$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft File: YRGAfoKKxPmEJpPThhGVLfA9ckc.mft (raw, json) Hash identifier: ERZSv+iTukPOen8I4Xd9xoQLxVkk+OAgRrZdnUs/1zQ= Subject key identifier: 0E:4F:7D:E3:BC:D1:0A:4D:C5:A0:BA:2E:83:56:93:4C:75:2F:26:E5 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft Manifest number: 0145 Signing time: Fri 25 Apr 2025 03:29:33 +0000 Manifest this update: Fri 25 Apr 2025 03:29:32 +0000 Manifest next update: Fri 02 May 2025 03:29:32 +0000 Files and hashes: 1: YRGAfoKKxPmEJpPThhGVLfA9ckc.crl (hash: 7DVAHDz/mT0A8pg7ZLDk6oWe+PWwz+81zqdAP81oV1Q=) 2: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (hash: g09v6jk8fn3awL6foCEfKGlvvvO5I0PHpOGz6LziEuA=) 3: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (hash: rhIhi3I6SpyrkjjQ3cL8Mw2vXOogWSjfaZP+3P/2bFk=) 4: FBE34DB8538011EFB6264579C4F9AE02.roa (hash: qvUP6d81IdrzZbKdEjVG1snn+Y2Byr8jMGRCFKnK8TM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92, serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Apr 25 03:29:32 2025 GMT Not After : May 2 03:29:32 2025 GMT Subject: CN=680b019d-890b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:aa:65:47:e9:5c:66:d5:bb:cc:54:b5:4a:20: 74:04:d0:77:7b:24:8c:d3:72:c1:ba:e4:6a:a9:79: cc:41:8c:fb:e7:5a:c6:2b:44:50:a4:4c:89:12:8f: 61:59:59:5d:6b:e1:99:d1:e0:57:a0:4b:c9:f0:c1: 69:a1:15:7a:00:5f:0a:f6:84:a7:8f:4a:a5:89:89: 87:a3:72:c5:2e:7b:5a:81:6f:44:bc:7a:1b:ae:f3: 2e:c3:d3:99:80:7a:cf:32:32:d8:45:95:fc:06:46: 69:e8:89:aa:de:80:a3:57:c8:ac:10:2a:d4:a4:57: d5:f0:e0:89:29:94:d8:26:2c:a3:f7:2a:8a:45:7d: f8:08:03:a4:3b:e8:df:0d:b2:04:3c:05:43:a9:f3: 27:3f:3e:6b:62:1d:40:15:53:ad:48:86:56:31:b5: 5d:39:17:bc:b3:57:d4:ab:8f:f2:fa:53:c3:f0:a4: ae:9b:00:d1:d6:26:4f:be:4e:95:56:5b:a7:b0:2b: 64:55:b6:2b:f4:c5:c5:9a:36:8b:63:70:24:74:3a: 9b:a1:fa:75:64:1c:14:d2:58:3b:47:7a:bb:0b:08: 80:e9:13:bb:21:ab:be:61:5d:3a:20:9c:9f:28:b9: 2b:7e:cb:d3:03:df:26:52:be:06:ee:38:4a:22:d4: 3b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:4F:7D:E3:BC:D1:0A:4D:C5:A0:BA:2E:83:56:93:4C:75:2F:26:E5 X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:4d:2e:29:e5:71:e8:08:ce:d4:71:07:a9:19:56:82:d5:6b: c4:a0:e4:c9:d4:13:0d:04:d7:06:1d:86:06:95:3e:90:77:c4: e5:58:7d:c5:87:b3:4d:2f:d7:63:c7:84:8a:00:8b:f9:70:99: 33:16:03:7b:bb:57:27:fd:00:c9:dd:eb:40:ce:98:52:ce:ad: 4a:d0:54:b8:15:51:27:51:93:be:5e:39:3a:4a:75:ea:87:e0: fa:0e:ca:5e:bc:83:0f:86:2f:64:2a:92:47:6a:be:38:c1:25: 0e:39:cf:51:10:86:47:b7:44:fa:a6:a1:77:3a:3c:3d:fd:e9: 49:72:e0:9c:d0:e7:a9:9c:2b:04:0e:c7:95:a5:9a:ee:84:83: 7b:12:f1:99:cf:4b:52:a2:75:c1:c6:33:00:22:92:68:b1:4b: 21:9c:8c:21:f3:a9:cd:f2:fd:d2:13:6f:e3:f6:24:e8:53:73: 3a:23:c9:71:7f:30:ed:a2:1d:c4:73:08:da:6e:f5:b4:ce:aa: ff:9e:71:9e:54:47:69:13:53:05:c6:7f:d5:f3:7d:24:c1:f3: f9:f4:38:e1:bf:e6:20:ef:5e:de:29:da:f0:93:02:22:fd:cd: 58:4a:7a:fc:0d:d7:c4:b3:06:1a:0b:a9:aa:d0:de:c3:4a:8c: 64:2b:93:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjUwNDI1MDMyOTMyWhcNMjUwNTAyMDMyOTMyWjAYMRYwFAYD VQQDEw02ODBiMDE5ZC04OTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qplR+lcZtW7zFS1SiB0BNB3eySM03LBuuRqqXnMQYz751rGK0RQpEyJEo9h WVlda+GZ0eBXoEvJ8MFpoRV6AF8K9oSnj0qliYmHo3LFLntagW9EvHobrvMuw9OZ gHrPMjLYRZX8BkZp6Imq3oCjV8isECrUpFfV8OCJKZTYJiyj9yqKRX34CAOkO+jf DbIEPAVDqfMnPz5rYh1AFVOtSIZWMbVdORe8s1fUq4/y+lPD8KSumwDR1iZPvk6V VlunsCtkVbYr9MXFmjaLY3AkdDqbofp1ZBwU0lg7R3q7CwiA6RO7Iau+YV06IJyf KLkrfsvTA98mUr4G7jhKItQ7ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5PfeO8 0QpNxaC6LoNWk0x1LyblMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQ bUVKcFBUaGhHVkxmQTlja2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATTS4p5XHoCM7UcQepGVaC1WvEoOTJ1BMNBNcGHYYGlT6Qd8TlWH3F h7NNL9djx4SKAIv5cJkzFgN7u1cn/QDJ3etAzphSzq1K0FS4FVEnUZO+Xjk6SnXq h+D6DspevIMPhi9kKpJHar44wSUOOc9REIZHt0T6pqF3Ojw9/elJcuCc0OepnCsE DseVpZruhIN7EvGZz0tSonXBxjMAIpJosUshnIwh86nN8v3SE2/j9iToU3M6I8lx fzDtoh3EcwjabvW0zqr/nnGeVEdpE1MFxn/V830kwfP59Djhv+Yg717eKdrwkwIi /c1YSnr8DdfEswYaC6mq0N7DSoxkK5N5 -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:59 2025 by rpki-client on console.sobornost.net