$ rpki-client -vvf rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft File: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft (raw, json) Hash identifier: tSGeeapVFoSZGlo6vAfU6Cg+EL6jKw8JmKHworMbsQw= Subject key identifier: 5F:95:3B:66:48:06:D7:E5:4F:EC:DA:0C:FF:C0:05:03:90:DF:CE:23 Authority key identifier: E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 Certificate issuer: /CN=A9170533/serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Certificate serial: 0383 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft Manifest number: 037F Signing time: Sun 27 Apr 2025 00:31:46 +0000 Manifest this update: Sun 27 Apr 2025 00:31:45 +0000 Manifest next update: Sun 04 May 2025 00:31:45 +0000 Files and hashes: 1: 5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl (hash: Sqoyah5+rIE6Ss1UenGjTz7FiHZlqXSnwyJLZSWKKxQ=) 2: 6664BEB29F8611ECBE806D30C4F9AE02.roa (hash: 3Zz0SoScV6fPNZfJ9ERkFkDBxGo2mzRnK0TlcOdgOTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 00:31:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 899 (0x383) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170533, serialNumber=E58F98E3C61421465453AC4255F0AFB0AD95D246 Validity Not Before: Apr 27 00:31:45 2025 GMT Not After : May 4 00:31:45 2025 GMT Subject: CN=680d7af1-4341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:57:0d:2a:d9:cb:00:4e:8c:36:47:64:4b:2d: e1:51:6c:d7:a2:10:07:4e:89:54:08:be:8b:1d:16: 68:8c:9c:98:af:c3:c3:72:98:43:de:ae:28:3f:eb: 5b:2b:40:be:e2:01:fb:ab:3b:1a:98:c7:e5:d7:96: 0b:29:75:01:8f:cf:f5:c3:14:bd:4c:af:0d:a2:0a: 0f:56:96:77:16:44:2b:52:70:69:97:1f:2d:c2:b1: b0:d5:78:10:a2:c5:ef:b3:51:0b:77:6e:47:4a:46: 6f:6e:d2:37:05:8d:4f:3d:66:b1:fb:7d:7b:78:04: 16:a7:60:36:9e:8f:f4:22:20:b7:25:ea:f6:5a:8b: 6e:b5:ac:1d:88:2b:d8:04:9d:8b:19:d3:00:52:9e: f6:04:a3:78:cd:a3:4e:f4:50:10:1d:01:57:92:ee: 5b:49:db:d1:9f:20:fc:b6:09:15:69:a1:eb:8e:2c: 75:ad:e7:ff:e1:3b:62:2a:08:6d:19:24:f3:e9:7b: 91:82:c8:f9:36:98:f8:8a:f2:87:d8:6f:12:64:9d: 29:c9:fd:39:c5:47:55:46:48:68:be:9c:eb:5f:66: fa:e1:74:71:9d:be:82:97:a7:7f:ec:71:96:12:bb: 51:95:fa:83:9e:9d:2c:28:2a:6d:c8:38:bf:32:0e: aa:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:95:3B:66:48:06:D7:E5:4F:EC:DA:0C:FF:C0:05:03:90:DF:CE:23 X509v3 Authority Key Identifier: keyid:E5:8F:98:E3:C6:14:21:46:54:53:AC:42:55:F0:AF:B0:AD:95:D2:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170533/22ED2C9A9F8211ECBFC3CF1CC4F9AE02/5Y-Y48YUIUZUU6xCVfCvsK2V0kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:66:c6:f0:81:a2:cd:75:74:7d:eb:bd:46:72:84:f5:9e:1a: 