$ rpki-client -vvf rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft File: -iKAHFKuKl_EkbfL6-aO_KLI0dk.mft (raw, json) Hash identifier: JFbUf/F8EgsC1Ni9tOgOxBmFmqHJfC0G1YJOka9EfwQ= Subject key identifier: 65:CC:04:32:CA:2A:80:29:F1:F0:95:F5:FD:B9:A6:27:AB:0B:61:C7 Authority key identifier: FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 Certificate issuer: /CN=A91D837B/serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft Manifest number: 48 Signing time: Sun 27 Apr 2025 06:14:19 +0000 Manifest this update: Sun 27 Apr 2025 06:14:19 +0000 Manifest next update: Sun 04 May 2025 06:14:19 +0000 Files and hashes: 1: -iKAHFKuKl_EkbfL6-aO_KLI0dk.crl (hash: uss6uAcSui4LMi5KmZreFBXhqZjSkuS4w1OImAyfBU0=) 2: 8F7DFE66C96E11EF98B64E15C4F9AE02.roa (hash: NJttL+qjjIMKQduatRuB9wCf9GQJviKk9JlU07XKUgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D837B, serialNumber=FA22801C52AE2A5FC491B7CBEBE68EFCA2C8D1D9 Validity Not Before: Apr 27 06:14:19 2025 GMT Not After : May 4 06:14:19 2025 GMT Subject: CN=680dcb3b-0a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ee:af:e0:c9:f8:21:65:f6:04:65:d5:28:8e: 36:ad:a9:36:54:b0:13:10:4a:11:4a:6b:e0:ff:63: 6e:a4:18:01:4b:5f:be:bf:e6:3a:bf:df:07:6f:dd: 0b:4c:c3:22:bb:28:ea:19:1c:4e:31:dc:a9:63:da: a3:15:f3:de:96:9c:e7:40:d3:16:e1:c7:f3:30:78: 29:1b:8d:af:22:ef:2b:a5:c1:f2:70:91:cc:0d:d5: 37:3a:9a:ad:b1:64:72:10:99:74:1d:3b:3d:ab:1e: bb:31:71:e1:2f:76:dd:05:c4:2c:1a:19:be:2c:6f: 60:ab:c7:1d:20:c1:79:b5:bc:78:47:2a:75:60:75: 5f:4d:c1:f2:42:d9:27:e6:4d:ae:cf:ea:93:c8:cd: e6:7f:dc:55:85:e9:0c:2a:63:f8:4e:04:fa:e6:16: 02:35:c6:0c:88:e8:86:7a:d6:d1:7d:a0:6e:6d:b6: d7:a8:07:a4:ba:78:f4:39:99:6f:84:d2:e1:42:6e: 6a:5c:54:47:81:72:03:7b:6e:31:6d:7a:e9:de:ef: 4a:74:65:be:be:5c:27:a8:37:1b:76:22:19:37:9c: 78:2b:21:ce:85:fa:0d:2f:39:cc:5a:fe:f4:a4:47: 50:7c:b5:2f:5d:a3:4b:0c:30:1c:80:12:09:90:ef: d7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CC:04:32:CA:2A:80:29:F1:F0:95:F5:FD:B9:A6:27:AB:0B:61:C7 X509v3 Authority Key Identifier: keyid:FA:22:80:1C:52:AE:2A:5F:C4:91:B7:CB:EB:E6:8E:FC:A2:C8:D1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-iKAHFKuKl_EkbfL6-aO_KLI0dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D837B/158D7F3CB99C11EF9638F769C4F9AE02/-iKAHFKuKl_EkbfL6-aO_KLI0dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:e1:2c:56:ab:2c:22:5f:d7:c7:e4:1b:09:7e:01:3c:db:d0: