$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft File: HsyXilPvK-iOXyatm4q4g3PRl6Y.mft (raw, json) Hash identifier: mjN789G/b4ZvxDimEBiveyhXpO9naZ+F6YcushlJNfQ= Subject key identifier: 0A:AF:1D:84:3D:CD:55:23:2E:4F:4F:32:ED:25:F3:1C:80:57:31:D3 Authority key identifier: 1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 Certificate issuer: /CN=A9149F3E/serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Certificate serial: 347D Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft Manifest number: 347D Signing time: Sat 26 Apr 2025 14:21:42 +0000 Manifest this update: Sat 26 Apr 2025 14:21:41 +0000 Manifest next update: Sat 03 May 2025 14:21:41 +0000 Files and hashes: 1: HsyXilPvK-iOXyatm4q4g3PRl6Y.crl (hash: ii7Cc+pxTIQAhonEWQa5SLWaMF3vIAF9wLCnrz94Y+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13437 (0x347d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=1ECC978A53EF2BE88E5F26AD9B8AB88373D197A6 Validity Not Before: Apr 26 14:21:41 2025 GMT Not After : May 3 14:21:41 2025 GMT Subject: CN=680cebf6-43f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:52:1c:3f:9b:1e:0e:f4:a9:35:32:75:4d:89: f7:12:0a:4e:52:43:42:cd:ff:ca:5c:e0:09:d9:67: c6:59:4a:eb:25:d1:c5:e3:70:8a:70:a6:b6:69:18: 65:eb:6e:92:27:43:b0:1c:d6:23:c5:3b:eb:39:9e: a7:32:d7:52:6e:67:f0:5b:25:f3:07:df:1f:ce:79: d4:61:44:62:4f:56:ac:58:00:6e:6a:88:b0:a5:64: 93:2f:3c:cb:e6:ec:d1:88:40:2e:07:5e:71:48:8c: 45:ee:5b:da:d3:5f:86:19:e1:5d:ea:4a:b9:39:f5: 3d:1e:41:d9:76:8a:4b:6f:9e:ed:20:68:28:e5:f6: 67:c8:7a:a7:92:93:74:85:89:08:5f:68:b8:48:12: 01:44:17:8f:75:31:64:9e:bb:88:ff:ff:8b:f0:1b: 29:0e:6f:8f:6f:ba:0a:1f:a4:7c:f8:e8:f8:59:18: 7f:c2:0f:84:a9:d6:17:65:7e:ea:33:36:b2:d9:2d: 54:d9:e0:bc:66:5b:53:55:f1:94:99:75:11:a0:1e: a5:06:5c:a4:07:02:b6:8d:a0:0d:b7:84:82:c8:a3: 6b:f7:67:d2:3a:fb:f7:8d:b6:5a:9a:61:ef:77:3f: 96:4e:74:11:5e:b1:2d:38:96:92:b3:dd:63:94:2e: 3e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:AF:1D:84:3D:CD:55:23:2E:4F:4F:32:ED:25:F3:1C:80:57:31:D3 X509v3 Authority Key Identifier: keyid:1E:CC:97:8A:53:EF:2B:E8:8E:5F:26:AD:9B:8A:B8:83:73:D1:97:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/HsyXilPvK-iOXyatm4q4g3PRl6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/BFEB00081D8211E2BC6417D708B02CD2/HsyXilPvK-iOXyatm4q4g3PRl6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ea:5f:68:e7:12:0b:4c:10:7d:59:3d:82:68:db:5c:90:54: