$ rpki-client -vvf rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.mft File: TyFhsA_Cs23gqCRPCvKBQnkChg4.mft (raw, json) Hash identifier: Ncs19qk5GJqJTnqhzrC+TKZbg/r7o87IIQ8yhX307Fc= Subject key identifier: 0D:33:EC:7C:61:27:9B:13:8A:EF:E0:CA:CB:CF:D2:4E:72:B6:6D:7A Authority key identifier: 4F:21:61:B0:0F:C2:B3:6D:E0:A8:24:4F:0A:F2:81:42:79:02:86:0E Certificate issuer: /CN=A91C19F7/serialNumber=4F2161B00FC2B36DE0A8244F0AF281427902860E Certificate serial: 09A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TyFhsA_Cs23gqCRPCvKBQnkChg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.mft Manifest number: 09A1 Signing time: Mon 28 Apr 2025 20:29:41 +0000 Manifest this update: Mon 28 Apr 2025 20:29:40 +0000 Manifest next update: Mon 05 May 2025 20:29:40 +0000 Files and hashes: 1: TyFhsA_Cs23gqCRPCvKBQnkChg4.crl (hash: rhBV6HhDpuwgdvIU3pMXeI7qEMr7cMiae8Zb+qERPY4=) 2: C09BAC8E860011EABD37250EC4F9AE02.roa (hash: uCKaTzHSq8roKOND3QIAWtaboT0I2xNDmaN9cosgyvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.crl rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TyFhsA_Cs23gqCRPCvKBQnkChg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 20:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2470 (0x9a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C19F7, serialNumber=4F2161B00FC2B36DE0A8244F0AF281427902860E Validity Not Before: Apr 28 20:29:40 2025 GMT Not After : May 5 20:29:40 2025 GMT Subject: CN=680fe535-494e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:db:95:37:4d:cf:04:5f:46:54:4a:b3:ac:dc: 36:c2:a0:21:5a:3c:55:22:a2:d8:eb:12:dd:81:30: 07:aa:db:38:c4:aa:95:16:25:fe:2f:be:a5:c5:71: 6e:fa:c1:1f:c9:29:04:b0:9c:3a:42:d8:5a:1c:f4: b6:ed:d7:68:ab:46:f7:14:c1:54:af:1a:9f:c6:2b: f7:b0:46:17:15:8b:13:3b:19:04:ed:ce:18:23:05: be:32:a1:c6:29:53:c8:49:a3:f2:1f:e0:30:21:83: 9c:f4:c8:9d:d1:b6:d6:56:8c:e2:56:09:e2:fb:b4: 01:08:02:82:f8:0d:07:57:9f:89:a7:6f:64:31:0b: 19:50:b9:ad:2c:ae:3f:b4:9f:b9:37:7d:8d:6a:bf: cf:96:a5:61:66:da:12:1d:24:96:1c:d5:27:84:cc: 50:b7:ba:2c:3c:e5:ae:26:31:93:42:5c:c3:7d:46: 78:3f:76:a4:fc:77:86:62:0f:b0:1a:64:f6:31:75: 1f:07:55:05:3c:92:15:56:03:4e:2b:cd:17:b6:a5: 91:d9:3e:55:c1:b3:9d:ec:03:08:d8:78:ab:af:03: 3c:58:f2:12:18:3a:a1:71:e7:8d:b8:e7:d2:91:35: 21:f9:f6:64:98:d0:d6:33:5f:cc:6c:2c:1c:ef:58: 57:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:33:EC:7C:61:27:9B:13:8A:EF:E0:CA:CB:CF:D2:4E:72:B6:6D:7A X509v3 Authority Key Identifier: keyid:4F:21:61:B0:0F:C2:B3:6D:E0:A8:24:4F:0A:F2:81:42:79:02:86:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TyFhsA_Cs23gqCRPCvKBQnkChg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C19F7/61D9F5B285FF11EABFC7150CC4F9AE02/TyFhsA_Cs23gqCRPCvKBQnkChg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:2a:92:0c:3d:0a:18:d9:7e:8e:9f:8d:58:dc:4d:06:23:37: db:46:65:7d:90:c7:03:f9:5c:72:6f:82:41:68:95:34:77:5d: 0b:02:39:8f:6e:00:19:6c:37:49:af:88:0f:e9:7b:a3:28:9e: 11:c5:fc:58:ee:dd:71:d9:36:98:02:34:d5:db:11:2e:f3:50: 3e:61:bc:ac:f2:14:f9:84:61:d5:ff:14:55:17:03:ec:98:55: ab:8b:fa:06:d8:d8:ac:1f:9c:f5:74:42:6f:b0:c8:95:f1:48: ab:a3:79:19:59:12:d1:fe:b8:53:ee:f5:2e:a7:60:0d:e6:57: 46:5e:28:23:4d:19:e4:86:d6:79:30:07:6c:ba:0c:d8:84:db: 88:fb:4b:8f:b9:c9:b1:7e:7e:ae:33:bf:8e:27:e0:91:42:0c: 1f:e3:2e:4e:89:ab:70:17:e1:ba:db:73:ae:d4:cb:69:b4:a0: b5:25:08:3d:d5:2f:c9:9b:bc:a7:af:9f:c4:65:d3:6d:75:d9: 9e:12:4b:5f:bc:9d:d3:82:d2:a8:d4:d7:4c:ed:e5:f8:0b:1e: 01:4a:17:8c:e5:96:47:69:2e:0a:ce:1c:91:f4:ad:c1:a2:54: c4:16:e0:c1:83:e1:8d:da:a6:6b:c7:89:0b:ef:0a:a7:2f:1e: ad:91:54:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE5RjcxMTAvBgNVBAUTKDRGMjE2MUIwMEZDMkIzNkRFMEE4MjQ0RjBBRjI4MTQy NzkwMjg2MEUwHhcNMjUwNDI4MjAyOTQwWhcNMjUwNTA1MjAyOTQwWjAYMRYwFAYD VQQDEw02ODBmZTUzNS00OTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8NuVN03PBF9GVEqzrNw2wqAhWjxVIqLY6xLdgTAHqts4xKqVFiX+L76lxXFu +sEfySkEsJw6QthaHPS27ddoq0b3FMFUrxqfxiv3sEYXFYsTOxkE7c4YIwW+MqHG KVPISaPyH+AwIYOc9Mid0bbWVoziVgni+7QBCAKC+A0HV5+Jp29kMQsZULmtLK4/ tJ+5N32Nar/PlqVhZtoSHSSWHNUnhMxQt7osPOWuJjGTQlzDfUZ4P3ak/HeGYg+w GmT2MXUfB1UFPJIVVgNOK80XtqWR2T5VwbOd7AMI2HirrwM8WPISGDqhceeNuOfS kTUh+fZkmNDWM1/MbCwc71hXtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0z7Hxh J5sTiu/gysvP0k5ytm16MB8GA1UdIwQYMBaAFE8hYbAPwrNt4KgkTwrygUJ5AoYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTlGNy82MUQ5RjVCMjg1 RkYxMUVBQkZDNzE1MENDNEY5QUUwMi9UeUZoc0FfQ3MyM2dxQ1JQQ3ZLQlFua0No ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R5RmhzQV9DczIzZ3FDUlBDdktCUW5rQ2hnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTlGNy82MUQ5RjVCMjg1RkYxMUVBQkZDNzE1MENDNEY5QUUwMi9UeUZoc0FfQ3My M2dxQ1JQQ3ZLQlFua0NoZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5KpIMPQoY2X6On41Y3E0GIzfbRmV9kMcD+Vxyb4JBaJU0d10LAjmP bgAZbDdJr4gP6XujKJ4RxfxY7t1x2TaYAjTV2xEu81A+Ybys8hT5hGHV/xRVFwPs mFWri/oG2NisH5z1dEJvsMiV8Uiro3kZWRLR/rhT7vUup2AN5ldGXigjTRnkhtZ5 MAdsugzYhNuI+0uPucmxfn6uM7+OJ+CRQgwf4y5OiatwF+G623Ou1MtptKC1JQg9 1S/Jm7ynr5/EZdNtddmeEktfvJ3TgtKo1NdM7eX4Cx4BSheM5ZZHaS4KzhyR9K3B olTEFuDBg+GN2qZrx4kL7wqnLx6tkVRF -----END CERTIFICATE-----Generated at Mon Apr 28 23:05:53 2025 by rpki-client on console.sobornost.net