$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft File: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft (raw, json) Hash identifier: CelvUNa1wLzOzoEmjLgX1coPQ/4Erkabs22jz4vIU4Q= Subject key identifier: 86:F5:8B:17:C7:1D:73:26:17:05:52:C8:AD:6B:D1:F2:FF:CC:10:85 Authority key identifier: C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B Certificate issuer: /CN=A91CC8B1/serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft Manifest number: 0C17 Signing time: Sun 04 May 2025 18:27:54 +0000 Manifest this update: Sun 04 May 2025 18:27:54 +0000 Manifest next update: Sun 11 May 2025 18:27:54 +0000 Files and hashes: 1: yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl (hash: 4mn5SMRm6L60wM/AtTUHGjevnhgkpziNaqtpKsBc/Mw=) 2: 69308C200A9611EABF034172C4F9AE02.roa (hash: UpR8nuBc/YxAqJ5KwZdD471HRL+h2X0H2SIoY13S/74=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 18:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC8B1, serialNumber=C87FCAE907BD205A08E54C67A63356D921C5913B Validity Not Before: May 4 18:27:54 2025 GMT Not After : May 11 18:27:54 2025 GMT Subject: CN=6817b1aa-ed40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:18:98:e4:2f:47:49:cc:92:dd:73:5c:ee:c1: 30:5d:61:b1:00:94:80:98:6f:4c:fd:a7:a4:b5:e1: 9f:29:d4:4f:89:2d:d3:d0:68:2b:c8:71:e2:6e:89: 6c:78:1f:a3:2b:0e:80:17:c8:69:2e:f1:6f:b4:b6: 74:76:47:5b:11:ae:59:5f:41:21:ed:80:c3:bc:cb: ce:c7:42:2f:32:e5:cd:3c:99:c6:3c:4c:b6:ba:4b: c9:c4:22:56:2d:79:5c:82:b1:bd:01:c5:a8:52:ac: 52:35:db:a8:7c:c9:38:71:b2:5b:bc:9d:28:70:65: 34:23:98:44:1d:e6:3f:57:6c:21:aa:b3:fd:d2:33: 89:f6:57:fc:3c:46:d5:b6:08:94:d3:aa:30:65:1e: d3:e0:9d:0a:db:b1:34:d6:ab:77:24:8e:b6:f6:97: ac:fe:d0:f1:40:81:3e:2d:c2:47:43:77:21:a6:a3: 1e:04:19:1b:4f:dc:51:e4:77:06:3a:53:80:47:2c: 7f:43:f3:b5:bf:80:aa:35:e1:a1:a6:ef:45:80:0e: 3f:f6:ff:48:e2:29:95:7a:f3:a6:a6:0f:33:96:12: ec:cf:14:f8:ab:6f:d8:34:9d:d8:91:0e:44:d9:07: 2e:d4:25:e7:af:21:4a:36:59:dd:aa:5e:51:48:ab: 29:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F5:8B:17:C7:1D:73:26:17:05:52:C8:AD:6B:D1:F2:FF:CC:10:85 X509v3 Authority Key Identifier: keyid:C8:7F:CA:E9:07:BD:20:5A:08:E5:4C:67:A6:33:56:D9:21:C5:91:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC8B1/CE851A560A9511EA85FFAA71C4F9AE02/yH_K6Qe9IFoI5UxnpjNW2SHFkTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:4e:96:60:3a:3c:0f:82:e1:74:a7:5c:f3:f6:ce:ae:47:ee: 