e6:7c:f8:9e:ed:3b:07:89:0a:7b:48:7c:b7:2e:48:fd:9d:40: 66:6f:3b:d1:6a:07:fb:1d:4b:f3:0b:f0:6f:53:3a:ab:58:e1: 89:1e:95:02:25:90:e2:15:b3:77:11:a5:5c:d5:e2:d0:82:86: 6c:a5:b4:bd:2c:da:a9:c9:4a:f4:0a:87:c2:19:b7:9d:9f:56: dd:ac:fd:58:04:b0:c8:fc:46:89:ed:5a:6d:6d:e8:d6:ce:45: 0d:2e:b7:c9:2f:d6:d2:1a:32:dd:39:42:65:89:17:de:7f:74: 78:33:c3:6b:67:28:14:88:01:54:8e:76:76:37:5d:98:a7:26: 20:5d:a4:20:03:a3:8d:a9:b4:3e:96:89:4b:c5:0b:c4:b3:87: 05:6d:fe:05:10:b5:b1:43:f2:1e:de:f6:28:8c:4f:0e:01:d6: b3:85:7a:0f:ba:e1:23:00:ca:7b:cc:db:86:dd:95:65:a5:b9: 54:a8:85:7a:08:fb:a7:94:5f:df:06:ea:e1:8c:4c:d7:95:cf: 93:4e:de:4f:d4:f6:a1:e4:b6:f7:ef:1d:87:22:3b:d6:2d:80: e9:bd:90:1b:e8:ee:fa:0b:a6:a9:da:be:cd:39:a9:58:90:58: 2a:2f:c2:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKDFFQ0M5NzhBNTNFRjJCRTg4RTVGMjZBRDlCOEFCODgz NzNEMTk3QTYwHhcNMjUwNDI2MTQyMTQxWhcNMjUwNTAzMTQyMTQxWjAYMRYwFAYD VQQDEw02ODBjZWJmNi00M2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlVIcP5seDvSpNTJ1TYn3EgpOUkNCzf/KXOAJ2WfGWUrrJdHF43CKcKa2aRhl 626SJ0OwHNYjxTvrOZ6nMtdSbmfwWyXzB98fznnUYURiT1asWABuaoiwpWSTLzzL 5uzRiEAuB15xSIxF7lva01+GGeFd6kq5OfU9HkHZdopLb57tIGgo5fZnyHqnkpN0 hYkIX2i4SBIBRBePdTFknruI//+L8BspDm+Pb7oKH6R8+Oj4WRh/wg+EqdYXZX7q Mzay2S1U2eC8ZltTVfGUmXURoB6lBlykBwK2jaANt4SCyKNr92fSOvv3jbZammHv dz+WTnQRXrEtOJaSs91jlC4+3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqvHYQ9 zVUjLk9PMu0l8xyAVzHTMB8GA1UdIwQYMBaAFB7Ml4pT7yvojl8mrZuKuINz0Zem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9CRkVCMDAwODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkstaU9YeWF0bTRxNGczUFJs NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0hzeVhpbFB2Sy1pT1h5YXRtNHE0ZzNQUmw2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUYzRS9CRkVCMDAwODFEODIxMUUyQkM2NDE3RDcwOEIwMkNEMi9Ic3lYaWxQdkst aU9YeWF0bTRxNGczUFJsNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA56l9o5xILTBB9WT2CaNtckFTmfPie7TsHiQp7SHy3Lkj9nUBmbzvR agf7HUvzC/BvUzqrWOGJHpUCJZDiFbN3EaVc1eLQgoZspbS9LNqpyUr0CofCGbed n1bdrP1YBLDI/EaJ7VptbejWzkUNLrfJL9bSGjLdOUJliRfef3R4M8NrZygUiAFU jnZ2N12YpyYgXaQgA6ONqbQ+lolLxQvEs4cFbf4FELWxQ/Ie3vYojE8OAdazhXoP uuEjAMp7zNuG3ZVlpblUqIV6CPunlF/fBurhjEzXlc+TTt5P1Pah5Lb37x2HIjvW LYDpvZAb6O76C6ap2r7NOalYkFgqL8KJ -----END CERTIFICATE-----Generated at Sat Apr 26 15:55:40 2025 by rpki-client on console.sobornost.net