$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft File: vY9TgeGI5FgPskcsJxoFQp4tXCI.mft (raw, json) Hash identifier: 1u3v6F0SaNKJTFZcmSamz9w+EEhuoCr6fuB9weFcGqU= Subject key identifier: CA:B6:03:C2:72:79:AC:B1:1A:D9:B2:44:E5:55:8B:06:97:12:5E:1E Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1AEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft Manifest number: 1AE1 Signing time: Mon 28 Apr 2025 16:24:32 +0000 Manifest this update: Mon 28 Apr 2025 16:24:32 +0000 Manifest next update: Mon 05 May 2025 16:24:32 +0000 Files and hashes: 1: vY9TgeGI5FgPskcsJxoFQp4tXCI.crl (hash: jEN4YI4SzY2VE25rLj8NgIudgK3b03Q68RPZqc1YZ7A=) 2: 59029A32233A11E78D48837AC4F9AE02.roa (hash: fZ4rzQw+k1I7EBhPTcblakdeeuKhaVvBsWtldnvXI0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 16:24:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6891 (0x1aeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: Apr 28 16:24:32 2025 GMT Not After : May 5 16:24:32 2025 GMT Subject: CN=680fabc0-95e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fb:cf:9c:d8:23:9f:6f:15:58:8b:34:b2:3c: ca:a9:01:91:d7:cf:5b:78:02:1b:d0:c5:fd:07:55: f2:46:8b:2e:25:ee:e4:f4:ea:b1:2f:5f:b8:f5:99: ed:44:16:c3:27:af:96:87:12:5e:fe:bc:b1:9b:63: 27:39:62:d2:4c:b2:a6:c3:01:ad:c3:df:c0:ff:e7: 3d:47:5a:61:1c:9e:17:b1:52:75:10:58:85:c7:d5: e4:a7:13:3c:ae:8a:81:62:fa:82:6d:26:da:d5:bc: f6:af:52:75:68:48:15:56:89:85:54:35:22:d1:9d: 9d:8c:45:af:01:d2:84:cf:c0:a4:05:77:eb:06:b7: 09:2c:81:9c:53:2f:87:6d:17:61:db:cd:da:89:a4: bb:94:65:2a:27:df:b5:70:06:7e:9c:74:ef:59:86: ac:5b:b6:bf:b3:93:45:e9:0d:91:20:47:3d:65:7d: d7:0c:3f:82:bb:7b:cc:1f:ce:dd:3d:76:98:58:3b: 4c:bc:61:18:2d:2e:f6:a3:c3:9f:19:80:2d:3f:21: f1:01:32:2d:ff:8a:18:64:32:9d:15:73:4d:89:25: 66:92:de:f9:e4:46:51:a5:15:98:fc:24:05:1b:db: b2:33:e1:1b:ca:cd:2c:c3:5f:56:4a:01:8c:d6:cc: 34:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B6:03:C2:72:79:AC:B1:1A:D9:B2:44:E5:55:8B:06:97:12:5E:1E X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:7f:f7:95:9c:85:28:49:1b:2e:ea:64:0a:1f:db:82:92:70: 50:1c:a3:0d:8b:a6:a4:c0:7b:26:8e:d3:c9:87:e7:da:ad:58: cc:5d:d3:8e:48:7e:19:21:27:c7:ea:8e:9f:5c:8f:a5:2b:8e: 72:b9:4a:25:e8:72:5e:cc:96:b5:04:2f:e8:91:a3:fa:ca:c7: e0:95:30:3f:1a:0f:c6:28:d5:62:5b:7e:71:f2:11:0c:84:04: d8:c5:20:4a:19:02:33:42:49:ba:ff:87:95:62:6e:5e:e6:13: f8:60:67:56:04:85:d3:c0:a8:bd:00:0e:26:71:12:3a:3a:58: 4c:9b:0a:a4:a7:d3:f3:41:e8:e6:30:98:1a:26:74:8d:ab:84: b2:50:7b:3c:f8:da:be:72:2a:c3:e4:0b:b3:2d:3d:9a:42:23: 14:a0:c8:aa:c1:cc:73:74:83:ba:34:2b:50:2c:f4:78:b1:32: b1:48:89:b4:59:9e:b3:ca:91:5e:da:73:34:f1:7b:a5:60:3b: 56:ce:2e:41:e9:4d:d7:e8:a3:83:36:4d:45:45:0a:ae:ce:87: ca:49:b2:41:ac:42:f0:ce:41:fd:c8:3c:5c:fe:1b:b6:61:a4: 77:af:1f:45:b2:70:d4:21:4c:2f:9e:ac:ff:da:64:48:47:db: ef:34:fd:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUwNDI4MTYyNDMyWhcNMjUwNTA1MTYyNDMyWjAYMRYwFAYD VQQDEw02ODBmYWJjMC05NWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPvPnNgjn28VWIs0sjzKqQGR189beAIb0MX9B1XyRosuJe7k9OqxL1+49Znt RBbDJ6+WhxJe/ryxm2MnOWLSTLKmwwGtw9/A/+c9R1phHJ4XsVJ1EFiFx9XkpxM8 roqBYvqCbSba1bz2r1J1aEgVVomFVDUi0Z2djEWvAdKEz8CkBXfrBrcJLIGcUy+H bRdh283aiaS7lGUqJ9+1cAZ+nHTvWYasW7a/s5NF6Q2RIEc9ZX3XDD+Cu3vMH87d PXaYWDtMvGEYLS72o8OfGYAtPyHxATIt/4oYZDKdFXNNiSVmkt755EZRpRWY/CQF G9uyM+Ebys0sw19WSgGM1sw0xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq2A8Jy eayxGtmyROVViwaXEl4eMB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDY2RC8xRUIwOTI1NDIzMzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVG Z1Bza2NzSnhvRlFwNHRYQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLf/eVnIUoSRsu6mQKH9uCknBQHKMNi6akwHsmjtPJh+farVjMXdOO SH4ZISfH6o6fXI+lK45yuUol6HJezJa1BC/okaP6ysfglTA/Gg/GKNViW35x8hEM hATYxSBKGQIzQkm6/4eVYm5e5hP4YGdWBIXTwKi9AA4mcRI6OlhMmwqkp9PzQejm MJgaJnSNq4SyUHs8+Nq+cirD5AuzLT2aQiMUoMiqwcxzdIO6NCtQLPR4sTKxSIm0 WZ6zypFe2nM08XulYDtWzi5B6U3X6KODNk1FRQquzofKSbJBrELwzkH9yDxc/hu2 YaR3rx9FsnDUIUwvnqz/2mRIR9vvNP3d -----END CERTIFICATE-----Generated at Mon Apr 28 20:10:37 2025 by rpki-client on console.sobornost.net