$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF163/029AF986007611E8B3599D17C4F9AE02/kg7G_DZX0_sAmIJZjJhqdPVVWN8.mft File: kg7G_DZX0_sAmIJZjJhqdPVVWN8.mft (raw, json) Hash identifier: PPFd08wGCylJx56cnXxjrKFnQrR53dI05JXzSllCKDA= Subject key identifier: 0A:2C:99:A0:75:92:B0:8A:01:04:1F:85:D5:A4:B4:59:A6:39:9F:80 Authority key identifier: 92:0E:C6:FC:36:57:D3:FB:00:98:82:59:8C:98:6A:74:F5:55:58:DF Certificate issuer: /CN=A91EF163/serialNumber=920EC6FC3657D3FB009882598C986A74F55558DF Certificate serial: 169B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kg7G_DZX0_sAmIJZjJhqdPVVWN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF163/029AF986007611E8B3599D17C4F9AE02/kg7G_DZX0_sAmIJZjJhqdPVVWN8.mft Manifest number: 1686 Signing time: Mon 28 Apr 2025 16:53:46 +0000 Manifest this update: Mon 28 Apr 2025 16:53:45 +0000 Manifest next update: Mon 05 May 2025 16:53:45 +0000 Files and hashes: 1: kg7G_DZX0_sAmIJZjJhqdPVVWN8.crl (hash: q3ibx+LcVdHf3o4CMYaFSNKUHmjkejWHLVZwqemeQDI=) 2: 47F9786C171B11ECB022FD54C4F9AE02.roa (hash: 9LkXl9QxDSxbtZYyZ8LFVmO6uJfg1+QNK1ML8GwAiHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF163/029AF986007611E8B3599D17C4F9AE02/kg7G_DZX0_sAmIJZjJhqdPVVWN8.crl rsync://rpki.apnic.net/member_repository/A91EF163/029AF986007611E8B3599D17C4F9AE02/kg7G_DZX0_sAmIJZjJhqdPVVWN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kg7G_DZX0_sAmIJZjJhqdPVVWN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5787 (0x169b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF163, serialNumber=920EC6FC3657D3FB009882598C986A74F55558DF Validity Not Before: Apr 28 16:53:45 2025 GMT Not After : May 5 16:53:45 2025 GMT Subject: CN=680fb299-a215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:46:a7:c5:97:e2:46:74:9a:b8:5a:3e:40: e5:7b:c0:40:d5:20:50:b4:2e:f5:86:af:05:ee:8d: 2b:31:dd:33:5d:53:2b:21:95:ed:36:f2:95:b0:c4: 07:92:00:12:49:cb:a9:7f:50:3a:85:d9:a0:46:1c: 3a:4b:b5:b0:5a:2d:94:aa:a2:f5:25:59:6a:56:58: cf:13:41:21:4a:33:65:02:f2:ef:ad:1d:c6:09:92: c0:60:e3:21:c2:23:0b:63:80:14:b5:5f:5b:d3:6c: 24:bf:f4:e4:64:a0:0d:ed:d2:50:55:1a:a6:d7:45: 5e:41:0c:ef:b2:67:38:dd:21:96:78:7f:03:be:ad: 9a:90:7d:db:cb:f5:84:c7:f1:1a:07:b2:3c:a6:1f: 23:75:cd:62:0a:44:40:c5:a9:10:7b:58:e2:82:07: 03:7c:11:40:76:ed:eb:1b:8c:04:a0:53:8c:6d:cd: 93:00:a0:90:38:21:62:ec:d7:3b:e0:06:ea:55:ea: d1:ef:9c:3d:74:41:c0:5f:40:41:2a:51:80:9b:78: 30:0a:db:c8:cc:10:41:d3:ee:e3:91:84:6d:be:e8: ff:ab:42:14:e9:0e:47:31:44:64:8d:f2:62:27:ef: 42:fa:e6:71:7e:46:5a:88:af:b5:64:14:30:28:65: e3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:2C:99:A0:75:92:B0:8A:01:04:1F:85:D5:A4:B4:59:A6:39:9F:80 X509v3 Authority Key Identifier: