$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: x1WN1CsustRttQbvlFFW5w6Bprh2kbf7nRwJSLjukjg= Subject key identifier: 39:FE:AC:8B:C9:1A:67:AF:CF:86:A2:8A:8B:29:CE:D3:73:74:AC:D3 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1F6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1F5F Signing time: Mon 28 Apr 2025 16:06:39 +0000 Manifest this update: Mon 28 Apr 2025 16:06:38 +0000 Manifest next update: Mon 05 May 2025 16:06:38 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: G5FVcuvgyiGgUdypqecK9900K/q1NEtXDkRWe3GtbK0=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: C6sGcNivAhM8b7+hs2R4TWPNfdN5sOXAahaAosnvUZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8044 (0x1f6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Apr 28 16:06:38 2025 GMT Not After : May 5 16:06:38 2025 GMT Subject: CN=680fa78e-7ea1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:0b:7f:77:98:59:fa:dc:a0:ff:a4:b6:f9:5e: 67:72:b2:3e:df:33:ea:7e:e6:81:51:13:1d:98:cb: 86:f3:ba:dc:2e:05:ae:7f:d9:96:7e:45:11:91:70: 83:ac:0e:f3:b1:e6:99:8b:c1:5f:51:f6:e2:68:fd: 3c:d2:83:fd:fd:35:6c:96:bb:71:28:e2:ac:07:3c: 46:eb:ee:5c:a5:a6:31:00:1e:9c:20:6b:33:0b:6e: e6:ee:b1:da:f7:ba:d6:c1:a2:01:b8:0b:68:da:e8: 5d:4c:d2:8d:02:be:6d:1b:45:92:61:88:dd:3f:6f: 34:40:82:8e:02:27:93:34:aa:41:bc:09:f0:4f:56: e1:f6:45:59:27:33:da:b1:16:6a:1e:b6:75:c1:ea: 2e:4d:6a:7d:a3:8c:3a:80:9a:51:1e:19:13:ac:92: 5c:9a:25:3b:8b:33:e1:3c:08:d7:6a:05:a6:71:24: 13:3b:a7:0e:d9:63:ea:fc:55:7b:94:41:f6:b3:a6: 57:95:f2:2e:b4:a0:bb:c5:c1:76:f3:09:d1:ae:ad: 61:f1:f9:e7:71:1d:f5:07:dd:91:32:7b:ce:bd:6b: ac:78:87:a4:ff:70:ac:ec:52:28:3c:8d:91:41:2f: 80:f2:2c:c7:33:a8:f2:22:3f:9f:f2:aa:2a:20:2c: 32:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FE:AC:8B:C9:1A:67:AF:CF:86:A2:8A:8B:29:CE:D3:73:74:AC:D3 X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:02:1f:5a:de:99:6a:1a:6b:6d:c4:04:8f:f3:a1:de:71:70: ef:57:91:f9:a6:2a:77:e6:43:cc:f0:20:e4:10:51:eb:1e:35: 83:f6:dd:23:16:f0:67:61:1c:d7:d1:b5:7b:52:14:ce:e6:06: d9:fb:2b:08:e4:47:16:e6:22:b5:82:55:57:0a:28:3b:b3:69: fe:95:cc:8e:8f:20:f0:67:55:97:da:7a:0c:03:a8:de:52:ab: d4:cd:73:3e:c2:6d:b1:2a:c1:9b:83:00:52:b4:29:6a:6e:d2: c2:bb:ce:19:83:89:d6:b7:1d:63:d8:e6:c9:83:d0:b1:98:0e: f9:93:13:33:bc:aa:04:d0:d7:9c:96:45:fd:64:3f:9b:4c:e0: 8d:be:c0:40:9e:18:07:72:35:73:4a:9c:ac:43:a6:09:85:3c: 67:1a:2f:6e:95:80:ec:c2:07:3f:39:ff:58:29:95:77:ee:9c: 63:83:1b:e5:ee:a0:71:8d:0b:eb:15:28:c5:c5:a1:4c:91:15: fa:fe:62:5f:39:e3:c1:53:b3:d0:be:d1:63:87:f5:91:89:ae: 19:51:3d:5a:61:15:d0:55:ec:77:a3:49:66:9d:fb:4c:26:03: 0e:88:c1:aa:c1:0b:bc:b7:36:14:b3:f1:13:21:cd:0c:0a:0e: 2a:2a:f2:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUwNDI4MTYwNjM4WhcNMjUwNTA1MTYwNjM4WjAYMRYwFAYD VQQDEw02ODBmYTc4ZS03ZWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Qt/d5hZ+tyg/6S2+V5ncrI+3zPqfuaBURMdmMuG87rcLgWuf9mWfkURkXCD rA7zseaZi8FfUfbiaP080oP9/TVslrtxKOKsBzxG6+5cpaYxAB6cIGszC27m7rHa 97rWwaIBuAto2uhdTNKNAr5tG0WSYYjdP280QIKOAieTNKpBvAnwT1bh9kVZJzPa sRZqHrZ1weouTWp9o4w6gJpRHhkTrJJcmiU7izPhPAjXagWmcSQTO6cO2WPq/FV7 lEH2s6ZXlfIutKC7xcF28wnRrq1h8fnncR31B92RMnvOvWuseIek/3Cs7FIoPI2R QS+A8izHM6jyIj+f8qoqICwyxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDn+rIvJ Gmevz4aiiospztNzdKzTMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJAh9a3plqGmttxASP86HecXDvV5H5pip35kPM8CDkEFHrHjWD9t0j FvBnYRzX0bV7UhTO5gbZ+ysI5EcW5iK1glVXCig7s2n+lcyOjyDwZ1WX2noMA6je UqvUzXM+wm2xKsGbgwBStClqbtLCu84Zg4nWtx1j2ObJg9CxmA75kxMzvKoE0Nec lkX9ZD+bTOCNvsBAnhgHcjVzSpysQ6YJhTxnGi9ulYDswgc/Of9YKZV37pxjgxvl 7qBxjQvrFSjFxaFMkRX6/mJfOePBU7PQvtFjh/WRia4ZUT1aYRXQVex3o0lmnftM JgMOiMGqwQu8tzYUs/ETIc0MCg4qKvKw -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:07 2025 by rpki-client on console.sobornost.net