$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: hSTDADmjX/J9g/VE1jL0u5kk7BRV52EG+2wpf3+EJMw= Subject key identifier: 06:82:84:9B:79:FD:A3:3E:2F:59:F5:84:58:46:5C:EC:32:B9:77:4E Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 347F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 3479 Signing time: Mon 28 Apr 2025 15:03:31 +0000 Manifest this update: Mon 28 Apr 2025 15:03:30 +0000 Manifest next update: Mon 05 May 2025 15:03:30 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: 3gJdM6hM2uHSBZy7w8cFyiFR9r2o9ordQktVSxugohM=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: w/zPMK06vnyoVLL/BGNp77uAUStxaD44YXARWWRfkvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13439 (0x347f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905, serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: Apr 28 15:03:30 2025 GMT Not After : May 5 15:03:30 2025 GMT Subject: CN=680f98c3-4d00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:cc:34:52:ba:d2:7d:1d:e5:42:d0:ad:2a: cd:80:8a:5f:3a:0a:df:c1:7d:ed:d2:a2:f2:4a:05: 83:3f:e6:6b:c8:e4:a2:9b:1f:b7:ec:82:fb:64:76: c5:5e:d8:e2:5d:a3:fc:8d:10:09:65:bb:d6:65:3b: da:e2:73:66:22:cc:45:55:60:b5:de:d1:ef:c2:29: 5f:42:fc:b7:6b:8c:d6:4b:cd:47:c1:51:68:64:e9: 92:75:63:88:6d:4d:02:bb:91:9b:d3:14:12:32:b2: 25:9d:50:ab:30:a5:46:c3:64:2e:cc:93:83:77:96: 3b:6c:93:d1:84:30:68:bc:ec:df:60:c3:5a:db:89: 9c:37:fb:76:8b:70:45:6d:09:91:89:a4:5f:f9:3a: ac:60:12:85:c3:c8:7b:64:58:0a:b1:ec:26:5e:5f: 8a:01:a1:a1:e5:3f:02:65:62:05:96:1d:5e:26:37: 56:64:09:0b:ab:44:c0:c8:25:e4:d6:72:5f:14:49: 3a:9c:da:24:ba:ff:a8:1c:1e:30:fb:eb:9a:1a:6e: ff:75:e6:a6:4b:f1:4a:73:5a:eb:5a:f9:07:0b:8a: fa:84:28:eb:ab:74:60:50:a4:d9:90:c6:9b:3a:89: 19:de:20:93:1f:14:9e:50:28:ae:2e:9a:63:f5:d6: 07:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:82:84:9B:79:FD:A3:3E:2F:59:F5:84:58:46:5C:EC:32:B9:77:4E X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:55:cb:38:0d:84:17:ed:83:b7:66:77:a5:8c:ea:93:cb:55: b6:58:84:46:fc:6d:44:f5:fa:37:a6:49:e5:15:d0:22:8f:b0: 5c:98:20:e2:28:f9:ec:39:ad:c8:f5:7f:91:bb:6e:53:90:d8: 47:a4:b4:ae:ef:e3:5f:2a:2a:9e:52:3d:9c:58:29:36:ec:af: 95:41:3c:ea:42:5e:8c:35:82:e2:11:4e:bd:b0:6a:12:4d:32: 99:4a:72:4b:e2:0f:6d:56:6d:62:61:42:27:10:86:9f:f8:7c: db:05:2e:c9:0e:cb:10:52:6a:1a:05:ae:51:62:37:15:ea:aa: 35:d9:8e:0c:ed:3a:f4:5f:d3:4c:1e:c3:45:4c:8f:3b:5e:87: 6f:e5:53:30:6c:ec:2b:17:5d:44:fe:65:cb:3f:6c:c1:79:c0: 5b:65:dd:03:f7:69:8c:63:c8:56:fe:da:12:56:32:33:cb:e2: d4:9c:f1:2d:76:38:be:5a:51:70:4d:8a:80:ba:d6:1a:0e:77: 05:70:e2:60:8c:bc:9d:ef:0d:a2:c8:98:78:a5:e0:70:31:73: 4c:d4:bd:f4:a9:3a:78:6b:b2:48:1b:38:d9:df:09:43:ff:50: 37:33:c3:88:57:30:db:05:e5:96:3c:0e:a2:3f:b6:bc:5b:7f: c9:93:e7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjUwNDI4MTUwMzMwWhcNMjUwNTA1MTUwMzMwWjAYMRYwFAYD VQQDEw02ODBmOThjMy00ZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN/MNFK60n0d5ULQrSrNgIpfOgrfwX3t0qLySgWDP+ZryOSimx+37IL7ZHbF XtjiXaP8jRAJZbvWZTva4nNmIsxFVWC13tHvwilfQvy3a4zWS81HwVFoZOmSdWOI bU0Cu5Gb0xQSMrIlnVCrMKVGw2QuzJODd5Y7bJPRhDBovOzfYMNa24mcN/t2i3BF bQmRiaRf+TqsYBKFw8h7ZFgKsewmXl+KAaGh5T8CZWIFlh1eJjdWZAkLq0TAyCXk 1nJfFEk6nNokuv+oHB4w++uaGm7/deamS/FKc1rrWvkHC4r6hCjrq3RgUKTZkMab OokZ3iCTHxSeUCiuLppj9dYHEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaChJt5 /aM+L1n1hFhGXOwyuXdOMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSVcs4DYQX7YO3ZneljOqTy1W2WIRG/G1E9fo3pknlFdAij7BcmCDi KPnsOa3I9X+Ru25TkNhHpLSu7+NfKiqeUj2cWCk27K+VQTzqQl6MNYLiEU69sGoS TTKZSnJL4g9tVm1iYUInEIaf+HzbBS7JDssQUmoaBa5RYjcV6qo12Y4M7Tr0X9NM HsNFTI87Xodv5VMwbOwrF11E/mXLP2zBecBbZd0D92mMY8hW/toSVjIzy+LUnPEt dji+WlFwTYqAutYaDncFcOJgjLyd7w2iyJh4peBwMXNM1L30qTp4a7JIGzjZ3wlD /1A3M8OIVzDbBeWWPA6iP7a8W3/Jk+cl -----END CERTIFICATE-----Generated at Mon Apr 28 17:44:50 2025 by rpki-client on console.sobornost.net