90:b3:2a:c0:a3:44:5b:db:19:93:a3:3f:f3:f0:23:71:fc:18: 45:ec:40:63:51:72:23:17:00:a9:2c:ee:f8:51:8f:4a:46:66: f8:3b:88:ae:0f:32:bd:d3:e5:10:01:81:c4:85:b3:77:c8:eb: 7a:1c:63:0c:15:f8:4e:ff:f3:dc:5c:c5:c5:14:a7:bb:7b:df: e3:a4:f7:5d:d4:4c:02:94:23:d2:a1:ca:e5:bb:80:ea:ed:3e: 05:00:70:09:05:c7:f2:ec:99:7f:c8:84:b1:64:29:c4:28:11: 48:3c:7e:fc:8c:5c:7b:3e:5d:99:62:b1:6d:38:14:36:23:a5: e1:9f:4b:1f:f1:46:e7:0f:e9:b5:ff:98:a8:e0:01:ac:5c:3f: 21:cd:76:1f:e5:b6:7e:15:6b:e5:df:0e:57:c7:9c:9e:ec:07: 96:ea:3f:70:35:86:e6:28:c8:f0:a5:22:0f:c6:a0:d0:ba:1e: 99:8c:cd:80:3b:f6:5f:15:5e:d4:a5:5d:51:03:95:1f:47:81: 4c:18:ae:07:23:48:68:ce:9a:27:c1:0d:ad:d2:11:fa:62:bf: 18:e1:2f:ca:34:fa:df:72:aa:d1:d1:3b:2f:e7:80:90:f9:5d: db:e2:e2:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1MzMxMTAvBgNVBAUTKEU1OEY5OEUzQzYxNDIxNDY1NDUzQUM0MjU1RjBBRkIw QUQ5NUQyNDYwHhcNMjUwNDI3MDAzMTQ1WhcNMjUwNTA0MDAzMTQ1WjAYMRYwFAYD VQQDEw02ODBkN2FmMS00MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlcNKtnLAE6MNkdkSy3hUWzXohAHTolUCL6LHRZojJyYr8PDcphD3q4oP+tb K0C+4gH7qzsamMfl15YLKXUBj8/1wxS9TK8NogoPVpZ3FkQrUnBplx8twrGw1XgQ osXvs1ELd25HSkZvbtI3BY1PPWax+317eAQWp2A2no/0IiC3Jer2WotutawdiCvY BJ2LGdMAUp72BKN4zaNO9FAQHQFXku5bSdvRnyD8tgkVaaHrjix1ref/4TtiKght GSTz6XuRgsj5Npj4ivKH2G8SZJ0pyf05xUdVRkhovpzrX2b64XRxnb6Cl6d/7HGW ErtRlfqDnp0sKCptyDi/Mg6qwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+VO2ZI BtflT+zaDP/ABQOQ384jMB8GA1UdIwQYMBaAFOWPmOPGFCFGVFOsQlXwr7CtldJG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDUzMy8yMkVEMkM5QTlG ODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlVWlVVNnhDVmZDdnNLMlYw a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVZLVk0OFlVSVVaVVU2eENWZkN2c0syVjBrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDUzMy8yMkVEMkM5QTlGODIxMUVDQkZDM0NGMUNDNEY5QUUwMi81WS1ZNDhZVUlV WlVVNnhDVmZDdnNLMlYwa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ZsbwgaLNdXR9671GcoT1nhqQsyrAo0Rb2xmToz/z8CNx/BhF7EBj UXIjFwCpLO74UY9KRmb4O4iuDzK90+UQAYHEhbN3yOt6HGMMFfhO//PcXMXFFKe7 e9/jpPdd1EwClCPSocrlu4Dq7T4FAHAJBcfy7Jl/yISxZCnEKBFIPH78jFx7Pl2Z YrFtOBQ2I6Xhn0sf8UbnD+m1/5io4AGsXD8hzXYf5bZ+FWvl3w5Xx5ye7AeW6j9w NYbmKMjwpSIPxqDQuh6ZjM2AO/ZfFV7UpV1RA5UfR4FMGK4HI0hozponwQ2t0hH6 Yr8Y4S/KNPrfcqrR0Tsv54CQ+V3b4uJq -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net