$ rpki-client -vvf rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft File: YfjH66e1XnGy5rF3QJFCUdiM8KY.mft (raw, json) Hash identifier: 9UrE6nGm6OuUUrkhxyX6Fbypy/OXzRXxz+VgBUv/ybU= Subject key identifier: 03:99:AA:43:39:F1:43:26:B9:20:6C:83:B8:78:09:67:AB:3F:C1:FF Authority key identifier: 61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 Certificate issuer: /CN=A9158491/serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft Manifest number: 3B Signing time: Sun 27 Apr 2025 06:30:10 +0000 Manifest this update: Sun 27 Apr 2025 06:30:09 +0000 Manifest next update: Sun 04 May 2025 06:30:09 +0000 Files and hashes: 1: YfjH66e1XnGy5rF3QJFCUdiM8KY.crl (hash: 4U6BLmxatFluoB8DTFKPw+56GBF4F4egMU2bz3IPvkc=) 2: 5FDDEE1CE34211EF8EA0CA77C4F9AE02.roa (hash: U1IGaFhELlQWY/Ln876qk8JzJ3sNkyrrUJbwE+5NxYc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158491, serialNumber=61F8C7EBA7B55E71B2E6B17740914251D88CF0A6 Validity Not Before: Apr 27 06:30:09 2025 GMT Not After : May 4 06:30:09 2025 GMT Subject: CN=680dcef1-adcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9b:25:6d:5b:37:6f:7b:b9:c7:f5:d0:54:a5: 05:0b:8d:e1:77:68:2c:89:af:0b:66:61:a8:dc:f9: 15:15:93:ce:c5:40:10:fd:29:2b:34:20:c4:7a:11: f4:30:d0:68:9c:9b:8a:64:20:17:71:4e:94:6f:43: 4e:19:42:7b:e7:89:48:58:6b:20:00:b8:1e:4b:53: 42:7b:e6:a1:e0:23:4d:3c:81:9b:bc:44:33:5c:af: 46:9b:f5:46:ae:70:0c:31:20:51:fa:b5:62:40:da: 25:02:a5:70:79:e8:e8:82:6e:8f:8b:9f:4c:df:03: a3:d3:fc:bf:2b:c2:5e:00:a1:e3:d1:b9:d2:93:de: 3b:5d:38:42:fc:5b:e8:b4:b5:57:a8:95:8c:35:5b: df:4f:53:73:94:80:43:33:fc:9b:0a:5a:93:18:be: b3:55:9a:dc:ea:2a:f8:48:a4:60:8e:cf:67:ad:22: ee:56:77:9c:3e:a1:94:ea:a9:f2:63:d4:26:c7:b4: fd:bc:0f:a6:9d:6a:5a:79:a7:8f:83:29:ac:49:e9: b4:2a:f3:4b:28:65:af:02:83:7c:bf:0d:7c:c9:a6: 57:ea:b3:a2:0c:44:4a:a1:cb:a2:9f:f7:73:49:66: a3:a7:7b:bb:26:b7:c0:b5:ca:bd:64:4c:4b:76:03: 08:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:99:AA:43:39:F1:43:26:B9:20:6C:83:B8:78:09:67:AB:3F:C1:FF X509v3 Authority Key Identifier: keyid:61:F8:C7:EB:A7:B5:5E:71:B2:E6:B1:77:40:91:42:51:D8:8C:F0:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YfjH66e1XnGy5rF3QJFCUdiM8KY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158491/60DA53FADFA511EF8BD49F87C4F9AE02/YfjH66e1XnGy5rF3QJFCUdiM8KY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:cd:e2:c3:3b:49:8d:f0:5f:73:b0:ae:3b:7a:56:3e:eb:eb: