$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft File: YBi5hcOZywcxwWNM_ktHkS8q9dE.mft (raw, json) Hash identifier: oD/FQwsgw03CpQE4CSDG6kddMTSA8Xx/URPKLZZk5AY= Subject key identifier: 86:40:75:55:C6:65:0C:99:01:53:66:56:FB:D7:D2:02:EC:1A:1D:FD Authority key identifier: 60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 Certificate issuer: /CN=A9183BA5/serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft Manifest number: 01C4 Signing time: Sun 27 Apr 2025 02:01:03 +0000 Manifest this update: Sun 27 Apr 2025 02:01:03 +0000 Manifest next update: Sun 04 May 2025 02:01:03 +0000 Files and hashes: 1: YBi5hcOZywcxwWNM_ktHkS8q9dE.crl (hash: cw0EwptrflxuVPICrqkM882PhxKUhuBpAt7Hjn18M/w=) 2: C386C06A706211EDA9CCDB76C4F9AE02.roa (hash: kCv4bHKTur2lJoL7asgYL11dC+z1ZsHw44gWQxYmfaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BA5, serialNumber=6018B985C399CB0731C1634CFE4B47912F2AF5D1 Validity Not Before: Apr 27 02:01:03 2025 GMT Not After : May 4 02:01:03 2025 GMT Subject: CN=680d8fdf-510a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9b:6e:74:3e:30:c4:1b:1d:31:2f:21:c9:3b: 08:09:36:74:64:4a:b9:6a:98:78:b5:51:e0:3b:92: 5f:ae:4d:c5:b4:5d:78:bc:bd:02:d6:2d:5b:de:48: 4c:dd:a1:ed:f9:7e:7a:ce:83:a4:c4:af:c2:8c:21: 80:53:46:13:42:9b:36:c1:0d:60:02:44:ac:0f:a7: 36:03:84:a9:36:6a:ef:c4:0e:31:cb:cf:33:1f:24: 1c:ea:39:ff:45:fe:3d:c1:6c:00:d2:39:a1:6f:f3: db:0c:7b:11:b5:9b:2c:a9:01:18:d6:94:30:d7:c7: dc:41:1f:55:a4:2d:ff:ea:7a:f6:d4:d6:37:25:05: fd:1c:45:9c:95:5b:87:60:d6:2e:8a:dd:3f:c8:5f: 3c:6f:10:fe:9a:4c:98:84:d7:83:df:6d:d7:14:e6: 5e:e3:5d:22:5e:6e:14:64:d2:f6:59:c1:4a:a5:b9: c9:16:b8:e6:a3:32:fa:f5:9a:56:b8:6a:2b:01:1d: 01:cd:2a:33:cc:28:12:4a:de:9b:35:ac:16:29:2b: 12:94:7e:8a:b1:fd:da:5a:f2:14:f4:8d:52:6e:50: f5:a5:c7:62:59:9f:1b:33:c9:56:b7:2a:d7:dc:ae: 10:fc:95:17:7f:8d:03:0a:6e:82:f2:df:f6:81:bb: a2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:40:75:55:C6:65:0C:99:01:53:66:56:FB:D7:D2:02:EC:1A:1D:FD X509v3 Authority Key Identifier: keyid:60:18:B9:85:C3:99:CB:07:31:C1:63:4C:FE:4B:47:91:2F:2A:F5:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBi5hcOZywcxwWNM_ktHkS8q9dE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BA5/28620CC4705E11EDBC07F158C4F9AE02/YBi5hcOZywcxwWNM_ktHkS8q9dE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:5c:4f:46:43:7d:3d:a9:4a:c8:b3:53:bd:b0:3a:30:c6:00: 