$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: b2nUNKbjWV5bdtvw74YUSI+qMFiqlTG/fjGEvL+tGgU= Subject key identifier: 6A:55:1D:87:E0:A1:CF:09:8E:FD:F4:29:86:39:F2:82:2C:73:1A:1A Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 019F Signing time: Sun 27 Apr 2025 02:24:40 +0000 Manifest this update: Sun 27 Apr 2025 02:24:40 +0000 Manifest next update: Sun 04 May 2025 02:24:40 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: xYi+jhlEL8MvKaOUTPwerm9nP/gY6NJ7DFjjcbhbTI8=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Apr 27 02:24:40 2025 GMT Not After : May 4 02:24:40 2025 GMT Subject: CN=680d9568-21f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:4b:05:9f:03:04:0c:99:0b:b7:2b:cf:12: 59:bf:94:4f:df:de:7a:f7:46:77:43:aa:3b:22:a7: a9:ce:dd:9e:1e:c2:ce:c6:5c:67:b0:81:0b:0e:57: 06:6f:cb:cc:d7:66:82:f7:d2:9c:fd:eb:04:cc:56: b1:e7:d5:97:be:83:e6:40:64:96:05:17:05:b5:4c: 2b:01:81:0a:0b:29:c6:3f:f1:90:42:04:df:3a:6f: 7d:30:6f:86:62:74:6a:72:75:ad:86:85:af:36:8a: 17:e9:c6:6b:36:d9:cf:95:95:6c:98:9e:39:87:d7: 8e:31:53:26:3c:9b:ab:32:52:a2:eb:7f:94:e0:4e: 58:d7:af:ca:cd:15:f4:ba:7b:87:58:01:5a:62:f7: b1:e7:ef:66:2e:cf:3e:ea:1e:14:9c:3a:b3:e5:c8: fc:c2:d3:38:d7:c8:52:1f:11:78:b2:00:a5:fc:4a: 08:65:74:ad:45:d9:83:3a:86:8b:64:4e:b8:db:41: d7:44:b1:c5:a8:13:81:8a:a7:47:8a:cb:4a:5e:70: c3:e2:08:17:61:5b:d5:63:50:b7:7a:b9:56:66:7e: 36:32:23:a3:94:df:bb:ec:1f:dc:9a:73:09:37:35: d4:cf:b0:af:bf:3b:d8:d1:d1:8b:ba:6a:47:9e:44: 80:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:55:1D:87:E0:A1:CF:09:8E:FD:F4:29:86:39:F2:82:2C:73:1A:1A X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:27:80:9e:a0:49:c1:72:67:5d:e9:33:06:ee:83:6f:37:d9: 62:6a:61:63:73:66:c5:60:4f:65:9f:d7:10:b6:9d:73:94:31: 34:43:39:3c:1e:38:98:92:8c:14:d7:02:5b:c7:1e:41:99:07: 20:49:35:61:a4:0e:cf:d6:70:ef:64:dc:8e:e1:80:c4:1d:39: fb:94:8e:36:c5:1b:e1:b0:00:95:f0:fb:bd:fa:fa:de:30:cc: 75:02:e3:9c:16:18:e2:5b:73:4a:f5:46:bb:ee:ce:5c:ed:a4: 3d:68:b3:53:e3:33:02:2b:9a:b2:c8:26:4e:9e:52:cb:fd:a9: 9d:be:08:5f:91:31:5e:1d:84:31:d1:73:26:e8:53:51:96:e9: c8:14:42:02:20:00:07:62:93:15:c8:fe:2c:96:ad:4b:15:59: 06:4b:e7:ab:0e:9e:21:70:5b:11:26:a9:49:06:34:2d:9f:9b: eb:46:65:95:2a:70:7a:ec:d2:7b:27:64:a3:59:52:57:cb:a7: 2e:d8:68:c2:f0:54:b1:0d:31:cf:04:aa:d4:23:8a:fb:9c:94: 43:5b:76:a1:bb:6c:1c:a4:5f:72:70:60:6c:2a:36:ce:21:04: 3d:73:3e:7c:91:51:a1:aa:a6:09:0c:de:ac:2d:c0:3f:f0:b3: 6f:fa:ba:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUwNDI3MDIyNDQwWhcNMjUwNTA0MDIyNDQwWjAYMRYwFAYD VQQDEw02ODBkOTU2OC0yMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mRLBZ8DBAyZC7crzxJZv5RP395690Z3Q6o7Iqepzt2eHsLOxlxnsIELDlcG b8vM12aC99Kc/esEzFax59WXvoPmQGSWBRcFtUwrAYEKCynGP/GQQgTfOm99MG+G YnRqcnWthoWvNooX6cZrNtnPlZVsmJ45h9eOMVMmPJurMlKi63+U4E5Y16/KzRX0 unuHWAFaYvex5+9mLs8+6h4UnDqz5cj8wtM418hSHxF4sgCl/EoIZXStRdmDOoaL ZE6420HXRLHFqBOBiqdHistKXnDD4ggXYVvVY1C3erlWZn42MiOjlN+77B/cmnMJ NzXUz7CvvzvY0dGLumpHnkSALQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpVHYfg oc8Jjv30KYY58oIscxoaMB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwJ4CeoEnBcmdd6TMG7oNvN9liamFjc2bFYE9ln9cQtp1zlDE0Qzk8 HjiYkowU1wJbxx5BmQcgSTVhpA7P1nDvZNyO4YDEHTn7lI42xRvhsACV8Pu9+vre MMx1AuOcFhjiW3NK9Ua77s5c7aQ9aLNT4zMCK5qyyCZOnlLL/amdvghfkTFeHYQx 0XMm6FNRlunIFEICIAAHYpMVyP4slq1LFVkGS+erDp4hcFsRJqlJBjQtn5vrRmWV KnB67NJ7J2SjWVJXy6cu2GjC8FSxDTHPBKrUI4r7nJRDW3ahu2wcpF9ycGBsKjbO IQQ9cz58kVGhqqYJDN6sLcA/8LNv+rpb -----END CERTIFICATE-----Generated at Sun Apr 27 05:43:07 2025 by rpki-client on console.sobornost.net