$ rpki-client -vvf rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft File: ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft (raw, json) Hash identifier: qCyPG2o4QmAySTf89rjT448S+vz8v/ssVtD0ZPOEhBg= Subject key identifier: 25:23:8C:7A:4F:0B:D8:E8:50:16:BA:A9:11:A6:3C:CA:01:CB:13:16 Authority key identifier: CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 Certificate issuer: /CN=A9193037/serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Certificate serial: 08F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft Manifest number: 08E8 Signing time: Mon 28 Apr 2025 20:52:11 +0000 Manifest this update: Mon 28 Apr 2025 20:52:10 +0000 Manifest next update: Mon 05 May 2025 20:52:10 +0000 Files and hashes: 1: ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl (hash: JW16ApTlJnT+MOrFye7IM3AiJcCUS5zrs8GBHoY925Y=) 2: D9C523A0B05A11EAA233021EC4F9AE02.roa (hash: plSH71jqFHiqVOcppEgGivQOT8E3EqzsKsifhjqPdW8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193037, serialNumber=CA955914F98B2FC916A4512DA72AB75A11C52BD0 Validity Not Before: Apr 28 20:52:10 2025 GMT Not After : May 5 20:52:10 2025 GMT Subject: CN=680fea7b-567e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:7d:0d:6d:d5:a1:09:f2:88:3a:15:c2:b8: 1c:2d:bc:db:12:7c:59:d5:b7:88:d3:b2:ed:0a:a2: f8:6c:4f:45:be:8a:5e:df:cb:ad:13:2d:90:be:82: 8e:08:af:11:7a:c1:e3:a1:4d:f7:1e:53:0a:d8:7a: 63:ba:c5:f0:44:1c:45:45:55:c5:38:86:4f:fd:0b: eb:e0:df:25:68:b1:7f:f8:c5:64:94:83:1f:05:cc: c2:3c:3d:02:e3:29:c7:81:4d:fe:22:b0:37:59:64: 03:f3:fe:5d:71:cb:b2:19:c7:6c:ed:86:f5:26:5a: 94:f1:59:67:6f:fd:b9:c9:ba:a2:20:3e:0c:50:ff: 2a:af:23:9b:cc:16:ea:b6:a5:ce:85:66:06:a0:1d: 3b:89:e6:a7:dc:19:b1:df:0e:26:31:b6:a7:9a:eb: e6:24:92:32:d4:7f:82:ef:32:07:f4:11:1d:a2:cd: b2:67:a9:bd:8e:e8:be:5a:83:60:c7:83:30:e5:74: b7:a0:dc:44:f8:22:37:66:68:26:9f:f9:d6:70:20: 6d:7c:21:bb:67:65:f3:d3:13:07:eb:63:af:fb:01: 41:75:3c:87:b4:b0:d4:f8:9c:f3:51:9a:f6:f9:f0: 50:1d:fc:f1:7e:c2:9e:6c:e7:7f:29:05:6b:eb:48: 7e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:23:8C:7A:4F:0B:D8:E8:50:16:BA:A9:11:A6:3C:CA:01:CB:13:16 X509v3 Authority Key Identifier: keyid:CA:95:59:14:F9:8B:2F:C9:16:A4:51:2D:A7:2A:B7:5A:11:C5:2B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypVZFPmLL8kWpFEtpyq3WhHFK9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193037/940E46B4AABC11EAB106C176C4F9AE02/ypVZFPmLL8kWpFEtpyq3WhHFK9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:16:13:87:1c:58:6d:66:f7:55:40:77:57:44:1d:57:98:46: 