d6:78:9d:93:b2:43:28:22:93:d3:4e:c1:a7:5a:9a:64:91:ac: cd:ab:cb:a6:38:de:3c:d8:b1:2c:3e:eb:f5:59:59:5d:a1:20: a7:46:71:f6:44:2a:aa:b6:79:b7:fa:d0:1a:ca:9b:f8:dc:86: 5d:a2:a1:6a:1a:9c:3e:e5:eb:28:30:00:84:f7:a6:8a:e7:49: 76:94:02:d3:43:31:d9:c4:1f:c9:a7:97:3c:0e:8a:eb:25:c9: 44:fa:18:79:ae:a6:c0:c1:b5:80:78:23:09:e7:2f:f8:5d:10: db:d5:a2:3b:e0:52:b1:6c:31:ee:e9:1e:f7:83:24:42:f3:91: 14:36:cd:d7:fe:20:e0:da:19:2d:6e:b3:10:3f:12:39:66:a3: 43:bb:14:3a:5c:cc:7c:6a:28:a9:19:74:a3:b0:42:ed:31:45: ce:8d:7e:de:7f:82:84:ef:cd:a1:3a:fb:4d:09:6b:b4:46:63: 5c:75:9c:34:a7:50:9f:7a:05:ed:54:f0:f1:22:d8:78:2c:bf: 6b:8d:af:61:9a:43:a1:a4:9f:6f:08:a7:6d:00:f1:4c:21:60: e3:25:f2:ec:a0:96:4e:4a:98:49:28:6d:c9:7d:3e:fa:e1:ae: 1e:2b:b7:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODM3QjExMC8GA1UEBRMoRkEyMjgwMUM1MkFFMkE1RkM0OTFCN0NCRUJFNjhFRkNB MkM4RDFEOTAeFw0yNTA0MjcwNjE0MTlaFw0yNTA1MDQwNjE0MTlaMBgxFjAUBgNV BAMTDTY4MGRjYjNiLTBhNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDm7q/gyfghZfYEZdUojjatqTZUsBMQShFKa+D/Y26kGAFLX76/5jq/3wdv3QtM wyK7KOoZHE4x3Klj2qMV896WnOdA0xbhx/MweCkbja8i7yulwfJwkcwN1Tc6mq2x ZHIQmXQdOz2rHrsxceEvdt0FxCwaGb4sb2Crxx0gwXm1vHhHKnVgdV9NwfJC2Sfm Ta7P6pPIzeZ/3FWF6QwqY/hOBPrmFgI1xgyI6IZ61tF9oG5ttteoB6S6ePQ5mW+E 0uFCbmpcVEeBcgN7bjFteune70p0Zb6+XCeoNxt2Ihk3nHgrIc6F+g0vOcxa/vSk R1B8tS9do0sMMByAEgmQ79evAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZcwEMsoq gCnx8JX1/bmmJ6sLYccwHwYDVR0jBBgwFoAU+iKAHFKuKl/EkbfL6+aO/KLI0dkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MzdCLzE1OEQ3RjNDQjk5 QzExRUY5NjM4Rjc2OUM0RjlBRTAyLy1pS0FIRkt1S2xfRWtiZkw2LWFPX0tMSTBk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLWlLQUhGS3VLbF9Fa2JmTDYtYU9fS0xJMGRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MzdCLzE1OEQ3RjNDQjk5QzExRUY5NjM4Rjc2OUM0RjlBRTAyLy1pS0FIRkt1S2xf RWtiZkw2LWFPX0tMSTBkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ7hLFarLCJf18fkGwl+ATzb0NZ4nZOyQygik9NOwadammSRrM2ry6Y4 3jzYsSw+6/VZWV2hIKdGcfZEKqq2ebf60BrKm/jchl2ioWoanD7l6ygwAIT3porn SXaUAtNDMdnEH8mnlzwOiuslyUT6GHmupsDBtYB4IwnnL/hdENvVojvgUrFsMe7p HveDJELzkRQ2zdf+IODaGS1usxA/Ejlmo0O7FDpczHxqKKkZdKOwQu0xRc6Nft5/ goTvzaE6+00Ja7RGY1x1nDSnUJ96Be1U8PEi2Hgsv2uNr2GaQ6Gkn28Ip20A8Uwh YOMl8uyglk5KmEkobcl9Pvrhrh4rtyg= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:57 2025 by rpki-client on console.sobornost.net