$ rpki-client -vvf rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.mft File: y7RecR9QOMR1deb07gwOjFZ744g.mft (raw, json) Hash identifier: JaUOn8SbNlGs+tdQxaMGDPp/vSm+R73tD7w2uhTDKN4= Subject key identifier: 3F:F5:54:05:4B:83:DD:9D:05:F8:11:4E:71:D7:39:4B:D2:27:0D:67 Authority key identifier: CB:B4:5E:71:1F:50:38:C4:75:75:E6:F4:EE:0C:0E:8C:56:7B:E3:88 Certificate issuer: /CN=A9186CDF/serialNumber=CBB45E711F5038C47575E6F4EE0C0E8C567BE388 Certificate serial: 076E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7RecR9QOMR1deb07gwOjFZ744g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.mft Manifest number: 0EE3 Signing time: Sat 26 Apr 2025 21:10:28 +0000 Manifest this update: Sat 26 Apr 2025 21:10:27 +0000 Manifest next update: Sat 03 May 2025 21:10:27 +0000 Files and hashes: 1: y7RecR9QOMR1deb07gwOjFZ744g.crl (hash: mc817E8cTqQxRLknQ9Pqr95NmBMEVx1dQLTWs0vPzZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.crl rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7RecR9QOMR1deb07gwOjFZ744g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186CDF, serialNumber=CBB45E711F5038C47575E6F4EE0C0E8C567BE388 Validity Not Before: Apr 26 21:10:27 2025 GMT Not After : May 3 21:10:27 2025 GMT Subject: CN=680d4bc3-0b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5d:47:88:51:02:32:ee:58:27:bb:4e:52:22: cd:20:cb:de:a9:23:bc:6f:e8:ad:6e:10:f5:57:e1: f6:71:ea:34:d2:5d:38:24:1e:3c:b5:00:f2:3e:0b: c9:a9:52:e8:1a:04:c2:7f:d0:ba:9d:67:c4:4b:86: 66:8c:5b:4c:81:18:a2:0b:cc:1e:7f:ec:27:a3:a3: a1:47:51:d4:ed:82:50:79:4f:3b:b1:e5:e7:c7:1d: 67:b8:2f:c3:0a:7f:24:ca:1a:e4:25:1a:ea:b8:f5: 24:9a:9b:c4:4c:10:fa:9d:44:98:46:3a:1b:cb:1a: d7:09:75:8e:b6:1f:52:1f:6b:2f:9c:df:37:5a:79: 23:85:f0:f6:02:a3:f9:d7:30:67:57:34:b2:51:1c: af:1d:74:f5:ee:4e:9e:f0:c1:ff:0e:61:0b:7b:e8: 29:df:0a:91:40:4e:4f:ae:d0:85:5f:1e:87:48:70: 83:4d:b7:bc:b9:4f:ea:ac:b3:b7:5a:85:4b:ab:c5: a7:af:a4:97:d9:42:0c:fe:31:90:6d:55:2f:8d:33: 13:ac:d7:d6:d2:f9:9f:3e:e8:85:c6:1a:48:d3:4d: b5:c4:cd:b3:c4:30:db:a6:6f:e3:62:c6:d2:c6:85: 01:42:b7:25:ca:3d:c5:28:7d:91:7e:85:5f:52:a1: 0e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F5:54:05:4B:83:DD:9D:05:F8:11:4E:71:D7:39:4B:D2:27:0D:67 X509v3 Authority Key Identifier: keyid:CB:B4:5E:71:1F:50:38:C4:75:75:E6:F4:EE:0C:0E:8C:56:7B:E3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7RecR9QOMR1deb07gwOjFZ744g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186CDF/4481F0A811DE11EBB9F9F777C4F9AE02/y7RecR9QOMR1deb07gwOjFZ744g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:8f:3c:ec:97:0b:48:7d:e0:09:87:c8:e5:05:5c:4d:7b:18: e0:3b:3a:e5:39:c2:d2:7f:af:2f:2c:fe:4c:95:c0:f3:6a:cf: d4:b1:5c:a1:9d:6b:fb:a1:5a:6d:6c:0c:55:46:c3:84:4c:dd: 59:18:af:a5:80:88:41:d7:e2:4f:c5:b4:54:71:0b:d5:8d:22: ff:cc:56:8f:d9:45:46:82:44:a6:72:c2:29:5b:7b:f0:d3:10: e0:be:0d:78:4e:9b:46:c4:b8:23:24:2b:ed:0d:98:e8:05:44: ad:fb:4f:ba:d2:a0:2e:9b:01:a2:8e:4d:44:cb:a5:26:da:6f: 81:01:58:24:29:c7:76:8c:28:73:be:87:47:9b:3f:8a:12:e2: 57:1e:72:84:dd:bb:66:0d:0c:a6:d1:2c:ac:f1:5e:bf:f0:fe: db:ee:29:cf:b6:31:e7:01:55:5e:71:7d:f3:a1:a7:f1:79:08: d2:48:f7:c1:7e:08:61:a9:b6:46:f2:36:78:20:9a:27:e6:54: 7d:d3:27:0f:19:5f:fd:c3:d7:5c:07:7a:3c:c6:f4:80:bc:c8: d8:80:4b:9b:14:78:0b:f7:f4:8a:8b:eb:02:f6:23:d2:89:c5: 45:3b:f2:60:b5:6c:82:21:fc:3f:4e:1a:e9:18:bb:3c:76:9d: d0:ee:29:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDREYxMTAvBgNVBAUTKENCQjQ1RTcxMUY1MDM4QzQ3NTc1RTZGNEVFMEMwRThD NTY3QkUzODgwHhcNMjUwNDI2MjExMDI3WhcNMjUwNTAzMjExMDI3WjAYMRYwFAYD VQQDEw02ODBkNGJjMy0wYjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA411HiFECMu5YJ7tOUiLNIMveqSO8b+itbhD1V+H2ceo00l04JB48tQDyPgvJ qVLoGgTCf9C6nWfES4ZmjFtMgRiiC8wef+wno6OhR1HU7YJQeU87seXnxx1nuC/D Cn8kyhrkJRrquPUkmpvETBD6nUSYRjobyxrXCXWOth9SH2svnN83WnkjhfD2AqP5 1zBnVzSyURyvHXT17k6e8MH/DmELe+gp3wqRQE5PrtCFXx6HSHCDTbe8uU/qrLO3 WoVLq8Wnr6SX2UIM/jGQbVUvjTMTrNfW0vmfPuiFxhpI0021xM2zxDDbpm/jYsbS xoUBQrclyj3FKH2RfoVfUqEOxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/1VAVL g92dBfgRTnHXOUvSJw1nMB8GA1UdIwQYMBaAFMu0XnEfUDjEdXXm9O4MDoxWe+OI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkNERi80NDgxRjBBODEx REUxMUVCQjlGOUY3NzdDNEY5QUUwMi95N1JlY1I5UU9NUjFkZWIwN2d3T2pGWjc0 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3UmVjUjlRT01SMWRlYjA3Z3dPakZaNzQ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkNERi80NDgxRjBBODExREUxMUVCQjlGOUY3NzdDNEY5QUUwMi95N1JlY1I5UU9N UjFkZWIwN2d3T2pGWjc0NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApjzzslwtIfeAJh8jlBVxNexjgOzrlOcLSf68vLP5MlcDzas/UsVyh nWv7oVptbAxVRsOETN1ZGK+lgIhB1+JPxbRUcQvVjSL/zFaP2UVGgkSmcsIpW3vw 0xDgvg14TptGxLgjJCvtDZjoBUSt+0+60qAumwGijk1Ey6Um2m+BAVgkKcd2jChz vodHmz+KEuJXHnKE3btmDQym0Sys8V6/8P7b7inPtjHnAVVecX3zoafxeQjSSPfB fghhqbZG8jZ4IJon5lR90ycPGV/9w9dcB3o8xvSAvMjYgEubFHgL9/SKi+sC9iPS icVFO/JgtWyCIfw/ThrpGLs8dp3Q7in7 -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:06 2025 by rpki-client on console.sobornost.net