$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: wWrR4+tFEngZBnmchsOR5yBmYppN2uHeFrb8RmyJ38g= Subject key identifier: B9:04:8E:78:61:AF:AA:22:2F:15:B9:12:D0:D7:FF:3F:8E:D2:0E:FD Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 0279 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 0276 Signing time: Sun 27 Apr 2025 01:17:15 +0000 Manifest this update: Sun 27 Apr 2025 01:17:14 +0000 Manifest next update: Sun 04 May 2025 01:17:14 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: C+lO3xrkuSe0QKuHMtBn3utwTI1C1YO1BcE4fEtGnDQ=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: LYlnmY38WC+/5pBo6/8yuliMtbU1c9X35OeWacBJJcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 633 (0x279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Apr 27 01:17:14 2025 GMT Not After : May 4 01:17:14 2025 GMT Subject: CN=680d859b-176f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4b:8c:0d:8f:90:c5:09:b7:e7:54:b7:a0:a3: 4a:09:69:19:b3:b5:b1:00:c2:36:57:b7:46:8b:6a: d3:d5:31:c9:e3:a1:4d:1d:1d:6b:fe:3e:8f:3d:af: 58:d8:80:15:df:56:a7:51:4e:71:5e:29:4b:c8:4f: 63:8a:72:fd:42:dd:d6:00:bd:ab:5e:8d:fb:83:59: f8:ac:99:ce:ba:e2:e8:58:e2:47:42:cc:d0:6b:c0: 7c:4f:b5:49:be:9d:8a:ce:eb:d5:e0:79:14:4b:3c: fb:b2:fd:95:db:89:ab:a7:80:61:10:7e:50:69:c4: 41:84:74:25:fd:b5:d9:6b:82:a4:1d:37:77:40:e0: 5b:59:3e:06:f2:78:ab:8f:e9:33:96:d3:ba:d1:0c: 25:96:89:e5:07:06:e4:b7:0a:c3:63:9b:d6:65:57: 6c:69:7e:f8:8c:ee:be:cd:07:a7:1e:f2:d8:b0:65: fd:57:fa:e3:c0:7f:f1:c3:9c:c9:7b:e0:bb:f0:bb: 75:65:b9:3e:8b:62:4c:20:82:37:39:6b:5a:7e:5d: e2:93:0a:26:5c:b6:0a:81:02:23:54:d7:ee:79:72: 94:05:d1:f7:26:b2:61:97:0b:bf:b0:24:66:7c:de: 3a:97:8b:22:bd:d0:ab:91:ff:bd:7d:14:c7:93:c1: 00:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:04:8E:78:61:AF:AA:22:2F:15:B9:12:D0:D7:FF:3F:8E:D2:0E:FD X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:94:19:f8:af:d4:4b:d1:14:5e:92:77:1e:87:2d:a3:4c:99: a3:a1:dc:7e:d2:ab:42:c2:3f:ac:c1:d2:e3:4a:8c:58:c7:44: 99:3c:ce:97:10:11:5b:64:bd:d6:b2:cc:22:f4:38:02:1b:b2: 7d:54:3d:9f:d2:30:84:dd:c1:83:16:c4:d9:a9:56:5c:ba:d9: 91:ba:4f:8f:59:a7:d6:77:85:a8:9a:88:5e:28:7c:fd:e7:2d: b5:ae:b5:6b:28:64:7b:5e:5c:b9:c2:1c:cc:e9:33:4a:de:e4: ee:5b:6f:fa:cd:c3:be:1c:06:a8:75:17:e8:0f:92:5f:f4:f3: 11:4e:9f:37:c7:b0:24:94:c5:16:16:f6:6a:cf:86:63:df:c9: d9:21:07:bf:ee:01:ed:03:a8:c0:f7:b3:7a:63:f2:2c:45:b5: 14:0a:5e:44:5d:d8:99:12:52:d7:32:01:90:06:a3:a3:6d:72: 04:b8:fc:82:6c:69:0c:8e:d0:57:82:a8:a4:98:a1:9b:6e:08: ff:b0:fa:99:60:15:66:05:e7:41:65:5d:a3:a1:17:4d:65:a8: 99:2f:d3:22:03:cf:48:c6:5c:60:56:3e:e8:9f:41:3b:38:3a: 8d:9f:76:dd:b3:a0:7b:c6:98:6d:c7:a6:88:17:e6:02:b1:da: dc:b5:6d:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUwNDI3MDExNzE0WhcNMjUwNTA0MDExNzE0WjAYMRYwFAYD VQQDEw02ODBkODU5Yi0xNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkuMDY+QxQm351S3oKNKCWkZs7WxAMI2V7dGi2rT1THJ46FNHR1r/j6PPa9Y 2IAV31anUU5xXilLyE9jinL9Qt3WAL2rXo37g1n4rJnOuuLoWOJHQszQa8B8T7VJ vp2KzuvV4HkUSzz7sv2V24mrp4BhEH5QacRBhHQl/bXZa4KkHTd3QOBbWT4G8nir j+kzltO60QwllonlBwbktwrDY5vWZVdsaX74jO6+zQenHvLYsGX9V/rjwH/xw5zJ e+C78Lt1Zbk+i2JMIII3OWtafl3ikwomXLYKgQIjVNfueXKUBdH3JrJhlwu/sCRm fN46l4sivdCrkf+9fRTHk8EAaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkEjnhh r6oiLxW5EtDX/z+O0g79MB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwlBn4r9RL0RRekncehy2jTJmjodx+0qtCwj+swdLjSoxYx0SZPM6X EBFbZL3Wsswi9DgCG7J9VD2f0jCE3cGDFsTZqVZcutmRuk+PWafWd4WomoheKHz9 5y21rrVrKGR7Xly5whzM6TNK3uTuW2/6zcO+HAaodRfoD5Jf9PMRTp83x7AklMUW FvZqz4Zj38nZIQe/7gHtA6jA97N6Y/IsRbUUCl5EXdiZElLXMgGQBqOjbXIEuPyC bGkMjtBXgqikmKGbbgj/sPqZYBVmBedBZV2joRdNZaiZL9MiA89IxlxgVj7on0E7 ODqNn3bds6B7xphtx6aIF+YCsdrctW2Y -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:12 2025 by rpki-client on console.sobornost.net