$ rpki-client -vvf rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft File: hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft (raw, json) Hash identifier: AvW8I46zd4xVf5DuS/jF/W8gvGLfmwPzksP94gdJwcw= Subject key identifier: 0F:76:82:E4:C0:69:54:04:4B:86:9A:F4:BF:F4:EF:BF:A3:17:FB:61 Authority key identifier: 87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 Certificate issuer: /CN=A919AC9A/serialNumber=8728B828F318603E44711070C24ECC088A190060 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft Manifest number: 0101 Signing time: Fri 25 Apr 2025 04:10:34 +0000 Manifest this update: Fri 25 Apr 2025 04:10:33 +0000 Manifest next update: Fri 02 May 2025 04:10:33 +0000 Files and hashes: 1: hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl (hash: 2ZFjCdqXO/2VdXNw7rKIq+kTWbXT84jt/HXm1WVwqFk=) 2: F0D7EB5097FA11EE90066875C4F9AE02.roa (hash: vxxrjf6mh6He/Qk48r/ND4XKn6+HAksWQduimGVP494=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AC9A, serialNumber=8728B828F318603E44711070C24ECC088A190060 Validity Not Before: Apr 25 04:10:33 2025 GMT Not After : May 2 04:10:33 2025 GMT Subject: CN=680b0b39-6c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:f7:71:39:05:b3:1f:0b:c8:3d:19:fc:6f: 63:28:5a:1a:fd:aa:5f:62:57:25:8e:82:74:8b:1d: c4:65:12:c7:a4:55:4e:1b:6d:6e:35:f3:90:b8:6a: ee:29:e7:d9:29:18:91:51:7b:7a:0e:02:51:de:72: 14:79:ee:ad:24:05:6d:8c:56:e8:b0:60:d6:6f:44: 8f:e5:96:60:e9:58:de:91:4c:c8:c5:ea:d8:03:92: 55:f4:d2:f6:ae:75:0b:df:6d:41:0f:df:4c:d8:db: d5:48:db:91:a1:f8:84:b1:da:06:d4:20:ca:f4:0a: 72:84:d5:46:50:de:39:22:05:6d:3f:8a:8b:52:62: 60:c2:41:71:fa:65:6f:34:8c:dd:52:ff:4b:a0:66: 8d:d2:9a:73:4e:b7:e5:56:d4:49:56:48:1e:b9:50: f1:77:0e:d9:e7:c7:df:69:6c:eb:8d:29:19:f7:75: 6e:37:23:d0:a8:52:8a:06:e5:57:c3:ed:36:3e:89: 29:63:07:43:39:12:df:27:ec:74:e4:f8:8c:1d:47: dd:8a:18:3e:c8:b1:fd:cc:08:21:60:a2:3a:49:92: 0a:20:3f:75:26:3b:42:f1:c0:99:0a:38:cd:4f:4d: 4f:44:b6:49:33:b7:65:24:b6:3f:39:96:97:67:c3: a4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:76:82:E4:C0:69:54:04:4B:86:9A:F4:BF:F4:EF:BF:A3:17:FB:61 X509v3 Authority Key Identifier: keyid:87:28:B8:28:F3:18:60:3E:44:71:10:70:C2:4E:CC:08:8A:19:00:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyi4KPMYYD5EcRBwwk7MCIoZAGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AC9A/E19A257897F411EEBCEDC34FC4F9AE02/hyi4KPMYYD5EcRBwwk7MCIoZAGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:14:fd:a4:1d:be:58:15:12:b1:bb:22:e3:ff:17:42:10:12: bd:8c:1d:8e:6a:5e:63:dc:a0:b6:ed:33:91:65:49:3e:be:d2: e8:d3:c2:55:08:77:41:61:47:d0:2d:23:f7:bd:af:f2:6a:2f: 97:e7:64:a8:5f:76:de:a0:a3:f0:99:d6:96:e4:3e:b5:e5:2d: 95:67:ee:12:6b:64:3b:80:ab:7e:81:7a:70:38:56:48:89:2f: 7c:0e:ee:82:87:f0:fe:90:e2:c1:4e:f9:93:5e:cb:7b:15:6f: 1b:5b:11:17:0f:3e:57:11:e4:76:4b:53:05:35:09:19:0e:2e: d9:f3:fa:c7:28:9c:0f:6b:3e:b4:8e:1d:98:58:74:cf:06:fa: 7d:0e:e9:07:e5:3c:d7:35:72:f1:0d:27:ac:02:78:66:41:31: 3b:40:04:ac:15:a7:cd:40:6e:7f:f6:f7:b5:dc:30:a9:62:9b: 13:d5:df:75:65:86:61:4e:f6:1d:bf:73:1f:96:13:fc:3a:98: e1:01:bc:f0:30:b3:88:c7:1f:14:e1:39:bb:75:41:d7:fc:6e: d2:67:6e:c7:6d:90:93:56:6c:11:71:df:55:40:75:c2:f0:05: f4:29:6f:7d:0d:25:c2:5e:d9:34:81:63:53:a4:22:2b:9c:42: 5f:ef:65:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDOUExMTAvBgNVBAUTKDg3MjhCODI4RjMxODYwM0U0NDcxMTA3MEMyNEVDQzA4 OEExOTAwNjAwHhcNMjUwNDI1MDQxMDMzWhcNMjUwNTAyMDQxMDMzWjAYMRYwFAYD VQQDEw02ODBiMGIzOS02YzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYr3cTkFsx8LyD0Z/G9jKFoa/apfYlcljoJ0ix3EZRLHpFVOG21uNfOQuGru KefZKRiRUXt6DgJR3nIUee6tJAVtjFbosGDWb0SP5ZZg6VjekUzIxerYA5JV9NL2 rnUL321BD99M2NvVSNuRofiEsdoG1CDK9ApyhNVGUN45IgVtP4qLUmJgwkFx+mVv NIzdUv9LoGaN0ppzTrflVtRJVkgeuVDxdw7Z58ffaWzrjSkZ93VuNyPQqFKKBuVX w+02PokpYwdDORLfJ+x05PiMHUfdihg+yLH9zAghYKI6SZIKID91JjtC8cCZCjjN T01PRLZJM7dlJLY/OZaXZ8OkhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA92guTA aVQES4aa9L/077+jF/thMB8GA1UdIwQYMBaAFIcouCjzGGA+RHEQcMJOzAiKGQBg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUM5QS9FMTlBMjU3ODk3 RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlENUVjUkJ3d2s3TUNJb1pB R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5aTRLUE1ZWUQ1RWNSQnd3azdNQ0lvWkFHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUM5QS9FMTlBMjU3ODk3RjQxMUVFQkNFREMzNEZDNEY5QUUwMi9oeWk0S1BNWVlE NUVjUkJ3d2s3TUNJb1pBR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0FP2kHb5YFRKxuyLj/xdCEBK9jB2Oal5j3KC27TORZUk+vtLo08JV CHdBYUfQLSP3va/yai+X52SoX3beoKPwmdaW5D615S2VZ+4Sa2Q7gKt+gXpwOFZI iS98Du6Ch/D+kOLBTvmTXst7FW8bWxEXDz5XEeR2S1MFNQkZDi7Z8/rHKJwPaz60 jh2YWHTPBvp9DukH5TzXNXLxDSesAnhmQTE7QASsFafNQG5/9ve13DCpYpsT1d91 ZYZhTvYdv3MflhP8OpjhAbzwMLOIxx8U4Tm7dUHX/G7SZ27HbZCTVmwRcd9VQHXC 8AX0KW99DSXCXtk0gWNTpCIrnEJf72Vj -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:52 2025 by rpki-client on console.sobornost.net