c7:0c:07:c9:95:74:79:ef:05:83:b3:ca:89:c7:a2:b6:15:4a: 8f:c9:f0:91:f4:44:ad:fa:a7:c5:9b:84:9d:76:bf:95:27:be: ae:ed:03:32:23:6b:04:ce:02:94:44:b7:d3:68:9c:26:bc:04: db:89:aa:c0:c3:22:36:28:63:3a:36:76:84:ae:d9:14:0b:a0: e5:7d:0c:ea:a6:30:e7:23:b2:86:e1:6e:47:fa:cd:7e:36:8f: 6c:02:de:aa:f7:4e:f2:01:21:e5:94:1c:71:ed:c7:85:e9:d3: 1c:13:54:d2:e3:93:08:39:67:ba:44:e1:79:ad:75:74:56:62: 6d:f6:a5:15:b9:13:41:97:4f:a8:e3:d4:bb:88:27:d0:b1:34: ab:58:d9:31:43:a6:b4:6a:cc:97:da:4d:f4:37:fa:2d:3f:cb: be:9d:86:bd:24:9e:b9:76:39:20:df:45:93:bf:01:8c:c3:59: 3e:d9:2c:72:4d:80:a4:58:17:19:3d:7b:d6:52:11:3b:7a:3a: 1f:39:0c:18:26:0a:0f:24:99:43:50:75:33:c0:27:d5:29:52: 61:ab:eb:92:9f:17:66:23:18:ea:61:6d:7b:93:14:15:e9:e7: b6:b9:82:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODQ5MTExMC8GA1UEBRMoNjFGOEM3RUJBN0I1NUU3MUIyRTZCMTc3NDA5MTQyNTFE ODhDRjBBNjAeFw0yNTA0MjcwNjMwMDlaFw0yNTA1MDQwNjMwMDlaMBgxFjAUBgNV BAMTDTY4MGRjZWYxLWFkY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkmyVtWzdve7nH9dBUpQULjeF3aCyJrwtmYajc+RUVk87FQBD9KSs0IMR6EfQw 0Gicm4pkIBdxTpRvQ04ZQnvniUhYayAAuB5LU0J75qHgI008gZu8RDNcr0ab9Uau cAwxIFH6tWJA2iUCpXB56OiCbo+Ln0zfA6PT/L8rwl4AoePRudKT3jtdOEL8W+i0 tVeolYw1W99PU3OUgEMz/JsKWpMYvrNVmtzqKvhIpGCOz2etIu5Wd5w+oZTqqfJj 1CbHtP28D6adalp5p4+DKaxJ6bQq80soZa8Cg3y/DXzJplfqs6IMREqhy6Kf93NJ ZqOne7smt8C1yr1kTEt2AwhNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA5mqQznx Qya5IGyDuHgJZ6s/wf8wHwYDVR0jBBgwFoAUYfjH66e1XnGy5rF3QJFCUdiM8KYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NDkxLzYwREE1M0ZBREZB NTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5HeTVyRjNRSkZDVWRpTThL WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWZqSDY2ZTFYbkd5NXJGM1FKRkNVZGlNOEtZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 NDkxLzYwREE1M0ZBREZBNTExRUY4QkQ0OUY4N0M0RjlBRTAyL1lmakg2NmUxWG5H eTVyRjNRSkZDVWRpTThLWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJnN4sM7SY3wX3Owrjt6Vj7r68cMB8mVdHnvBYOzyonHorYVSo/J8JH0 RK36p8WbhJ12v5Unvq7tAzIjawTOApREt9NonCa8BNuJqsDDIjYoYzo2doSu2RQL oOV9DOqmMOcjsobhbkf6zX42j2wC3qr3TvIBIeWUHHHtx4Xp0xwTVNLjkwg5Z7pE 4XmtdXRWYm32pRW5E0GXT6jj1LuIJ9CxNKtY2TFDprRqzJfaTfQ3+i0/y76dhr0k nrl2OSDfRZO/AYzDWT7ZLHJNgKRYFxk9e9ZSETt6Oh85DBgmCg8kmUNQdTPAJ9Up UmGr65KfF2YjGOphbXuTFBXp57a5gvw= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:47 2025 by rpki-client on console.sobornost.net