$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.mft File: pYh4bi_YjPqvU6qilsNkRg7m6m0.mft (raw, json) Hash identifier: wInduOwT7Tm8JR33DQvFG7TOXkDKuyJG640A87dHaxc= Subject key identifier: 73:4C:A2:F5:AC:3F:76:D9:46:95:7C:7C:5F:14:C8:A0:1D:3A:8A:95 Authority key identifier: A5:88:78:6E:2F:D8:8C:FA:AF:53:AA:A2:96:C3:64:46:0E:E6:EA:6D Certificate issuer: /CN=A91C8485/serialNumber=A588786E2FD88CFAAF53AAA296C364460EE6EA6D Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYh4bi_YjPqvU6qilsNkRg7m6m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.mft Manifest number: 4C Signing time: Sun 27 Apr 2025 06:11:11 +0000 Manifest this update: Sun 27 Apr 2025 06:11:11 +0000 Manifest next update: Sun 04 May 2025 06:11:11 +0000 Files and hashes: 1: pYh4bi_YjPqvU6qilsNkRg7m6m0.crl (hash: DHF/gQ7WgxFcMLrBNtZuquoRr7E/eAxpcGMLzH7heHQ=) 2: 5B4A5E7EB7CF11EF860F535AC4F9AE02.roa (hash: P4e7hg24wbNE0iYWlZNKVYCuvbgx+YoBC75Ik3ogStQ=) 3: A59FFB3EB7D711EF9ED0C324C4F9AE02.roa (hash: ko6zibH/Gh8JhBqwZ3M7VGiDwD5udZ8uVAs4re/9Ths=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.crl rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYh4bi_YjPqvU6qilsNkRg7m6m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8485, serialNumber=A588786E2FD88CFAAF53AAA296C364460EE6EA6D Validity Not Before: Apr 27 06:11:11 2025 GMT Not After : May 4 06:11:11 2025 GMT Subject: CN=680dca7f-0715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a9:3d:99:4d:f8:9b:aa:bf:54:6c:26:78:e4: 68:71:24:05:2f:0b:f8:8d:b1:06:08:e3:49:56:0c: 5f:19:f6:12:91:dd:9f:bf:a8:2d:94:ac:ee:68:91: bb:28:47:ce:36:ca:19:d9:2f:60:2e:d4:97:c0:29: f7:21:56:54:06:02:35:20:09:e2:a1:29:98:70:b3: 23:bf:ce:ba:f5:41:bf:1e:08:34:89:2c:7c:ef:90: a6:f0:5c:8d:4a:89:49:99:2d:13:67:0d:cc:95:e7: 40:d4:32:ac:b8:c7:71:9e:85:5a:85:99:9b:cb:4a: ef:77:2f:6b:a8:b8:0c:89:e3:92:5c:26:66:ad:39: 43:1d:29:89:86:22:bc:ee:40:ec:20:30:53:e3:a3: 49:3b:07:8b:b2:f6:d9:bf:93:5a:f4:93:07:ce:d8: 6c:84:e5:ee:c8:3c:b1:20:c0:85:8c:c4:18:d6:fc: 5a:80:63:c1:a7:37:12:04:96:75:44:7b:0f:79:fb: cf:27:3c:0c:48:36:ad:76:7a:d8:16:88:a5:c3:8f: ee:ab:d1:f2:f0:53:b4:c2:10:b8:db:ce:20:22:f7: fb:49:bb:fb:e7:7f:1b:4c:8b:a6:f9:d0:b9:cc:30: 12:6a:57:44:29:0d:c6:41:8a:2c:77:74:76:35:3e: 01:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4C:A2:F5:AC:3F:76:D9:46:95:7C:7C:5F:14:C8:A0:1D:3A:8A:95 X509v3 Authority Key Identifier: keyid:A5:88:78:6E:2F:D8:8C:FA:AF:53:AA:A2:96:C3:64:46:0E:E6:EA:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYh4bi_YjPqvU6qilsNkRg7m6m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d6:d9:e1:75:66:6a:36:e6:b5:0f:03:de:56:40:61:7f:0a: f4:4f:8e:a4:45:2f:a4:bd:9b:fd:64:66:f4:53:03:e7:2e:8c: d9:23:a7:af:a0:55:1e:31:c1:ef:40:74:40:92:01:d5:42:da: b6:cb:77:6a:ed:52:33:4d:1f:23:83:37:34:75:2c:9c:58:50: f0:c9:47:56:27:49:02:8d:4a:4b:a7:89:b0:07:d5:f9:12:56: 5a:83:d7:4b:d3:e2:60:2c:b6:08:19:87:b8:93:fa:48:70:90: 8b:d5:76:b1:b8:ec:21:20:33:aa:a8:e0:0e:22:1f:74:be:18: 10:48:8b:33:44:8b:6c:ec:2a:68:7e:c0:9b:4e:11:ba:c9:d4: 7f:e3:90:8b:60:5c:74:8f:a1:33:33:7f:3a:d9:33:43:3b:20: 19:01:c9:48:f6:86:dc:88:86:59:3a:07:0f:d6:95:85:e1:59: a6:11:4e:d5:88:8c:ba:3c:83:73:f2:89:c9:3f:d2:db:f1:f9: c0:62:3b:54:27:ae:78:03:b4:f8:ce:b0:f4:5e:4c:cc:b0:5b: 7f:57:1a:4f:c0:34:fd:af:29:75:88:93:49:aa:4b:f7:2f:b1: 58:fa:be:a4:b5:03:f3:db:46:82:3e:08:44:20:6c:0b:02:1e: 05:e4:c9:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODQ4NTExMC8GA1UEBRMoQTU4ODc4NkUyRkQ4OENGQUFGNTNBQUEyOTZDMzY0NDYw RUU2RUE2RDAeFw0yNTA0MjcwNjExMTFaFw0yNTA1MDQwNjExMTFaMBgxFjAUBgNV BAMTDTY4MGRjYTdmLTA3MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9qT2ZTfibqr9UbCZ45GhxJAUvC/iNsQYI40lWDF8Z9hKR3Z+/qC2UrO5okbso R842yhnZL2Au1JfAKfchVlQGAjUgCeKhKZhwsyO/zrr1Qb8eCDSJLHzvkKbwXI1K iUmZLRNnDcyV50DUMqy4x3GehVqFmZvLSu93L2uouAyJ45JcJmatOUMdKYmGIrzu QOwgMFPjo0k7B4uy9tm/k1r0kwfO2GyE5e7IPLEgwIWMxBjW/FqAY8GnNxIElnVE ew95+88nPAxINq12etgWiKXDj+6r0fLwU7TCELjbziAi9/tJu/vnfxtMi6b50LnM MBJqV0QpDcZBiix3dHY1PgEDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc0yi9aw/ dtlGlXx8XxTIoB06ipUwHwYDVR0jBBgwFoAUpYh4bi/YjPqvU6qilsNkRg7m6m0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4NDg1LzJEQkNFRjQ2QjQx MjExRUZCOEU2RTc3M0M0RjlBRTAyL3BZaDRiaV9ZalBxdlU2cWlsc05rUmc3bTZt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcFloNGJpX1lqUHF2VTZxaWxzTmtSZzdtNm0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4 NDg1LzJEQkNFRjQ2QjQxMjExRUZCOEU2RTc3M0M0RjlBRTAyL3BZaDRiaV9ZalBx dlU2cWlsc05rUmc3bTZtMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJLW2eF1Zmo25rUPA95WQGF/CvRPjqRFL6S9m/1kZvRTA+cujNkjp6+g VR4xwe9AdECSAdVC2rbLd2rtUjNNHyODNzR1LJxYUPDJR1YnSQKNSkunibAH1fkS VlqD10vT4mAstggZh7iT+khwkIvVdrG47CEgM6qo4A4iH3S+GBBIizNEi2zsKmh+ wJtOEbrJ1H/jkItgXHSPoTMzfzrZM0M7IBkByUj2htyIhlk6Bw/WlYXhWaYRTtWI jLo8g3Pyick/0tvx+cBiO1QnrngDtPjOsPReTMywW39XGk/ANP2vKXWIk0mqS/cv sVj6vqS1A/PbRoI+CEQgbAsCHgXkyYg= -----END CERTIFICATE-----Generated at Sun Apr 27 08:07:55 2025 by rpki-client on console.sobornost.net