40:af:ce:d0:30:24:99:59:21:03:fe:b2:d7:a1:ec:63:7f:7f: c1:a6:99:62:75:9d:b7:c1:5e:c0:f6:56:bc:77:ce:3c:06:9c: 37:a7:ce:10:09:32:44:7e:61:11:35:dd:d6:66:be:a0:fa:12: 78:6b:79:ec:62:28:26:e5:42:bf:79:81:03:bf:df:b7:37:f6: ef:ab:69:88:9b:b4:a0:73:1e:b5:28:aa:60:3f:13:b5:79:cb: 20:91:ee:f1:5b:65:75:2b:b1:30:52:5c:f0:08:73:f3:f2:c0: c9:36:41:8b:4f:7f:98:cd:72:99:c4:94:08:ee:ee:e2:74:eb: f2:c8:7a:be:a4:9c:24:f6:75:4e:13:9c:72:26:d5:8d:b9:0d: 8b:ce:98:9a:3d:23:86:a1:0f:15:3c:94:04:28:88:db:7b:98: 95:6b:15:e0:a8:74:b1:84:29:19:3a:6a:58:9f:86:f0:1d:35: 07:6c:90:b6:6c:dc:d7:f3:28:1f:7f:e9:dc:78:e0:36:59:08: c5:33:d4:7a:7f:49:59:95:b1:e1:6f:d1:4a:a3:42:0b:da:97: da:d6:c3:92:f9:92:67:c0:0c:d1:97:7a:a9:47:da:2e:b4:5c: 3e:34:e2:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4QjExMTAvBgNVBAUTKEM4N0ZDQUU5MDdCRDIwNUEwOEU1NEM2N0E2MzM1NkQ5 MjFDNTkxM0IwHhcNMjUwNTA0MTgyNzU0WhcNMjUwNTExMTgyNzU0WjAYMRYwFAYD VQQDEw02ODE3YjFhYS1lZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BiY5C9HScyS3XNc7sEwXWGxAJSAmG9M/aekteGfKdRPiS3T0GgryHHibols eB+jKw6AF8hpLvFvtLZ0dkdbEa5ZX0Eh7YDDvMvOx0IvMuXNPJnGPEy2ukvJxCJW LXlcgrG9AcWoUqxSNduofMk4cbJbvJ0ocGU0I5hEHeY/V2whqrP90jOJ9lf8PEbV tgiU06owZR7T4J0K27E01qt3JI629pes/tDxQIE+LcJHQ3chpqMeBBkbT9xR5HcG OlOARyx/Q/O1v4CqNeGhpu9FgA4/9v9I4imVevOmpg8zlhLszxT4q2/YNJ3YkQ5E 2Qcu1CXnryFKNlndql5RSKspLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIb1ixfH HXMmFwVSyK1r0fL/zBCFMB8GA1UdIwQYMBaAFMh/yukHvSBaCOVMZ6YzVtkhxZE7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzhCMS9DRTg1MUE1NjBB OTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlGb0k1VXhucGpOVzJTSEZr VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX0s2UWU5SUZvSTVVeG5wak5XMlNIRmtUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzhCMS9DRTg1MUE1NjBBOTUxMUVBODVGRkFBNzFDNEY5QUUwMi95SF9LNlFlOUlG b0k1VXhucGpOVzJTSEZrVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyTpZgOjwPguF0p1zz9s6uR+5Ar87QMCSZWSED/rLXoexjf3/Bppli dZ23wV7A9la8d848Bpw3p84QCTJEfmERNd3WZr6g+hJ4a3nsYigm5UK/eYEDv9+3 N/bvq2mIm7Sgcx61KKpgPxO1ecsgke7xW2V1K7EwUlzwCHPz8sDJNkGLT3+YzXKZ xJQI7u7idOvyyHq+pJwk9nVOE5xyJtWNuQ2LzpiaPSOGoQ8VPJQEKIjbe5iVaxXg qHSxhCkZOmpYn4bwHTUHbJC2bNzX8ygff+nceOA2WQjFM9R6f0lZlbHhb9FKo0IL 2pfa1sOS+ZJnwAzRl3qpR9outFw+NOLb -----END CERTIFICATE-----Generated at Sun May 4 20:44:18 2025 by rpki-client on console.sobornost.net