$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/6EA30B02AE9C11EE911AFB63C4F9AE02/YTVJqNWWNz2GWiIOLrGoYEvXUYo.mft File: YTVJqNWWNz2GWiIOLrGoYEvXUYo.mft (raw, json) Hash identifier: 1TwPPwT31WIa4Ck/61UgC/fK/WlzNb0j++1I/5sG9zQ= Subject key identifier: DE:EC:D8:66:1E:0B:36:61:89:7E:13:F8:2F:F4:46:0C:98:49:C1:3D Authority key identifier: 61:35:49:A8:D5:96:37:3D:86:5A:22:0E:2E:B1:A8:60:4B:D7:51:8A Certificate issuer: /CN=A9171D16/serialNumber=613549A8D596373D865A220E2EB1A8604BD7518A Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YTVJqNWWNz2GWiIOLrGoYEvXUYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/6EA30B02AE9C11EE911AFB63C4F9AE02/YTVJqNWWNz2GWiIOLrGoYEvXUYo.mft Manifest number: F3 Signing time: Sun 27 Apr 2025 04:07:24 +0000 Manifest this update: Sun 27 Apr 2025 04:07:24 +0000 Manifest next update: Sun 04 May 2025 04:07:23 +0000 Files and hashes: 1: YTVJqNWWNz2GWiIOLrGoYEvXUYo.crl (hash: JScPcCDbA599jKzoXNfY9lu6OZPSKOwVCpOB+Zr6IiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/6EA30B02AE9C11EE911AFB63C4F9AE02/YTVJqNWWNz2GWiIOLrGoYEvXUYo.crl rsync://rpki.apnic.net/member_repository/A9171D16/6EA30B02AE9C11EE911AFB63C4F9AE02/YTVJqNWWNz2GWiIOLrGoYEvXUYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YTVJqNWWNz2GWiIOLrGoYEvXUYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=613549A8D596373D865A220E2EB1A8604BD7518A Validity Not Before: Apr 27 04:07:24 2025 GMT Not After : May 4 04:07:23 2025 GMT Subject: CN=680dad7c-f04f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6b:15:e2:cb:a2:ed:3e:29:3a:13:5a:60:14: 79:b7:b1:cb:bf:32:5f:3c:5a:14:78:d9:7b:b3:e3: ab:72:98:79:67:d8:68:bf:3d:61:e6:61:50:de:66: 7d:70:9f:73:33:bf:21:44:6e:e3:9e:80:52:3e:38: 16:31:a6:8c:85:95:ec:73:8c:3e:d0:36:b4:54:ba: 8c:5d:77:0f:29:e1:bd:41:95:d8:c0:75:28:a8:f2: d6:64:3d:00:c5:26:2a:bc:5f:a5:ff:38:36:17:0a: 9a:80:62:a3:c5:cb:50:f9:41:d4:5b:6f:96:4f:64: ea:d5:56:b3:e7:cd:51:61:11:6c:cf:df:5e:b8:5c: da:cc:0b:0b:44:69:1a:1f:81:19:53:4f:23:a2:0a: d9:ee:18:94:b6:fc:bd:7e:bc:33:54:1f:b5:a5:fe: 8a:91:5b:44:fd:a6:84:0e:b9:e2:f0:d5:b9:d2:7c: 85:b8:0d:91:79:42:15:d2:d2:db:c0:a4:46:6e:21: 86:dc:7c:d0:39:e8:a2:29:31:95:5d:16:12:d7:e3: 0c:36:52:0d:de:c0:ea:f3:05:85:94:51:e7:f0:37: cd:a1:78:83:4c:06:98:06:b0:dc:af:d4:fa:c1:1b: 40:34:8b:7f:66:a9:86:e3:8d:14:54:0d:92:ab:98: 0e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:EC:D8:66:1E:0B:36:61:89:7E:13:F8:2F:F4:46:0C:98:49:C1:3D X509v3 Authority Key Identifier: