$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft File: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft (raw, json) Hash identifier: 8jfqmd6bO9vjMPX3MqCst//yLNOSYQ/k6+T342bCXXM= Subject key identifier: 78:CC:9D:86:52:8D:3B:AB:16:38:CA:57:D2:38:8E:1A:5A:07:59:67 Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft Manifest number: 0C1D Signing time: Mon 28 Apr 2025 19:52:37 +0000 Manifest this update: Mon 28 Apr 2025 19:52:37 +0000 Manifest next update: Mon 05 May 2025 19:52:37 +0000 Files and hashes: 1: 1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl (hash: iG3Mt2FzPXFGNXHa7KkDJS9QRrWum7s374HQQMbu2IY=) 2: 751E90665BAB11EFB9769A80C4F9AE02.roa (hash: OjHAxH1Hw9gy0UQ2CMawY3+U2L8V8cVsXKI6o/DCSes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 19:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: Apr 28 19:52:37 2025 GMT Not After : May 5 19:52:37 2025 GMT Subject: CN=680fdc85-0cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:87:36:f4:e0:81:f4:64:1f:18:fe:0f:c9:6b: 37:fa:d5:1c:c0:11:55:25:a0:94:8d:8d:bb:93:cb: 90:a7:0c:7a:aa:01:35:f2:ad:4c:cc:a6:45:6a:94: 6d:e0:3d:34:21:94:61:89:8d:dc:a1:70:96:bf:58: 39:e2:2c:c5:98:fc:d5:8f:8e:75:6a:41:34:14:b6: 13:6d:73:56:43:89:ec:c1:89:d6:e4:92:81:6e:5e: de:7e:75:a7:f8:99:5b:b5:06:72:03:f2:dd:2d:51: 33:bf:e6:70:32:c1:4b:db:3c:90:66:6b:40:d2:70: 2f:8d:66:11:cc:59:7b:d4:0d:7e:47:c7:26:df:c8: e8:15:9e:b8:f9:0d:65:ab:a0:c0:71:ce:dc:c8:87: 96:4e:02:82:73:37:18:7f:8c:47:e2:7b:41:d9:db: f4:ff:b4:3f:77:41:4f:f4:c6:c0:8a:29:6f:7d:65: 35:2b:6d:ea:43:a5:9a:f1:ad:61:30:d7:04:0b:31: 4b:32:f5:a6:b4:28:4e:89:6d:47:3b:dc:3e:b2:8f: 0e:68:95:84:83:85:41:55:1d:a4:89:1d:14:dd:20: 6a:11:a4:12:f6:a7:f9:05:fd:a9:17:0f:ce:11:9d: 8f:02:88:44:c9:26:bf:a4:ff:74:38:d6:84:4c:0d: 84:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CC:9D:86:52:8D:3B:AB:16:38:CA:57:D2:38:8E:1A:5A:07:59:67 X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:a6:54:bd:f1:13:7e:b9:cf:37:e3:c0:a9:a8:81:b4:87:f8: 8f:60:1c:2c:79:76:78:95:a9:f6:53:4c:ac:9e:05:31:02:df: 50:f9:c0:bf:bf:c7:32:35:f9:e3:7d:24:23:ba:10:bc:69:d3: 41:c1:7d:41:d7:f6:48:1d:8b:cb:af:2c:d9:63:a6:9d:79:a2: c1:13:ea:de:19:80:cb:a4:01:9e:bc:f2:9a:29:78:6f:c2:7d: 73:de:bb:9e:d3:80:7f:ac:c2:0c:c7:8d:8b:18:8a:c6:ab:68: 1c:82:92:60:01:2c:f0:83:f7:23:1e:3a:21:b8:32:7e:63:f8: f8:4b:dd:d5:31:fb:26:80:8a:36:bf:24:b5:f9:fb:bb:8a:25: 57:79:52:b7:7c:c0:1c:f6:b8:43:b4:57:2c:75:7c:8f:8e:a5: 7f:ee:2f:ba:14:5b:8c:be:1e:60:82:88:a2:1b:d9:17:f7:60: 89:92:ab:ff:27:7d:bc:54:bb:87:33:0a:c1:43:0e:06:7a:8f: c4:7b:37:ad:c2:31:90:05:a1:12:24:dd:2e:6d:a9:12:c1:a6: 88:3b:5f:18:5e:19:e8:30:b4:5a:f4:be:1e:fd:0a:ba:a2:b8: fd:60:4e:1a:c8:d3:d1:1f:93:d4:ed:a4:1c:7c:1f:87:9c:b5: 9f:1c:12:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjUwNDI4MTk1MjM3WhcNMjUwNTA1MTk1MjM3WjAYMRYwFAYD VQQDEw02ODBmZGM4NS0wY2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYc29OCB9GQfGP4PyWs3+tUcwBFVJaCUjY27k8uQpwx6qgE18q1MzKZFapRt 4D00IZRhiY3coXCWv1g54izFmPzVj451akE0FLYTbXNWQ4nswYnW5JKBbl7efnWn +JlbtQZyA/LdLVEzv+ZwMsFL2zyQZmtA0nAvjWYRzFl71A1+R8cm38joFZ64+Q1l q6DAcc7cyIeWTgKCczcYf4xH4ntB2dv0/7Q/d0FP9MbAiilvfWU1K23qQ6Wa8a1h MNcECzFLMvWmtChOiW1HO9w+so8OaJWEg4VBVR2kiR0U3SBqEaQS9qf5Bf2pFw/O EZ2PAohEySa/pP90ONaETA2EJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjMnYZS jTurFjjKV9I4jhpaB1lnMB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVCNy83MUU3QTIyMjUxOTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3 ZDRteVE0cEk4aEhFTWNXQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXplS98RN+uc8348CpqIG0h/iPYBwseXZ4lan2U0ysngUxAt9Q+cC/ v8cyNfnjfSQjuhC8adNBwX1B1/ZIHYvLryzZY6adeaLBE+reGYDLpAGevPKaKXhv wn1z3rue04B/rMIMx42LGIrGq2gcgpJgASzwg/cjHjohuDJ+Y/j4S93VMfsmgIo2 vyS1+fu7iiVXeVK3fMAc9rhDtFcsdXyPjqV/7i+6FFuMvh5ggoiiG9kX92CJkqv/ J328VLuHMwrBQw4Geo/EezetwjGQBaESJN0ubakSwaaIO18YXhnoMLRa9L4e/Qq6 orj9YE4ayNPRH5PU7aQcfB+HnLWfHBJx -----END CERTIFICATE-----Generated at Mon Apr 28 23:04:54 2025 by rpki-client on console.sobornost.net