$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: AchdwY/FVE/IjnnjMwsjrP8qq0pcSPLub1Hmd9xpGDI= Subject key identifier: B6:46:71:62:AB:E9:CF:C0:51:22:DD:8D:B0:8D:E0:93:25:3D:73:F6 Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 17 Signing time: Sun 27 Apr 2025 06:48:50 +0000 Manifest this update: Sun 27 Apr 2025 06:48:49 +0000 Manifest next update: Sun 04 May 2025 06:48:49 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: NLDzcWsldWEMIV1p8S+H8EMFquqz30G2/26tE8DiofI=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Apr 27 06:48:49 2025 GMT Not After : May 4 06:48:49 2025 GMT Subject: CN=680dd351-ecc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c1:f8:20:83:fa:92:fb:81:64:94:41:eb:78: 38:1a:61:12:54:a6:ab:e1:3c:e8:9f:c2:34:88:b8: b6:66:4f:85:06:03:c6:3a:19:b5:c1:24:9d:22:24: e3:51:42:0a:a3:dd:78:35:c7:0e:fe:63:78:66:34: fb:29:f3:f8:0b:01:d3:ec:21:f2:e0:d2:5f:0f:1c: d3:46:b7:63:85:11:ca:49:77:db:9f:72:65:50:ee: 2e:84:46:1d:b3:b9:d5:cf:5f:7a:15:d1:d4:28:62: bf:96:0e:2a:56:c3:93:c6:36:b2:ee:fb:44:35:f7: 68:2d:55:b0:f6:42:51:d5:79:d8:1d:7b:48:73:ed: 47:d2:bf:eb:79:fa:58:2c:a6:33:4b:f0:70:db:63: 84:c5:7c:dc:e7:1b:4d:dc:7e:ca:71:3d:37:18:0d: 0b:91:6d:9d:fe:4f:aa:d1:52:33:09:c6:bf:c2:b6: d3:af:38:68:6d:a4:2c:ca:d9:96:96:6e:81:05:94: f4:9f:e8:c4:2d:ca:bb:e3:22:21:69:d6:36:ea:23: c6:1c:6c:91:2f:b7:9d:7b:04:41:69:ae:dc:2c:c7: 98:6c:67:44:e1:e3:00:f0:f9:60:5c:cb:d8:6c:94: 15:f6:17:3b:e0:59:e0:74:4b:88:d1:ef:b4:d0:1d: 98:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:46:71:62:AB:E9:CF:C0:51:22:DD:8D:B0:8D:E0:93:25:3D:73:F6 X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:53:3f:63:31:e8:93:01:98:38:a7:8f:39:45:dd:94:1c:25: b4:ec:7b:54:a8:2b:c1:72:97:40:a6:19:96:64:2d:69:24:44: d5:43:c1:36:1a:2d:03:6f:de:29:0e:4c:68:a2:44:87:78:43: e3:95:2e:d5:6b:58:c2:d7:f4:8f:b8:9c:ae:bd:64:03:65:f9: 3d:c8:13:dd:98:55:ee:1a:e5:b3:f8:fd:4b:ce:bc:54:2d:d1: 07:43:1e:94:5b:1e:3d:ca:cc:f0:e6:f5:7b:25:bf:9e:16:57: b4:1d:70:b4:da:00:89:a6:ce:24:3e:4d:34:df:8a:4b:3a:54: 31:5d:97:0b:06:df:cf:f2:ce:fd:43:18:e9:4c:39:88:9a:2c: 2d:0a:35:10:81:d7:b3:da:43:05:64:28:4a:2f:f0:6d:e2:8b: dc:d2:df:5e:92:09:06:53:2f:59:0e:ff:7d:83:ed:cb:47:f9: 7e:2a:f2:98:16:25:a2:0a:40:94:aa:4c:b8:72:8d:b2:44:c6: 36:e4:8b:11:38:0f:f9:0c:5a:ed:ac:2b:d7:da:da:00:ad:dc: 99:0c:c4:80:18:e6:24:4f:05:ae:51:59:47:a6:26:d2:a2:1c: 6c:88:d0:d6:b0:af:fa:81:c2:e7:ae:ed:a5:3e:6e:6f:36:65: e6:19:ee:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoMTUzQzk4RDMzMTNDQzY0RURCOUFFMTVBQkEzQjU0M0U0 ODA0NTk5MDAeFw0yNTA0MjcwNjQ4NDlaFw0yNTA1MDQwNjQ4NDlaMBgxFjAUBgNV BAMTDTY4MGRkMzUxLWVjYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgwfggg/qS+4FklEHreDgaYRJUpqvhPOifwjSIuLZmT4UGA8Y6GbXBJJ0iJONR Qgqj3Xg1xw7+Y3hmNPsp8/gLAdPsIfLg0l8PHNNGt2OFEcpJd9ufcmVQ7i6ERh2z udXPX3oV0dQoYr+WDipWw5PGNrLu+0Q192gtVbD2QlHVedgde0hz7UfSv+t5+lgs pjNL8HDbY4TFfNznG03cfspxPTcYDQuRbZ3+T6rRUjMJxr/CttOvOGhtpCzK2ZaW boEFlPSf6MQtyrvjIiFp1jbqI8YcbJEvt517BEFprtwsx5hsZ0Th4wDw+WBcy9hs lBX2FzvgWeB0S4jR77TQHZhVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtkZxYqvp z8BRIt2NsI3gkyU9c/YwHwYDVR0jBBgwFoAUFTyY0zE8xk7bmuFaujtUPkgEWZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzRCNkUwMEZDMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVda QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRlR5WTB6RTh4azdibXVGYXVqdFVQa2dFV1pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzRCNkUwMEZDMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL0ZUeVkwekU4eGs3 Ym11RmF1anRVUGtnRVdaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGxTP2Mx6JMBmDinjzlF3ZQcJbTse1SoK8Fyl0CmGZZkLWkkRNVDwTYa LQNv3ikOTGiiRId4Q+OVLtVrWMLX9I+4nK69ZANl+T3IE92YVe4a5bP4/UvOvFQt 0QdDHpRbHj3KzPDm9Xslv54WV7QdcLTaAImmziQ+TTTfiks6VDFdlwsG38/yzv1D GOlMOYiaLC0KNRCB17PaQwVkKEov8G3ii9zS316SCQZTL1kO/32D7ctH+X4q8pgW JaIKQJSqTLhyjbJExjbkixE4D/kMWu2sK9fa2gCt3JkMxIAY5iRPBa5RWUemJtKi HGyI0Nawr/qBwueu7aU+bm82ZeYZ7qQ= -----END CERTIFICATE-----Generated at Sun Apr 27 10:27:18 2025 by rpki-client on console.sobornost.net