$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft File: y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft (raw, json) Hash identifier: uzD4isWvuLvFdaN39FtNQw7DgJmb4p64T0Wb4MyZfeI= Subject key identifier: 0E:A0:FC:0A:3C:FB:E5:E7:60:84:D6:EC:E0:80:58:6F:F0:2E:D2:88 Authority key identifier: CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 Certificate issuer: /CN=A91C3A74/serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Certificate serial: 2600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft Manifest number: 25E9 Signing time: Mon 28 Apr 2025 15:48:50 +0000 Manifest this update: Mon 28 Apr 2025 15:48:50 +0000 Manifest next update: Mon 05 May 2025 15:48:50 +0000 Files and hashes: 1: y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl (hash: z9Epo/RUKR0d9SsQSdWCW7vJxL9kbhtj+jofMfmrLbI=) 2: 767655BE561A11E79F98831DC4F9AE02.roa (hash: bf73yAvc50YmZ9DwhowT9EQ5/Cgl8VLGPJbD30MABw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9728 (0x2600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74, serialNumber=CB7B8DB424824C71A8703BBFB942A31529154363 Validity Not Before: Apr 28 15:48:50 2025 GMT Not After : May 5 15:48:50 2025 GMT Subject: CN=680fa362-4eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:7c:5d:35:cd:31:e0:92:8d:5c:ae:00:fa: 48:eb:cf:4a:4b:89:36:76:ef:a9:92:a4:ff:45:59: a5:5b:34:76:30:af:f7:bc:72:77:00:8f:6d:63:02: 50:76:fb:d5:3e:ae:e4:02:7c:87:2e:71:ac:bd:94: ca:8e:4f:33:73:3f:0e:90:b0:1d:b0:11:d3:9b:f6: 85:4b:c2:57:c6:c0:92:2b:2b:0c:f8:a3:cb:25:1c: 9f:81:c3:05:12:de:16:45:58:6c:30:44:bf:de:2a: 24:6b:95:20:e4:0a:9e:fa:92:6f:14:3a:38:ec:d3: f5:a0:6a:b5:f1:01:78:ed:05:fc:55:99:19:47:d8: 0f:f1:fe:3f:05:13:55:f9:4f:19:39:dd:1e:9d:95: 6b:75:34:fc:83:82:d0:aa:d1:5c:f2:f1:a4:65:7d: 32:ff:69:4a:48:d4:80:a2:06:11:3d:f2:a3:2b:34: 5b:c9:d4:3d:e5:95:4a:f1:a7:78:ad:09:63:e3:0c: 40:f6:5e:b6:d8:b8:e3:44:6e:22:60:3c:41:dd:68: 0f:46:0e:3e:cf:bc:7f:2f:33:bb:03:81:89:89:af: 3c:13:ca:f1:3e:9f:ee:cf:01:31:9d:fd:0b:36:25: 7b:ab:23:74:8d:da:c0:a2:b6:37:28:be:29:ac:70: 1e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A0:FC:0A:3C:FB:E5:E7:60:84:D6:EC:E0:80:58:6F:F0:2E:D2:88 X509v3 Authority Key Identifier: keyid:CB:7B:8D:B4:24:82:4C:71:A8:70:3B:BF:B9:42:A3:15:29:15:43:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y3uNtCSCTHGocDu_uUKjFSkVQ2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/7CB4A056FD3A11E486F8675FC4F9AE02/y3uNtCSCTHGocDu_uUKjFSkVQ2M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:77:fe:10:ea:b7:82:03:94:47:7e:d8:8d:2d:96:df:45:b9: 