3dzkRao9umkErzWXQW7McJY6XYH6k5 pQFz76Iwk3yDTup5ta8lga/6Haox93y2nGoc60BOoxIuqrBsSkTM/D+UCV6XEYH2 ZvhAk1bOrhZ+fLNYvE78ta23X/LOzxccOrZAZOUwgNDkevRunwr6xHDYd4784JqK 8AHh1X3DiEsZPMS+l3Yiopsyyfm+2EeU -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:11 2025 by rpki-client on console.sobornost.net