1b:d5:a0:23:59:bb:89:74:29:8e:10:35:0c:7b:4c:3d:e2:84: c3:bb:cd:6f:dd:6d:25:ac:8f:4a:eb:9f:26:33:19:8c:8d:0a: 9f:79:d6:79:58:bd:9f:99:78:30:72:af:66:24:a7:2e:f6:00: c5:e5:f3:4f:fa:d8:67:d4:d3:0b:4d:f6:1d:18:70:34:1b:a8: ef:26:d0:42:f6:bf:2f:62:c3:fd:9b:ff:e5:4d:59:66:2c:57: e4:6d:ad:43:37:3f:81:cf:ee:df:3f:aa:76:b8:55:21:9b:c6: cf:df:92:aa:fd:1c:c6:f0:cf:1e:27:08:a2:08:33:10:4b:78: f8:62:14:f6:84:36:6c:0d:2e:cf:9d:ac:e4:fb:fd:60:dd:04: 95:00:40:a3:0b:19:95:4c:bc:71:5f:47:a5:39:f3:19:88:50: 58:82:58:f8:dc:55:00:4a:f6:0f:30:45:7f:64:f9:c9:7a:56: 45:34:56:f9:c9:98:30:64:ac:43:ac:4e:6b:82:22:b2:75:cf: 13:27:34:9f:80:1c:83:91:54:d0:66:37:bc:d5:a2:c9:5b:bb: 51:e0:71:d6:e1:e7:17:c1:cb:35:c4:fb:84:5b:44:1a:65:1e: 05:2b:e7:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwMzcxMTAvBgNVBAUTKENBOTU1OTE0Rjk4QjJGQzkxNkE0NTEyREE3MkFCNzVB MTFDNTJCRDAwHhcNMjUwNDI4MjA1MjEwWhcNMjUwNTA1MjA1MjEwWjAYMRYwFAYD VQQDEw02ODBmZWE3Yi01NjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw519DW3VoQnyiDoVwrgcLbzbEnxZ1beI07LtCqL4bE9Fvope38utEy2QvoKO CK8ResHjoU33HlMK2HpjusXwRBxFRVXFOIZP/Qvr4N8laLF/+MVklIMfBczCPD0C 4ynHgU3+IrA3WWQD8/5dccuyGcds7Yb1JlqU8Vlnb/25ybqiID4MUP8qryObzBbq tqXOhWYGoB07iean3Bmx3w4mMbanmuvmJJIy1H+C7zIH9BEdos2yZ6m9jui+WoNg x4Mw5XS3oNxE+CI3Zmgmn/nWcCBtfCG7Z2Xz0xMH62Ov+wFBdTyHtLDU+JzzUZr2 +fBQHfzxfsKebOd/KQVr60h+SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUjjHpP C9joUBa6qRGmPMoByxMWMB8GA1UdIwQYMBaAFMqVWRT5iy/JFqRRLacqt1oRxSvQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzAzNy85NDBFNDZCNEFB QkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4a1dwRkV0cHlxM1doSEZL OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwVlpGUG1MTDhrV3BGRXRweXEzV2hIRks5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzAzNy85NDBFNDZCNEFBQkMxMUVBQjEwNkMxNzZDNEY5QUUwMi95cFZaRlBtTEw4 a1dwRkV0cHlxM1doSEZLOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYFhOHHFhtZvdVQHdXRB1XmEYb1aAjWbuJdCmOEDUMe0w94oTDu81v 3W0lrI9K658mMxmMjQqfedZ5WL2fmXgwcq9mJKcu9gDF5fNP+thn1NMLTfYdGHA0 G6jvJtBC9r8vYsP9m//lTVlmLFfkba1DNz+Bz+7fP6p2uFUhm8bP35Kq/RzG8M8e JwiiCDMQS3j4YhT2hDZsDS7Pnazk+/1g3QSVAECjCxmVTLxxX0elOfMZiFBYglj4 3FUASvYPMEV/ZPnJelZFNFb5yZgwZKxDrE5rgiKydc8TJzSfgByDkVTQZje81aLJ W7tR4HHW4ecXwcs1xPuEW0QaZR4FK+fG -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:39 2025 by rpki-client on console.sobornost.net