$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: 4Ok+ZHbpUIxPw3OAGu1ouSZ29ePnesjePfqkm2X07Dg= Subject key identifier: B7:7F:3F:5C:60:9B:61:DC:E7:8A:A4:32:12:ED:FF:B1:D3:1F:65:EB Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 0175 Signing time: Sun 27 Apr 2025 02:44:59 +0000 Manifest this update: Sun 27 Apr 2025 02:44:58 +0000 Manifest next update: Sun 04 May 2025 02:44:58 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: YT+WAFkjRBir1304rDlsU3ucEL9+WKrrAY62QtWb/aE=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Apr 27 02:44:58 2025 GMT Not After : May 4 02:44:58 2025 GMT Subject: CN=680d9a2b-3e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:39:21:46:98:aa:0b:c7:fb:e7:f3:bf:1b:49: 0a:b2:38:77:c0:8f:64:7b:54:f5:e8:6d:34:87:1d: 4b:fd:b4:49:70:9e:25:b2:97:c3:db:80:5d:1a:d2: 6f:7e:c3:c9:c6:34:e8:63:2e:c9:7c:4e:8b:90:41: b4:94:ff:83:7d:96:42:03:55:e8:22:ed:2b:95:bc: f3:0f:30:a2:0b:eb:9c:c1:d7:1b:77:38:c3:da:4c: ba:96:49:57:d8:8f:32:f9:d4:30:08:b2:e8:0e:0f: a8:3e:c4:0c:ad:bc:52:cd:75:a7:36:91:66:c7:30: f9:a8:b0:a1:c6:31:69:1e:33:3c:03:93:d8:2a:cd: 06:48:44:cd:58:a2:f2:05:94:b1:af:b4:0b:44:d1: 71:58:a3:cf:8a:63:eb:01:ee:ea:05:85:c9:7e:2c: fe:de:28:54:81:43:09:eb:66:81:02:be:39:4a:9f: ca:8d:70:fa:4c:81:c9:ec:ab:1d:4b:8b:c9:1d:02: 3f:f7:98:d0:83:27:a4:53:16:8e:de:16:58:63:e8: b4:c3:8c:93:ee:f1:7c:3b:d5:3b:0a:a3:56:be:e6: 69:35:2a:ad:c1:38:f2:fa:53:ee:79:b7:3e:f5:79: 8e:45:42:92:3e:a4:13:d4:d7:d9:be:99:9c:e7:f0: 08:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7F:3F:5C:60:9B:61:DC:E7:8A:A4:32:12:ED:FF:B1:D3:1F:65:EB X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:85:e0:77:47:f0:8d:08:67:52:d6:46:91:03:60:d2:d9:24: b0:9d:8a:43:4b:e2:37:05:b8:ca:33:67:9f:ab:ec:e5:7d:54: fa:7b:16:e4:2b:10:87:a7:62:b1:aa:95:ef:34:b2:53:40:44: 37:37:64:a5:21:df:2f:b9:64:15:c6:cb:1d:7a:71:d5:06:12: 1e:e3:a5:e1:a9:0c:5b:ca:5a:e1:a2:4e:84:77:61:c6:5f:ac: c9:e6:67:4f:ce:d4:1d:32:b3:bb:94:71:c1:87:c0:a0:6a:4c: df:42:b5:e8:9d:f5:d5:2c:c6:34:0a:77:12:89:40:f6:03:6a: 00:03:9d:2a:30:bc:b6:75:9d:16:1d:fb:63:c8:5e:ed:a0:85: 3b:b6:0c:5f:82:94:db:27:f1:72:31:00:3a:f2:d2:28:91:40: 93:28:f3:f0:e7:42:39:68:b3:c0:af:eb:fb:0e:26:bc:a8:6b: 82:ec:43:bc:28:c1:14:59:17:d1:ff:85:d5:96:ed:d6:45:76: 9d:7e:67:99:ac:77:33:a1:29:df:79:28:23:36:f2:a0:d1:01: fd:f2:05:46:10:3f:67:d5:b9:84:c1:6a:07:1b:f5:70:c9:f7: cf:4c:67:db:90:80:13:b6:e5:41:ff:da:9a:fd:3d:52:42:1d: 2b:1e:ff:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUwNDI3MDI0NDU4WhcNMjUwNTA0MDI0NDU4WjAYMRYwFAYD VQQDEw02ODBkOWEyYi0zZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zkhRpiqC8f75/O/G0kKsjh3wI9ke1T16G00hx1L/bRJcJ4lspfD24BdGtJv fsPJxjToYy7JfE6LkEG0lP+DfZZCA1XoIu0rlbzzDzCiC+ucwdcbdzjD2ky6lklX 2I8y+dQwCLLoDg+oPsQMrbxSzXWnNpFmxzD5qLChxjFpHjM8A5PYKs0GSETNWKLy BZSxr7QLRNFxWKPPimPrAe7qBYXJfiz+3ihUgUMJ62aBAr45Sp/KjXD6TIHJ7Ksd S4vJHQI/95jQgyekUxaO3hZYY+i0w4yT7vF8O9U7CqNWvuZpNSqtwTjy+lPuebc+ 9XmORUKSPqQT1NfZvpmc5/AIWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLd/P1xg m2Hc54qkMhLt/7HTH2XrMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApheB3R/CNCGdS1kaRA2DS2SSwnYpDS+I3BbjKM2efq+zlfVT6exbk KxCHp2KxqpXvNLJTQEQ3N2SlId8vuWQVxssdenHVBhIe46XhqQxbylrhok6Ed2HG X6zJ5mdPztQdMrO7lHHBh8CgakzfQrXonfXVLMY0CncSiUD2A2oAA50qMLy2dZ0W HftjyF7toIU7tgxfgpTbJ/FyMQA68tIokUCTKPPw50I5aLPAr+v7Dia8qGuC7EO8 KMEUWRfR/4XVlu3WRXadfmeZrHczoSnfeSgjNvKg0QH98gVGED9n1bmEwWoHG/Vw yffPTGfbkIATtuVB/9qa/T1SQh0rHv8y -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:02 2025 by rpki-client on console.sobornost.net