$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: uU8GvLko5hyDKXlbU4fOxrdFVTTOWNz8V/gEP2Yia98= Subject key identifier: 78:0F:48:AB:AB:29:96:19:7A:88:6D:50:47:F5:E6:C5:A5:00:75:C2 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 16B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 1697 Signing time: Mon 28 Apr 2025 16:52:23 +0000 Manifest this update: Mon 28 Apr 2025 16:52:23 +0000 Manifest next update: Mon 05 May 2025 16:52:23 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: CMa4Rp2fLdQbQ80kW3qaicnNY4Dv939bVQvMUOtu7I4=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5808 (0x16b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Apr 28 16:52:23 2025 GMT Not After : May 5 16:52:23 2025 GMT Subject: CN=680fb247-411c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:b5:eb:49:17:31:d8:bc:d5:0c:5c:ab:21: 93:2e:da:17:46:f1:64:08:22:e7:86:0b:1f:de:fd: 16:6d:bc:eb:51:ad:7d:35:cf:84:46:69:3a:b3:dc: 59:d3:e2:49:dd:73:c5:12:34:ad:b6:7d:d6:95:c2: 3f:86:7b:ab:f8:10:ef:59:33:07:99:0d:25:da:84: b2:07:7d:e6:d5:02:e0:89:f6:0d:4a:1b:01:d2:93: 88:80:a7:fd:8e:e0:93:cd:9e:7e:48:7e:a6:7d:19: 3a:ad:49:b0:25:08:2c:44:71:d4:45:a4:2d:96:02: ab:1a:e9:22:9f:3a:2a:a2:a3:4e:7c:99:e6:79:e4: cb:d1:d2:9e:20:5c:e6:4a:52:5c:a4:ea:e3:38:8c: 34:2a:30:4d:d3:a1:48:4b:12:52:fb:54:3d:35:e0: 55:c4:50:15:30:ce:b6:e0:2b:26:9a:61:9a:bb:3d: 98:5d:a1:4d:a1:b8:dd:3e:8f:5d:f2:89:71:31:47: 52:50:7d:6e:fa:4f:ae:f3:27:c6:73:5a:02:9a:fe: 6b:4d:03:f1:6b:42:05:ac:15:83:92:86:dd:b9:6f: 74:1c:8c:0c:44:72:94:12:54:98:f2:e3:c5:eb:2c: d4:b7:8e:44:8d:8a:5d:53:83:36:a7:c0:29:15:4e: cc:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:0F:48:AB:AB:29:96:19:7A:88:6D:50:47:F5:E6:C5:A5:00:75:C2 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:42:7c:7d:8c:85:b6:ff:7c:9f:bd:b6:3c:9d:2d:40:10:7c: bf:c2:df:7c:0f:63:6d:66:6f:33:35:7f:94:d8:f3:fb:d4:7d: 0b:ff:57:c7:48:73:9c:83:13:ec:16:eb:a0:8f:45:8b:08:97: cb:d9:5e:62:92:be:d1:a3:11:cd:de:de:f5:82:22:90:92:12: a8:e4:d6:09:e0:a3:57:13:db:0a:22:2e:6f:bc:e6:23:c6:78: 65:59:dc:7e:bc:73:ca:a7:44:d1:f1:a3:22:a4:3e:f0:f6:1f: b8:45:4f:da:16:99:1e:e7:c9:65:49:12:89:3f:cd:c9:57:26: 32:65:99:f9:b3:9a:2a:d4:ae:b5:29:a2:8f:19:11:ef:d2:c9: 89:1e:64:a5:e8:4c:4d:c2:e7:ee:f3:c4:39:91:c2:f1:7c:25: d2:84:ad:bf:de:cb:7f:b6:77:2b:7a:3b:54:38:09:d7:3f:bf: 76:6a:2b:fb:12:fe:04:e2:eb:93:b9:a4:2c:7c:52:92:d1:7e: 3d:21:d8:a4:26:40:ee:31:d5:3e:68:6f:de:dd:19:1b:87:cb: c7:26:3a:91:9b:21:aa:c8:e7:1a:5d:8b:9d:98:db:26:38:46: 33:34:4a:ff:4f:b7:42:73:05:1c:aa:76:4b:1d:d5:c3:2d:e5: 85:76:94:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUwNDI4MTY1MjIzWhcNMjUwNTA1MTY1MjIzWjAYMRYwFAYD VQQDEw02ODBmYjI0Ny00MTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjy160kXMdi81QxcqyGTLtoXRvFkCCLnhgsf3v0WbbzrUa19Nc+ERmk6s9xZ 0+JJ3XPFEjSttn3WlcI/hnur+BDvWTMHmQ0l2oSyB33m1QLgifYNShsB0pOIgKf9 juCTzZ5+SH6mfRk6rUmwJQgsRHHURaQtlgKrGukinzoqoqNOfJnmeeTL0dKeIFzm SlJcpOrjOIw0KjBN06FISxJS+1Q9NeBVxFAVMM624CsmmmGauz2YXaFNobjdPo9d 8olxMUdSUH1u+k+u8yfGc1oCmv5rTQPxa0IFrBWDkobduW90HIwMRHKUElSY8uPF 6yzUt45EjYpdU4M2p8ApFU7MqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgPSKur KZYZeohtUEf15sWlAHXCMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmQnx9jIW2/3yfvbY8nS1AEHy/wt98D2NtZm8zNX+U2PP71H0L/1fH SHOcgxPsFuugj0WLCJfL2V5ikr7RoxHN3t71giKQkhKo5NYJ4KNXE9sKIi5vvOYj xnhlWdx+vHPKp0TR8aMipD7w9h+4RU/aFpke58llSRKJP83JVyYyZZn5s5oq1K61 KaKPGRHv0smJHmSl6ExNwufu88Q5kcLxfCXShK2/3st/tncrejtUOAnXP792aiv7 Ev4E4uuTuaQsfFKS0X49IdikJkDuMdU+aG/e3Rkbh8vHJjqRmyGqyOcaXYudmNsm OEYzNEr/T7dCcwUcqnZLHdXDLeWFdpT/ -----END CERTIFICATE-----Generated at Mon Apr 28 20:11:17 2025 by rpki-client on console.sobornost.net