keyid:61:35:49:A8:D5:96:37:3D:86:5A:22:0E:2E:B1:A8:60:4B:D7:51:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/6EA30B02AE9C11EE911AFB63C4F9AE02/YTVJqNWWNz2GWiIOLrGoYEvXUYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YTVJqNWWNz2GWiIOLrGoYEvXUYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/6EA30B02AE9C11EE911AFB63C4F9AE02/YTVJqNWWNz2GWiIOLrGoYEvXUYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c1:65:cc:bb:e6:da:f6:0c:1e:e8:a1:a9:99:72:07:1d:39: 22:29:4d:7e:1d:88:86:06:3b:c8:95:4c:a2:82:02:0e:fa:78: d6:99:4a:4f:43:6f:dc:34:7c:a8:5b:e9:71:b9:2e:23:3e:38: 08:53:51:aa:a7:5b:08:0f:d9:87:13:b2:b2:d4:71:30:9b:99: 6b:e4:d0:92:c6:d0:aa:28:e0:40:51:a4:d8:76:6a:ee:8b:35: ba:12:46:2b:09:8d:f8:bd:6b:6b:8f:49:8e:58:01:1f:fa:c0: ad:05:4f:4f:5b:89:8c:f1:2a:cd:ee:4a:e9:17:69:76:c1:41: 4c:c4:f4:91:af:a3:89:4c:9b:5a:94:56:39:64:15:56:bf:b1: e0:15:31:56:6e:68:fe:42:9b:99:93:28:75:18:2d:5c:e3:19: c9:26:57:c6:6c:27:8e:c0:61:76:99:f0:f0:00:6f:24:b2:bb: 00:65:bf:12:1a:80:1e:7f:62:f1:26:fa:98:98:a0:cd:b1:5d: a7:1f:71:1a:5b:de:9c:84:34:78:e5:d0:3a:68:52:da:74:81: 98:82:9d:58:e1:a5:cb:41:25:77:f9:0e:6b:f2:d2:cc:0d:94: f3:b3:9d:ce:77:97:ff:e4:74:a4:2d:78:53:28:d7:93:ac:13: 6f:2a:08:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDYxMzU0OUE4RDU5NjM3M0Q4NjVBMjIwRTJFQjFBODYw NEJENzUxOEEwHhcNMjUwNDI3MDQwNzI0WhcNMjUwNTA0MDQwNzIzWjAYMRYwFAYD VQQDEw02ODBkYWQ3Yy1mMDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGsV4sui7T4pOhNaYBR5t7HLvzJfPFoUeNl7s+Orcph5Z9hovz1h5mFQ3mZ9 cJ9zM78hRG7jnoBSPjgWMaaMhZXsc4w+0Da0VLqMXXcPKeG9QZXYwHUoqPLWZD0A xSYqvF+l/zg2FwqagGKjxctQ+UHUW2+WT2Tq1Vaz581RYRFsz99euFzazAsLRGka H4EZU08jogrZ7hiUtvy9frwzVB+1pf6KkVtE/aaEDrni8NW50nyFuA2ReUIV0tLb wKRGbiGG3HzQOeiiKTGVXRYS1+MMNlIN3sDq8wWFlFHn8DfNoXiDTAaYBrDcr9T6 wRtANIt/ZqmG440UVA2Sq5gOMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7s2GYe CzZhiX4T+C/0RgyYScE9MB8GA1UdIwQYMBaAFGE1SajVljc9hloiDi6xqGBL11GK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82RUEzMEIwMkFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9ZVFZKcU5XV056MkdXaUlPTHJHb1lFdlhV WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lUVkpxTldXTnoyR1dpSU9MckdvWUV2WFVZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82RUEzMEIwMkFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9ZVFZKcU5XV056 MkdXaUlPTHJHb1lFdlhVWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmwWXMu+ba9gwe6KGpmXIHHTkiKU1+HYiGBjvIlUyiggIO+njWmUpP Q2/cNHyoW+lxuS4jPjgIU1Gqp1sID9mHE7Ky1HEwm5lr5NCSxtCqKOBAUaTYdmru izW6EkYrCY34vWtrj0mOWAEf+sCtBU9PW4mM8SrN7krpF2l2wUFMxPSRr6OJTJta lFY5ZBVWv7HgFTFWbmj+QpuZkyh1GC1c4xnJJlfGbCeOwGF2mfDwAG8ksrsAZb8S GoAef2LxJvqYmKDNsV2nH3EaW96chDR45dA6aFLadIGYgp1Y4aXLQSV3+Q5r8tLM DZTzs53Od5f/5HSkLXhTKNeTrBNvKgjK -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:49 2025 by rpki-client on console.sobornost.net