$ rpki-client -vvf rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft File: yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft (raw, json) Hash identifier: crjGMCBss/d0A2b7WmO+GjD0tL6k6n+oYQwyEyRCg5I= Subject key identifier: FB:72:B2:DC:B6:70:27:35:0B:57:B1:43:21:70:3A:E8:09:27:EE:BC Authority key identifier: C8:77:CD:F2:2D:25:B6:E3:3F:C5:E4:95:BE:55:E5:9D:0A:94:98:7E Certificate issuer: /CN=A9147B4B/serialNumber=C877CDF22D25B6E33FC5E495BE55E59D0A94987E Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft Manifest number: 39 Signing time: Sun 27 Apr 2025 06:22:07 +0000 Manifest this update: Sun 27 Apr 2025 06:22:07 +0000 Manifest next update: Sun 04 May 2025 06:22:07 +0000 Files and hashes: 1: yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl (hash: 6ZVHfYUmF2lUE7XFRwrx41TyZPYZkvzbHrr9x2Sv2Zw=) 2: C4B41888CF3911EFBA26F564C4F9AE02.roa (hash: PeoexpeZuhtxvOaSUXuGABP7Es0mdREYJbAZJzL28uQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147B4B, serialNumber=C877CDF22D25B6E33FC5E495BE55E59D0A94987E Validity Not Before: Apr 27 06:22:07 2025 GMT Not After : May 4 06:22:07 2025 GMT Subject: CN=680dcd0f-75d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4a:b1:5b:b0:02:da:ee:4a:ec:25:38:5e:47: 76:ef:5d:3c:0d:2f:a5:01:fc:ba:a5:31:bc:fa:65: aa:21:64:a6:b4:d2:a0:2a:15:0a:62:cb:73:ab:10: bd:8f:be:2b:35:ed:d1:93:47:90:2d:15:7c:ce:c9: 2a:09:cd:b3:57:8a:12:e0:da:b9:9f:18:b7:e9:d4: 4a:9d:26:b7:b4:45:04:da:3b:c3:2f:2f:25:a4:72: 3f:aa:09:30:44:3a:c9:c1:36:d1:a7:1b:aa:da:ae: 8f:1c:89:c2:08:3e:f9:46:26:20:5f:29:41:8c:31: ee:74:e4:31:eb:a4:4e:2b:b9:e8:96:fc:14:8f:65: d7:b2:7a:c0:09:66:67:62:e5:46:bf:09:17:69:ed: 14:fc:66:d7:28:f9:fa:03:d1:57:14:94:0a:c4:62: 54:84:2f:96:f9:44:cf:6b:f5:6f:ac:4a:fc:75:e9: d7:de:e0:ca:d7:56:4d:41:65:c9:94:bc:32:09:be: de:07:33:3c:7f:5b:5a:f9:7e:83:98:f0:d0:0a:c9: 57:49:0d:8e:41:1f:ea:e4:fb:af:6a:c1:07:92:01: 6f:9d:0c:c5:62:78:e3:df:86:5c:54:6a:61:7a:67: 0a:b0:93:2e:b4:23:34:cf:6c:be:f6:ea:6a:07:98: 4c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:72:B2:DC:B6:70:27:35:0B:57:B1:43:21:70:3A:E8:09:27:EE:BC X509v3 Authority Key Identifier: keyid:C8:77:CD:F2:2D:25:B6:E3:3F:C5:E4:95:BE:55:E5:9D:0A:94:98:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yHfN8i0ltuM_xeSVvlXlnQqUmH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147B4B/E156A04CCF3811EF8484E92FC4F9AE02/yHfN8i0ltuM_xeSVvlXlnQqUmH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:31:1f:bb:c6:6b:64:02:01:71:72:e3:69:09:b9:59:27:b7: