$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: /ARf+JwE2WChUE13p2+x3wVxN1F+UR27OtiEnsgJqkE= Subject key identifier: 35:97:A7:D6:6B:11:FD:DD:A6:FE:D1:79:F0:34:67:27:BE:7A:22:58 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 7A Signing time: Sun 27 Apr 2025 05:34:54 +0000 Manifest this update: Sun 27 Apr 2025 05:34:54 +0000 Manifest next update: Sun 04 May 2025 05:34:54 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: KlNwePbcRGaxAugp/+RVlQnsST/3Id6LPSkQmXk9PuI=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Apr 27 05:34:54 2025 GMT Not After : May 4 05:34:54 2025 GMT Subject: CN=680dc1fe-1ce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:05:40:0c:75:84:98:2b:2e:dc:8f:04:67:0c: dc:5d:3a:ba:98:24:fd:7f:38:db:30:c1:49:d3:a3: 8f:34:10:87:14:ee:90:29:75:c0:28:0e:10:c0:5b: 20:5e:23:9a:d8:25:d6:be:eb:70:a6:08:5e:01:5a: 87:94:6d:9d:67:71:99:4e:6c:f9:41:18:7d:9c:9f: 0a:ce:8c:ae:82:f1:da:ef:ce:b2:9f:62:e4:af:50: 6a:c4:a2:d1:a3:e1:ea:0e:3d:75:01:97:aa:17:b6: 2d:d7:3d:25:f0:06:1b:a8:c4:4c:c8:5e:cc:08:4d: e3:d5:0d:26:55:f8:3f:36:3a:d1:f6:d6:75:90:8b: be:a2:da:39:8d:f6:84:3e:08:f3:e7:eb:e5:e0:16: 4a:ab:fb:a2:42:13:1e:00:a8:6f:43:24:30:19:90: 30:de:93:a3:f2:71:f2:2e:60:36:3e:bd:8a:60:95: 92:54:ba:2b:4e:9b:33:1a:6a:42:30:cc:7a:33:3a: 90:13:e8:d1:3d:9c:77:65:94:88:f7:d9:d2:e8:69: 1c:fc:fd:c4:57:0e:14:09:78:0e:80:bd:e5:a8:5c: b1:e7:2c:be:a6:ff:a2:e1:01:02:2b:9d:f2:ec:4d: 9e:b3:7b:8a:d0:78:7a:f9:70:fe:a9:c5:a0:6c:f5: 2e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:97:A7:D6:6B:11:FD:DD:A6:FE:D1:79:F0:34:67:27:BE:7A:22:58 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:c1:9f:6a:61:fd:9d:42:76:ec:5d:24:d8:b8:5f:9c:0c:06: 45:44:af:79:b1:68:b3:dd:85:0a:33:a2:d6:a3:30:b9:f5:88: 06:e7:2e:cd:a0:a7:ad:e2:80:9d:d8:51:c5:c9:3b:06:c4:4c: 16:bb:5f:29:2a:ea:ae:79:2b:d8:db:8c:17:a5:a7:65:d4:9c: 4c:95:80:14:36:a5:c8:79:54:23:09:25:7f:a9:55:6e:64:5e: bf:a4:94:78:de:e7:8a:94:8a:72:d9:8b:2d:5e:d4:be:f3:78: 83:c4:2a:e8:b9:ab:f0:60:67:81:41:3d:bf:13:49:86:9d:35: 0f:c5:54:af:0e:aa:6e:08:e9:14:82:17:ad:d6:cf:5b:a7:88: c7:25:24:b2:ac:f4:ca:e1:7c:12:87:68:a7:2d:0f:e0:24:bd: 5b:25:b0:4f:4d:fc:c7:ea:22:68:a4:5f:c5:3b:0f:a2:9e:93: d4:ce:ea:17:15:83:84:aa:11:7a:85:81:10:30:24:22:76:57: 55:30:f6:ef:08:dd:be:94:48:a2:08:cf:36:3b:81:65:ff:d0: c4:1c:3f:b9:d2:ed:98:6e:f1:6d:e3:0c:1b:fe:be:12:54:f8: 86:07:34:3d:68:71:bb:41:cd:d7:3a:39:60:a4:82:11:f7:98: 67:92:7b:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUI4OTExMC8GA1UEBRMoMjkwMzdCQkY5MkYyQjBGNEMzMzBBMUNERDRBNzYyNTZD RDdBNTQyMjAeFw0yNTA0MjcwNTM0NTRaFw0yNTA1MDQwNTM0NTRaMBgxFjAUBgNV BAMTDTY4MGRjMWZlLTFjZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjBUAMdYSYKy7cjwRnDNxdOrqYJP1/ONswwUnTo480EIcU7pApdcAoDhDAWyBe I5rYJda+63CmCF4BWoeUbZ1ncZlObPlBGH2cnwrOjK6C8drvzrKfYuSvUGrEotGj 4eoOPXUBl6oXti3XPSXwBhuoxEzIXswITePVDSZV+D82OtH21nWQi76i2jmN9oQ+ CPPn6+XgFkqr+6JCEx4AqG9DJDAZkDDek6PycfIuYDY+vYpglZJUuitOmzMaakIw zHozOpAT6NE9nHdllIj32dLoaRz8/cRXDhQJeA6AveWoXLHnLL6m/6LhAQIrnfLs TZ6ze4rQeHr5cP6pxaBs9S63AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNZen1msR /d2m/tF58DRnJ756IlgwHwYDVR0jBBgwFoAUKQN7v5LysPTDMKHN1KdiVs16VCIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5Qjg5LzQzNjdDMjBFNkMx ODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZD SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS1FON3Y1THlzUFRETUtITjFLZGlWczE2VkNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5 Qjg5LzQzNjdDMjBFNkMxODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BU RE1LSE4xS2RpVnMxNlZDSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABbBn2ph/Z1CduxdJNi4X5wMBkVEr3mxaLPdhQozotajMLn1iAbnLs2g p63igJ3YUcXJOwbETBa7Xykq6q55K9jbjBelp2XUnEyVgBQ2pch5VCMJJX+pVW5k Xr+klHje54qUinLZiy1e1L7zeIPEKui5q/BgZ4FBPb8TSYadNQ/FVK8Oqm4I6RSC F63Wz1uniMclJLKs9MrhfBKHaKctD+AkvVslsE9N/MfqImikX8U7D6Kek9TO6hcV g4SqEXqFgRAwJCJ2V1Uw9u8I3b6USKIIzzY7gWX/0MQcP7nS7Zhu8W3jDBv+vhJU +IYHND1ocbtBzdc6OWCkghH3mGeSexo= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:58 2025 by rpki-client on console.sobornost.net