$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft File: RYBbVYDVFRl9GmFa1myLnUhU9eo.mft (raw, json) Hash identifier: Sy2o3vbE6LqoEK3sU1VBcLsLg8wRjXN4lHaK7V4uTuU= Subject key identifier: 08:1F:7F:77:D8:C2:E6:AD:79:C9:9C:95:0F:67:5D:27:D8:43:68:7F Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 17D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft Manifest number: 17CB Signing time: Sat 26 Apr 2025 16:31:27 +0000 Manifest this update: Sat 26 Apr 2025 16:31:26 +0000 Manifest next update: Sat 03 May 2025 16:31:26 +0000 Files and hashes: 1: RYBbVYDVFRl9GmFa1myLnUhU9eo.crl (hash: j/pZXwsxDeBFU9hBlYHAlMK/NafvvaHliqP0ZiQ6o+c=) 2: 94A1F97A369711EA866E381CC4F9AE02.roa (hash: KWbJbgpGfDdYPVO+KIuyWusqQxr6PU0FBc6ESlEd+IQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6100 (0x17d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7, serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Apr 26 16:31:26 2025 GMT Not After : May 3 16:31:26 2025 GMT Subject: CN=680d0a5f-47f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:1d:0a:17:eb:34:93:6e:87:ca:f8:bd:04: fe:6b:ea:3d:0b:22:ae:0b:9e:e8:8a:b6:21:fa:d3: 9c:e8:84:58:9a:86:6c:db:f6:9e:19:4b:e5:4f:e4: df:fe:11:05:a7:c1:b5:42:4d:f4:7e:2b:7e:81:74: 74:4b:52:ac:a1:fb:87:65:9a:63:6d:de:9d:a1:4e: 28:b3:61:86:5e:56:30:f4:0a:65:49:3b:f3:46:28: db:9e:81:e9:b1:7f:8d:0c:ff:5f:9d:c7:a1:df:fc: e1:01:7d:90:32:44:07:2c:20:71:0b:b6:48:fd:f9: 3f:be:5c:78:4d:91:4b:19:31:45:db:20:b0:c9:d0: f8:23:bd:de:c9:4b:ad:07:cd:3f:9c:01:b5:10:68: 69:b5:14:de:80:92:69:4d:f5:94:c9:e8:4e:71:d6: 1e:da:2e:a0:78:2c:fc:34:20:95:9b:b8:74:7e:b3: d6:0a:75:58:a3:5c:87:05:b4:b4:a5:af:d9:1a:87: e5:f4:97:e0:1e:87:37:67:db:a2:4d:03:67:66:bc: 9a:f8:19:ae:1a:bd:e6:7a:48:41:02:44:9a:b6:41: 4e:92:b1:33:dd:0a:71:d8:4d:cf:94:d4:5a:d7:ef: 09:94:a9:80:9c:8e:30:a7:3f:42:77:23:e0:ec:3f: b7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:1F:7F:77:D8:C2:E6:AD:79:C9:9C:95:0F:67:5D:27:D8:43:68:7F X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:59:b8:5f:2c:58:3a:58:eb:74:19:c4:c6:4b:ab:48:69:f4: 4c:4e:fa:1c:b2:a2:b3:c2:20:b8:42:e5:c7:af:83:6e:ea:ea: 9b:67:43:c1:32:12:e3:fe:47:4a:4c:1f:73:e1:cd:39:81:46: fd:03:22:9d:0d:67:39:41:a5:53:c7:b6:89:42:d1:c4:6a:22: 90:bd:a3:01:4d:af:95:8e:0c:2e:76:c2:d1:f4:63:30:c9:a4: 65:2d:63:17:93:81:6f:2f:61:b0:61:e7:96:ba:6b:68:60:af: ff:17:9c:c2:1a:48:de:e7:42:55:0d:64:b2:38:ef:27:44:dc: 6a:5a:ef:98:ce:fb:46:60:2a:bf:bb:ba:df:97:f3:a3:18:ef: c6:98:83:52:6a:87:04:81:b7:5a:ee:9d:04:68:0f:c0:1c:3b: 31:4e:9d:84:fc:95:07:13:52:89:7d:d0:ef:93:f6:73:c8:ae: a0:db:c9:71:37:d5:92:45:5e:5f:fa:da:2e:b0:4b:1d:57:ef: a3:43:08:8e:83:8e:ba:4a:fd:49:0a:26:8a:9f:36:f7:18:0f: 4d:57:68:d8:cc:d5:27:98:5c:4d:02:48:15:e1:c0:22:63:05: bf:1d:ef:c6:68:7e:d3:d1:35:26:f6:74:b3:6e:9b:63:c4:f6: 6f:69:1c:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjUwNDI2MTYzMTI2WhcNMjUwNTAzMTYzMTI2WjAYMRYwFAYD VQQDEw02ODBkMGE1Zi00N2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvy8dChfrNJNuh8r4vQT+a+o9CyKuC57oirYh+tOc6IRYmoZs2/aeGUvlT+Tf /hEFp8G1Qk30fit+gXR0S1KsofuHZZpjbd6doU4os2GGXlYw9AplSTvzRijbnoHp sX+NDP9fnceh3/zhAX2QMkQHLCBxC7ZI/fk/vlx4TZFLGTFF2yCwydD4I73eyUut B80/nAG1EGhptRTegJJpTfWUyehOcdYe2i6geCz8NCCVm7h0frPWCnVYo1yHBbS0 pa/ZGofl9JfgHoc3Z9uiTQNnZrya+BmuGr3mekhBAkSatkFOkrEz3Qpx2E3PlNRa 1+8JlKmAnI4wpz9CdyPg7D+3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgff3fY wuatecmclQ9nXSfYQ2h/MB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODlFNy9GOEZGMTUyMkJERkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZS bDlHbUZhMW15TG5VaFU5ZW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1WbhfLFg6WOt0GcTGS6tIafRMTvocsqKzwiC4QuXHr4Nu6uqbZ0PB MhLj/kdKTB9z4c05gUb9AyKdDWc5QaVTx7aJQtHEaiKQvaMBTa+VjgwudsLR9GMw yaRlLWMXk4FvL2GwYeeWumtoYK//F5zCGkje50JVDWSyOO8nRNxqWu+YzvtGYCq/ u7rfl/OjGO/GmINSaocEgbda7p0EaA/AHDsxTp2E/JUHE1KJfdDvk/ZzyK6g28lx N9WSRV5f+tousEsdV++jQwiOg466Sv1JCiaKnzb3GA9NV2jYzNUnmFxNAkgV4cAi YwW/He/GaH7T0TUm9nSzbptjxPZvaRyF -----END CERTIFICATE-----Generated at Sat Apr 26 18:19:41 2025 by rpki-client on console.sobornost.net