cd:9c:dd:90:a4:4e:a9:e2:26:e4:20:3a:ba:2e:f5:00:38:df: 1b:61:97:29:fd:f4:83:ab:24:2f:c1:50:fb:aa:4c:5a:67:29: 8a:94:76:0e:91:d0:48:80:ba:12:6d:7f:b0:e5:66:c1:da:80: 06:79:c0:4e:79:d9:13:b2:0e:d5:2e:82:67:d2:cf:c7:d8:ac: 9c:22:e2:df:32:d6:48:7e:d3:25:6a:86:a0:27:62:f1:86:fd: ca:df:b9:68:33:fe:79:02:09:aa:64:9c:2c:3b:0e:f4:80:ed: 24:ae:fb:cb:f3:4d:87:2a:5f:bc:b1:49:ce:23:92:94:b2:43: 6d:5a:20:e7:35:0b:36:f2:4b:1d:5f:56:4a:54:84:b7:5f:ba: d6:38:dd:45:c8:10:33:4a:fe:57:08:90:f9:90:e2:4d:c5:d1: 9c:62:7d:e3:6c:af:6e:39:2a:b5:49:69:0d:f0:3e:c1:5b:98: c7:4d:c2:8d:72:60:ea:91:9a:e2:6e:b7:23:03:ed:10:d6:a4: 97:66:4f:bd:25:7f:ff:0f:3c:e7:af:31:43:e1:1d:df:bd:a2: 0a:f8:50:d9:5b:99:61:da:87:ed:af:be:66:8f:23:5b:0f:63: ce:8c:71:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0I0QjExMC8GA1UEBRMoQzg3N0NERjIyRDI1QjZFMzNGQzVFNDk1QkU1NUU1OUQw QTk0OTg3RTAeFw0yNTA0MjcwNjIyMDdaFw0yNTA1MDQwNjIyMDdaMBgxFjAUBgNV BAMTDTY4MGRjZDBmLTc1ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjSrFbsALa7krsJTheR3bvXTwNL6UB/LqlMbz6ZaohZKa00qAqFQpiy3OrEL2P vis17dGTR5AtFXzOySoJzbNXihLg2rmfGLfp1EqdJre0RQTaO8MvLyWkcj+qCTBE OsnBNtGnG6raro8cicIIPvlGJiBfKUGMMe505DHrpE4rueiW/BSPZdeyesAJZmdi 5Ua/CRdp7RT8Ztco+foD0VcUlArEYlSEL5b5RM9r9W+sSvx16dfe4MrXVk1BZcmU vDIJvt4HMzx/W1r5foOY8NAKyVdJDY5BH+rk+69qwQeSAW+dDMVieOPfhlxUamF6 Zwqwky60IzTPbL726moHmEx3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+3Ky3LZw JzULV7FDIXA66Akn7rwwHwYDVR0jBBgwFoAUyHfN8i0ltuM/xeSVvlXlnQqUmH4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3QjRCL0UxNTZBMDRDQ0Yz ODExRUY4NDg0RTkyRkM0RjlBRTAyL3lIZk44aTBsdHVNX3hlU1Z2bFhsblFxVW1I NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUhmTjhpMGx0dU1feGVTVnZsWGxuUXFVbUg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 QjRCL0UxNTZBMDRDQ0YzODExRUY4NDg0RTkyRkM0RjlBRTAyL3lIZk44aTBsdHVN X3hlU1Z2bFhsblFxVW1INC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI8xH7vGa2QCAXFy42kJuVknt82c3ZCkTqniJuQgOrou9QA43xthlyn9 9IOrJC/BUPuqTFpnKYqUdg6R0EiAuhJtf7DlZsHagAZ5wE552ROyDtUugmfSz8fY rJwi4t8y1kh+0yVqhqAnYvGG/crfuWgz/nkCCapknCw7DvSA7SSu+8vzTYcqX7yx Sc4jkpSyQ21aIOc1CzbySx1fVkpUhLdfutY43UXIEDNK/lcIkPmQ4k3F0ZxifeNs r245KrVJaQ3wPsFbmMdNwo1yYOqRmuJutyMD7RDWpJdmT70lf/8PPOevMUPhHd+9 ogr4UNlbmWHah+2vvmaPI1sPY86Mcfk= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:43 2025 by rpki-client on console.sobornost.net