18:49:99:ee:f4:88:c0:69:29:36:d6:a0:ac:8a:0f:66:32:3d: 2d:a3:50:4e:32:42:cc:24:d1:56:18:9f:8e:71:a2:04:40:c2: 17:05:80:d5:2f:b3:ed:b3:cc:93:f9:5b:98:14:4d:31:6e:4b: c4:78:7d:2a:19:38:35:8c:8e:03:7c:30:9b:1d:28:25:8d:f1: 5f:7b:74:d3:83:50:34:df:d1:3c:96:88:0c:2e:ae:25:f9:a0: 43:67:3e:dd:ca:7f:b4:2d:93:39:3a:cc:6c:4a:82:40:32:f8: 77:15:a3:51:6e:8a:46:52:95:3a:43:0a:1a:17:1b:72:2d:9c: b9:be:1e:7b:45:cb:cf:3f:da:ed:4c:c8:5e:c1:b0:71:ff:eb: aa:f6:e1:af:c9:55:7a:29:25:e3:da:1c:6f:25:50:7c:30:94: 54:05:a5:de:53:87:26:44:64:2e:89:64:00:b8:e8:6e:4a:17: 7c:d3:8b:c6:b1:68:ff:1e:4a:3d:54:76:e5:f6:03:b1:89:67: f4:66:bf:63:cc:81:6e:f5:43:86:1d:d6:b6:a8:6c:ef:d2:c7: cb:23:24:9b:5a:a7:27:34:54:4b:a1:75:2e:37:6d:7a:ea:f5: f3:f8:f6:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKENCN0I4REI0MjQ4MjRDNzFBODcwM0JCRkI5NDJBMzE1 MjkxNTQzNjMwHhcNMjUwNDI4MTU0ODUwWhcNMjUwNTA1MTU0ODUwWjAYMRYwFAYD VQQDEw02ODBmYTM2Mi00ZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDx8XTXNMeCSjVyuAPpI689KS4k2du+pkqT/RVmlWzR2MK/3vHJ3AI9tYwJQ dvvVPq7kAnyHLnGsvZTKjk8zcz8OkLAdsBHTm/aFS8JXxsCSKysM+KPLJRyfgcMF Et4WRVhsMES/3ioka5Ug5Aqe+pJvFDo47NP1oGq18QF47QX8VZkZR9gP8f4/BRNV +U8ZOd0enZVrdTT8g4LQqtFc8vGkZX0y/2lKSNSAogYRPfKjKzRbydQ95ZVK8ad4 rQlj4wxA9l622LjjRG4iYDxB3WgPRg4+z7x/LzO7A4GJia88E8rxPp/uzwExnf0L NiV7qyN0jdrAorY3KL4prHAeUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6g/Ao8 ++XnYITW7OCAWG/wLtKIMB8GA1UdIwQYMBaAFMt7jbQkgkxxqHA7v7lCoxUpFUNj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83Q0I0QTA1NkZE M0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RIR29jRHVfdVVLakZTa1ZR Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kzdU50Q1NDVEhHb2NEdV91VUtqRlNrVlEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83Q0I0QTA1NkZEM0ExMUU0ODZGODY3NUZDNEY5QUUwMi95M3VOdENTQ1RI R29jRHVfdVVLakZTa1ZRMk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXd/4Q6reCA5RHftiNLZbfRbkYSZnu9IjAaSk21qCsig9mMj0to1BO MkLMJNFWGJ+OcaIEQMIXBYDVL7Pts8yT+VuYFE0xbkvEeH0qGTg1jI4DfDCbHSgl jfFfe3TTg1A039E8logMLq4l+aBDZz7dyn+0LZM5OsxsSoJAMvh3FaNRbopGUpU6 QwoaFxtyLZy5vh57RcvPP9rtTMhewbBx/+uq9uGvyVV6KSXj2hxvJVB8MJRUBaXe U4cmRGQuiWQAuOhuShd804vGsWj/Hko9VHbl9gOxiWf0Zr9jzIFu9UOGHda2qGzv 0sfLIySbWqcnNFRLoXUuN2166vXz+PaL -----END CERTIFICATE-----Generated at Mon Apr 28 17:46:02 2025 by rpki-client on console.sobornost.net