keyid:92:0E:C6:FC:36:57:D3:FB:00:98:82:59:8C:98:6A:74:F5:55:58:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF163/029AF986007611E8B3599D17C4F9AE02/kg7G_DZX0_sAmIJZjJhqdPVVWN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kg7G_DZX0_sAmIJZjJhqdPVVWN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF163/029AF986007611E8B3599D17C4F9AE02/kg7G_DZX0_sAmIJZjJhqdPVVWN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:30:b9:fb:90:f4:3b:13:31:8e:79:c2:75:13:91:80:05:2b: da:3b:04:d8:86:88:15:f1:66:16:ec:c4:f9:4c:29:de:0b:fe: 27:46:c9:2d:7d:0e:2d:5d:d7:62:42:79:95:ea:1b:4a:a7:b2: e2:c1:da:04:e4:04:d4:f2:fe:cb:82:a0:35:56:4b:db:ba:99: 9a:dc:54:73:9c:75:81:7f:e0:52:c2:df:dd:75:99:44:ea:47: 30:c7:2f:f3:20:04:f7:33:e7:6d:04:79:6f:97:a7:e0:2b:99: c7:d4:05:2e:83:37:02:58:88:ce:61:6b:0e:ad:c9:c8:b4:2c: 8d:64:b3:4a:ce:d8:04:68:8d:dd:a3:bc:80:3d:29:4b:7d:44: 5e:3e:22:2d:e2:f1:33:99:80:79:18:76:2c:c5:e1:52:0e:fe: 18:bb:35:81:11:44:9d:15:31:7c:51:58:40:06:7f:26:54:d4: 6b:c8:30:68:d9:43:89:df:78:f6:a4:ae:70:b0:39:2b:9f:bc: 6f:78:e0:b2:4c:68:c9:fd:f4:a5:d6:81:cc:dc:a9:a1:7f:f0: f9:c2:6d:d2:bf:65:1e:6c:ce:4c:ea:9e:e5:49:7c:f8:09:16: 86:d4:7f:d0:9f:18:07:71:24:75:47:91:c7:3c:0d:f8:b3:f5: d0:2c:ae:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxNjMxMTAvBgNVBAUTKDkyMEVDNkZDMzY1N0QzRkIwMDk4ODI1OThDOTg2QTc0 RjU1NTU4REYwHhcNMjUwNDI4MTY1MzQ1WhcNMjUwNTA1MTY1MzQ1WjAYMRYwFAYD VQQDEw02ODBmYjI5OS1hMjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdhGp8WX4kZ0mrhaPkDle8BA1SBQtC71hq8F7o0rMd0zXVMrIZXtNvKVsMQH kgASScupf1A6hdmgRhw6S7WwWi2UqqL1JVlqVljPE0EhSjNlAvLvrR3GCZLAYOMh wiMLY4AUtV9b02wkv/TkZKAN7dJQVRqm10VeQQzvsmc43SGWeH8Dvq2akH3by/WE x/EaB7I8ph8jdc1iCkRAxakQe1jiggcDfBFAdu3rG4wEoFOMbc2TAKCQOCFi7Nc7 4AbqVerR75w9dEHAX0BBKlGAm3gwCtvIzBBB0+7jkYRtvuj/q0IU6Q5HMURkjfJi J+9C+uZxfkZaiK+1ZBQwKGXjpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAosmaB1 krCKAQQfhdWktFmmOZ+AMB8GA1UdIwQYMBaAFJIOxvw2V9P7AJiCWYyYanT1VVjf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE2My8wMjlBRjk4NjAw NzYxMUU4QjM1OTlEMTdDNEY5QUUwMi9rZzdHX0RaWDBfc0FtSUpaakpocWRQVlZX TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tnN0dfRFpYMF9zQW1JSlpqSmhxZFBWVldOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE2My8wMjlBRjk4NjAwNzYxMUU4QjM1OTlEMTdDNEY5QUUwMi9rZzdHX0RaWDBf c0FtSUpaakpocWRQVlZXTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASMLn7kPQ7EzGOecJ1E5GABSvaOwTYhogV8WYW7MT5TCneC/4nRskt fQ4tXddiQnmV6htKp7LiwdoE5ATU8v7LgqA1Vkvbupma3FRznHWBf+BSwt/ddZlE 6kcwxy/zIAT3M+dtBHlvl6fgK5nH1AUugzcCWIjOYWsOrcnItCyNZLNKztgEaI3d o7yAPSlLfURePiIt4vEzmYB5GHYsxeFSDv4YuzWBEUSdFTF8UVhABn8mVNRryDBo 2UOJ33j2pK5wsDkrn7xveOCyTGjJ/fSl1oHM3Kmhf/D5wm3Sv2UebM5M6p7lSXz4 CRaG1H/QnxgHcSR1R5HHPA34s/XQLK4l -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:15 2025 by rpki-client on console.sobornost.net