$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: Y3toOMyuNYAvwX1cp4XV/7PLF9eUiEWH2oL+W9HoJc0= Subject key identifier: 05:80:04:8A:AD:9B:F7:4E:2D:D3:87:04:E5:16:11:CF:5A:D2:CC:3A Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: 22 Signing time: Sun 27 Apr 2025 06:40:47 +0000 Manifest this update: Sun 27 Apr 2025 06:40:46 +0000 Manifest next update: Sun 04 May 2025 06:40:46 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: ebZLn384P27h6+FwIf4630fmXZhoFK66xI6aPO/nkUA=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Apr 27 06:40:46 2025 GMT Not After : May 4 06:40:46 2025 GMT Subject: CN=680dd16e-b9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:52:47:74:22:c3:52:33:2b:43:1f:ee:b7:cb: bb:8b:3c:0a:ed:4c:6f:13:47:f2:c2:4b:a3:b6:3b: fc:b6:93:5b:55:1a:f0:ba:e1:0f:23:02:bf:ba:4b: 3b:ed:72:81:9c:6e:ee:10:84:cf:80:04:56:ff:0a: d6:ae:f0:55:ff:a1:54:41:9b:8e:55:4c:64:29:b0: 78:09:dd:47:cc:ea:73:32:95:2c:62:2b:af:64:d3: e9:ff:af:0a:c5:34:c5:49:a6:bf:af:16:2f:7f:35: 49:16:35:18:9f:8d:67:16:e4:99:ef:32:18:d8:ed: 81:a4:88:b3:06:06:d5:39:33:27:42:38:eb:d3:ac: c4:65:47:cd:3e:49:55:e3:69:34:d7:3c:57:ab:f8: 5d:35:95:c2:a0:0c:11:10:3b:17:0b:10:04:8d:81: 92:7e:7e:61:c6:c3:92:c4:0e:c6:7a:ea:e7:43:d9: 3f:94:86:f2:26:bb:fa:2f:39:08:ad:1f:a9:26:5e: b7:6d:d3:b8:11:eb:fe:36:a9:83:d5:73:4f:5c:da: 96:6b:92:bf:62:a7:e9:47:f3:0d:70:05:2c:93:2f: 99:bf:13:b1:60:3a:72:69:d3:21:48:ac:0b:2b:f3: df:b8:bb:db:9f:53:51:b9:51:cc:b0:28:98:c8:ac: 36:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:80:04:8A:AD:9B:F7:4E:2D:D3:87:04:E5:16:11:CF:5A:D2:CC:3A X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:08:8b:0b:c9:93:5a:df:08:16:1b:4b:6b:ba:5b:a2:4e:d7: 7a:71:03:f5:c4:f5:23:00:de:71:a1:b7:8a:04:48:01:53:33: b7:5a:03:bd:43:d7:93:f7:c8:4e:2a:1d:f4:25:4b:7e:bc:d3: e2:ad:70:59:25:d0:dd:6f:4c:6b:d3:97:48:f3:d9:e0:b0:18: 7f:fe:e0:7d:c8:f1:68:b1:5b:6b:fd:7d:9c:46:27:66:c4:5e: f2:16:1b:42:f3:98:f1:5c:f3:b0:80:75:9b:a1:ed:53:3c:9e: 10:bc:e9:f7:f5:cd:b0:35:14:60:e4:b4:21:8e:1d:64:d8:39: 35:b9:e0:5b:66:da:1c:16:19:1e:12:11:14:2b:a3:3b:84:cb: 24:cb:11:ff:6c:c1:ff:73:13:ad:e0:3b:9e:5c:aa:45:1c:85: 37:b8:d3:62:af:26:96:9a:b6:2d:59:f6:32:1e:15:a0:dd:91: 9b:d9:ae:8a:77:69:cd:90:56:9e:12:5b:15:71:a5:1a:be:53: 89:e0:14:41:d3:79:18:54:6d:ed:87:43:ea:6c:50:66:a8:3a: 78:4f:24:26:ff:03:68:08:33:e0:1d:42:f3:86:1c:57:5f:97: ac:9e:22:e6:2d:ee:16:a3:f6:ac:15:f8:64:ac:d7:c5:44:83: 5d:e1:77:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Qzk4NTExMC8GA1UEBRMoMjlBREIzOUI2MjBFQUUzQ0I4QUZDQTJDQTE4NUY1QzQ4 NzZGRDA0MzAeFw0yNTA0MjcwNjQwNDZaFw0yNTA1MDQwNjQwNDZaMBgxFjAUBgNV BAMTDTY4MGRkMTZlLWI5ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBUkd0IsNSMytDH+63y7uLPArtTG8TR/LCS6O2O/y2k1tVGvC64Q8jAr+6Szvt coGcbu4QhM+ABFb/Ctau8FX/oVRBm45VTGQpsHgJ3UfM6nMylSxiK69k0+n/rwrF NMVJpr+vFi9/NUkWNRifjWcW5JnvMhjY7YGkiLMGBtU5MydCOOvTrMRlR80+SVXj aTTXPFer+F01lcKgDBEQOxcLEASNgZJ+fmHGw5LEDsZ66udD2T+UhvImu/ovOQit H6kmXrdt07gR6/42qYPVc09c2pZrkr9ip+lH8w1wBSyTL5m/E7FgOnJp0yFIrAsr 89+4u9ufU1G5UcywKJjIrDaDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBYAEiq2b 904t04cE5RYRz1rSzDowHwYDVR0jBBgwFoAUKa2zm2IOrjy4r8osoYX1xIdv0EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDOTg1LzY3M0FBMkY0RjVC NzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Eyem0ySU9yank0cjhvc29ZWDF4SWR2MEVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZD OTg1LzY3M0FBMkY0RjVCNzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5 NHI4b3NvWVgxeElkdjBFTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGUIiwvJk1rfCBYbS2u6W6JO13pxA/XE9SMA3nGht4oESAFTM7daA71D 15P3yE4qHfQlS3680+KtcFkl0N1vTGvTl0jz2eCwGH/+4H3I8WixW2v9fZxGJ2bE XvIWG0LzmPFc87CAdZuh7VM8nhC86ff1zbA1FGDktCGOHWTYOTW54Ftm2hwWGR4S ERQrozuEyyTLEf9swf9zE63gO55cqkUchTe402KvJpaati1Z9jIeFaDdkZvZrop3 ac2QVp4SWxVxpRq+U4ngFEHTeRhUbe2HQ+psUGaoOnhPJCb/A2gIM+AdQvOGHFdf l6yeIuYt7haj9qwV+GSs18VEg13hd88= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:19 2025 by rpki-client on console.sobornost.net