18:c6:25:93:0a:95:01:8d:de:3a:94:e7:45:73:02:85:b0:33: 48:a8:38:a4:12:19:be:9c:63:60:43:a1:c9:e0:c3:6a:ba:15: fc:6a:ef:84:bf:d1:5d:46:8b:ea:ce:e5:27:97:81:7c:5c:be: 96:c5:ce:7c:bb:a3:f6:dc:b3:71:8b:ef:ec:44:07:09:75:be: 2f:a8:7b:fb:29:90:77:63:6c:cb:41:b9:db:90:ad:4c:38:c2: 7c:6d:26:58:97:bf:67:5d:b1:76:c8:33:4c:07:48:ad:e6:86: 40:01:91:af:13:bd:65:c0:2c:cd:9e:49:96:0d:35:ea:a8:d3: ec:6e:6d:b6:04:48:f8:8a:f1:6e:68:1d:4e:b6:e9:9d:4e:d4: ef:38:51:7e:87:20:73:2a:5f:bf:87:e0:3f:a7:f8:fd:44:dd: 88:02:16:71:28:39:84:dc:fc:6c:40:e4:87:40:99:e9:d1:e9: 04:af:db:cb:d9:1a:6d:8d:34:86:66:d0:b7:98:f4:ad:51:f1: 09:71:4f:29:f3:5e:d6:7a:46:a8:d8:55:23:cf:21:fc:4e:0a: f1:9e:ff:39:0c:cc:23:dc:6e:25:8f:9f:4b:49:5f:0f:1e:df: 2d:92:75:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQTUxMTAvBgNVBAUTKDYwMThCOTg1QzM5OUNCMDczMUMxNjM0Q0ZFNEI0Nzkx MkYyQUY1RDEwHhcNMjUwNDI3MDIwMTAzWhcNMjUwNTA0MDIwMTAzWjAYMRYwFAYD VQQDEw02ODBkOGZkZi01MTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ptudD4wxBsdMS8hyTsICTZ0ZEq5aph4tVHgO5Jfrk3FtF14vL0C1i1b3khM 3aHt+X56zoOkxK/CjCGAU0YTQps2wQ1gAkSsD6c2A4SpNmrvxA4xy88zHyQc6jn/ Rf49wWwA0jmhb/PbDHsRtZssqQEY1pQw18fcQR9VpC3/6nr21NY3JQX9HEWclVuH YNYuit0/yF88bxD+mkyYhNeD323XFOZe410iXm4UZNL2WcFKpbnJFrjmozL69ZpW uGorAR0BzSozzCgSSt6bNawWKSsSlH6Ksf3aWvIU9I1SblD1pcdiWZ8bM8lWtyrX 3K4Q/JUXf40DCm6C8t/2gbuiywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZAdVXG ZQyZAVNmVvvX0gLsGh39MB8GA1UdIwQYMBaAFGAYuYXDmcsHMcFjTP5LR5EvKvXR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JBNS8yODYyMENDNDcw NUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3Y3h3V05NX2t0SGtTOHE5 ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCaTVoY09aeXdjeHdXTk1fa3RIa1M4cTlkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JBNS8yODYyMENDNDcwNUUxMUVEQkMwN0YxNThDNEY5QUUwMi9ZQmk1aGNPWnl3 Y3h3V05NX2t0SGtTOHE5ZEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCXE9GQ309qUrIs1O9sDowxgAYxiWTCpUBjd46lOdFcwKFsDNIqDik Ehm+nGNgQ6HJ4MNquhX8au+Ev9FdRovqzuUnl4F8XL6Wxc58u6P23LNxi+/sRAcJ db4vqHv7KZB3Y2zLQbnbkK1MOMJ8bSZYl79nXbF2yDNMB0it5oZAAZGvE71lwCzN nkmWDTXqqNPsbm22BEj4ivFuaB1OtumdTtTvOFF+hyBzKl+/h+A/p/j9RN2IAhZx KDmE3PxsQOSHQJnp0ekEr9vL2RptjTSGZtC3mPStUfEJcU8p817Wekao2FUjzyH8 Tgrxnv85DMwj3G4lj59LSV8PHt8tknV6 -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:11 2025 by rpki-client on console.sobornost.net