$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: 8n9eKfu/4q9lNGfxLtZtu2P6KyV7KPLJFf9HYV2uuZ4= Subject key identifier: B2:8E:E2:BC:32:15:4C:A2:9C:B9:A1:08:41:E6:8E:49:98:4F:8B:F9 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0AD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0AB9 Signing time: Sat 26 Apr 2025 19:21:59 +0000 Manifest this update: Sat 26 Apr 2025 19:21:59 +0000 Manifest next update: Sat 03 May 2025 19:21:59 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: zRaXiRgeVEYXeujPTd8T240pjOrVSjBW+RMJjDMqvnI=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2769 (0xad1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Apr 26 19:21:59 2025 GMT Not After : May 3 19:21:59 2025 GMT Subject: CN=680d3257-8a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c9:92:c0:b2:77:b1:c6:a1:3f:ba:7e:c7:45: db:46:a2:fa:66:7a:9c:f5:87:7b:9d:b4:87:09:b5: a9:e0:83:eb:be:e4:08:23:35:1b:02:54:ee:50:ac: 15:73:9c:af:28:df:30:b2:aa:ab:13:ed:fc:f9:63: 9b:1e:8d:68:83:3e:77:87:60:c1:07:8b:9b:0a:03: ce:b3:f6:e8:23:91:13:90:b2:83:5e:1a:6b:7d:a6: 27:ef:d1:41:f0:6a:b6:bb:fa:7a:3c:96:fb:33:d8: 4a:7b:38:a7:3d:85:b4:b5:16:59:41:b6:82:6e:95: 5f:af:c3:01:0a:09:4d:4c:ff:6e:5d:77:f9:25:da: a4:ef:35:2c:50:a0:7f:a9:68:e7:09:34:2a:d6:0f: d2:06:34:3b:aa:f4:d9:63:1d:25:71:a9:6a:32:2c: 80:65:18:b4:de:a6:c4:2c:70:3a:c3:c6:58:a2:b4: a2:a0:b3:be:b4:c3:e1:ad:bb:05:f8:3f:19:9a:b0: 4c:52:81:aa:b2:29:31:0e:d4:57:6c:dc:09:49:dc: 0c:0c:7a:59:2d:0c:e5:24:0f:be:93:e8:25:05:4b: bf:ee:fe:31:c7:b1:61:20:dd:b9:40:6c:89:00:2d: 9f:85:51:07:36:d8:5b:e5:cc:24:53:8e:5d:e1:06: 72:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8E:E2:BC:32:15:4C:A2:9C:B9:A1:08:41:E6:8E:49:98:4F:8B:F9 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:5c:ce:86:a3:e0:6d:76:66:99:06:55:94:16:84:3b:76:50: db:be:26:60:0d:7a:45:04:fe:cb:49:df:0a:09:88:2c:7a:d2: ca:96:1a:64:f1:84:aa:f6:cf:56:88:e9:75:2f:e8:ed:fd:0c: 05:da:51:d4:a0:bc:e8:fc:d2:c0:1d:f4:80:66:45:cd:b4:5d: 04:7f:02:12:5b:b1:87:b0:e1:cc:f4:da:97:c9:07:20:6f:9c: c5:34:4a:5e:57:fd:5c:d4:41:a2:59:02:e6:1c:63:55:5c:3a: af:ac:1e:3e:92:bb:49:ef:1e:aa:3f:32:62:92:2c:55:4f:93: a3:14:64:9f:17:6d:55:a9:85:fd:a4:ff:29:ac:be:53:22:f0: be:90:a1:8f:10:dc:3e:46:bf:30:61:82:57:69:be:c3:ca:56: be:62:1a:48:92:98:6f:66:cb:f3:99:69:b0:a5:60:23:aa:17: d1:48:e0:f2:e6:08:f1:48:31:f2:32:49:38:db:e0:c9:87:da: 6d:5a:b2:52:f9:60:dd:39:b9:25:39:8c:7b:8d:01:8e:fd:88: c2:9c:cc:a2:1a:88:42:40:02:75:f3:0a:bb:77:02:03:ba:6f: 3c:83:eb:45:cf:4d:b9:2c:14:97:64:8f:e3:5a:a2:73:08:ff: 53:94:6e:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUwNDI2MTkyMTU5WhcNMjUwNTAzMTkyMTU5WjAYMRYwFAYD VQQDEw02ODBkMzI1Ny04YTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68mSwLJ3scahP7p+x0XbRqL6Znqc9Yd7nbSHCbWp4IPrvuQIIzUbAlTuUKwV c5yvKN8wsqqrE+38+WObHo1ogz53h2DBB4ubCgPOs/boI5ETkLKDXhprfaYn79FB 8Gq2u/p6PJb7M9hKezinPYW0tRZZQbaCbpVfr8MBCglNTP9uXXf5Jdqk7zUsUKB/ qWjnCTQq1g/SBjQ7qvTZYx0lcalqMiyAZRi03qbELHA6w8ZYorSioLO+tMPhrbsF +D8ZmrBMUoGqsikxDtRXbNwJSdwMDHpZLQzlJA++k+glBUu/7v4xx7FhIN25QGyJ AC2fhVEHNthb5cwkU45d4QZyMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKO4rwy FUyinLmhCEHmjkmYT4v5MB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQXM6Go+BtdmaZBlWUFoQ7dlDbviZgDXpFBP7LSd8KCYgsetLKlhpk 8YSq9s9WiOl1L+jt/QwF2lHUoLzo/NLAHfSAZkXNtF0EfwISW7GHsOHM9NqXyQcg b5zFNEpeV/1c1EGiWQLmHGNVXDqvrB4+krtJ7x6qPzJikixVT5OjFGSfF21VqYX9 pP8prL5TIvC+kKGPENw+Rr8wYYJXab7Dyla+YhpIkphvZsvzmWmwpWAjqhfRSODy 5gjxSDHyMkk42+DJh9ptWrJS+WDdObklOYx7jQGO/YjCnMyiGohCQAJ18wq7dwID um88g+tFz025LBSXZI/jWqJzCP9TlG7H -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:00 2025 by rpki-client on console.sobornost.net