$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: L/Gi9xiJktwjtoaUlpS9RS1F7tbn8YZYP4Xwj+r1WtE= Subject key identifier: 79:B7:8A:83:F4:78:F0:5B:48:A5:C7:AB:37:EE:39:1A:BF:1E:85:7D Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 34C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 3496 Signing time: Thu 24 Apr 2025 14:49:42 +0000 Manifest this update: Thu 24 Apr 2025 14:49:42 +0000 Manifest next update: Thu 01 May 2025 14:49:42 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: m6EghV2TPFszgYipCjCUuBK1T9SOC9tfwtd3HWeJidM=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13508 (0x34c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Apr 24 14:49:42 2025 GMT Not After : May 1 14:49:42 2025 GMT Subject: CN=680a4f86-8450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d6:36:1f:73:6b:f0:3a:8b:31:f8:5c:15:6b: 74:ac:95:fb:97:e2:75:58:00:bd:0a:db:8f:9c:c4: 17:3e:be:c7:63:49:ab:91:3a:0d:db:96:8c:18:ee: 52:2b:0b:01:c8:59:76:cd:9b:96:a4:f6:d5:b0:5a: a0:db:ea:eb:c5:df:07:71:67:23:46:8b:89:3b:d2: 49:a7:e9:8f:67:84:3c:b0:90:43:14:82:1b:b3:74: 7a:87:17:a4:91:24:fc:e0:50:67:80:74:ae:8c:08: 8e:d2:18:45:56:31:28:8f:e0:7e:86:03:33:74:6d: 9e:5f:64:d9:28:25:a8:37:be:cc:2e:d1:53:fb:b4: 36:6e:50:c3:ae:dc:0a:ff:93:f0:3c:3b:29:77:b4: f0:98:e8:28:4c:ad:cc:2c:ae:cc:1b:f2:ff:4c:cf: ee:02:30:60:a6:f0:24:8b:f2:ae:77:d2:54:97:60: 6e:83:05:ac:bb:f6:39:04:01:45:17:2c:c9:6d:1d: 30:17:35:95:35:76:92:c9:dc:ed:13:48:6d:74:92: d2:62:91:49:93:79:a8:f9:a5:2c:ca:16:8c:1f:b1: 1a:f4:c4:da:de:6f:28:f8:e6:1e:f4:ee:b2:e8:63: cf:97:fd:e1:0d:9a:07:a8:16:dc:28:55:2a:91:14: 09:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B7:8A:83:F4:78:F0:5B:48:A5:C7:AB:37:EE:39:1A:BF:1E:85:7D X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:82:f0:e7:86:cb:c8:19:2e:e0:b8:65:0c:b4:07:e0:4e:d9: 23:6f:7d:fd:25:ed:63:38:1f:a5:49:39:4a:94:be:30:62:0d: fa:21:65:5d:d1:95:f1:4e:c2:fb:fe:91:2c:6e:87:3e:90:f2: c4:bf:d0:30:6b:79:3f:ed:f5:e2:39:eb:de:66:11:4c:10:3a: 67:88:db:f6:67:ee:7b:5a:93:f4:af:df:f3:76:ab:56:8b:6d: 09:68:dc:c8:12:6a:df:33:fd:4c:0a:bf:25:96:0b:8b:ed:b4: a4:c5:97:6f:e0:ba:0a:c0:ad:7d:67:ef:cc:89:26:37:83:a3: 5a:3c:c2:ba:42:f2:88:f8:f0:93:f4:72:7f:95:cd:96:87:88: bb:17:fa:c4:f7:8b:c6:56:cb:27:88:8f:32:50:05:c5:8e:b7: 84:be:2f:0d:d3:42:e0:e3:7e:4f:7c:57:9f:08:f1:c3:10:c6: 2f:69:29:4e:ca:fb:39:2a:09:35:83:cb:48:2f:07:f9:4b:f2: 17:18:74:54:27:00:3f:2a:7a:80:4b:90:b0:43:00:27:8f:f1: c8:89:1f:69:c0:d3:34:4b:b2:12:a0:ec:61:86:76:5a:89:c4: fb:0d:7c:9a:ab:4b:69:61:8c:11:bb:00:c1:90:bf:92:cc:81: 41:bd:3f:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUwNDI0MTQ0OTQyWhcNMjUwNTAxMTQ0OTQyWjAYMRYwFAYD VQQDEw02ODBhNGY4Ni04NDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79Y2H3Nr8DqLMfhcFWt0rJX7l+J1WAC9CtuPnMQXPr7HY0mrkToN25aMGO5S KwsByFl2zZuWpPbVsFqg2+rrxd8HcWcjRouJO9JJp+mPZ4Q8sJBDFIIbs3R6hxek kST84FBngHSujAiO0hhFVjEoj+B+hgMzdG2eX2TZKCWoN77MLtFT+7Q2blDDrtwK /5PwPDspd7TwmOgoTK3MLK7MG/L/TM/uAjBgpvAki/Kud9JUl2BugwWsu/Y5BAFF FyzJbR0wFzWVNXaSydztE0htdJLSYpFJk3mo+aUsyhaMH7Ea9MTa3m8o+OYe9O6y 6GPPl/3hDZoHqBbcKFUqkRQJiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHm3ioP0 ePBbSKXHqzfuORq/HoV9MB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtgvDnhsvIGS7guGUMtAfgTtkjb339Je1jOB+lSTlKlL4wYg36IWVd 0ZXxTsL7/pEsboc+kPLEv9Awa3k/7fXiOeveZhFMEDpniNv2Z+57WpP0r9/zdqtW i20JaNzIEmrfM/1MCr8llguL7bSkxZdv4LoKwK19Z+/MiSY3g6NaPMK6QvKI+PCT 9HJ/lc2Wh4i7F/rE94vGVssniI8yUAXFjreEvi8N00Lg435PfFefCPHDEMYvaSlO yvs5Kgk1g8tILwf5S/IXGHRUJwA/KnqAS5CwQwAnj/HIiR9pwNM0S7ISoOxhhnZa icT7DXyaq0tpYYwRuwDBkL+SzIFBvT9Y -----END CERTIFICATE-----Generated at Thu Apr 24 18:09:17 2025 by rpki-client on console.sobornost.net