$ rpki-client -vvf rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft File: yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft (raw, json) Hash identifier: QE71mvloB/fugTZLmrLtlIvBgemjJ0RIlt0E00w455I= Subject key identifier: B1:7B:2E:3E:BD:5C:DF:D4:8C:50:28:CD:81:B3:B8:7E:A4:FC:86:BC Authority key identifier: CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 Certificate issuer: /CN=A91706CE/serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft Manifest number: 015F Signing time: Sun 27 Apr 2025 03:00:06 +0000 Manifest this update: Sun 27 Apr 2025 03:00:05 +0000 Manifest next update: Sun 04 May 2025 03:00:05 +0000 Files and hashes: 1: yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl (hash: B+Y/QUCRiVUnhedrvyN6hUqcteLLA0hRri9mwl5a2e0=) 2: 4C93B0C80F8E11EEA5B58045C4F9AE02.roa (hash: LAaO1vZcTPGfjnPzmYmWNC40SxBUckX2iI6WDTxLjTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706CE, serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Validity Not Before: Apr 27 03:00:05 2025 GMT Not After : May 4 03:00:05 2025 GMT Subject: CN=680d9db5-66e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:4c:6f:74:a1:5d:b7:73:94:90:fe:28:21: 4d:4b:06:5b:26:ec:7c:b9:b3:30:70:0d:2d:77:8a: c7:3e:c7:c8:6c:f9:48:99:ba:ba:26:64:81:71:62: d5:60:21:35:cc:0d:3d:c9:69:16:b4:7a:53:a9:60: 09:17:50:96:05:f1:c6:70:30:a8:76:1d:d8:bf:07: 9f:a6:49:3d:c2:d9:5b:40:91:dc:5c:49:f2:a8:7a: 48:3d:37:b0:64:1c:c4:68:aa:6a:5b:a6:f3:92:d7: 5f:1d:6e:9d:9e:4b:50:9a:67:f6:f1:2c:23:ed:d2: 8b:bd:68:77:e2:d2:24:1d:d7:ef:84:50:ea:c7:2b: de:f0:12:a1:86:bc:24:e9:24:9e:85:63:f1:74:66: 83:36:d4:79:b0:bf:53:f5:99:72:5e:8a:d2:a1:e2: 03:6c:64:1e:11:88:79:55:7c:a8:fd:c7:0c:09:d2: 90:a1:e2:ba:84:f4:81:7a:f9:e7:1b:3b:8d:05:ac: 1d:31:5a:97:2c:47:38:7c:60:38:12:20:c7:13:bc: 38:7a:35:1f:2b:21:27:59:ab:84:f8:3c:c2:da:84: 61:02:75:b7:d4:24:d2:d9:04:de:97:1d:a6:0e:1f: dc:fd:69:c2:7b:74:24:06:6e:dc:d2:25:f0:53:f6: ed:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7B:2E:3E:BD:5C:DF:D4:8C:50:28:CD:81:B3:B8:7E:A4:FC:86:BC X509v3 Authority Key Identifier: keyid:CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c0:28:64:e8:a0:9d:ac:ec:93:c3:98:09:58:d6:ed:7b:b5: 3b:d1:9f:06:d4:29:ee:a7:38:d5:2b:33:8a:70:15:0e:e4:18: 62:00:7b:7d:60:a6:60:69:9c:d7:39:a0:ce:87:de:09:64:d5: 86:79:74:81:b1:29:ec:b3:61:f5:11:9d:e1:c9:98:4f:fc:e6: bc:ed:dd:b9:10:96:dc:4f:b6:2d:32:f6:6b:28:61:b9:71:28: 0e:18:e9:77:31:f0:62:1b:74:85:1f:cf:ab:e7:a7:80:f5:73: a0:52:47:cf:c2:dc:13:fe:ee:7c:b5:23:52:d4:99:cb:b7:78: ae:9a:34:d3:8e:f0:0d:56:97:f3:93:80:78:17:6d:5d:07:99: f6:3d:12:b1:0e:59:9b:39:a2:dc:e4:3a:0c:7b:a8:7f:eb:a2: 29:aa:83:90:2f:fb:b1:3c:4e:fd:f3:ac:04:63:0c:cb:ce:c7: ab:c1:0e:99:03:14:ec:05:5a:b6:2c:8f:1e:0d:d5:f3:6a:f4: 21:95:78:43:67:e4:a4:78:0c:48:71:e3:73:03:cc:fb:ef:75: 37:b6:86:1d:15:42:7e:cf:a4:a6:e1:4a:42:29:56:da:33:d6: 41:9e:85:65:f6:2c:44:3a:b1:91:bb:2a:d8:68:92:25:a6:07: 74:90:7a:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2Q0UxMTAvBgNVBAUTKENBQTQxNTMyQjdGNzJBQTJDM0UyQUQ2REY0MEI4RDRE MUVCMDM1OTcwHhcNMjUwNDI3MDMwMDA1WhcNMjUwNTA0MDMwMDA1WjAYMRYwFAYD VQQDEw02ODBkOWRiNS02NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl5Mb3ShXbdzlJD+KCFNSwZbJux8ubMwcA0td4rHPsfIbPlImbq6JmSBcWLV YCE1zA09yWkWtHpTqWAJF1CWBfHGcDCodh3Yvwefpkk9wtlbQJHcXEnyqHpIPTew ZBzEaKpqW6bzktdfHW6dnktQmmf28Swj7dKLvWh34tIkHdfvhFDqxyve8BKhhrwk 6SSehWPxdGaDNtR5sL9T9ZlyXorSoeIDbGQeEYh5VXyo/ccMCdKQoeK6hPSBevnn GzuNBawdMVqXLEc4fGA4EiDHE7w4ejUfKyEnWauE+DzC2oRhAnW31CTS2QTelx2m Dh/c/WnCe3QkBm7c0iXwU/btlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLF7Lj69 XN/UjFAozYGzuH6k/Ia8MB8GA1UdIwQYMBaAFMqkFTK39yqiw+KtbfQLjU0esDWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZDRS9FOTBCRDY2ODBG ODYxMUVFQTU2RUJCMjJDNEY5QUUwMi95cVFWTXJmM0txTEQ0cTF0OUF1TlRSNndO WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxUVZNcmYzS3FMRDRxMXQ5QXVOVFI2d05aYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZDRS9FOTBCRDY2ODBGODYxMUVFQTU2RUJCMjJDNEY5QUUwMi95cVFWTXJmM0tx TEQ0cTF0OUF1TlRSNndOWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuwChk6KCdrOyTw5gJWNbte7U70Z8G1CnupzjVKzOKcBUO5BhiAHt9 YKZgaZzXOaDOh94JZNWGeXSBsSnss2H1EZ3hyZhP/Oa87d25EJbcT7YtMvZrKGG5 cSgOGOl3MfBiG3SFH8+r56eA9XOgUkfPwtwT/u58tSNS1JnLt3iumjTTjvANVpfz k4B4F21dB5n2PRKxDlmbOaLc5DoMe6h/66IpqoOQL/uxPE7986wEYwzLzserwQ6Z AxTsBVq2LI8eDdXzavQhlXhDZ+SkeAxIceNzA8z773U3toYdFUJ+z6Sm4UpCKVba M9ZBnoVl9ixEOrGRuyrYaJIlpgd0kHp9 -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:03 2025 by rpki-client on console.sobornost.net