$ rpki-client -vvf rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft File: 7Yy8VM2G8sH5LexryQnbxvpjTIE.mft (raw, json) Hash identifier: ju/lQBZdXjFJ0NPtyClRebKfibPQG4sntq/D8BF4ie4= Subject key identifier: 02:72:23:99:AA:A9:4C:28:34:17:C7:B6:0C:58:E2:01:01:26:27:CE Authority key identifier: ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 Certificate issuer: /CN=A918A3E6/serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft Manifest number: 07C7 Signing time: Sat 26 Apr 2025 20:50:11 +0000 Manifest this update: Sat 26 Apr 2025 20:50:10 +0000 Manifest next update: Sat 03 May 2025 20:50:10 +0000 Files and hashes: 1: 7Yy8VM2G8sH5LexryQnbxvpjTIE.crl (hash: t/1s3nMIQOWoMdRD+XRfvWN8jiNgEmT4WbAztedMDm8=) 2: C130A016889811EE8EB03D6EC4F9AE02.roa (hash: ps8T51LAEWm+2oQL0cFEdFjjIOqwK71webhbpBac664=) 3: 7ABD27E4889811EEB99AD46DC4F9AE02.roa (hash: Tzogk+KlaMGiRbq9BoG9FBqCIAU/Ao8ia39qrUgrDpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A3E6, serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Validity Not Before: Apr 26 20:50:10 2025 GMT Not After : May 3 20:50:10 2025 GMT Subject: CN=680d4703-4b6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:51:a1:1e:69:21:66:93:12:eb:af:32:aa:7d: da:42:44:59:6a:58:3c:20:55:f8:18:81:e8:39:be: 6a:c7:c5:df:2f:5d:8c:29:e2:ec:dd:93:03:39:96: 79:45:80:7a:ac:44:72:82:ed:30:c6:ec:e9:85:00: da:ed:a7:b7:72:5d:d6:53:74:64:0b:be:d1:cd:5f: bf:4f:dc:56:64:74:36:8e:36:fa:df:ab:fe:73:bd: bd:db:00:fe:92:62:46:c5:11:c7:27:70:ef:81:17: cd:64:66:27:66:7d:0b:6e:a9:a4:31:97:45:ca:45: 8f:59:25:78:88:e3:86:76:19:e6:7b:69:69:f7:8d: 32:17:9e:1d:15:c2:a5:98:28:33:c2:f6:9e:93:3a: 8d:c3:3b:0a:cc:84:86:eb:35:d7:e5:bd:81:d9:80: a5:e8:57:d2:8f:6a:d6:80:be:78:87:75:17:ae:48: a5:2b:fe:1a:e4:45:0c:4d:16:8e:5a:76:55:28:18: 27:dc:c1:91:60:c2:58:3d:86:45:08:b2:a5:8d:6c: fb:d7:c8:57:7c:6b:06:31:57:2b:07:4b:78:5f:a5: 15:3c:fd:d6:29:cb:58:82:ae:1b:e7:24:6e:a1:a6: b5:73:ae:5f:fc:97:53:76:c5:a8:a0:59:22:5f:29: 3e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:72:23:99:AA:A9:4C:28:34:17:C7:B6:0C:58:E2:01:01:26:27:CE X509v3 Authority Key Identifier: keyid:ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:bd:73:ae:72:ec:49:17:9c:80:15:42:48:00:92:7b:9f:41: 75:e0:bf:09:6d:ff:94:5e:35:7b:be:15:13:fe:32:58:0f:d7: c2:28:6e:c6:bf:da:5b:9e:5e:c5:3e:56:96:0c:d5:4c:22:a4: 53:46:b1:8e:9d:36:32:a8:01:03:17:c5:71:91:8c:aa:a5:27: 01:fc:d1:d2:38:20:d0:55:1f:ce:cb:12:cd:24:5c:87:03:ea: f8:4f:30:98:17:ea:b2:38:f8:1d:52:9d:fb:61:08:52:a1:29: ad:48:34:1e:9e:00:66:fb:ed:cf:dc:2f:8e:d8:01:f9:4c:0b: ab:62:3a:92:07:37:94:cb:d2:6d:f2:0c:3f:f8:d1:3f:6e:21: 7f:cd:d7:3a:5d:eb:ec:15:17:be:ac:30:d5:17:af:9c:d3:4e: 1d:59:3d:d9:3d:db:40:18:b9:90:a4:c8:a0:09:93:5b:02:85: 76:e5:38:c4:95:bb:92:0e:99:34:e2:9a:89:6b:84:2d:cc:99: 47:21:35:ad:b3:20:41:81:6d:7d:66:99:2d:0e:ee:0b:9c:1f: 2a:3e:d6:3f:b1:ce:59:71:0f:4f:4e:5f:a2:2d:56:25:52:94: a0:fd:e5:02:52:06:a1:2d:c3:de:5f:65:2a:fe:f8:b1:33:19: e8:70:3d:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzRTYxMTAvBgNVBAUTKEVEOENCQzU0Q0Q4NkYyQzFGOTJERUM2QkM5MDlEQkM2 RkE2MzRDODEwHhcNMjUwNDI2MjA1MDEwWhcNMjUwNTAzMjA1MDEwWjAYMRYwFAYD VQQDEw02ODBkNDcwMy00YjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VGhHmkhZpMS668yqn3aQkRZalg8IFX4GIHoOb5qx8XfL12MKeLs3ZMDOZZ5 RYB6rERygu0wxuzphQDa7ae3cl3WU3RkC77RzV+/T9xWZHQ2jjb636v+c7292wD+ kmJGxRHHJ3DvgRfNZGYnZn0LbqmkMZdFykWPWSV4iOOGdhnme2lp940yF54dFcKl mCgzwvaekzqNwzsKzISG6zXX5b2B2YCl6FfSj2rWgL54h3UXrkilK/4a5EUMTRaO WnZVKBgn3MGRYMJYPYZFCLKljWz718hXfGsGMVcrB0t4X6UVPP3WKctYgq4b5yRu oaa1c65f/JdTdsWooFkiXyk+WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJyI5mq qUwoNBfHtgxY4gEBJifOMB8GA1UdIwQYMBaAFO2MvFTNhvLB+S3sa8kJ28b6Y0yB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTNFNi82NDBENjE4RUYy QzkxMUVBODZGMTI3MTdDNEY5QUUwMi83WXk4Vk0yRzhzSDVMZXhyeVFuYnh2cGpU SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZeThWTTJHOHNINUxleHJ5UW5ieHZwalRJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTNFNi82NDBENjE4RUYyQzkxMUVBODZGMTI3MTdDNEY5QUUwMi83WXk4Vk0yRzhz SDVMZXhyeVFuYnh2cGpUSUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLvXOucuxJF5yAFUJIAJJ7n0F14L8Jbf+UXjV7vhUT/jJYD9fCKG7G v9pbnl7FPlaWDNVMIqRTRrGOnTYyqAEDF8VxkYyqpScB/NHSOCDQVR/OyxLNJFyH A+r4TzCYF+qyOPgdUp37YQhSoSmtSDQengBm++3P3C+O2AH5TAurYjqSBzeUy9Jt 8gw/+NE/biF/zdc6XevsFRe+rDDVF6+c004dWT3ZPdtAGLmQpMigCZNbAoV25TjE lbuSDpk04pqJa4QtzJlHITWtsyBBgW19ZpktDu4LnB8qPtY/sc5ZcQ9PTl+iLVYl UpSg/eUCUgahLcPeX2Uq/vixMxnocD26 -----END CERTIFICATE-----Generated at Sun Apr 27 00:14:06 2025 by rpki-client on console.sobornost.net